Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/577eae-3f3d-4d3f-9c07-f019db2acca8/1/gwOkyyOEwgfdNzfwkk-gjpMoLQY.mft
File: gwOkyyOEwgfdNzfwkk-gjpMoLQY.mft (raw, json)
Hash identifier: mSOCsNLOLnbiGwV+qN8fYfFxIEhza6voOh07tfhgqEk=
Subject key identifier: 6D:34:1A:EB:74:96:E5:DC:A2:3B:5F:30:75:6B:8A:16:C6:CE:DA:17
Authority key identifier: 83:03:A4:CB:23:84:C2:07:DD:37:37:F0:92:4F:A0:8E:93:28:2D:06
Certificate issuer: /CN=8303a4cb2384c207dd3737f0924fa08e93282d06
Certificate serial: 019A72CAA87A6F0908F7367A3C951FC9F24A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwOkyyOEwgfdNzfwkk-gjpMoLQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/577eae-3f3d-4d3f-9c07-f019db2acca8/1/gwOkyyOEwgfdNzfwkk-gjpMoLQY.mft
Manifest number: CA
Signing time: Tue 11 Nov 2025 12:01:15 +0000
Manifest this update: Tue 11 Nov 2025 12:01:15 +0000
Manifest next update: Wed 12 Nov 2025 12:01:15 +0000
Files and hashes: 1: 2iWfeMriZFi-G_hS_QOYTqRzYCk.roa (hash: 03ngKG8f9ygpR1m9XSjIdbVbs0jTiLlbaTIDCyi4ZJU=)
2: gwOkyyOEwgfdNzfwkk-gjpMoLQY.crl (hash: oFv4qC4fXY2uMrz+Bpv8YEhS00hB3oDFmplvhG+nEyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/577eae-3f3d-4d3f-9c07-f019db2acca8/1/gwOkyyOEwgfdNzfwkk-gjpMoLQY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/577eae-3f3d-4d3f-9c07-f019db2acca8/1/gwOkyyOEwgfdNzfwkk-gjpMoLQY.mft
rsync://rpki.ripe.net/repository/DEFAULT/gwOkyyOEwgfdNzfwkk-gjpMoLQY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:a8:7a:6f:09:08:f7:36:7a:3c:95:1f:c9:f2:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8303a4cb2384c207dd3737f0924fa08e93282d06
Validity
Not Before: Nov 11 12:01:15 2025 GMT
Not After : Nov 12 12:01:15 2025 GMT
Subject: CN=6d341aeb7496e5dca23b5f30756b8a16c6ceda17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:79:b4:f8:d8:45:8a:c8:cb:09:e5:61:2a:80:
56:b1:11:5d:c5:59:2b:30:27:00:b9:94:c9:92:47:
ea:1a:d7:e6:17:5e:00:fd:9b:b2:84:09:76:8d:8f:
0c:11:24:53:b2:2b:17:fd:94:82:f0:d6:d7:28:45:
98:f9:96:10:8a:63:2e:87:8c:2a:85:6a:65:b2:e6:
f3:82:14:a3:97:aa:81:68:97:ef:90:47:ab:d9:4c:
85:58:8b:ca:d7:51:72:12:9b:07:cc:e8:70:a7:5a:
f2:7e:78:ee:93:9c:f3:b0:d8:ba:74:9a:c1:22:75:
0e:3d:54:7e:8f:d2:5f:e0:1b:a6:ad:dc:cb:57:d7:
9b:13:01:61:64:a0:dd:c0:b2:c4:1c:70:74:a7:15:
fb:c1:2b:58:e4:69:ca:a0:35:10:ee:25:ca:4b:7c:
2b:9b:c8:18:3e:0a:03:61:7b:1b:12:fb:85:b4:7d:
78:42:8a:79:26:a0:89:e2:01:b1:55:a3:52:08:4a:
1a:a1:94:aa:51:b3:78:e0:49:9e:94:a6:a2:cc:d5:
6c:cf:73:9a:6b:05:21:26:59:b4:7b:67:c6:43:c9:
ac:fb:7d:94:65:c8:24:4f:0a:c5:68:10:36:75:37:
ba:65:d7:0a:8a:2c:4f:0b:c5:6f:47:60:d2:12:1a:
66:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:34:1A:EB:74:96:E5:DC:A2:3B:5F:30:75:6B:8A:16:C6:CE:DA:17
X509v3 Authority Key Identifier:
keyid:83:03:A4:CB:23:84:C2:07:DD:37:37:F0:92:4F:A0:8E:93:28:2D:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwOkyyOEwgfdNzfwkk-gjpMoLQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/577eae-3f3d-4d3f-9c07-f019db2acca8/1/gwOkyyOEwgfdNzfwkk-gjpMoLQY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/577eae-3f3d-4d3f-9c07-f019db2acca8/1/gwOkyyOEwgfdNzfwkk-gjpMoLQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:e5:d1:9e:85:89:d8:69:36:0a:ca:45:23:fe:f0:c4:0c:5c:
5a:a7:2a:af:1a:fc:0c:b2:ec:8c:e3:b4:dd:b4:86:dd:c5:b8:
ba:f8:d0:8e:04:5d:26:16:0c:2d:17:d9:60:9e:33:cc:93:e3:
42:c1:1d:8a:34:c4:7a:12:16:75:0b:01:6f:6f:b8:8f:e0:50:
f9:a9:34:6d:53:01:e1:9b:92:29:a5:29:98:7f:36:3b:d7:bc:
a5:e8:1b:3b:1b:7b:90:3b:b7:0f:90:e7:e7:81:4e:bd:60:56:
99:94:b5:57:ec:eb:97:81:45:f4:de:5b:5b:2a:9e:5b:cc:1d:
92:4d:28:77:cf:33:c4:56:d7:04:e4:fa:9c:d6:f8:ec:27:60:
bb:15:0e:42:00:c5:48:9e:57:26:dc:75:3b:6c:20:7f:bc:7c:
ae:2a:c7:de:cb:a0:bf:6e:5f:ee:58:84:eb:ed:ec:bd:c4:ea:
29:73:f9:d3:c0:f8:c0:ba:09:5f:3c:90:fe:65:3e:61:b4:8d:
08:00:43:9b:1b:e2:fb:66:a8:ec:a1:e0:64:fa:84:5a:9b:a3:
46:ff:9d:55:0e:cc:2e:20:f4:39:98:3f:78:83:5d:1b:da:86:
ea:b2:60:32:33:dc:86:41:31:07:19:73:98:88:d9:45:69:e5:
23:aa:a6:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:49:37 2025 by rpki-client