Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
File: ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft (raw, json)
Hash identifier: DZ7no2oJVAQ91bQ9ukwAQm2pfzA79+Hfaf3gix+IyYw=
Subject key identifier: 29:C0:93:84:5E:CB:5A:44:BB:B1:63:24:88:FF:96:AC:D0:C9:17:7B
Authority key identifier: 82:12:19:46:9C:6D:F7:6C:F4:76:F2:74:CD:CF:27:E5:2F:8F:0D:F8
Certificate issuer: /CN=821219469c6df76cf476f274cdcf27e52f8f0df8
Certificate serial: 019A1EAE06168D0156845F7C906DE3317EAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
Manifest number: 06E7
Signing time: Sun 26 Oct 2025 04:01:52 +0000
Manifest this update: Sun 26 Oct 2025 04:01:52 +0000
Manifest next update: Mon 27 Oct 2025 04:01:52 +0000
Files and hashes: 1: fdOHadbduUc9htmWTS-jPq_zv2U.roa (hash: gZYnTf+6Tdj5UA3epTVfXJljvvit6fFaXTM2YVnS+ZA=)
2: ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl (hash: yVrHPTI5ro6FcfcAhCefERxS4XO6MxlbLQymIbYIwxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1e:ae:06:16:8d:01:56:84:5f:7c:90:6d:e3:31:7e:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821219469c6df76cf476f274cdcf27e52f8f0df8
Validity
Not Before: Oct 26 04:01:52 2025 GMT
Not After : Oct 27 04:01:52 2025 GMT
Subject: CN=29c093845ecb5a44bbb1632488ff96acd0c9177b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3e:e8:bc:ad:03:63:53:d6:5d:e0:27:03:26:
32:bf:ae:65:08:35:bd:76:5c:e0:bc:28:bd:9c:8b:
c4:71:b3:1d:9d:1d:97:47:19:a0:f6:8b:70:52:9c:
00:2f:c4:75:98:63:5b:61:bc:ef:d0:19:b3:27:3a:
cb:73:bb:5f:87:71:33:d4:46:74:ef:27:fc:0d:86:
b2:32:63:ef:ea:75:ab:b7:91:b4:f1:63:76:5e:3c:
ce:d8:6e:a4:db:f3:f9:68:12:34:03:63:b4:26:c0:
68:e4:2e:25:f2:be:99:20:f3:25:d7:63:70:16:ff:
73:86:ff:3d:77:5e:9a:84:b8:3f:93:a4:3b:b8:6b:
71:52:56:c7:a5:98:22:fc:b1:c2:95:9a:cd:67:f1:
ce:4f:d1:93:35:40:a4:03:0a:06:d8:a3:d8:63:c1:
12:0a:54:bd:2e:d9:8c:52:c2:62:81:43:2a:21:b7:
a8:4e:bc:fc:a1:43:07:34:3a:f6:2d:9e:36:c1:4b:
1a:98:97:71:9e:78:03:da:6f:ff:96:3b:df:3c:67:
b3:79:9d:39:bf:8c:64:2e:67:ca:11:0a:02:03:98:
42:04:aa:bc:51:ca:c1:b5:c3:7a:d9:9b:9a:d7:05:
45:a5:6b:ec:be:cf:22:0c:55:57:fb:df:cf:83:0a:
00:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:C0:93:84:5E:CB:5A:44:BB:B1:63:24:88:FF:96:AC:D0:C9:17:7B
X509v3 Authority Key Identifier:
keyid:82:12:19:46:9C:6D:F7:6C:F4:76:F2:74:CD:CF:27:E5:2F:8F:0D:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:59:b1:76:5c:26:de:9e:3d:82:93:08:1d:d4:b0:20:88:0b:
19:ae:36:e7:49:7b:8d:de:42:b8:cc:33:49:83:10:1f:36:da:
9e:b5:60:90:52:2a:60:ae:ce:73:36:59:90:3f:45:c7:d0:c8:
46:91:ab:ce:f2:e4:13:67:05:5a:9f:c1:0c:bd:a6:dc:06:8e:
6a:fc:5b:66:e9:9f:3f:7c:5a:c9:d9:55:5e:a0:a3:81:83:a6:
dc:0a:a1:1b:f4:7a:5a:64:0a:f7:b2:fa:de:8c:7a:d8:a3:ac:
12:71:63:1f:5a:77:7d:2f:24:b7:06:ac:50:ac:7e:0e:1f:94:
44:2a:b7:b5:06:6e:c7:85:87:db:0b:7a:3a:43:e8:9e:f0:fa:
97:c1:04:2a:6c:cb:8a:a3:15:a2:20:3d:31:d2:db:01:26:2b:
ea:14:bc:de:91:ed:89:4a:97:db:7a:c9:61:88:a1:ce:08:15:
af:9c:fa:ab:f8:14:97:45:bc:2d:d4:7b:2a:80:a6:05:46:10:
91:61:03:40:a2:ca:a7:15:8e:3a:a7:c9:72:97:00:39:0e:5c:
9d:3b:87:1e:19:07:27:3d:a5:c5:f5:5e:e3:92:b4:c1:13:e3:
6b:19:8f:c8:e9:bc:80:6a:67:5b:c3:a1:44:0c:b7:45:2c:6d:
ff:aa:25:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 06:30:41 2025 by rpki-client