Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
File: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft (raw, json)
Hash identifier: efvOWEEoPXRYKeqElENBZj9SObVyb8sAkHneM1Rn3YM=
Subject key identifier: 02:75:14:67:BB:86:C9:FD:79:8B:31:E8:C8:0C:C3:06:84:FF:58:3F
Authority key identifier: 82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
Certificate issuer: /CN=827313247c486fe434833c09087a00a900301840
Certificate serial: 019A54C068614E8B81BD1439CA7704488CE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
Manifest number: 170D
Signing time: Wed 05 Nov 2025 16:01:26 +0000
Manifest this update: Wed 05 Nov 2025 16:01:26 +0000
Manifest next update: Thu 06 Nov 2025 16:01:26 +0000
Files and hashes: 1: 7G9OAa8ebUxYvLbiABAZAGXs6yI.roa (hash: Q8FJVCv7ZP8KepVRkOgfjY1xOHET+UVMaI0qQvaXpcQ=)
2: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl (hash: npb63OY6//qEBh0PmawPO1LhZdlvMWWz8X85xSediFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:c0:68:61:4e:8b:81:bd:14:39:ca:77:04:48:8c:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827313247c486fe434833c09087a00a900301840
Validity
Not Before: Nov 5 16:01:26 2025 GMT
Not After : Nov 6 16:01:26 2025 GMT
Subject: CN=02751467bb86c9fd798b31e8c80cc30684ff583f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:2c:85:a5:a5:54:de:22:21:a8:60:f1:37:c2:
ce:c1:9a:36:34:ef:17:d1:d3:56:6f:63:d3:07:20:
af:73:26:ed:b9:88:99:70:86:16:e2:10:86:4b:47:
53:f5:9f:0e:2a:31:5f:81:8b:dd:ed:dd:02:2a:75:
24:59:b4:8e:1d:77:8f:b4:55:c2:7f:fd:fc:b0:37:
34:89:89:71:44:2b:f4:c8:97:46:40:ff:eb:87:6c:
b8:f4:c3:81:9e:d6:8b:f9:b8:be:d6:64:8d:01:e6:
b3:37:31:60:a9:bc:50:f4:34:a6:03:47:3f:4c:0c:
5d:b5:74:b9:ae:f2:2f:bb:aa:47:00:3e:95:73:1f:
71:64:4f:71:6c:c2:a3:f7:70:8a:07:5c:b6:6b:5b:
83:01:06:21:69:f6:85:12:39:64:d4:50:93:b6:c5:
94:a6:51:70:29:6f:a0:37:f0:30:a1:6f:58:86:ac:
2e:99:ff:83:9f:59:cd:4c:ac:32:e1:6f:30:0d:24:
38:2c:71:59:86:cb:d9:0c:d8:9d:03:dd:e6:5e:85:
c0:5f:4c:16:f7:cb:4c:c1:68:24:73:a9:ae:02:0f:
0c:8e:18:45:57:24:9e:8a:17:c3:09:b5:c0:e6:8c:
1e:03:0a:de:c6:81:5f:41:ac:33:9c:a6:b5:2c:77:
c9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:75:14:67:BB:86:C9:FD:79:8B:31:E8:C8:0C:C3:06:84:FF:58:3F
X509v3 Authority Key Identifier:
keyid:82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:c7:7c:73:70:0d:6c:fa:bb:82:e9:9a:bb:2e:f3:a3:8d:db:
34:c0:7f:e8:ef:7a:3c:44:6f:18:bc:72:9f:dc:62:cd:44:c4:
e9:98:e7:37:1a:61:53:69:4c:77:c3:53:05:09:91:ba:5a:5c:
19:f4:6f:01:5e:53:d2:cd:88:af:8d:44:32:df:af:54:a3:e7:
32:a9:f8:a1:d6:30:8a:fd:17:a8:8e:7a:a9:a3:13:5d:6d:1b:
3e:21:0f:60:f1:0c:ff:8f:df:e5:fe:e9:ce:96:20:b0:71:66:
d3:1f:a3:da:bc:e7:0b:0f:8a:bb:08:1b:a9:7d:9c:2b:c9:87:
90:df:17:48:d2:93:c6:f2:f0:69:8c:1f:1e:c7:df:29:4a:bf:
d0:41:e9:90:e6:ce:e5:c8:0c:28:35:49:a6:02:dc:7d:69:fb:
9b:9d:e8:8b:95:98:11:03:7a:26:fe:3c:08:f9:b7:87:98:5a:
13:91:70:b8:d3:ca:d2:57:45:42:23:c1:2f:a0:e9:6e:19:27:
6b:08:a3:00:2e:5e:a7:8a:21:65:cc:c7:29:72:a5:90:05:a1:
1c:f6:7b:f2:34:80:fe:70:a0:ac:4b:f7:15:f4:be:f9:33:b0:
12:e7:01:e2:20:bb:32:40:d5:48:da:4c:39:7f:78:81:f9:50:
2c:28:f0:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 21:01:09 2025 by rpki-client