Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
File: 4_GcxeONj5wdZUcXdmX4khHeyJk.mft (raw, json)
Hash identifier: LwBF9z9Bs9G17dVS/4bDAQDQuDZ9NuKQgpjjLwWubcM=
Subject key identifier: BF:6B:74:9A:28:C0:F8:A2:54:10:FB:84:3D:1F:DE:14:0D:17:31:B8
Authority key identifier: E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
Certificate issuer: /CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Certificate serial: 019A72CA7BC5861243453E79087F382A30FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
Manifest number: 0F8D
Signing time: Tue 11 Nov 2025 12:01:03 +0000
Manifest this update: Tue 11 Nov 2025 12:01:03 +0000
Manifest next update: Wed 12 Nov 2025 12:01:03 +0000
Files and hashes: 1: 0mSInaOcQzcUaKnk3U9INfBb53Q.roa (hash: qM+YFRRYDhlfBg0HbT486tTWhmPISPFkNx0SGBRbZjE=)
2: 4_GcxeONj5wdZUcXdmX4khHeyJk.crl (hash: SG55ht80ffqvjA8jUmKgIt4ABqEXmJiWQNdYz79znes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:7b:c5:86:12:43:45:3e:79:08:7f:38:2a:30:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Validity
Not Before: Nov 11 12:01:03 2025 GMT
Not After : Nov 12 12:01:03 2025 GMT
Subject: CN=bf6b749a28c0f8a25410fb843d1fde140d1731b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5e:67:f0:d1:4c:cc:bf:b9:5b:08:17:eb:66:
55:d7:92:3d:b8:c1:7b:41:d1:63:51:8b:18:91:78:
e5:78:e2:ba:60:97:46:06:64:95:6e:d0:db:62:dc:
00:34:6a:e5:dc:92:0e:b3:08:42:4b:a9:2a:7c:9f:
d7:d8:62:84:27:f6:bb:3d:23:c7:71:f7:18:e7:cc:
50:73:83:dc:01:88:6b:8c:c1:8b:15:38:91:47:41:
3b:b3:07:36:5e:6a:a8:b6:62:00:6c:18:bc:04:6b:
51:73:f1:1a:03:02:e4:26:71:1c:72:14:f7:8d:00:
84:b8:3b:82:08:54:54:b0:34:6d:83:d8:ca:87:86:
85:0d:20:61:a6:ce:de:a8:c2:4b:36:ae:02:55:ae:
28:0b:37:d8:b7:72:84:40:18:36:e0:42:87:0b:39:
3d:26:79:02:79:45:0b:e2:cb:0a:50:20:e6:06:e9:
b0:43:10:f1:44:89:41:76:af:e2:bf:8b:a2:14:b1:
14:ec:20:a5:56:77:3a:53:1c:e3:7c:64:82:1d:06:
04:76:7d:37:6b:06:82:af:d9:71:c4:71:01:bc:fc:
ef:1f:80:a5:f6:fe:23:b6:e6:01:87:12:2a:94:0e:
d5:2a:a9:57:fd:d7:f0:c8:c9:e0:81:0d:9f:f3:36:
66:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:6B:74:9A:28:C0:F8:A2:54:10:FB:84:3D:1F:DE:14:0D:17:31:B8
X509v3 Authority Key Identifier:
keyid:E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:b7:11:1f:19:07:09:68:07:05:f7:02:bd:26:3e:2f:f5:15:
38:65:9a:95:a7:50:31:b8:b5:a0:28:5d:e0:6e:34:cf:48:14:
40:01:6b:25:61:e3:62:21:04:b2:96:ae:0b:cc:ed:30:cd:fc:
a5:db:fc:85:bf:75:f5:50:ea:aa:c4:5b:3f:b2:3d:77:28:cb:
72:a5:79:14:c3:ab:7e:0b:a8:36:9a:02:26:3b:70:c7:2b:62:
5e:b9:f8:fc:fc:e5:02:b4:cc:ef:d2:a1:68:a5:bf:5b:27:cd:
05:e4:98:9d:59:77:15:66:dd:be:d8:5a:53:58:8c:6a:a2:c9:
67:3f:09:5c:7a:f6:49:5c:66:65:6e:c6:2c:fc:37:1c:5d:33:
9c:87:bd:e1:ee:0f:f2:1e:ea:d6:4d:f5:74:2f:75:ea:99:ee:
ba:92:c7:1e:22:6a:67:98:37:ba:7b:ed:e9:fc:e6:5a:76:e7:
36:e5:5c:55:3a:f3:7c:8a:6e:d1:fc:5f:b7:b4:2a:bd:f0:0d:
fa:5e:c3:a8:71:19:06:47:4a:b7:12:0c:fe:e4:69:d0:12:20:
7a:59:b7:e7:37:f9:1f:62:9c:d6:fa:ba:ab:f8:09:dc:ed:e4:
af:f2:89:1f:2f:64:85:3f:b7:99:09:e7:39:1e:2b:af:6a:57:
bd:3c:b7:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:45:53 2025 by rpki-client