Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
File: Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft (raw, json)
Hash identifier: LR+EAAPbjyCzwR5/6P0zSLDs0RDWxmeGULfZCH2GKIY=
Subject key identifier: 7A:15:97:E5:90:B1:58:8F:48:C9:36:DC:CA:EA:5F:55:BA:25:1B:BA
Authority key identifier: 1A:88:F4:29:ED:C8:6A:A8:7B:B3:A1:77:17:CE:A7:1C:70:87:3A:F2
Certificate issuer: /CN=1a88f429edc86aa87bb3a17717cea71c70873af2
Certificate serial: 019A73A6BB337966E0F49CB548B2D8D8DB63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
Manifest number: 1372
Signing time: Tue 11 Nov 2025 16:01:37 +0000
Manifest this update: Tue 11 Nov 2025 16:01:37 +0000
Manifest next update: Wed 12 Nov 2025 16:01:37 +0000
Files and hashes: 1: Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl (hash: U+lXNGrGsxb1GCXs+/GkdMZ2OPYX/+XHyzYRy2OUmfY=)
2: UujBfWNQbvUkl0lkMK4V-9QiUlw.roa (hash: FohKwxny7khcmiCsTnlSJI6D8Cw6gmfD+vVquMBYGNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:a6:bb:33:79:66:e0:f4:9c:b5:48:b2:d8:d8:db:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a88f429edc86aa87bb3a17717cea71c70873af2
Validity
Not Before: Nov 11 16:01:37 2025 GMT
Not After : Nov 12 16:01:37 2025 GMT
Subject: CN=7a1597e590b1588f48c936dccaea5f55ba251bba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c9:32:16:63:24:4f:f0:b7:db:7b:51:b9:2b:
ef:e5:41:5f:99:58:6d:3c:18:f8:86:54:53:18:50:
c2:c2:a2:6f:5e:b0:2d:70:2a:1f:91:cf:0c:50:e7:
70:47:1c:dd:a2:db:0e:5c:18:58:4f:38:53:07:e9:
fe:1c:bd:6a:66:7e:27:b4:5c:dc:12:dc:8f:f8:40:
df:e7:af:6c:33:8c:a8:e9:4a:16:b4:29:04:8c:e6:
73:44:b0:c8:f3:46:a1:f2:68:0b:c0:c8:c7:f0:59:
8d:a2:98:57:96:3d:2b:ad:1f:60:eb:11:39:bb:6b:
a7:fd:e6:0f:a3:ae:82:f8:7c:33:19:76:2a:31:1f:
09:10:21:39:1a:9c:75:c7:d2:1d:5c:81:76:9a:c9:
c7:7a:7f:c7:c8:a8:3b:ee:89:f4:2c:f1:dc:ae:9e:
57:8f:98:a8:c8:f5:10:ba:e0:53:c5:ab:8f:90:4c:
1b:78:12:10:94:c4:c9:a2:16:1e:54:c0:80:30:94:
bb:35:c0:3f:c3:c9:57:b1:99:be:ef:fd:e5:78:36:
f9:04:1e:47:85:68:a0:89:52:42:b4:af:48:43:3f:
8e:de:3f:c1:17:eb:d4:ae:ce:d4:da:28:63:e4:11:
bc:95:8b:78:44:35:b1:a0:6d:0e:16:3c:fa:bf:55:
74:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:15:97:E5:90:B1:58:8F:48:C9:36:DC:CA:EA:5F:55:BA:25:1B:BA
X509v3 Authority Key Identifier:
keyid:1A:88:F4:29:ED:C8:6A:A8:7B:B3:A1:77:17:CE:A7:1C:70:87:3A:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:e0:47:8e:57:64:98:7e:bd:c3:12:c8:40:77:66:88:1c:58:
5f:e4:13:14:85:b4:9e:57:9f:ec:f2:9d:e9:07:30:b8:b8:c7:
0d:4d:56:ab:03:dd:ea:8b:9d:aa:14:df:8b:3c:70:54:ec:e5:
27:c7:bf:ba:bc:73:ab:46:fd:fd:4b:12:91:7e:33:4c:bd:a0:
e6:85:61:6e:12:02:db:37:ad:c9:61:a4:1d:40:69:3d:48:be:
f6:db:42:99:9e:f0:b4:1d:4a:ed:0f:9a:4e:1d:27:74:07:e1:
2a:8e:e8:ca:3d:83:02:e7:95:5d:33:79:ac:06:27:9c:01:0d:
42:8f:48:a7:a1:e8:df:b2:b1:c2:93:1f:0c:a9:82:a2:a4:5d:
bc:37:df:89:d9:9f:4e:f6:d6:60:97:e1:96:d8:02:6b:a2:cd:
7c:e1:3c:3c:57:ea:cc:7e:cf:b7:b4:ad:3f:cf:1d:6d:c5:fb:
8f:99:69:44:78:2f:da:14:18:63:e0:02:4a:b4:9e:f3:1f:1c:
00:2a:cf:9f:5c:56:f7:7d:89:e0:2f:21:2a:e4:3e:53:0f:08:
be:16:de:55:5e:7f:82:8c:52:58:3c:e9:78:98:af:72:30:40:
a8:98:e3:97:16:2c:e1:31:0a:d6:f2:27:3e:4b:11:e2:e4:47:
a7:e5:73:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:17:20 2025 by rpki-client