Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
File: gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft (raw, json)
Hash identifier: VxQ5Lh1E3zigpRFjsOYILmOaVRHvDJBthyAHBkzTh30=
Subject key identifier: CD:25:FD:A3:73:76:29:57:E1:A0:8F:88:C6:5E:89:A3:93:83:81:C1
Authority key identifier: 83:23:F4:9D:6C:C6:50:CD:6D:65:48:23:48:E1:D6:D0:B8:FD:7E:AA
Certificate issuer: /CN=8323f49d6cc650cd6d65482348e1d6d0b8fd7eaa
Certificate serial: 019A22C0455B0DC29D84FE41B6C17D6BBD12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
Manifest number: 16F6
Signing time: Sun 26 Oct 2025 23:00:17 +0000
Manifest this update: Sun 26 Oct 2025 23:00:17 +0000
Manifest next update: Mon 27 Oct 2025 23:00:17 +0000
Files and hashes: 1: Kn2L20HdTOIfu80Nn50DjBWA6Jo.roa (hash: t13d2OWM34SoyNogtqsGXCD1a9gIw5aEGwzH9T6/vCE=)
2: gyP0nWzGUM1tZUgjSOHW0Lj9fqo.crl (hash: SpO3YDvDUthx+oL6Yo/vUvnQkDZTuxmkfAj0ebMOzzQ=)
3: kPyw78W3vAy4mQl3NXjpt1MepRc.roa (hash: u8KAvtGZKGr7dbs+3GKBT4RIYYyEwMSs07RwUnPLdS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:c0:45:5b:0d:c2:9d:84:fe:41:b6:c1:7d:6b:bd:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8323f49d6cc650cd6d65482348e1d6d0b8fd7eaa
Validity
Not Before: Oct 26 23:00:17 2025 GMT
Not After : Oct 27 23:00:17 2025 GMT
Subject: CN=cd25fda373762957e1a08f88c65e89a3938381c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:97:84:0c:38:1e:72:e5:ce:91:6b:b1:fb:00:
32:00:94:79:75:e2:a7:19:76:59:f4:19:87:76:02:
ad:70:54:a2:2a:f9:e6:2c:0e:34:77:8a:db:6f:56:
a2:10:24:82:72:95:40:d2:98:ae:21:6d:c2:58:e2:
f0:33:65:cd:3a:61:bb:f5:ee:3a:37:86:d9:0d:5c:
10:3b:25:7f:76:bc:b4:f3:64:d7:50:d8:b0:9d:cb:
91:3e:76:88:2a:a8:7e:9c:aa:36:53:9e:30:74:c6:
23:2f:b2:7d:8d:d4:08:e3:07:48:db:d5:94:c7:22:
b8:52:7f:06:c6:84:4d:75:06:33:71:61:5f:cb:7b:
6f:7b:be:d6:41:02:13:e7:38:4c:d4:79:f8:c7:e6:
5a:03:6b:2d:f0:45:b2:b2:55:0c:30:53:26:50:1c:
cd:3e:96:26:3f:ce:7a:41:0f:f8:8f:14:6a:37:bc:
70:d4:80:e0:f5:5f:a5:d7:e3:56:e5:2f:74:02:f6:
1d:0d:f3:7d:1f:be:a5:bf:55:a6:f1:b4:f6:e5:cc:
a2:56:b8:f8:10:e4:4a:47:a5:c3:f0:5c:84:27:1e:
fd:70:09:d0:08:bd:be:13:0d:4b:00:8e:a5:ed:fa:
47:49:06:45:50:28:d7:44:31:82:9f:38:55:df:05:
1c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:25:FD:A3:73:76:29:57:E1:A0:8F:88:C6:5E:89:A3:93:83:81:C1
X509v3 Authority Key Identifier:
keyid:83:23:F4:9D:6C:C6:50:CD:6D:65:48:23:48:E1:D6:D0:B8:FD:7E:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:26:1f:3b:83:7d:26:b3:d8:ca:58:2a:1f:de:4f:46:08:b8:
4f:62:5b:ca:6a:c1:ad:fc:7d:15:49:5e:3a:74:cb:b5:30:64:
d9:63:4b:3d:a1:2d:a9:85:38:6e:7e:68:49:64:a6:66:34:9d:
fd:ad:e0:5c:89:4d:d6:5c:e2:07:f3:ad:32:05:9f:ba:7f:4d:
2e:b5:b1:9f:e3:f9:7d:07:fe:ac:98:52:14:e1:8c:5e:6c:9d:
c5:8e:3d:57:13:d0:24:23:a6:8a:d9:b2:da:ca:e4:37:0f:bc:
9c:79:91:98:46:a0:c8:ea:20:e2:8b:15:d8:af:71:c5:39:30:
9a:13:08:d9:e9:3a:e5:b5:57:6e:5e:3b:20:3a:de:4a:e4:c7:
53:b7:92:b0:34:41:af:41:e9:3a:1f:ca:0e:4c:05:7f:7d:89:
d9:0a:a0:bb:fe:5b:fe:08:ca:87:9d:c8:66:04:a7:49:be:0f:
09:b8:ed:42:bf:95:b0:9f:1d:5d:41:6b:1b:91:92:d0:1a:df:
a0:d5:cc:32:d3:19:cd:b9:39:57:19:d1:cd:57:1c:d8:dd:fe:
e1:78:45:2d:4a:d4:69:cf:33:4a:68:51:ef:db:21:5a:92:2e:
6a:8f:f4:28:95:19:f6:3b:1f:da:d5:01:f7:9e:4d:66:19:cc:
0d:8e:fb:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:14:55 2025 by rpki-client