Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
File: gCNZN6302riSXVgEWjNxgWyYBTE.mft (raw, json)
Hash identifier: PvYz4nh+DK6IkNVenUegaAWeMaQ7zg4wp8K5wjSkuHA=
Subject key identifier: 92:85:81:81:97:4E:A7:76:2A:E2:A2:6C:FB:4C:05:26:D2:0D:51:BF
Authority key identifier: 80:23:59:37:AD:F4:DA:B8:92:5D:58:04:5A:33:71:81:6C:98:05:31
Certificate issuer: /CN=80235937adf4dab8925d58045a3371816c980531
Certificate serial: 0199233175D3CD8743356D6857F3D4A67964
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
Manifest number: 0856
Signing time: Sun 07 Sep 2025 08:01:07 +0000
Manifest this update: Sun 07 Sep 2025 08:01:07 +0000
Manifest next update: Mon 08 Sep 2025 08:01:07 +0000
Files and hashes: 1: gCNZN6302riSXVgEWjNxgWyYBTE.crl (hash: X5Hq2veMfPVnXCG+46GqJRVZJFHvOUnQwX5O2Ghbep8=)
2: xGfGnzNZn4HUZigqa5Ok1nkmfsE.roa (hash: XpFkMfmlY0imCtGtKPRW/lTcymGc5XbfGzDPyUvzl8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:75:d3:cd:87:43:35:6d:68:57:f3:d4:a6:79:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80235937adf4dab8925d58045a3371816c980531
Validity
Not Before: Sep 7 08:01:07 2025 GMT
Not After : Sep 8 08:01:07 2025 GMT
Subject: CN=92858181974ea7762ae2a26cfb4c0526d20d51bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b5:03:da:2b:25:df:79:d8:28:9b:ce:05:10:
a1:ca:e2:94:52:2e:bd:50:88:e2:b0:32:ec:b4:cc:
14:0f:41:40:cb:54:cd:77:a0:00:2b:0b:92:6f:28:
2d:9e:8e:bc:9c:38:3e:cd:0d:b3:e2:15:a0:38:79:
43:a3:23:45:5d:93:f6:ff:8f:f9:fa:dc:c3:4c:a6:
fd:ac:67:b8:43:9d:cc:17:45:65:ab:0d:e1:f7:a2:
86:1b:94:d2:8f:51:02:0d:53:ea:2b:30:37:48:ec:
2a:2e:bb:ef:b3:49:e1:25:e8:0d:24:19:e6:71:08:
6a:4d:c2:c9:5d:a5:b3:5e:0e:74:7c:b0:d5:de:e5:
8c:0a:57:af:00:8c:79:d1:80:c1:2e:11:dd:81:ba:
d9:75:46:71:7d:bc:cf:b6:dd:54:22:1e:07:63:36:
b1:92:01:a2:d6:78:e3:22:29:18:54:53:f5:ea:10:
b9:d0:2a:c8:9a:1f:87:64:cc:3b:b1:4f:c9:b8:c7:
dc:c9:27:1b:aa:87:3f:88:4e:b2:77:b4:06:58:c1:
14:e4:41:a1:93:f1:3d:43:c7:90:63:d4:5b:15:6c:
f2:75:2b:e4:f9:70:99:67:66:c9:8d:9f:1a:9c:d7:
6a:2a:51:73:a6:53:0e:52:c3:6b:c4:bb:bb:2f:4e:
d2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:85:81:81:97:4E:A7:76:2A:E2:A2:6C:FB:4C:05:26:D2:0D:51:BF
X509v3 Authority Key Identifier:
keyid:80:23:59:37:AD:F4:DA:B8:92:5D:58:04:5A:33:71:81:6C:98:05:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:f6:93:b3:89:9d:f8:3e:72:c2:ca:c1:ce:63:e5:7e:02:59:
bb:99:67:23:41:89:ff:57:99:24:75:49:22:40:63:2b:d6:f5:
13:29:62:82:dd:44:e6:25:ab:99:57:fe:65:e8:26:88:0a:18:
1b:44:aa:2b:c7:c9:5f:ca:a9:3b:e6:02:8a:70:b1:4c:ea:fd:
c2:16:eb:88:68:63:15:36:c6:14:c3:07:29:49:1a:b8:46:53:
b6:de:d8:1b:21:3e:6d:5b:37:7b:bb:9c:99:85:c6:7a:7d:a6:
c8:83:9f:50:08:d8:4b:5b:fe:20:a4:9f:a1:e3:59:17:ae:a9:
7a:8f:db:5c:ba:d1:29:8b:81:da:57:89:65:20:c1:a8:80:65:
dd:4d:10:8a:f6:92:b7:05:eb:fe:61:cf:62:58:a0:9d:d0:84:
8c:a5:59:f4:73:eb:c8:b0:d6:57:19:39:5e:2a:18:30:b5:5b:
f2:50:56:a2:90:87:88:a6:a9:18:a6:cf:05:36:9f:7b:11:6a:
b7:46:88:4a:92:15:88:8e:c0:5b:73:32:cb:5c:3b:42:21:af:
f3:87:3b:2e:fa:e8:d5:69:cf:d9:01:7e:dd:a9:e4:ce:81:72:
d6:f4:0c:32:46:9d:e7:c9:7e:90:95:87:c0:cf:7c:f4:b5:80:
b7:d2:08:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:38:13 2025 by rpki-client