Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft
File: gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft (raw, json)
Hash identifier: E6EaLOdKL6PFltq5ut4htH8k4v77iSf6BksU/0uww7s=
Subject key identifier: 80:ED:32:66:D8:29:FA:4A:42:D3:B8:57:D1:90:4B:EB:58:F0:DF:01
Authority key identifier: 81:A0:21:D5:40:ED:7D:82:C6:90:AD:C0:4F:BD:9D:D6:EE:50:E8:D5
Certificate issuer: /CN=81a021d540ed7d82c690adc04fbd9dd6ee50e8d5
Certificate serial: 0199228CC7526D1408DB4AC11329EFD1FD87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft
Manifest number: 13B4
Signing time: Sun 07 Sep 2025 05:01:15 +0000
Manifest this update: Sun 07 Sep 2025 05:01:15 +0000
Manifest next update: Mon 08 Sep 2025 05:01:15 +0000
Files and hashes: 1: OWKqkK-Ww3RQmH16xNxVWiLvO8I.roa (hash: GAxHkIIERYjerOgQkJ6KzahFSgbI1tnYkcltOUuSvzI=)
2: gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl (hash: DAHysLR5Tb4q3CwDeoW95xA85EWlTmZbnsaWvQI3skI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:c7:52:6d:14:08:db:4a:c1:13:29:ef:d1:fd:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a021d540ed7d82c690adc04fbd9dd6ee50e8d5
Validity
Not Before: Sep 7 05:01:15 2025 GMT
Not After : Sep 8 05:01:15 2025 GMT
Subject: CN=80ed3266d829fa4a42d3b857d1904beb58f0df01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:49:88:9c:88:38:32:60:ee:bb:ea:55:82:6e:
8f:89:09:14:f3:c5:6f:1b:aa:fe:8a:9f:2d:0d:fa:
02:45:2d:ab:bd:ad:d2:be:8a:ee:ac:dd:36:e0:13:
a8:bd:75:4d:52:87:b3:4f:f3:29:78:4b:66:d3:bf:
c7:f8:20:c6:cd:e9:f2:f7:fc:f0:5e:96:52:7d:58:
9d:5b:dc:f3:ca:3e:a9:e0:40:63:b9:43:a1:af:01:
f8:3c:9c:55:d9:2b:be:52:de:b6:0f:e1:cb:45:d3:
2e:49:2d:93:ca:78:58:65:17:e8:93:56:fc:ba:30:
88:d1:77:45:b9:8b:f4:6d:0a:64:83:2e:00:5d:19:
6a:7e:5c:7b:32:9e:0a:a7:35:58:e0:cc:85:79:20:
77:4d:b3:76:8f:56:f8:4d:5b:a4:c5:e3:7f:08:14:
0d:6d:4f:de:ca:e4:04:77:dc:21:cf:3d:09:38:5b:
17:7c:e6:f3:a9:b5:00:bb:3a:1e:37:b2:25:ee:ed:
34:9f:21:3b:09:12:39:e2:31:76:c0:ba:16:45:be:
a5:1f:5e:c5:fd:7c:e7:6a:05:ef:37:ec:28:10:6c:
52:9a:57:c3:2d:03:a7:47:7f:a0:fd:a9:bd:71:74:
cd:f2:fa:6b:c8:16:93:e0:07:07:4e:c8:0a:fe:35:
11:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:ED:32:66:D8:29:FA:4A:42:D3:B8:57:D1:90:4B:EB:58:F0:DF:01
X509v3 Authority Key Identifier:
keyid:81:A0:21:D5:40:ED:7D:82:C6:90:AD:C0:4F:BD:9D:D6:EE:50:E8:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:aa:5a:cc:54:28:fc:c4:6e:06:0f:95:74:5b:3f:04:96:56:
e5:31:00:7c:85:ef:4a:b6:57:71:03:7f:29:41:e9:20:92:73:
ab:be:2a:66:d4:1a:7b:3e:62:45:a9:bc:f0:19:43:c1:97:2e:
09:99:a9:8f:21:fb:4a:13:66:23:4d:b7:41:e6:b7:09:99:38:
82:80:3c:06:89:9d:02:55:8e:90:ea:b9:bb:ed:92:5c:99:7f:
ed:9a:06:ea:63:29:6f:65:53:87:9c:55:6f:78:40:41:a5:c0:
6f:38:1b:c6:e1:af:0d:7f:c5:c2:1d:23:a5:5c:96:bc:6c:ea:
a3:73:36:4f:30:5f:50:a8:d9:bc:0d:c0:07:54:65:3a:36:35:
9e:11:e5:73:39:53:ae:62:04:c4:f6:38:6e:4e:88:86:3f:65:
b0:0c:6b:46:f5:16:07:02:27:a9:36:6c:d9:3d:4c:14:bd:70:
59:3e:01:ac:48:59:59:f9:b1:e0:5b:ca:65:1a:2a:84:7c:06:
bb:a0:d8:47:9c:63:15:e8:ab:5d:76:33:ee:08:8b:35:4e:f2:
b0:ab:7f:0d:79:40:dd:94:af:ca:6d:06:90:a7:49:d8:a8:80:
29:d8:19:aa:28:17:d1:32:8a:fc:4d:f9:7a:e9:c9:3a:fa:8d:
a3:d0:f1:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:50:14 2025 by rpki-client