Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/eb3207-8410-4046-a449-760ba7436c24/1/GzKDA753IAE7cIOOSOupO0IDh90.mft
File: GzKDA753IAE7cIOOSOupO0IDh90.mft (raw, json)
Hash identifier: bY/rMXqsUxGmJB5iS7CyGnkFIyVeQZBD9VtSyZluspc=
Subject key identifier: DC:43:E7:B3:D1:B6:23:E9:3E:4E:E9:C7:0D:96:75:CE:D6:71:E2:30
Authority key identifier: 1B:32:83:03:BE:77:20:01:3B:70:83:8E:48:EB:A9:3B:42:03:87:DD
Certificate issuer: /CN=1b328303be7720013b70838e48eba93b420387dd
Certificate serial: 019A51BEEB86A736D51E605BE229FEEE7D91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GzKDA753IAE7cIOOSOupO0IDh90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/eb3207-8410-4046-a449-760ba7436c24/1/GzKDA753IAE7cIOOSOupO0IDh90.mft
Manifest number: 06B9
Signing time: Wed 05 Nov 2025 02:00:57 +0000
Manifest this update: Wed 05 Nov 2025 02:00:57 +0000
Manifest next update: Thu 06 Nov 2025 02:00:57 +0000
Files and hashes: 1: GzKDA753IAE7cIOOSOupO0IDh90.crl (hash: xna2qvEzErxYxW7l1jyGdBzvw3WeoHRFt6kMQjYrFfI=)
2: aLfo3q6L0mVOuK0za6OIf6mWxIg.roa (hash: 7LeZnYMqXpBceqMPtLfdcEQrWgVh8yNUNh6lUyY5uzc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/eb3207-8410-4046-a449-760ba7436c24/1/GzKDA753IAE7cIOOSOupO0IDh90.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/eb3207-8410-4046-a449-760ba7436c24/1/GzKDA753IAE7cIOOSOupO0IDh90.mft
rsync://rpki.ripe.net/repository/DEFAULT/GzKDA753IAE7cIOOSOupO0IDh90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:be:eb:86:a7:36:d5:1e:60:5b:e2:29:fe:ee:7d:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b328303be7720013b70838e48eba93b420387dd
Validity
Not Before: Nov 5 02:00:57 2025 GMT
Not After : Nov 6 02:00:57 2025 GMT
Subject: CN=dc43e7b3d1b623e93e4ee9c70d9675ced671e230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:43:3b:dc:20:57:ef:e2:b8:e2:3d:31:e9:76:
34:75:22:00:b6:f4:d1:84:16:36:e5:ce:4d:57:63:
21:84:fd:8d:89:39:3b:a5:41:01:f8:60:4d:09:7f:
d6:8d:cd:87:c2:98:cf:dd:7c:9f:a6:f3:10:e3:50:
37:ae:d9:ae:09:95:5c:2b:08:e7:2b:04:0e:f7:bf:
2a:d4:99:59:d8:54:a6:73:3e:03:da:2c:4d:57:52:
9d:bf:05:56:28:5d:c5:d2:c5:1b:3f:bc:14:48:cb:
73:1d:54:08:87:77:c2:24:f1:7d:21:63:df:63:99:
2f:f3:eb:7e:97:8a:92:3e:70:bb:70:96:5f:77:b1:
68:93:c7:cd:ce:f6:9b:63:e6:e7:07:cc:4d:7c:76:
cb:a4:da:3b:a7:19:b4:83:b7:13:62:c4:d1:51:a9:
ac:c3:f7:c6:9b:60:29:d4:55:05:86:9f:b3:e5:d4:
47:d6:f9:4a:e0:01:79:75:49:0b:67:2d:aa:aa:e1:
d6:1a:e1:7a:6c:0b:e0:a4:ee:35:70:10:e8:ec:2b:
83:24:c9:0c:19:6c:cd:dc:80:ae:71:98:23:b2:c6:
21:96:03:61:a6:8d:92:82:f4:66:b6:3a:14:5f:2d:
21:c9:16:f4:ea:de:60:18:01:30:44:96:ec:4d:aa:
cc:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:43:E7:B3:D1:B6:23:E9:3E:4E:E9:C7:0D:96:75:CE:D6:71:E2:30
X509v3 Authority Key Identifier:
keyid:1B:32:83:03:BE:77:20:01:3B:70:83:8E:48:EB:A9:3B:42:03:87:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GzKDA753IAE7cIOOSOupO0IDh90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/eb3207-8410-4046-a449-760ba7436c24/1/GzKDA753IAE7cIOOSOupO0IDh90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/eb3207-8410-4046-a449-760ba7436c24/1/GzKDA753IAE7cIOOSOupO0IDh90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:f6:f1:62:3a:af:76:20:ee:ba:da:c6:ae:35:93:ff:05:3d:
2d:00:e5:d9:31:de:5b:23:a5:32:df:84:45:6b:d0:5a:46:eb:
ae:84:1d:43:11:da:a2:63:c3:46:12:ce:a0:5e:1d:c0:f3:39:
2e:30:cd:92:d6:b1:3e:87:31:5e:06:d8:7a:ef:e5:b4:db:ed:
9b:80:d8:fb:17:55:5e:b8:5f:d0:34:de:58:05:67:a0:3d:21:
ee:49:5e:22:90:09:2d:07:31:83:ed:ff:ae:40:98:9d:48:4a:
93:25:15:dd:ef:4f:2b:b1:ac:98:e2:ff:0c:01:6c:b7:2c:c4:
04:74:1c:0b:2c:12:73:84:a9:a6:a6:14:2b:d4:a8:df:71:0d:
79:cb:8b:e2:ed:fd:5f:bc:d2:ea:2d:2e:60:b3:12:28:b6:25:
92:4b:92:0d:e6:01:87:d6:4d:1e:0d:0d:00:a5:80:9e:8e:6e:
35:a4:7b:b7:78:b1:60:f9:21:e0:49:d3:5f:9a:08:59:6c:78:
30:57:9e:85:6b:ed:0f:55:b0:87:48:57:5b:1f:ad:84:ca:bb:
9f:ad:e0:0f:f0:9a:76:9e:1d:4b:0d:c9:ed:9d:d5:21:f7:af:
c1:03:b1:b5:0d:cd:25:cd:7b:ed:21:9f:d9:d6:6b:a3:71:9d:
4e:26:01:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:32:05 2025 by rpki-client