Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft
File: Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft (raw, json)
Hash identifier: 9K5otIKVQ5UJLCV2Z8AO2U0TSsrYj6SZFzoDTBXWCxU=
Subject key identifier: 92:F3:48:B8:BB:BE:AB:80:7B:57:9B:9A:4B:33:03:41:77:7B:EF:4B
Authority key identifier: 1A:88:AF:93:84:5B:D2:53:86:45:2D:BD:FA:A0:21:6E:13:CA:F8:C7
Certificate issuer: /CN=1a88af93845bd25386452dbdfaa0216e13caf8c7
Certificate serial: 019A7225E1248744B5115D35B4928ED67D13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Goivk4Rb0lOGRS29-qAhbhPK-Mc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft
Manifest number: 15B9
Signing time: Tue 11 Nov 2025 09:01:16 +0000
Manifest this update: Tue 11 Nov 2025 09:01:16 +0000
Manifest next update: Wed 12 Nov 2025 09:01:16 +0000
Files and hashes: 1: Goivk4Rb0lOGRS29-qAhbhPK-Mc.crl (hash: n7o5ELSHTBl1Gidhf+Ne0l8SYRIkEohxXtiODG2sDRw=)
2: zMf8rLLySKjPSPZ8s-ZIz2q25OU.roa (hash: VJ+YYFZYZSo5PYkWSZhl4wZdJBhoCHORhk0CDA+bcUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Goivk4Rb0lOGRS29-qAhbhPK-Mc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:e1:24:87:44:b5:11:5d:35:b4:92:8e:d6:7d:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a88af93845bd25386452dbdfaa0216e13caf8c7
Validity
Not Before: Nov 11 09:01:16 2025 GMT
Not After : Nov 12 09:01:16 2025 GMT
Subject: CN=92f348b8bbbeab807b579b9a4b330341777bef4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d9:1c:80:5c:94:fc:aa:2a:15:a9:16:d2:f2:
40:d9:ef:8b:00:4d:d6:54:d0:41:79:d8:64:93:e6:
e4:db:ec:5d:fa:07:93:26:b2:f1:d1:60:e6:1b:cd:
34:ff:db:b1:7a:f1:12:cb:13:5f:93:ef:65:8e:c6:
53:50:4c:60:a1:fd:30:2c:e7:58:a7:52:14:ae:4b:
7d:d8:ed:de:b8:32:ee:f6:4d:c5:57:bd:22:ff:c5:
e3:52:2e:ad:9d:0e:97:0c:d4:fd:b0:29:58:ed:20:
dc:f5:0a:bc:f4:b9:5d:4d:e7:b9:79:53:bd:7c:42:
ab:da:31:4c:fa:47:15:0c:1e:c4:ca:f1:21:6c:38:
0f:f7:33:28:4d:02:e5:85:3b:0c:80:22:97:07:3c:
51:a0:89:b0:bf:28:70:2d:df:f9:78:da:e2:07:d0:
81:dc:0e:25:df:ee:10:03:d4:df:7b:7a:7e:23:eb:
da:b5:a6:2b:92:e4:bd:bd:69:9e:50:6c:ec:f1:8e:
56:69:50:53:6c:ad:df:71:69:55:b1:2b:8e:ea:23:
d5:9d:00:5a:47:22:85:ba:1b:0b:9b:2a:bc:a6:23:
66:38:a8:7a:59:4f:fb:dc:2a:30:b6:6b:ef:da:a3:
a0:4b:40:c0:e1:c0:ac:81:0f:56:26:29:fc:db:d3:
69:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F3:48:B8:BB:BE:AB:80:7B:57:9B:9A:4B:33:03:41:77:7B:EF:4B
X509v3 Authority Key Identifier:
keyid:1A:88:AF:93:84:5B:D2:53:86:45:2D:BD:FA:A0:21:6E:13:CA:F8:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Goivk4Rb0lOGRS29-qAhbhPK-Mc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:6f:6f:58:e1:e0:49:de:0b:3b:98:08:8f:fd:06:56:96:60:
75:19:e4:b5:17:6c:6f:43:8c:fd:62:85:a6:08:e3:fd:c0:44:
65:36:db:31:4c:28:95:e9:5f:42:30:b5:55:f0:99:ce:79:d2:
f8:66:81:65:92:7f:a6:ac:45:cb:2b:53:cb:c7:b0:80:67:15:
c9:7b:a8:0f:76:9f:b3:5c:b1:e4:68:04:7f:e2:8f:55:b8:6c:
83:40:a7:cf:7d:d9:1a:1b:43:51:a3:1f:8a:a7:9c:b3:52:ab:
df:61:9d:89:b9:bd:e3:65:8c:3f:4c:65:64:ff:9e:f4:3e:de:
13:7b:3c:19:98:2a:1e:64:80:b3:60:5b:c4:40:19:79:df:3c:
9f:c3:90:07:cc:01:b5:5e:48:a4:35:2a:31:a2:a8:3f:bd:b3:
5f:7d:da:47:d0:2b:fe:be:ad:05:f0:d6:b9:7e:01:8a:a5:b0:
d2:b2:e3:aa:f8:4f:83:df:1e:82:bb:71:db:e8:c3:6b:f0:88:
31:a8:6e:f7:65:7f:40:f5:f3:5e:4d:21:11:49:1a:58:59:18:
96:3e:79:95:f3:e3:df:9e:90:92:e0:2e:e1:85:ca:2d:f9:b8:
ae:b2:72:ad:b8:30:d5:aa:fb:75:83:65:4c:e1:9d:32:67:b7:
4f:7a:6d:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:21 2025 by rpki-client