Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
File: gswXHj3IRnEeBW4uNiQdrJlKYA0.mft (raw, json)
Hash identifier: 2iUPRU6f/NZFogo2yLvsUF4iIFNMmSiIvviMqEJbqcc=
Subject key identifier: 13:E8:CA:6D:FA:F4:1A:0F:45:7C:B2:A9:AA:B1:64:14:9D:CC:2F:E0
Authority key identifier: 82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
Certificate issuer: /CN=82cc171e3dc846711e056e2e36241dac994a600d
Certificate serial: 0199239FEF7CD9E066BCF407EDC274FBC64A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 10:01:48 +0000
Manifest this update: Sun 07 Sep 2025 10:01:48 +0000
Manifest next update: Mon 08 Sep 2025 10:01:48 +0000
Files and hashes: 1: JjOh7wV3uoOnT6pZLsppbv_LAZ8.roa (hash: QPSPPNn3Qn++fdP63nXuDi3yMhHz0vKFIROySBvf1mk=)
2: gswXHj3IRnEeBW4uNiQdrJlKYA0.crl (hash: fsY8k8cmNwE/pS0RNMOl0H5zjuJ2EUwvgc+3ErpXLas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:ef:7c:d9:e0:66:bc:f4:07:ed:c2:74:fb:c6:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82cc171e3dc846711e056e2e36241dac994a600d
Validity
Not Before: Sep 7 10:01:48 2025 GMT
Not After : Sep 8 10:01:48 2025 GMT
Subject: CN=13e8ca6dfaf41a0f457cb2a9aab164149dcc2fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7b:62:c7:83:1a:f3:7a:5e:99:d3:6e:99:ba:
60:67:84:fb:07:4a:c4:eb:5e:7e:74:b3:95:5d:97:
de:05:94:d8:a3:06:b4:32:73:2b:d6:bc:58:73:e2:
a4:09:a1:69:f3:6c:17:7a:8c:ad:46:bc:68:c4:1e:
75:11:c6:a6:28:6f:ad:4e:9b:ce:8c:26:27:e7:03:
e7:03:96:0e:b2:e0:b6:e8:61:3b:92:7b:4b:c7:d0:
62:22:ef:55:55:7d:29:1e:3a:02:05:5a:54:c1:b0:
d1:47:ba:91:a3:aa:fc:e4:1f:f5:ed:f4:e1:ed:b7:
c4:09:78:10:65:7b:e2:95:b2:93:4a:ce:e9:48:e3:
a8:2e:4c:56:06:97:51:0e:6f:d0:ad:4a:34:45:6a:
60:df:52:ce:d5:f0:c7:37:76:69:95:02:99:41:aa:
af:f6:fd:85:dc:f1:08:3c:52:61:ba:76:68:4f:33:
64:cc:ce:01:6a:d5:ef:34:82:37:1f:20:05:b9:f9:
01:c2:f2:d6:d3:df:3e:48:83:c6:53:9b:0c:b8:e9:
28:32:ab:23:46:04:c4:88:34:24:71:45:42:5f:c5:
e4:36:82:52:e9:e8:99:2b:35:4f:0d:e6:e1:2c:69:
48:50:9d:7c:16:05:02:0a:51:fe:c3:21:ce:4f:dc:
e6:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:E8:CA:6D:FA:F4:1A:0F:45:7C:B2:A9:AA:B1:64:14:9D:CC:2F:E0
X509v3 Authority Key Identifier:
keyid:82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:25:09:25:e3:3c:9d:3a:62:05:cc:16:3a:7d:13:43:a5:0a:
37:36:2a:6c:1d:e6:2c:35:fd:3a:9c:61:1b:5b:ea:b4:d3:02:
96:4e:8d:29:b4:f1:bb:cc:aa:bf:74:64:0c:6d:12:e8:c7:56:
cf:15:d3:20:44:d2:1b:2e:b2:d8:c9:f6:ea:ae:ef:a3:61:bf:
4e:25:d2:55:4f:75:e3:8e:28:5f:72:a8:43:ef:5b:cc:5b:18:
a3:ad:6e:6d:55:77:35:ce:0c:46:d9:7a:28:cd:72:77:0e:f3:
dc:e4:99:f8:1c:88:5c:d6:c0:b2:01:d5:ec:f5:2a:c4:51:01:
89:e3:4e:f0:9b:1c:d8:81:6c:db:be:f8:dd:4e:c9:4d:40:ce:
29:e5:2f:21:4e:59:a1:0e:35:a9:eb:37:b1:64:de:2d:0b:f9:
e2:d5:5f:b3:cb:cd:56:a6:3c:cd:57:a5:28:ca:c5:7e:d8:ac:
c0:21:cc:5a:c9:f5:79:bf:08:09:64:cb:75:0f:67:ce:24:d0:
a7:66:6d:9d:54:0a:a6:0a:3a:4c:55:49:d9:02:f6:1e:37:43:
05:3d:b0:ac:e1:88:97:c7:ab:d2:3a:e3:b7:4e:31:8f:a6:af:
f3:9c:a9:33:20:b9:0e:50:ae:6d:69:5c:bf:36:1c:d7:ae:ed:
dd:0e:6b:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:18:47 2025 by rpki-client