Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
File: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft (raw, json)
Hash identifier: Hm66RP8P0Jfqn4yLnFbiEr5kJ4Rq+5VREq4A+o/KY6c=
Subject key identifier: 42:03:B7:CE:6E:D0:B1:AE:B9:C9:A3:38:4F:66:B2:32:59:79:D3:8D
Authority key identifier: 83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
Certificate issuer: /CN=83c8d01caf2b0751d035c537566f45627925e4f6
Certificate serial: 019921B24F005E640BD5F8507B50A8AE6435
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
Manifest number: 11B6
Signing time: Sun 07 Sep 2025 01:02:37 +0000
Manifest this update: Sun 07 Sep 2025 01:02:37 +0000
Manifest next update: Mon 08 Sep 2025 01:02:37 +0000
Files and hashes: 1: J4HW2mYS6aU6LfQRgOlYRDbLp5k.roa (hash: Bt4aDKGWyvEeRSoxrjAjHWSOknnKJY9L9kMvMSuInRo=)
2: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl (hash: eSegqoDH/prKf4n5mgIEfZJih/zxyqAcTJiWtR4DajM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:4f:00:5e:64:0b:d5:f8:50:7b:50:a8:ae:64:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c8d01caf2b0751d035c537566f45627925e4f6
Validity
Not Before: Sep 7 01:02:37 2025 GMT
Not After : Sep 8 01:02:37 2025 GMT
Subject: CN=4203b7ce6ed0b1aeb9c9a3384f66b2325979d38d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c6:e9:74:d2:36:8e:5a:cd:d7:bb:f2:21:12:
d9:6b:69:89:03:e7:2b:23:86:d6:2b:3d:95:51:6c:
fb:f1:ae:97:fa:73:4c:cf:c0:ac:16:34:61:b0:81:
98:a5:aa:b9:72:b2:73:0a:fa:3a:3f:33:5e:a0:7f:
4a:0d:43:86:02:b0:0a:a3:ad:47:d6:ca:7c:00:39:
6a:87:e9:2d:64:12:7a:77:65:5b:62:fc:aa:83:4d:
2b:e2:2a:9d:31:ce:c9:99:d5:9c:89:81:b3:df:e4:
9a:04:9c:d6:fb:c3:d7:21:3c:ea:55:13:3c:c3:bd:
c5:40:11:7f:8d:0d:bb:51:ed:d5:e2:a3:87:07:dd:
70:7e:76:bd:f4:86:72:3c:54:70:4b:89:99:a8:a3:
be:d9:1c:a1:28:a3:0e:16:cb:86:b6:eb:96:74:7d:
9d:6e:32:91:ee:31:15:16:c9:81:a2:85:ba:d0:8c:
e1:21:8f:ef:e7:fa:ab:72:45:df:85:ff:25:b6:68:
6c:65:bd:03:32:bd:40:61:46:e4:c1:c4:42:43:02:
09:cc:30:bb:d8:99:c8:e9:ea:53:34:37:80:38:87:
a7:85:90:f1:b6:0e:67:42:4b:2d:28:3c:0a:af:d8:
35:0c:97:4e:4e:b3:a6:fc:ad:a7:3b:9d:d1:db:41:
4c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:03:B7:CE:6E:D0:B1:AE:B9:C9:A3:38:4F:66:B2:32:59:79:D3:8D
X509v3 Authority Key Identifier:
keyid:83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:e4:c6:72:85:03:12:af:ca:60:88:da:35:15:fd:8c:b3:5b:
b3:53:5d:18:d4:b6:1f:1c:35:cd:6f:23:3a:dd:a4:f7:42:7f:
