Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
File: gaaIASwSJngYX8634QN_Dh7ReGE.mft (raw, json)
Hash identifier: AuVldA/VaZyeHPXeoSqjYzYnr8vXlFDxHNvn9I7suyo=
Subject key identifier: 7A:90:33:B6:89:BD:A3:A9:30:56:CE:16:2D:95:EB:16:C0:65:31:F2
Authority key identifier: 81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61
Certificate issuer: /CN=81a688012c122678185fceb7e1037f0e1ed17861
Certificate serial: 019A71B824D144BE2563ABAE4BC344D44AD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
Manifest number: 0E05
Signing time: Tue 11 Nov 2025 07:01:24 +0000
Manifest this update: Tue 11 Nov 2025 07:01:24 +0000
Manifest next update: Wed 12 Nov 2025 07:01:24 +0000
Files and hashes: 1: S3eWbiRfXZtQFoOUJF8EdYDX9Yc.roa (hash: JnGWj1XmSn65dRfGoU3j1BYgj3cm1658PcWeEjvrK4Q=)
2: gaaIASwSJngYX8634QN_Dh7ReGE.crl (hash: 7AxsKUHA78qwq1U/q2TvTJCY+iMk9SHDfvH3ERL+QS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:24:d1:44:be:25:63:ab:ae:4b:c3:44:d4:4a:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a688012c122678185fceb7e1037f0e1ed17861
Validity
Not Before: Nov 11 07:01:24 2025 GMT
Not After : Nov 12 07:01:24 2025 GMT
Subject: CN=7a9033b689bda3a93056ce162d95eb16c06531f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:32:24:74:cc:a0:f9:d3:2c:aa:24:f1:64:f7:
8c:e2:91:70:17:1a:ba:96:c5:96:41:5e:af:e5:7d:
31:e5:97:e7:f4:87:33:41:38:ab:ec:d8:a6:b0:14:
a9:96:39:a2:72:a2:f4:dd:a7:56:71:fa:9f:3f:90:
c4:5f:ae:d6:34:a3:9e:fb:5f:a6:38:a2:0e:81:4a:
24:da:24:a4:80:52:0f:d1:b8:94:7e:1b:28:f3:b5:
2d:e1:32:90:78:dd:b9:35:eb:27:d1:7d:3d:61:7d:
0d:4a:13:3c:52:52:8e:ad:0e:84:6c:5a:a5:17:56:
19:e4:2b:a3:0a:ff:01:af:ea:71:54:d0:38:74:cc:
bc:85:ab:93:4e:d9:ac:22:69:f9:48:83:2c:e3:f4:
a2:db:19:37:c4:5e:37:68:6f:57:2c:40:f5:40:5c:
2d:d7:ec:06:e2:61:ce:88:0d:8f:21:bd:f3:f2:bd:
fb:a0:a3:3c:7b:1a:f5:c8:cd:e7:71:5f:d8:ae:01:
a6:da:63:9e:b7:94:bd:7b:b1:74:16:7d:9e:51:dc:
0c:d5:1c:79:30:43:3b:67:00:9d:b8:79:65:7f:78:
94:2b:b5:8d:da:7b:f1:64:35:4f:b8:c2:0d:9e:df:
30:c0:14:de:e1:21:0f:73:01:ee:6c:f6:3d:73:91:
4c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:90:33:B6:89:BD:A3:A9:30:56:CE:16:2D:95:EB:16:C0:65:31:F2
X509v3 Authority Key Identifier:
keyid:81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:fe:f5:b4:70:1c:61:0f:d0:88:1a:56:03:00:78:7c:ff:1c:
09:89:89:37:42:1a:3d:47:8e:7d:bc:bb:67:a6:b5:b8:d2:bf:
