Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
File: gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft (raw, json)
Hash identifier: yWDbN3E9no0jv368uu+xUFQA54086Icfb7KvD41CARw=
Subject key identifier: B6:E3:E9:4D:40:19:2B:FD:84:77:64:B6:BD:F7:04:19:A6:1C:02:BC
Authority key identifier: 83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
Certificate issuer: /CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Certificate serial: 019921B05E99D1EAE8496EB0B9B8C9A3E70A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
Manifest number: 0FD3
Signing time: Sun 07 Sep 2025 01:00:30 +0000
Manifest this update: Sun 07 Sep 2025 01:00:30 +0000
Manifest next update: Mon 08 Sep 2025 01:00:30 +0000
Files and hashes: 1: bNgvelwVPVFr3h5RMUdr0LrSObg.roa (hash: 8+lwoJWYw+/prpcpMbrRUmfEGjzLktOqFPr4MMdHS+M=)
2: gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl (hash: wrP3bkvBZFxxC4AJTH0hkaCOxNxM5/svA9ajeL8wd4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:5e:99:d1:ea:e8:49:6e:b0:b9:b8:c9:a3:e7:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Validity
Not Before: Sep 7 01:00:30 2025 GMT
Not After : Sep 8 01:00:30 2025 GMT
Subject: CN=b6e3e94d40192bfd847764b6bdf70419a61c02bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:91:76:15:68:1a:9e:59:6e:fc:05:8b:27:26:
ae:4d:db:a1:e7:2b:5f:cc:97:8a:e6:4b:d6:8c:8e:
d7:3a:2e:cc:e7:48:30:d1:2d:bb:a6:96:97:25:3a:
e5:7a:48:e2:b5:bb:7b:54:9f:f1:7a:09:1d:57:a3:
5f:cf:c7:67:69:d6:b1:68:99:ba:a2:d5:49:b3:2b:
e6:3f:1a:f1:e4:84:f0:7b:79:28:a9:73:60:e6:01:
07:6a:53:b4:e5:8a:ea:e6:83:b5:c6:88:43:33:8d:
1e:3e:12:e6:6c:09:40:56:12:24:3e:b5:4d:e3:bf:
c3:1b:66:83:e7:da:82:e1:48:24:5f:15:63:fb:8c:
dc:26:47:3c:46:d5:e3:68:ff:78:13:3e:96:3c:ff:
6b:57:b5:c2:40:e1:82:16:b1:76:71:ca:09:85:c5:
4a:28:75:08:7e:05:34:86:9d:78:35:33:b9:f0:71:
06:96:69:4b:e6:d4:7b:03:76:24:87:90:8e:91:52:
ad:33:4b:9a:5d:96:7d:cb:b5:cf:3c:2b:6f:18:2b:
86:85:73:fd:97:7e:50:9b:5a:22:f9:06:a0:05:3d:
32:4e:72:0d:8b:26:63:4d:fd:4e:1c:47:20:31:74:
56:17:27:6d:03:94:6a:97:2a:ea:87:26:b9:24:ae:
8d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:E3:E9:4D:40:19:2B:FD:84:77:64:B6:BD:F7:04:19:A6:1C:02:BC
X509v3 Authority Key Identifier:
keyid:83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:9a:3b:7b:59:75:89:db:69:06:dd:7c:96:16:31:52:28:76:
a7:5a:cf:53:10:98:ef:1a:49:9d:7d:d3:b5:40:4f:6e:74:08:
18:3d:ba:77:82:21:b0:84:be:52:dd:4f:a1:fe:06:29:48:01:
e1:6c:d8:1d:14:51:02:8f:dc:1a:35:70:cb:5a:e1:59:4f:8d:
b3:69:b9:70:f8:d6:32:eb:4b:60:5a:08:c0:13:74:b3:30:2f:
5e:ca:73:d1:40:6a:5d:44:e1:85:52:d0:5f:87:82:e3:02:06:
4f:10:5c:89:47:43:62:36:5d:e7:a6:12:2e:15:cc:69:aa:26:
c6:a2:0b:0b:9e:bb:41:f6:ee:6f:e2:d3:56:e1:0d:de:f5:92:
85:f1:7b:f2:15:94:a4:9b:b4:9f:09:94:1e:b1:12:2b:c2:da:
40:57:42:f6:d0:50:67:34:58:6f:9d:15:cd:f2:1e:58:0f:e8:
3b:9c:82:8f:90:2d:5a:14:1b:a5:89:86:f7:cb:dd:43:2d:b5:
ac:e9:1e:47:d8:7d:37:32:66:25:5a:a5:d5:31:fc:99:aa:7e:
d2:d3:97:9d:01:bf:15:5c:43:84:3b:7d:f4:24:43:37:18:97:
46:b4:51:9b:ee:ca:f8:03:e4:eb:46:f4:9f:b3:2a:65:64:f1:
99:85:d0:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:27 2025 by rpki-client