Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
File: gswXHj3IRnEeBW4uNiQdrJlKYA0.mft (raw, json)
Hash identifier: LvL72eBgFX2rkkC7c9sUfcAkH8rkS7eV8YAxBaYK7n0=
Subject key identifier: 0E:76:16:8E:21:9B:0F:1B:29:5F:C0:B7:58:D3:DC:BB:44:A3:92:79
Authority key identifier: 82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
Certificate issuer: /CN=82cc171e3dc846711e056e2e36241dac994a600d
Certificate serial: 019A71B79CB82F25908BA85F70D14C53708F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
Manifest number: 1721
Signing time: Tue 11 Nov 2025 07:00:49 +0000
Manifest this update: Tue 11 Nov 2025 07:00:49 +0000
Manifest next update: Wed 12 Nov 2025 07:00:49 +0000
Files and hashes: 1: JjOh7wV3uoOnT6pZLsppbv_LAZ8.roa (hash: QPSPPNn3Qn++fdP63nXuDi3yMhHz0vKFIROySBvf1mk=)
2: gswXHj3IRnEeBW4uNiQdrJlKYA0.crl (hash: l3yw3CIT9sbmMRsME4HstKcX0jp9c16LNSuhJQKmMZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:9c:b8:2f:25:90:8b:a8:5f:70:d1:4c:53:70:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82cc171e3dc846711e056e2e36241dac994a600d
Validity
Not Before: Nov 11 07:00:49 2025 GMT
Not After : Nov 12 07:00:49 2025 GMT
Subject: CN=0e76168e219b0f1b295fc0b758d3dcbb44a39279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6b:e2:2c:24:ee:01:a7:4a:8a:04:e6:c8:36:
27:96:1f:47:62:ab:7a:2b:f6:52:25:01:85:2e:a5:
96:7e:79:1a:a3:a7:b5:b2:7d:51:70:8c:a3:7e:a1:
81:32:8a:e1:e3:f2:98:ce:f3:bd:5b:9f:a5:bb:e9:
d2:24:dd:c9:f0:7a:81:15:4d:73:cf:6c:0f:72:84:
2a:95:14:ab:34:b6:7e:ad:ba:d1:92:b8:3d:d2:be:
a4:47:e6:30:d3:9f:13:73:96:79:60:07:09:b3:4f:
69:3c:29:11:b8:f2:48:ff:a2:69:8d:2e:cf:24:52:
4b:31:25:6d:a6:b1:11:86:ca:a8:19:dd:ab:55:ce:
93:e0:ec:f0:07:69:e1:1c:bd:f9:a2:c5:a7:2f:62:
87:a7:44:1b:bd:70:34:d2:94:5a:c4:d9:14:2d:44:
58:b4:92:89:bf:0f:5a:07:88:73:ac:80:5a:6e:b5:
84:1a:82:c7:66:52:b9:30:bd:7d:94:4d:d1:7a:35:
2e:af:3f:20:39:13:1b:b8:e1:85:35:8f:75:42:91:
0b:37:c4:17:d3:e1:56:4f:ad:50:2b:ba:b8:44:35:
f4:e8:bf:3f:ac:ca:51:6a:e8:04:b6:8e:ea:7d:50:
e5:62:07:6a:36:46:10:18:7c:76:60:5c:2c:57:40:
56:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:76:16:8E:21:9B:0F:1B:29:5F:C0:B7:58:D3:DC:BB:44:A3:92:79
X509v3 Authority Key Identifier:
keyid:82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:b9:93:f2:b5:01:85:0b:df:a9:1a:8a:11:24:88:02:10:e1:
48:1d:a8:02:a1:84:86:86:c2:e8:62:1c:db:ca:d2:ee:cd:84:
d7:4b:b9:27:71:1d:79:a1:a3:c2:8d:90:1c:c7:55:a3:11:ad:
9e:c0:28:ec:9b:09:b8:91:0d:34:35:f8:75:0d:96:74:ee:62:
b0:56:02:10:62:75:02:54:e9:ba:1a:ee:32:ad:ef:73:bb:87:
fa:ad:40:46:bf:7d:b4:ba:0c:6f:1f:49:58:a7:09:0a:db:c5:
24:3f:7d:5f:62:a4:f3:8c:59:cd:35:9d:38:28:61:00:02:4e:
90:a1:b9:17:9e:3e:9b:31:9d:d6:62:1d:af:fb:b4:78:3a:87:
38:dc:98:9f:36:08:b1:93:e7:a2:15:b1:d5:74:ce:e3:97:84:
b4:78:51:75:10:99:6e:64:00:96:21:cb:d4:63:a5:b6:b2:8d:
71:96:e7:91:df:35:eb:ea:21:32:fd:66:d9:58:07:55:a5:dc:
36:29:fb:7c:1a:0e:98:2d:06:71:e6:f1:01:46:5c:e8:a3:b2:
6e:75:15:40:66:73:12:24:b5:c0:48:73:cc:8e:bc:d1:dd:e5:
51:61:69:6b:f3:1c:07:93:7e:26:4c:a5:c3:a9:9c:a6:33:6c:
d6:65:50:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:27 2025 by rpki-client