Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
File: goiQPZDAHi1c4YeIBa1KktKK7ck.mft (raw, json)
Hash identifier: hN+pbJ0m4Uk+jvINbiXBFdjaEKc+SY0iBIke8+7YIjs=
Subject key identifier: DD:87:14:4C:94:5D:95:9E:D1:49:B8:3A:4D:DC:65:FC:ED:CF:CC:74
Authority key identifier: 82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
Certificate issuer: /CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Certificate serial: 019A4E8640812D5A3EB115DCAD1F5B6A087C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
Manifest number: 0E5F
Signing time: Tue 04 Nov 2025 11:00:12 +0000
Manifest this update: Tue 04 Nov 2025 11:00:12 +0000
Manifest next update: Wed 05 Nov 2025 11:00:12 +0000
Files and hashes: 1: goiQPZDAHi1c4YeIBa1KktKK7ck.crl (hash: 5ZGM47+9mgTP6mCxZwAlyUNehCutgbrpKG9Gs7L4mx0=)
2: xs7enPVeNIMyt7yLlWdZQsBjc6E.roa (hash: Hl7Zc5f4P4RuVLf0+lM7s4f9NcFGJ5Df6CUhJF0dl6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:40:81:2d:5a:3e:b1:15:dc:ad:1f:5b:6a:08:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Validity
Not Before: Nov 4 11:00:12 2025 GMT
Not After : Nov 5 11:00:12 2025 GMT
Subject: CN=dd87144c945d959ed149b83a4ddc65fcedcfcc74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3a:99:d0:90:79:3c:c5:df:f7:c5:a6:2a:ce:
43:de:33:d1:b8:bf:82:53:10:14:c0:9d:0d:63:ba:
dc:05:c7:dd:af:1e:ad:10:77:a0:a9:6a:70:6c:8b:
ee:d1:ea:98:59:f4:61:3a:cd:74:37:b5:28:6f:f5:
c1:71:80:69:cc:a9:97:2c:f7:e5:2d:8c:23:b3:2f:
7b:98:d6:f8:4f:19:b2:9b:4f:b3:2a:99:ab:bf:68:
82:3b:93:f0:ad:ca:d1:73:5b:c6:86:6c:cb:3e:39:
32:6a:0a:86:51:55:be:ca:38:50:85:fb:a1:93:97:
67:d5:91:71:52:27:cb:ad:ae:49:c4:6a:44:8d:10:
ba:21:2f:ea:e7:39:15:1f:95:00:33:52:a2:b5:a9:
96:64:35:bf:cc:43:c7:db:ab:ea:38:48:d8:41:f0:
10:a1:af:76:ce:52:9b:cb:db:7a:3f:8d:05:c1:3b:
6c:53:14:0f:d4:a2:65:a1:b0:cb:7b:3e:e8:db:67:
f0:ce:2f:e8:f9:6d:38:0f:ea:7c:f3:be:54:44:13:
e1:22:9e:f4:15:6f:44:01:10:17:dd:85:e6:9c:fa:
c1:c4:86:20:ef:77:bb:33:ad:67:43:3b:ea:79:8f:
22:85:a0:35:4d:81:15:aa:96:ae:18:9a:0c:2c:20:
6a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:87:14:4C:94:5D:95:9E:D1:49:B8:3A:4D:DC:65:FC:ED:CF:CC:74
X509v3 Authority Key Identifier:
keyid:82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:c1:45:ee:f8:85:74:bd:b1:e1:03:ed:82:1e:df:61:1f:01:
f3:9d:5f:9c:ae:ce:22:e1:e0:8a:d0:e0:44:67:80:26:96:c1:
b6:2b:95:64:39:51:4c:44:ae:fe:29:be:65:77:04:13:65:ff:
d2:85:d3:25:35:5b:0b:f3:a7:f3:88:49:59:a5:a1:85:08:fa:
a6:4e:6c:69:39:3c:2f:3b:d6:0d:28:da:cb:f0:d1:4a:70:33:
ab:17:90:39:e9:96:41:53:13:d3:fb:1b:53:29:bd:5a:69:2c:
72:6d:4b:82:9f:bd:2e:c8:7a:9f:86:12:40:fb:3e:da:ec:e2:
04:16:bd:14:4a:fc:66:93:89:3d:dd:20:87:b9:9c:5e:5f:ed:
59:96:f5:38:a1:c2:48:77:f3:dd:4a:aa:98:b2:41:e2:32:d5:
1e:a2:c3:27:38:ba:ab:32:a2:cd:d5:c4:90:09:7d:7c:14:5c:
1b:93:10:3c:ef:64:b4:cf:0a:d2:b6:a9:38:88:d6:5a:b3:28:
0c:1f:13:21:56:4d:a4:18:b0:8f:c7:61:73:b7:0e:e8:40:80:
c4:d9:96:12:e5:17:9f:89:a4:7b:75:3b:bc:f7:c2:98:8c:c3:
9a:f6:f8:87:5d:13:eb:cd:94:1f:34:b8:62:3f:9a:50:6d:37:
5a:37:c3:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:14:38 2025 by rpki-client