Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
File: ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft (raw, json)
Hash identifier: 7W7CJgDp+cIpB4xXROkstL4lPjpB5IfZt95R3Axdxpw=
Subject key identifier: E3:F5:FC:77:86:95:72:01:13:21:09:8D:E9:C5:1A:C9:88:95:9C:3C
Authority key identifier: 82:12:19:46:9C:6D:F7:6C:F4:76:F2:74:CD:CF:27:E5:2F:8F:0D:F8
Certificate issuer: /CN=821219469c6df76cf476f274cdcf27e52f8f0df8
Certificate serial: 0199296B3ACDCA6D7922E012D7AD92C5EABC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
Manifest number: 0668
Signing time: Mon 08 Sep 2025 13:01:57 +0000
Manifest this update: Mon 08 Sep 2025 13:01:57 +0000
Manifest next update: Tue 09 Sep 2025 13:01:57 +0000
Files and hashes: 1: fdOHadbduUc9htmWTS-jPq_zv2U.roa (hash: gZYnTf+6Tdj5UA3epTVfXJljvvit6fFaXTM2YVnS+ZA=)
2: ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl (hash: o2/3YgtSgdopIZjJGcfI+WxSDxckfGF4hzfkLxl2C98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 12:25:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:29:6b:3a:cd:ca:6d:79:22:e0:12:d7:ad:92:c5:ea:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821219469c6df76cf476f274cdcf27e52f8f0df8
Validity
Not Before: Sep 8 13:01:57 2025 GMT
Not After : Sep 9 13:01:57 2025 GMT
Subject: CN=e3f5fc77869572011321098de9c51ac988959c3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fd:30:b0:37:01:22:e0:e6:50:cd:b7:56:a0:
60:a7:36:1b:a6:39:64:a3:dd:3c:4b:40:13:17:8b:
bc:b3:5a:b3:06:c0:5b:c5:01:f5:6a:0c:91:d1:4b:
c6:43:e8:0e:3f:c8:30:0e:11:8f:4d:b4:5c:8e:70:
05:f2:fd:29:94:1b:bf:bc:a2:e4:c2:f3:9d:a2:ed:
ba:e0:4f:ca:be:06:2e:a2:fa:3b:46:0c:6d:44:be:
83:16:e0:70:c6:ad:a2:8c:47:59:e4:3a:87:3b:15:
77:e3:be:f0:4e:b5:86:3a:00:c9:e9:e8:33:c0:f4:
d3:ad:d5:38:5d:1f:6a:a7:6f:06:c1:68:af:43:3a:
81:a5:0b:6c:bf:05:45:38:e9:ca:86:b6:ed:f4:06:
33:cc:e3:a5:6b:f1:e7:1a:fe:0d:f2:57:53:cb:fe:
fa:1a:0d:f3:bd:0c:76:1b:59:41:a0:7a:44:22:96:
83:1e:56:a2:d4:09:a5:c9:df:da:b3:e6:34:35:4b:
d5:c8:31:2a:d1:9a:d2:34:23:66:1e:21:0b:63:ee:
77:b7:9f:a4:3e:34:ce:7c:22:7b:d8:a0:a8:a5:fb:
3e:5f:ff:79:53:fc:e6:c9:01:c5:24:c9:c8:bc:9b:
46:ba:7e:84:0b:ae:95:7f:e7:18:54:17:23:15:7b:
d6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F5:FC:77:86:95:72:01:13:21:09:8D:E9:C5:1A:C9:88:95:9C:3C
X509v3 Authority Key Identifier:
keyid:82:12:19:46:9C:6D:F7:6C:F4:76:F2:74:CD:CF:27:E5:2F:8F:0D:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:19:5a:fa:d4:8f:b9:52:28:08:83:6f:23:06:59:68:9a:02:
36:a3:90:40:5c:e5:c4:06:e5:79:b9:2f:c1:59:46:64:82:b7:
f7:c6:ac:b6:47:1e:2d:0b:3a:e2:b1:ef:59:95:1b:68:00:9e:
5a:8d:c2:f8:ef:70:1a:74:45:e0:4e:35:e5:35:3b:a3:6a:72:
6a:cb:6f:fe:7f:6d:c9:fa:3f:3c:fd:c8:3b:13:af:8f:fa:5c:
bc:9e:3d:e4:87:0f:aa:c1:fa:0e:82:37:99:7c:cf:d9:34:0d:
6c:22:0e:ed:83:16:09:a3:bb:50:68:cb:ae:0f:62:ea:bf:75:
9d:1c:a5:30:4b:da:13:f4:79:4e:0e:09:1a:b5:a6:f9:3d:16:
f4:ce:3a:a5:9c:32:e5:a0:dd:37:ad:fb:e6:fc:5f:25:d7:36:
00:37:3e:a6:6b:ab:e6:74:8e:97:16:69:3b:33:62:e3:9a:13:
30:a7:9e:0f:eb:67:99:2b:ee:a3:b1:5b:aa:58:76:b2:c2:8c:
c4:c3:61:b4:9b:e3:8e:8c:b0:d2:5b:4d:32:97:75:95:46:05:
4e:47:a9:69:41:3b:af:22:a7:c9:c8:29:8d:ff:3f:79:eb:0c:
3e:dd:27:3b:ce:e1:1a:dd:52:d1:6f:40:2b:8b:3d:39:80:8c:
be:62:82:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 14:32:25 2025 by rpki-client