Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
File: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft (raw, json)
Hash identifier: navlvtR+sXCL4sQPYTpx9sz+cKTAa+YZRIcdWH4yqYY=
Subject key identifier: B3:C0:2D:3D:CA:CF:78:02:1C:3A:45:41:85:C9:B1:64:AC:26:4C:4D
Authority key identifier: 82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
Certificate issuer: /CN=827313247c486fe434833c09087a00a900301840
Certificate serial: 0198A04D72E7C1DF721052F8852FD664A6E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
Manifest number: 162B
Signing time: Tue 12 Aug 2025 22:01:26 +0000
Manifest this update: Tue 12 Aug 2025 22:01:26 +0000
Manifest next update: Wed 13 Aug 2025 22:01:26 +0000
Files and hashes: 1: 7G9OAa8ebUxYvLbiABAZAGXs6yI.roa (hash: Q8FJVCv7ZP8KepVRkOgfjY1xOHET+UVMaI0qQvaXpcQ=)
2: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl (hash: wwk9oyU8RKXH6AkLuLsCsPzhow8LrPwfm0jGFv5WDNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4d:72:e7:c1:df:72:10:52:f8:85:2f:d6:64:a6:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827313247c486fe434833c09087a00a900301840
Validity
Not Before: Aug 12 22:01:26 2025 GMT
Not After : Aug 13 22:01:26 2025 GMT
Subject: CN=b3c02d3dcacf78021c3a454185c9b164ac264c4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3e:01:b2:6e:d5:72:e4:bb:3b:2e:c4:1a:80:
de:90:5c:0c:23:c0:1b:a6:8e:d8:0e:15:38:51:13:
49:2a:e1:af:93:9c:ba:95:04:ce:64:8c:db:78:df:
14:7a:6a:24:d5:c4:87:34:a2:10:f1:02:77:53:0f:
0d:20:e4:f5:be:3d:4d:58:34:21:fd:fc:dd:f2:56:
6f:bd:da:68:25:4a:94:e8:17:d9:64:2b:f1:17:bf:
53:2f:fa:d2:b6:11:91:bc:9c:cf:47:1e:f1:a5:a8:
64:28:5c:04:0d:9b:52:b0:21:6f:5b:b4:97:22:a1:
73:e1:4e:45:e1:8b:6c:b5:4b:c9:d9:a9:03:2a:33:
5b:5a:f0:3c:71:0e:97:5c:27:58:d7:cd:4d:23:81:
0f:55:e9:88:07:af:4c:cb:13:24:6c:16:37:0c:e5:
54:f3:1e:7d:70:ba:41:69:0e:e8:66:f5:68:16:bc:
de:f4:a4:a9:dc:b8:dd:37:23:5d:e5:34:c5:34:f3:
01:c2:c1:30:cb:9c:ee:64:25:6e:94:3e:ed:5d:41:
3b:06:ec:21:40:b8:c9:64:99:dc:d8:84:d4:bf:1e:
03:30:18:e3:0a:28:e4:dc:c8:99:59:44:97:a7:3a:
19:e4:93:4d:ad:74:1d:76:d8:28:55:e8:64:82:ab:
25:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:C0:2D:3D:CA:CF:78:02:1C:3A:45:41:85:C9:B1:64:AC:26:4C:4D
X509v3 Authority Key Identifier:
keyid:82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:f4:bb:b2:29:3e:eb:4b:2e:04:76:5f:27:49:d5:7c:80:1d:
30:8c:42:c7:f7:3c:c1:51:5e:f7:bb:f7:ee:ae:b7:4e:f2:53:
59:b4:ea:09:12:66:fa:7d:f4:d3:54:31:0c:ba:75:4c:4e:cb:
ef:3a:8d:37:a3:da:61:97:4d:01:0e:37:00:5a:fd:f8:02:5d:
94:67:56:bd:15:7f:93:22:83:2c:62:53:bc:31:33:c5:b4:25:
08:a2:b6:8c:29:b5:91:77:99:41:c0:30:91:71:6a:eb:97:e2:
ed:ba:26:0c:13:cc:f3:70:a2:b5:c1:20:df:7a:6a:96:ce:cb:
e5:cc:68:d4:7d:a7:46:6f:c4:cd:de:b5:d3:85:4d:a1:94:c2:
49:a7:e7:84:e6:f3:3d:a5:43:b5:ca:bd:81:c4:76:6f:8a:d6:
be:7a:b0:4a:a7:ac:a5:c3:45:e3:54:a3:04:0d:b1:07:5f:a2:
ba:7c:94:8c:32:cd:f2:e7:20:21:78:ac:5a:b6:1e:8c:3d:27:
a2:c7:2e:ee:a1:60:29:e2:50:29:ce:8e:a6:e4:8a:b7:45:6d:
b3:cf:9a:ff:b0:5c:05:27:b8:69:dc:bc:18:45:43:79:16:22:
b9:a0:92:19:30:ef:cf:33:c5:8f:01:7d:84:d3:d6:e7:55:8e:
df:0a:85:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 00:30:14 2025 by rpki-client