Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
File: GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft (raw, json)
Hash identifier: 1PpPrge+iwKCJ7KJsdsMGyZLnyhzuxKl+DxYr2KXPJc=
Subject key identifier: E9:A6:4C:7D:89:73:76:AE:F3:7F:12:08:F3:33:17:04:AA:A4:6F:F2
Authority key identifier: 18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9
Certificate issuer: /CN=18886007da1730b0770d8604db73d12fd264f3f9
Certificate serial: 019A5074CE2733E11BEAE47A75EB24B47078
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
Manifest number: 07E8
Signing time: Tue 04 Nov 2025 20:00:23 +0000
Manifest this update: Tue 04 Nov 2025 20:00:23 +0000
Manifest next update: Wed 05 Nov 2025 20:00:23 +0000
Files and hashes: 1: 5lbTUO-rP5txsV_jlKv3vzS10Vc.roa (hash: VgScyBVTOIb/scuSoZmb+259XQHu/6r7pBA0Gc4Wdqs=)
2: GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl (hash: 92iV+mBoy/qVCmM59jNP9zzgKJAz+irLHqU2RWCLR5k=)
3: RR-wG56YXYGUEbsQFd9GOjHnKvM.roa (hash: eG7mgkU6tN6hBwmEUuDYJD2Lxu/DlOxJUe50nzg9em4=)
4: TdRFPSiE6z0QGX9lW2WUDs-qrvc.roa (hash: uIOA5ClG5A+YjWezToN8AYQViV6aWN3VOQLxA91W/R8=)
5: W9jLQPfJ-gf7W45fE6xy024pvso.roa (hash: myRMJIwFBs9jjITp4SZwdlJzPIPHFfsrLal6I49sinM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:74:ce:27:33:e1:1b:ea:e4:7a:75:eb:24:b4:70:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18886007da1730b0770d8604db73d12fd264f3f9
Validity
Not Before: Nov 4 20:00:23 2025 GMT
Not After : Nov 5 20:00:23 2025 GMT
Subject: CN=e9a64c7d897376aef37f1208f3331704aaa46ff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3b:33:9c:27:e4:19:d4:e1:43:95:97:21:93:
d3:84:ef:e5:d7:6b:08:79:fc:f2:cf:a4:87:01:32:
26:68:ff:79:5f:2d:e1:e8:03:81:ab:85:73:3a:8a:
db:03:0a:6f:f8:36:5c:a4:69:42:af:d2:d6:84:4e:
3b:d8:6f:18:cb:5e:87:fd:d3:ea:25:83:ba:6f:e8:
21:1a:c1:4c:a2:c0:05:a2:aa:73:41:a6:60:3d:a2:
99:bb:96:de:73:72:0b:d4:d8:ec:a8:94:ef:56:17:
8d:e0:7a:58:4a:fe:64:6e:af:d2:ad:4c:5c:6c:4d:
f1:26:e5:53:db:7a:c3:f6:e9:68:65:7b:d5:f7:6d:
28:7e:85:13:e8:eb:07:36:f5:95:91:2a:dc:8f:93:
9a:1d:14:62:39:9e:9d:ea:87:e4:f2:23:57:6f:bd:
77:54:12:c6:76:67:dd:b4:0c:f4:1c:bf:e1:ef:e1:
c2:1c:9b:1e:ee:47:43:64:3e:bd:9b:55:c7:71:f8:
02:3c:ca:37:47:66:75:90:3f:b0:0d:82:82:b0:33:
cf:f9:3b:b9:09:b8:d2:da:35:da:9a:99:01:a6:fc:
b3:0d:a6:f4:ee:d6:ee:f6:e6:a3:83:19:28:d4:35:
94:72:e3:1f:70:b1:35:9e:83:b2:c5:33:09:37:12:
c6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:A6:4C:7D:89:73:76:AE:F3:7F:12:08:F3:33:17:04:AA:A4:6F:F2
X509v3 Authority Key Identifier:
