Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
File: gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft (raw, json)
Hash identifier: y/dNiEP94NHLk6GfU6dpNJgqoLPcurk5c/YXh1oTEfQ=
Subject key identifier: FE:4C:70:1B:D1:F9:59:EB:AE:72:64:0A:2C:42:AC:6D:6C:11:ED:C9
Authority key identifier: 83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
Certificate issuer: /CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Certificate serial: 019A71B8026451128F0C0E910719F1EDD82B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
Manifest number: 1081
Signing time: Tue 11 Nov 2025 07:01:15 +0000
Manifest this update: Tue 11 Nov 2025 07:01:15 +0000
Manifest next update: Wed 12 Nov 2025 07:01:15 +0000
Files and hashes: 1: bNgvelwVPVFr3h5RMUdr0LrSObg.roa (hash: 8+lwoJWYw+/prpcpMbrRUmfEGjzLktOqFPr4MMdHS+M=)
2: gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl (hash: h/StY9c9dni0TGmn8jApjmRxXW63HZSiq51tjhIJyAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:02:64:51:12:8f:0c:0e:91:07:19:f1:ed:d8:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Validity
Not Before: Nov 11 07:01:15 2025 GMT
Not After : Nov 12 07:01:15 2025 GMT
Subject: CN=fe4c701bd1f959ebae72640a2c42ac6d6c11edc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3c:fb:f4:4d:74:59:e1:5f:36:6b:f3:58:05:
76:e6:80:5e:a9:dc:33:51:bc:f2:4a:17:d8:4c:12:
7e:e7:b4:50:68:33:cb:b5:73:9e:48:eb:9c:45:fc:
de:de:56:bd:fe:18:c5:c6:29:c4:0c:b0:9b:94:f2:
7e:78:88:0d:2e:01:45:22:6a:a9:35:a5:e6:38:42:
e2:72:ed:f8:56:24:ad:75:94:06:ad:28:55:4b:f7:
db:16:6a:b8:f9:d0:77:54:0e:ca:58:eb:d2:39:41:
43:7f:56:33:3a:72:f9:09:e8:61:5c:b9:d5:a2:da:
f7:a1:c8:96:b7:20:a8:5b:fe:2c:2a:95:7c:1c:2a:
cd:6e:00:45:b2:a1:d3:73:88:7e:6c:86:b9:36:28:
80:21:20:d4:1e:73:3d:fb:c6:e8:c8:d8:32:0c:8f:
7a:d1:e5:72:c0:47:0d:d7:7b:48:a3:9b:b2:09:71:
fd:8d:46:cd:89:cb:e2:01:b2:7c:0f:4a:1b:40:93:
f1:8f:37:3e:c9:5b:91:2e:66:8e:5b:b2:4c:d3:fa:
46:9a:1d:43:90:31:6b:a2:1f:18:2d:66:65:b8:3c:
ac:2e:4d:37:d4:6e:1e:b8:0b:82:ff:0a:dd:31:4d:
25:60:b0:34:2a:e2:0d:9d:37:18:dd:ff:19:76:7c:
bb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:4C:70:1B:D1:F9:59:EB:AE:72:64:0A:2C:42:AC:6D:6C:11:ED:C9
X509v3 Authority Key Identifier:
keyid:83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:01:8d:6d:af:1c:27:6e:2f:e4:62:e2:7e:83:ae:b1:2a:90:
7e:04:c9:f6:44:1c:7a:d6:6a:f7:a7:2a:d0:b4:bc:d5:30:b3:
20:15:b3:5d:c4:54:68:ce:ac:86:e3:88:f5:70:4b:d2:0e:84:
93:2e:85:05:67:aa:fb:c3:e7:c8:58:72:56:1a:37:fa:87:a5:
60:c0:e1:f8:01:ae:4f:30:f5:06:5a:a7:2b:ce:b4:e7:79:bc:
69:b1:c9:e0:44:0c:75:10:e2:68:8b:ec:b3:92:6b:37:e6:6a:
a7:b6:72:8d:a8:ec:5d:77:22:ad:ee:6f:9a:05:e9:0c:2c:83:
4f:cf:db:77:5e:92:79:29:d5:66:6f:67:82:9d:4d:a5:bb:19:
87:8c:85:1c:1a:4f:2c:4e:3d:fc:38:f8:89:43:46:f6:9a:a3:
34:cb:c8:01:11:9b:48:21:28:7f:ea:f2:96:13:1c:a0:3b:76:
a4:f8:7f:23:af:d8:2a:8c:32:cf:bb:0f:4a:19:a8:9d:97:b4:
ef:a1:00:53:90:b9:5b:a3:a1:e3:b9:b3:d2:9d:e4:e7:e0:ab:
ee:ba:d2:8f:4f:61:af:8f:22:0b:ef:0b:bc:c8:f6:04:90:79:
69:b0:0a:78:6b:eb:6d:5b:fb:81:cf:33:49:30:e0:2b:bf:36:
88:4d:ba:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:50:55 2025 by rpki-client