Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/gKMz0T3JFfT7-2GyWkh36ROOfx0.mft
File: gKMz0T3JFfT7-2GyWkh36ROOfx0.mft (raw, json)
Hash identifier: 30DVp6X5j2PAPbFzRBjokKs6SiM8XNoAmNEN5kbc5gM=
Subject key identifier: EE:A0:47:0E:21:57:59:F0:6C:A7:BF:D5:8B:32:38:E8:94:F9:22:1B
Authority key identifier: 80:A3:33:D1:3D:C9:15:F4:FB:FB:61:B2:5A:48:77:E9:13:8E:7F:1D
Certificate issuer: /CN=80a333d13dc915f4fbfb61b25a4877e9138e7f1d
Certificate serial: 01984A412D827B38C7039ACF8F9D33DEEEDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKMz0T3JFfT7-2GyWkh36ROOfx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/gKMz0T3JFfT7-2GyWkh36ROOfx0.mft
Manifest number: 15FF
Signing time: Sun 27 Jul 2025 05:00:42 +0000
Manifest this update: Sun 27 Jul 2025 05:00:42 +0000
Manifest next update: Mon 28 Jul 2025 05:00:42 +0000
Files and hashes: 1: EV9I607bk7yKT2_ZGGPzpK_T3Kw.roa (hash: +4JZ98C4BqbbLLfwtggPDHTa1SBuwVe0r20VBr9Sh7Q=)
2: gKMz0T3JFfT7-2GyWkh36ROOfx0.crl (hash: E18MdYKi9yIkUYf7O8C0DtfWFsMg5AhjPtTWb3zYcr0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/gKMz0T3JFfT7-2GyWkh36ROOfx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/gKMz0T3JFfT7-2GyWkh36ROOfx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKMz0T3JFfT7-2GyWkh36ROOfx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:41:2d:82:7b:38:c7:03:9a:cf:8f:9d:33:de:ee:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a333d13dc915f4fbfb61b25a4877e9138e7f1d
Validity
Not Before: Jul 27 05:00:42 2025 GMT
Not After : Jul 28 05:00:42 2025 GMT
Subject: CN=eea0470e215759f06ca7bfd58b3238e894f9221b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fa:b7:86:3c:d9:20:ba:b0:dc:06:f6:84:98:
00:29:25:c4:e7:9d:34:93:5d:a6:18:71:b6:96:53:
1c:1b:0e:e3:73:a0:d0:a0:5c:b2:be:f2:95:88:99:
fd:4c:4b:8f:fc:fa:b4:ae:53:28:30:9d:43:20:c6:
ef:47:d0:3c:6a:c9:3f:47:3e:96:7d:a4:7e:84:3f:
07:97:47:7e:0f:4b:1a:1f:4b:8f:cc:b1:98:56:49:
b7:48:42:3b:aa:87:9f:70:de:0f:75:c1:5d:d7:9a:
90:dd:e5:90:79:54:7c:b9:c3:c7:80:f2:ff:ba:f8:
fd:c0:bf:35:58:a6:c2:73:94:4c:62:20:a3:5d:d1:
09:8e:6a:b7:bf:09:ea:5a:a0:e6:d6:7e:86:6e:9f:
fe:02:3f:44:56:10:e0:b9:20:0c:aa:eb:b5:ea:a9:
32:e9:36:9c:d4:87:3a:f8:57:6b:7e:fe:20:10:2b:
b5:6f:1d:92:40:3d:f5:33:14:d9:d7:8f:0e:b2:4e:
6f:d8:2e:3a:14:07:8f:0f:3a:a8:ce:15:e2:c2:13:
27:d2:bf:58:5e:07:83:2d:bf:02:36:03:52:8a:2f:
ea:09:8e:60:40:3e:09:41:21:53:a0:fa:61:6c:d7:
11:8c:35:4e:1c:b6:a0:45:8e:1c:89:a9:87:c8:1d:
b2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:A0:47:0E:21:57:59:F0:6C:A7:BF:D5:8B:32:38:E8:94:F9:22:1B
X509v3 Authority Key Identifier:
keyid:80:A3:33:D1:3D:C9:15:F4:FB:FB:61:B2:5A:48:77:E9:13:8E:7F:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKMz0T3JFfT7-2GyWkh36ROOfx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/gKMz0T3JFfT7-2GyWkh36ROOfx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/gKMz0T3JFfT7-2GyWkh36ROOfx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:8d:27:da:9d:82:b8:3d:9f:42:81:f1:93:6d:5c:12:48:76:
9d:73:0f:b3:80:0a:b2:17:ad:97:4d:59:4a:43:fa:ba:98:79:
74:58:97:cc:4e:52:84:8c:f9:7b:a7:75:b0:96:b8:3e:82:8f:
ec:33:21:bf:3a:47:3a:e8:b1:d4:ec:4e:3c:f8:ca:1a:1a:7e:
a2:3a:cb:e8:33:c3:d1:bd:12:ad:51:77:2d:ac:42:4d:21:93:
e6:b1:63:31:c0:34:61:dd:04:bd:08:bf:b3:04:b3:31:e7:49:
4f:83:4d:40:ca:84:b1:0c:8b:8d:7f:89:9f:18:de:1f:1c:f5:
41:79:42:ef:5a:e3:bd:fb:91:43:e7:c7:c2:f2:92:e0:b3:bb:
c3:f2:eb:5c:d6:b0:3e:94:a1:ca:62:cb:fc:e8:82:d1:86:a5:
11:7b:39:fd:d1:90:d8:33:c4:24:0f:bd:d7:0b:8a:d1:04:17:
14:ba:b3:7f:f4:8c:c4:9a:d2:11:78:bd:08:a1:d5:66:c0:d2:
9c:b7:aa:7b:62:a6:8a:00:86:9c:43:a1:17:9e:25:c6:93:32:
65:67:8e:ed:c6:4a:5f:86:73:35:fb:ab:60:f2:f4:1b:c0:66:
a0:22:e1:0b:78:5b:dc:36:23:e6:11:1c:59:df:00:76:62:80:
41:e6:73:b7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhKQS2CezjHA5rPj50z3u7aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwYTMzM2QxM2RjOTE1ZjRmYmZiNjFiMjVhNDg3N2U5MTM4
ZTdmMWQwHhcNMjUwNzI3MDUwMDQyWhcNMjUwNzI4MDUwMDQyWjAzMTEwLwYDVQQD
EyhlZWEwNDcwZTIxNTc1OWYwNmNhN2JmZDU4YjMyMzhlODk0ZjkyMjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/q3hjzZILqw3Ab2hJgAKSXE5500
k12mGHG2llMcGw7jc6DQoFyyvvKViJn9TEuP/Pq0rlMoMJ1DIMbvR9A8ask/Rz6W
faR+hD8Hl0d+D0saH0uPzLGYVkm3SEI7qoefcN4PdcFd15qQ3eWQeVR8ucPHgPL/
uvj9wL81WKbCc5RMYiCjXdEJjmq3vwnqWqDm1n6Gbp/+Aj9EVhDguSAMquu16qky
6Tac1Ic6+Fdrfv4gECu1bx2SQD31MxTZ148Osk5v2C46FAePDzqozhXiwhMn0r9Y
XgeDLb8CNgNSii/qCY5gQD4JQSFToPphbNcRjDVOHLagRY4ciamHyB2yXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO6gRw4hV1nwbKe/1YsyOOiU+SIbMB8GA1UdIwQY
MBaAFICjM9E9yRX0+/thslpId+kTjn8dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0tNejBUM0pGZlQ3LTJHeVdraDM2Uk9PZngwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8xMzliMzgtNWIyNC00MDdkLWIxN2Ut
NGNhMzU0MzBkY2EzLzEvZ0tNejBUM0pGZlQ3LTJHeVdraDM2Uk9PZngwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi8xMzliMzgtNWIyNC00MDdkLWIxN2UtNGNhMzU0MzBkY2Ez
LzEvZ0tNejBUM0pGZlQ3LTJHeVdraDM2Uk9PZngwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWI0n2p2C
uD2fQoHxk21cEkh2nXMPs4AKshetl01ZSkP6uph5dFiXzE5ShIz5e6d1sJa4PoKP
7DMhvzpHOuix1OxOPPjKGhp+ojrL6DPD0b0SrVF3LaxCTSGT5rFjMcA0Yd0EvQi/
swSzMedJT4NNQMqEsQyLjX+JnxjeHxz1QXlC71rjvfuRQ+fHwvKS4LO7w/LrXNaw
PpShymLL/OiC0YalEXs5/dGQ2DPEJA+91wuK0QQXFLqzf/SMxJrSEXi9CKHVZsDS
nLeqe2KmigCGnEOhF54lxpMyZWeO7cZKX4ZzNfurYPL0G8BmoCLhC3hb3DYj5hEc
Wd8AdmKAQeZztw==
-----END CERTIFICATE-----
Generated at Sun Jul 27 12:03:15 2025 by rpki-client