keyid:18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:f5:72:b2:6f:ce:b5:a5:32:1a:43:d7:b8:91:1f:a6:4b:06:
5c:51:05:60:f6:d1:77:af:e5:5a:8d:51:1a:2b:28:2d:c5:5b:
45:4d:3c:e6:c4:58:5a:8d:f3:37:49:08:e1:99:db:d5:4c:48:
10:71:82:dc:7f:78:b2:a1:2a:15:69:b8:b6:97:83:1e:e9:14:
6e:80:f3:74:7e:39:a6:34:30:0f:86:a3:d4:ea:b6:0a:44:5c:
2e:91:de:08:09:57:94:d7:6f:c5:ce:eb:ee:69:24:79:dd:eb:
6a:e1:92:43:5f:df:ea:6e:27:87:9e:57:09:9e:03:27:de:c3:
90:f0:a0:91:ca:a7:c0:6a:18:8b:ea:4d:f0:cd:21:8b:97:ba:
9f:9e:1c:ae:57:cd:50:a4:ec:59:e8:25:3e:65:ed:77:d6:d4:
13:57:0a:b9:28:f6:72:ff:a1:b2:2e:3e:08:7c:b8:0f:8a:09:
51:94:a0:a1:e7:42:ad:b4:56:30:e4:b9:fd:16:b3:ea:fa:39:
d6:24:28:86:64:a3:57:4c:bd:bf:53:28:d7:30:22:08:54:ff:
3f:e8:e0:d1:84:db:24:11:d7:7f:4a:fa:dc:ef:c6:1b:15:05:
37:97:a2:bb:d4:00:a1:e5:6b:c8:21:96:b3:c1:52:04:27:b9:
a8:23:59:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQdM4nM+Eb6uR6desktHB4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4ODg2MDA3ZGExNzMwYjA3NzBkODYwNGRiNzNkMTJmZDI2
NGYzZjkwHhcNMjUxMTA0MjAwMDIzWhcNMjUxMTA1MjAwMDIzWjAzMTEwLwYDVQQD
EyhlOWE2NGM3ZDg5NzM3NmFlZjM3ZjEyMDhmMzMzMTcwNGFhYTQ2ZmYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvzsznCfkGdThQ5WXIZPThO/l12sI
efzyz6SHATImaP95Xy3h6AOBq4VzOorbAwpv+DZcpGlCr9LWhE472G8Yy16H/dPq
JYO6b+ghGsFMosAFoqpzQaZgPaKZu5bec3IL1NjsqJTvVheN4HpYSv5kbq/SrUxc
bE3xJuVT23rD9uloZXvV920ofoUT6OsHNvWVkSrcj5OaHRRiOZ6d6ofk8iNXb713
VBLGdmfdtAz0HL/h7+HCHJse7kdDZD69m1XHcfgCPMo3R2Z1kD+wDYKCsDPP+Tu5
CbjS2jXampkBpvyzDab07tbu9uajgxko1DWUcuMfcLE1noOyxTMJNxLGewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOmmTH2Jc3au838SCPMzFwSqpG/yMB8GA1UdIwQY
MBaAFBiIYAfaFzCwdw2GBNtz0S/SZPP5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0loZ0I5b1hNTEIzRFlZRTIzUFJMOUprOF9rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS8yOTMzMjgtOTI0NS00MDNiLThhNGEt
MTY5YzgzNmJkNmIwLzEvR0loZ0I5b1hNTEIzRFlZRTIzUFJMOUprOF9rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS8yOTMzMjgtOTI0NS00MDNiLThhNGEtMTY5YzgzNmJkNmIw
LzEvR0loZ0I5b1hNTEIzRFlZRTIzUFJMOUprOF9rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASvVysm/O
taUyGkPXuJEfpksGXFEFYPbRd6/lWo1RGisoLcVbRU085sRYWo3zN0kI4Znb1UxI
EHGC3H94sqEqFWm4tpeDHukUboDzdH45pjQwD4aj1Oq2CkRcLpHeCAlXlNdvxc7r
7mkked3rauGSQ1/f6m4nh55XCZ4DJ97DkPCgkcqnwGoYi+pN8M0hi5e6n54crlfN
UKTsWeglPmXtd9bUE1cKuSj2cv+hsi4+CHy4D4oJUZSgoedCrbRWMOS5/Raz6vo5
1iQohmSjV0y9v1Mo1zAiCFT/P+jg0YTbJBHXf0r63O/GGxUFN5eiu9QAoeVryCGW
s8FSBCe5qCNZbw==
-----END CERTIFICATE-----
Generated at Wed Nov 5 04:17:22 2025 by rpki-client