
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
File: gzVETFgRYcWIroS-AZZbyOg3gLg.mft (raw, json)
Hash identifier: slh5qG6gmLh4ASfBkZRSxETZ5Fge8AjecdKeomJ5Ab0=
Subject key identifier: CA:13:47:E3:A2:BD:8F:60:39:2B:F1:0A:BF:06:11:C3:B5:C8:BB:2E
Authority key identifier: 83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
Certificate issuer: /CN=8335444c581161c588ae84be01965bc8e83780b8
Certificate serial: 019848C0ADDF44CBFE2DF5C1F71D03E19093
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
Manifest number: 132B
Signing time: Sat 26 Jul 2025 22:00:43 +0000
Manifest this update: Sat 26 Jul 2025 22:00:43 +0000
Manifest next update: Sun 27 Jul 2025 22:00:43 +0000
Files and hashes: 1: 52xHcZKMiLkJfC48D6ah-VZ8yTA.roa (hash: jrz3bp7KHkqbn8SdD2JCqFdwlcK3RRhyL/xchThJ/cc=)
2: gzVETFgRYcWIroS-AZZbyOg3gLg.crl (hash: BsxBxLCEtepUlvzHpfb+y3UzusBhrZtwPZXppMsOnR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:c0:ad:df:44:cb:fe:2d:f5:c1:f7:1d:03:e1:90:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8335444c581161c588ae84be01965bc8e83780b8
Validity
Not Before: Jul 26 22:00:43 2025 GMT
Not After : Jul 27 22:00:43 2025 GMT
Subject: CN=ca1347e3a2bd8f60392bf10abf0611c3b5c8bb2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:44:bf:85:7a:cb:1a:3c:a5:bd:9a:1e:b1:8b:
77:e3:64:cf:c3:8a:fd:50:be:3f:47:44:0f:e5:ab:
49:f7:06:d1:e5:87:90:de:96:2e:48:7d:43:6e:f5:
33:d4:d5:99:1d:a5:94:3e:f1:ef:a3:30:95:35:45:
ef:bd:5b:13:6f:52:94:38:07:1a:38:63:40:4d:0f:
3f:a3:d8:e2:d7:1e:e5:23:ea:d7:cf:b0:22:b9:d1:
95:8d:5b:34:66:2a:ac:79:1d:13:0a:cb:b9:57:4a:
16:6a:3d:f5:52:7c:00:7e:ab:90:b2:e8:1a:ab:bc:
f4:bd:3a:f7:1f:6e:12:bb:c2:be:41:18:d4:85:c8:
db:ba:bc:04:70:77:17:cc:82:ae:b0:e1:23:5e:d4:
e1:71:54:67:14:3d:36:f1:c8:b1:8b:1b:6b:b3:56:
b0:fb:f8:15:f4:e3:3d:7b:17:6b:ea:c1:6c:a0:d4:
fe:f7:d1:f5:90:12:6c:c2:09:74:66:8d:99:fd:5f:
f0:49:c0:ce:11:d3:fa:d7:09:21:4b:35:28:c0:3f:
3c:1a:2b:3f:c5:ab:6a:31:2a:56:82:18:1d:c8:40:
d0:38:2b:fd:38:1b:e8:e2:c3:42:43:b6:f5:50:8b:
53:34:6a:5b:fd:5e:a3:c7:5b:34:8e:c8:0a:ec:28:
ac:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:13:47:E3:A2:BD:8F:60:39:2B:F1:0A:BF:06:11:C3:B5:C8:BB:2E
X509v3 Authority Key Identifier:
keyid:83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:41:f1:54:5a:ea:6d:8b:34:1d:a0:81:d8:73:51:bd:48:e8:
d2:02:45:2e:b2:3d:4a:f9:1c:76:ba:25:b8:0f:51:ea:a8:98:
0d:d4:c0:e7:4c:08:91:ff:12:df:7b:43:d4:8d:81:7a:5a:ff:
73:72:b5:ad:d1:35:17:38:7f:d4:45:ee:6c:f0:f1:a7:8d:65:
5d:d4:d1:55:6d:0b:70:47:7a:a8:99:6a:8b:c1:2b:06:4f:95:
ca:c6:00:87:9c:fb:c2:18:4d:a9:06:98:e4:b3:8a:35:ce:b3:
90:d7:64:c1:ec:e8:c0:60:ea:c0:f8:00:6a:d3:f8:b9:96:94:
f7:c4:1f:56:c8:16:b5:5f:4d:ed:f7:24:15:a2:06:bb:fc:ca:
0f:1a:38:ed:05:cc:df:7b:89:eb:52:9d:98:31:14:e4:5a:f0:
0e:88:5c:ad:19:b5:c6:54:e3:a5:9f:80:44:13:12:19:c4:54:
bb:a0:e6:69:6f:b6:3e:97:af:d7:bf:30:b2:f1:63:e4:c8:1e:
3a:39:d4:46:dc:61:41:7d:f3:1b:b2:27:ba:5d:a8:00:10:b8:
51:36:d8:5e:ed:da:8f:9f:45:e0:25:d8:6c:31:04:13:88:c6:
b3:47:7c:83:81:0b:2e:4d:4f:e1:20:d5:2f:ec:70:bd:9f:9c:
62:c1:af:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:37:08 2025 by rpki-client