Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
File: GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft (raw, json)
Hash identifier: hUB+5Zp47cfeaMlB8vXAdsKCDYNvgmIuGTmLCKREkJE=
Subject key identifier: F5:49:E4:42:D7:B3:F1:FC:A2:D4:00:3D:E8:F8:BB:E4:BA:C8:EB:D9
Authority key identifier: 18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9
Certificate issuer: /CN=18886007da1730b0770d8604db73d12fd264f3f9
Certificate serial: 019A52638A3D9E86EDED7A2540B641DDA371
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
Manifest number: 07E9
Signing time: Wed 05 Nov 2025 05:00:46 +0000
Manifest this update: Wed 05 Nov 2025 05:00:46 +0000
Manifest next update: Thu 06 Nov 2025 05:00:46 +0000
Files and hashes: 1: 5lbTUO-rP5txsV_jlKv3vzS10Vc.roa (hash: VgScyBVTOIb/scuSoZmb+259XQHu/6r7pBA0Gc4Wdqs=)
2: GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl (hash: vXGyV5bvcsXpr2lmu7tUO9qzIGKn2nDuQYC7v0b09AQ=)
3: RR-wG56YXYGUEbsQFd9GOjHnKvM.roa (hash: eG7mgkU6tN6hBwmEUuDYJD2Lxu/DlOxJUe50nzg9em4=)
4: TdRFPSiE6z0QGX9lW2WUDs-qrvc.roa (hash: uIOA5ClG5A+YjWezToN8AYQViV6aWN3VOQLxA91W/R8=)
5: W9jLQPfJ-gf7W45fE6xy024pvso.roa (hash: myRMJIwFBs9jjITp4SZwdlJzPIPHFfsrLal6I49sinM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:63:8a:3d:9e:86:ed:ed:7a:25:40:b6:41:dd:a3:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18886007da1730b0770d8604db73d12fd264f3f9
Validity
Not Before: Nov 5 05:00:46 2025 GMT
Not After : Nov 6 05:00:46 2025 GMT
Subject: CN=f549e442d7b3f1fca2d4003de8f8bbe4bac8ebd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:89:75:22:28:53:5a:5e:ad:ec:06:b0:b0:19:
b3:43:73:3f:02:dd:cc:8a:d4:ec:06:9f:61:ed:6f:
a1:0d:93:bf:77:55:dd:02:a7:95:76:30:b8:fd:ad:
13:4d:e4:bf:d2:a5:8a:53:90:db:bd:f5:69:12:94:
ed:6c:2f:87:88:ef:d2:5e:c9:da:25:15:9b:b1:92:
78:22:46:28:2c:44:49:22:b3:d4:9b:9e:ea:32:59:
49:76:f8:89:ea:7c:4c:af:24:9f:3c:d5:6a:fa:e1:
8a:38:3e:45:a2:59:f2:48:39:59:3a:c6:6f:4d:ac:
51:c0:02:26:84:28:f4:45:ac:61:a2:44:2c:0a:b8:
35:3c:c8:96:4e:3d:a5:43:47:78:f0:42:83:c5:2d:
28:9d:3b:d3:8c:82:8b:c7:a9:9a:2b:77:8c:4c:55:
59:1c:0a:78:85:5f:90:c9:4c:51:5e:00:05:19:a9:
aa:a4:a2:f3:ba:2f:b5:13:77:e2:1c:58:99:6c:e8:
98:97:e3:6f:70:72:2a:fd:d0:86:f2:5d:77:85:74:
c9:da:cb:80:18:03:3d:b6:ac:bb:0e:b2:35:f3:ab:
cc:5f:65:ef:17:f7:49:85:52:5d:6f:48:7e:45:b4:
22:7e:f7:1d:ba:31:a7:be:b1:d7:85:b7:36:a4:4b:
46:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:49:E4:42:D7:B3:F1:FC:A2:D4:00:3D:E8:F8:BB:E4:BA:C8:EB:D9
X509v3 Authority Key Identifier:
keyid:18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:ce:d9:b2:15:02:05:ac:af:51:4b:80:c1:e5:56:83:c3:a8:
f1:f8:3e:30:3f:58:b4:97:af:3f:db:c6:6b:65:1e:0a:4c:39:
22:11:9d:8f:52:6e:ce:39:0a:c0:4f:79:4d:dd:14:35:f5:af:
0d:3b:5a:21:c3:e5:33:db:fc:e4:c1:7a:30:27:77:79:5d:9f:
b1:2b:72:99:13:bb:aa:0b:19:c6:e2:49:98:ba:e1:48:13:04:
d7:cb:11:b5:73:d3:7c:18:1a:57:45:b4:31:5a:86:25:ce:38:
b7:7c:82:49:95:91:fe:de:20:2b:32:b7:3a:3b:b4:e9:4c:f0:
aa:4e:c3:dd:96:76:32:9b:12:52:db:ad:2b:c5:f1:f9:06:8d:
79:9c:26:48:7d:a0:8f:a1:04:4f:25:51:6d:0b:ed:af:25:19:
3e:21:f5:02:a9:03:32:17:84:24:20:2f:b1:4e:c4:44:52:f4:
fb:3f:cc:de:5c:44:80:e2:60:fc:28:67:8f:24:38:8c:5f:c4:
bc:7e:4a:54:ac:f2:3b:23:8e:fe:c7:60:ff:ba:84:02:89:c6:
c9:f7:b9:08:b4:72:0a:64:07:a8:1f:6a:86:de:e5:81:82:e3:
49:40:2d:34:70:8e:f8:e9:ed:f3:b4:cc:4c:b1:cf:19:1d:b8:
26:62:9e:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:26:10 2025 by rpki-client