11:4a:e8:0f:b4:40:3d:a8:d8:9e:87:ed:e4:ed:79:a1:42:9c:
b8:b1:de:72:d5:12:e5:43:68:d7:40:a5:56:08:b4:ab:7f:a5:
0b:08:6c:55:99:69:a1:42:99:37:2c:58:65:8c:3d:27:86:f5:
ff:b8:a6:05:aa:2b:0a:1b:46:a5:ad:64:4e:fe:55:51:f4:64:
e9:67:04:7b:ba:92:d9:0e:3d:b0:e4:e0:86:58:af:ed:57:ec:
44:60:26:69:45:ab:92:4c:25:64:f2:65:88:b8:0f:90:2f:6d:
16:6e:c3:2a:4d:bf:58:b9:04:a1:58:4f:14:d0:e8:30:3c:ea:
3c:69:00:23:bc:1d:9b:a9:b0:7a:6c:0a:a7:fb:a6:9c:52:d3:
b0:33:28:28:48:73:a9:a7:d5:3c:de:f7:2d:8b:b1:98:54:04:
18:77:cf:d6:f6:bc:14:f9:56:6f:a7:1f:d0:b3:00:32:d6:08:
8c:d5:8e:a4:ac:3e:68:cc:fb:8b:11:85:2f:55:a4:3c:57:b9:
2b:3a:b8:7d:b0:87:01:42:5c:fe:5f:56:72:f3:24:43:b4:d7:
38:03:06:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuCTRRL4lY6uuS8NE1ErQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxYTY4ODAxMmMxMjI2NzgxODVmY2ViN2UxMDM3ZjBlMWVk
MTc4NjEwHhcNMjUxMTExMDcwMTI0WhcNMjUxMTEyMDcwMTI0WjAzMTEwLwYDVQQD
Eyg3YTkwMzNiNjg5YmRhM2E5MzA1NmNlMTYyZDk1ZWIxNmMwNjUzMWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4DIkdMyg+dMsqiTxZPeM4pFwFxq6
lsWWQV6v5X0x5Zfn9IczQTir7NimsBSpljmicqL03adWcfqfP5DEX67WNKOe+1+m
OKIOgUok2iSkgFIP0biUfhso87Ut4TKQeN25Nesn0X09YX0NShM8UlKOrQ6EbFql
F1YZ5CujCv8Br+pxVNA4dMy8hauTTtmsImn5SIMs4/Si2xk3xF43aG9XLED1QFwt
1+wG4mHOiA2PIb3z8r37oKM8exr1yM3ncV/YrgGm2mOet5S9e7F0Fn2eUdwM1Rx5
MEM7ZwCduHllf3iUK7WN2nvxZDVPuMINnt8wwBTe4SEPcwHubPY9c5FM+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHqQM7aJvaOpMFbOFi2V6xbAZTHyMB8GA1UdIwQY
MBaAFIGmiAEsEiZ4GF/Ot+EDfw4e0XhhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2FhSUFTd1NKbmdZWDg2MzRRTl9EaDdSZUdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9jN2MyMDctYTNiYS00OWM4LWE4OTQt
MDg0ZDQ3NDhjMzg1LzEvZ2FhSUFTd1NKbmdZWDg2MzRRTl9EaDdSZUdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy9jN2MyMDctYTNiYS00OWM4LWE4OTQtMDg0ZDQ3NDhjMzg1
LzEvZ2FhSUFTd1NKbmdZWDg2MzRRTl9EaDdSZUdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcv71tHAc
YQ/QiBpWAwB4fP8cCYmJN0IaPUeOfby7Z6a1uNK/EUroD7RAPajYnoft5O15oUKc
uLHectUS5UNo10ClVgi0q3+lCwhsVZlpoUKZNyxYZYw9J4b1/7imBaorChtGpa1k
Tv5VUfRk6WcEe7qS2Q49sOTghliv7VfsRGAmaUWrkkwlZPJliLgPkC9tFm7DKk2/
WLkEoVhPFNDoMDzqPGkAI7wdm6mwemwKp/umnFLTsDMoKEhzqafVPN73LYuxmFQE
GHfP1va8FPlWb6cf0LMAMtYIjNWOpKw+aMz7ixGFL1WkPFe5Kzq4fbCHAUJc/l9W
cvMkQ7TXOAMGIA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:24 2025 by rpki-client