d5:99:21:fa:b0:08:58:e4:e5:30:e1:32:e9:55:81:e0:e1:7a:
53:c6:8b:4d:4f:c2:81:01:4c:24:6e:c6:bc:01:28:87:98:6b:
a8:25:30:81:bc:63:c7:31:2d:58:f9:a1:82:a6:7f:fc:87:e6:
c0:b4:db:f5:e1:ee:ff:96:25:dd:fd:ce:d6:86:4a:ba:d0:3e:
a6:3f:73:f9:51:8d:49:71:dc:85:5e:9b:16:e6:2e:1e:ad:25:
b4:dd:7e:73:83:a7:fd:d2:c8:78:29:50:6a:53:a0:e3:ad:40:
95:3a:6f:bd:53:90:27:29:1d:95:7a:18:6f:4f:ed:72:e8:87:
27:53:6b:5e:12:18:d9:51:e5:01:9b:a5:02:92:12:56:45:10:
31:a6:af:8d:e7:62:96:6e:30:16:61:31:ba:e6:0f:1b:e2:92:
ed:38:e9:b2:22:1b:8a:f1:c1:f1:3d:b4:be:44:e6:2b:ab:f7:
f7:27:6e:1e:00:36:6a:4a:bc:1f:c9:b7:00:4e:bd:09:3f:47:
76:a6:25:b4:67:b3:f8:43:39:67:27:73:0d:f6:71:40:d1:6e:
a2:6b:4c:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsk8AXmQL1fhQe1CormQ1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzYzhkMDFjYWYyYjA3NTFkMDM1YzUzNzU2NmY0NTYyNzky
NWU0ZjYwHhcNMjUwOTA3MDEwMjM3WhcNMjUwOTA4MDEwMjM3WjAzMTEwLwYDVQQD
Eyg0MjAzYjdjZTZlZDBiMWFlYjljOWEzMzg0ZjY2YjIzMjU5NzlkMzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsbpdNI2jlrN17vyIRLZa2mJA+cr
I4bWKz2VUWz78a6X+nNMz8CsFjRhsIGYpaq5crJzCvo6PzNeoH9KDUOGArAKo61H
1sp8ADlqh+ktZBJ6d2VbYvyqg00r4iqdMc7JmdWciYGz3+SaBJzW+8PXITzqVRM8
w73FQBF/jQ27Ue3V4qOHB91wfna99IZyPFRwS4mZqKO+2RyhKKMOFsuGtuuWdH2d
bjKR7jEVFsmBooW60IzhIY/v5/qrckXfhf8ltmhsZb0DMr1AYUbkwcRCQwIJzDC7
2JnI6epTNDeAOIenhZDxtg5nQkstKDwKr9g1DJdOTrOm/K2nO53R20FMTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEIDt85u0LGuucmjOE9msjJZedONMB8GA1UdIwQY
MBaAFIPI0ByvKwdR0DXFN1ZvRWJ5JeT2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzhqUUhLOHJCMUhRTmNVM1ZtOUZZbmtsNVBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9jZmE3YzMtZjBjOC00NjIyLThhNDct
OWFiMjZiMjY2YWE3LzEvZzhqUUhLOHJCMUhRTmNVM1ZtOUZZbmtsNVBZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9jZmE3YzMtZjBjOC00NjIyLThhNDctOWFiMjZiMjY2YWE3
LzEvZzhqUUhLOHJCMUhRTmNVM1ZtOUZZbmtsNVBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApOTGcoUD
Eq/KYIjaNRX9jLNbs1NdGNS2Hxw1zW8jOt2k90J/1Zkh+rAIWOTlMOEy6VWB4OF6
U8aLTU/CgQFMJG7GvAEoh5hrqCUwgbxjxzEtWPmhgqZ//IfmwLTb9eHu/5Yl3f3O
1oZKutA+pj9z+VGNSXHchV6bFuYuHq0ltN1+c4On/dLIeClQalOg461AlTpvvVOQ
JykdlXoYb0/tcuiHJ1NrXhIY2VHlAZulApISVkUQMaavjedilm4wFmExuuYPG+KS
7TjpsiIbivHB8T20vkTmK6v39yduHgA2akq8H8m3AE69CT9HdqYltGez+EM5Zydz
DfZxQNFuomtMEQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:08:16 2025 by rpki-client