Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
File: gBbMsax3x8AqTt5gbfH375c6C_k.mft (raw, json)
Hash identifier: YgpBO01sTXA0B11cKEUbwb9tfuDc2tKxKAUIbbMJOHk=
Subject key identifier: 08:C5:D6:22:74:DD:61:23:2F:8E:FD:16:D7:BB:10:ED:0F:D0:5E:6D
Authority key identifier: 80:16:CC:B1:AC:77:C7:C0:2A:4E:DE:60:6D:F1:F7:EF:97:3A:0B:F9
Certificate issuer: /CN=8016ccb1ac77c7c02a4ede606df1f7ef973a0bf9
Certificate serial: 019A4E4FADA078BAC16B3854BEFC1A3C3EC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
Manifest number: 11B9
Signing time: Tue 04 Nov 2025 10:00:35 +0000
Manifest this update: Tue 04 Nov 2025 10:00:35 +0000
Manifest next update: Wed 05 Nov 2025 10:00:35 +0000
Files and hashes: 1: Ax6Vm0VTZQY0FLe1VYl0Sd0_sqo.roa (hash: X5Han0rbC/tYWBQcqeDkAJUru7qclM/G19tIpVV4C6g=)
2: gBbMsax3x8AqTt5gbfH375c6C_k.crl (hash: 17Ff+0I6+IwfVGL1e2eKBtzbIT7UEPW7NJG10Dq3o3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:ad:a0:78:ba:c1:6b:38:54:be:fc:1a:3c:3e:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8016ccb1ac77c7c02a4ede606df1f7ef973a0bf9
Validity
Not Before: Nov 4 10:00:35 2025 GMT
Not After : Nov 5 10:00:35 2025 GMT
Subject: CN=08c5d62274dd61232f8efd16d7bb10ed0fd05e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b9:88:b4:b6:b1:fc:b7:ef:13:ca:49:6e:b9:
a1:49:6e:0c:11:ce:ee:9c:b8:4a:8f:bf:20:ce:0f:
9e:de:32:af:6c:16:83:f6:1d:55:20:74:f7:c8:3d:
70:4e:29:b8:66:b1:f0:35:ed:27:c8:1a:3e:35:ff:
d5:2f:d3:79:c4:0a:7c:51:57:b1:59:77:1f:7f:14:
72:0d:22:6f:34:1f:ab:e2:84:96:08:ff:57:82:60:
20:32:25:cf:00:be:43:f9:89:31:a9:61:e0:87:8d:
71:bb:c7:3a:d6:b1:57:cd:c9:15:ba:a9:8e:24:5d:
21:71:a3:e6:67:bd:52:3b:bc:48:4f:cd:5f:82:f6:
5f:c8:6e:ac:86:29:a9:e0:d7:e2:81:73:46:d2:ba:
c0:9e:cf:6d:7b:a1:a8:c3:ac:31:7d:0f:12:40:4d:
d2:dc:79:01:b4:60:45:7b:1f:5b:e3:46:81:f6:2d:
cc:20:a6:16:08:59:9a:f1:8c:76:d1:43:40:a8:63:
66:f1:93:43:d3:ef:91:2c:c6:da:67:74:b9:d8:a9:
ad:79:16:69:43:77:fc:bd:5a:48:5f:55:5a:92:64:
96:0b:d1:fe:09:b7:31:84:86:46:a7:b2:f8:4f:72:
d6:8c:70:fe:8b:0e:f9:2c:6f:e2:03:67:8a:8f:57:
72:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C5:D6:22:74:DD:61:23:2F:8E:FD:16:D7:BB:10:ED:0F:D0:5E:6D
X509v3 Authority Key Identifier:
keyid:80:16:CC:B1:AC:77:C7:C0:2A:4E:DE:60:6D:F1:F7:EF:97:3A:0B:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:b0:27:7f:7a:8e:6a:40:d7:6c:b4:d0:8f:d7:67:d2:d9:25:
dc:53:b0:9e:dd:18:43:36:e5:30:e7:8f:dd:b7:1d:f3:08:22:
e9:3d:63:52:fb:9e:f1:36:d5:5b:54:89:fb:8e:83:10:fe:02:
d6:81:93:a1:e0:5b:a4:d2:fc:1b:27:6b:74:e7:04:45:c4:26:
d7:5c:d1:6b:3b:df:ad:7c:b3:f8:5f:86:82:d8:51:e6:7b:30:
09:22:1a:ce:c6:f4:95:9d:43:a5:20:af:2c:e7:56:14:a7:d2:
db:c8:55:99:00:81:40:49:a9:61:5f:81:af:6b:0d:bc:a4:07:
06:2a:ed:33:84:50:d1:2f:e4:c2:a3:6f:40:4f:f7:9b:ed:21:
66:c9:5e:76:64:7c:84:8d:53:05:fb:da:cb:67:f2:c9:69:0b:
31:b3:5f:42:7a:a9:fd:17:58:43:f5:3d:75:2d:b8:06:72:51:
dd:fd:db:1f:06:0a:ab:71:2e:c0:be:66:16:70:2e:e9:99:ea:
67:31:ae:4c:a5:e2:31:21:45:c6:97:14:85:8f:cc:2e:b7:62:
93:98:ec:33:aa:ee:9f:8a:16:f1:74:05:71:e4:c0:32:dc:b8:
5e:51:0c:ff:a4:ac:77:6a:fc:cb:c0:5a:ac:3d:23:5a:71:0e:
fc:aa:ad:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:06:08 2025 by rpki-client