Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
File: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft (raw, json)
Hash identifier: dstfxNg5FGUy+ZhwsKNYXll4zbRA27qWp8RRhUr7baA=
Subject key identifier: 12:7B:67:27:F1:8F:DC:40:9E:47:12:FA:D8:D6:02:EE:15:FD:0A:51
Authority key identifier: 82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
Certificate issuer: /CN=827313247c486fe434833c09087a00a900301840
Certificate serial: 019921B10D19642A29B116B3E65D142A52F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
Manifest number: 166E
Signing time: Sun 07 Sep 2025 01:01:15 +0000
Manifest this update: Sun 07 Sep 2025 01:01:15 +0000
Manifest next update: Mon 08 Sep 2025 01:01:15 +0000
Files and hashes: 1: 7G9OAa8ebUxYvLbiABAZAGXs6yI.roa (hash: Q8FJVCv7ZP8KepVRkOgfjY1xOHET+UVMaI0qQvaXpcQ=)
2: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl (hash: 9o7TE2h6L5kahASVUt5tJfPebD8Gsxjlf/TrZH6H7uU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:0d:19:64:2a:29:b1:16:b3:e6:5d:14:2a:52:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827313247c486fe434833c09087a00a900301840
Validity
Not Before: Sep 7 01:01:15 2025 GMT
Not After : Sep 8 01:01:15 2025 GMT
Subject: CN=127b6727f18fdc409e4712fad8d602ee15fd0a51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d7:06:10:20:e6:9c:f3:86:4a:17:a4:11:e8:
bf:08:0c:94:36:99:08:71:0c:c8:89:31:ee:d6:29:
d7:ec:ee:52:b9:2d:ff:95:4d:cc:22:b3:98:18:b8:
14:4a:b9:57:8c:04:bf:e4:99:dc:9a:f7:42:38:f4:
14:93:33:78:c2:00:4e:45:df:7e:ba:d4:67:ad:94:
c5:c0:4e:99:9c:0b:d3:01:88:50:e3:56:4d:ab:fb:
f4:3a:d0:a4:95:e6:02:9b:8c:c2:33:2a:dc:c1:b4:
b3:de:16:21:61:dc:3b:3b:10:e3:35:72:f9:c0:1a:
f0:7a:88:2a:a3:40:32:0b:6f:48:20:d6:d9:cc:24:
12:26:cf:2e:e6:19:23:75:37:a3:76:77:f5:75:c5:
ff:4b:5a:89:75:1f:64:58:10:0c:b5:c9:33:15:5f:
54:12:7d:76:56:b5:7e:ca:71:70:36:8b:e7:26:92:
ba:f9:65:85:6a:00:36:93:00:d4:8d:42:62:a0:fd:
63:f7:77:f1:e9:9c:4e:31:d9:56:84:40:0d:de:e4:
f6:96:0c:73:46:66:1a:f3:65:fd:ad:30:ee:92:1e:
3b:cd:5b:5a:d5:dc:2e:68:8e:72:ca:8e:3e:4c:fa:
67:e3:65:81:f0:88:d0:46:93:9c:60:9c:63:76:bf:
91:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:7B:67:27:F1:8F:DC:40:9E:47:12:FA:D8:D6:02:EE:15:FD:0A:51
X509v3 Authority Key Identifier:
keyid:82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:30:7c:5d:bf:e4:8d:59:e6:db:88:dd:72:52:bf:d3:3c:07:
7a:06:55:08:74:62:ac:9f:3e:c0:df:6d:c1:33:e2:a6:01:61:
89:0d:34:87:84:3b:a2:b3:e2:f2:02:41:a2:e7:cf:e7:4a:92:
34:14:10:8b:81:c2:fa:a8:73:95:77:ce:c1:90:7d:b2:5c:c3:
eb:2c:76:59:b2:33:6e:ef:5e:d2:68:c9:f7:1d:e4:28:6a:69:
bf:3f:58:ca:fe:90:39:09:8d:bf:cc:59:c8:44:0c:03:ac:ce:
b3:df:d8:74:57:0c:f1:a1:e0:6b:8d:dc:73:8d:cd:06:5b:8d:
9c:76:1e:31:df:0c:67:d4:98:89:ea:cf:d2:76:29:f3:ce:86:
4d:57:79:71:e2:06:7d:6f:43:ba:01:cd:34:97:b6:9a:af:4c:
55:29:d3:34:36:1d:82:36:95:1f:a1:73:92:d3:08:51:78:c3:
cd:13:86:2a:fb:bd:3d:ed:15:5f:bc:e2:7e:ae:92:c9:a7:dd:
24:84:b6:4c:30:60:e4:a2:e7:1d:4d:aa:3e:78:03:30:04:b1:
b2:e9:48:35:43:2e:3f:b3:18:a8:66:f9:8f:ad:91:78:37:1d:
1d:f0:1f:7d:eb:a1:62:33:41:ee:f2:6e:25:48:32:e7:71:bb:
4a:36:e6:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsQ0ZZCopsRaz5l0UKlLyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyNzMxMzI0N2M0ODZmZTQzNDgzM2MwOTA4N2EwMGE5MDAz
MDE4NDAwHhcNMjUwOTA3MDEwMTE1WhcNMjUwOTA4MDEwMTE1WjAzMTEwLwYDVQQD
EygxMjdiNjcyN2YxOGZkYzQwOWU0NzEyZmFkOGQ2MDJlZTE1ZmQwYTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0dcGECDmnPOGShekEei/CAyUNpkI
cQzIiTHu1inX7O5SuS3/lU3MIrOYGLgUSrlXjAS/5JncmvdCOPQUkzN4wgBORd9+
utRnrZTFwE6ZnAvTAYhQ41ZNq/v0OtCkleYCm4zCMyrcwbSz3hYhYdw7OxDjNXL5
wBrweogqo0AyC29IINbZzCQSJs8u5hkjdTejdnf1dcX/S1qJdR9kWBAMtckzFV9U
En12VrV+ynFwNovnJpK6+WWFagA2kwDUjUJioP1j93fx6ZxOMdlWhEAN3uT2lgxz
RmYa82X9rTDukh47zVta1dwuaI5yyo4+TPpn42WB8IjQRpOcYJxjdr+RKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBJ7Zyfxj9xAnkcS+tjWAu4V/QpRMB8GA1UdIwQY
MBaAFIJzEyR8SG/kNIM8CQh6AKkAMBhAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC84NWIwNDMtMzZkOC00MTM2LTk4MzUt
OGQ0NzcyNTk4MzliLzEvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC84NWIwNDMtMzZkOC00MTM2LTk4MzUtOGQ0NzcyNTk4Mzli
LzEvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgjB8Xb/k
jVnm24jdclK/0zwHegZVCHRirJ8+wN9twTPipgFhiQ00h4Q7orPi8gJBoufP50qS
NBQQi4HC+qhzlXfOwZB9slzD6yx2WbIzbu9e0mjJ9x3kKGppvz9Yyv6QOQmNv8xZ
yEQMA6zOs9/YdFcM8aHga43cc43NBluNnHYeMd8MZ9SYierP0nYp886GTVd5ceIG
fW9DugHNNJe2mq9MVSnTNDYdgjaVH6FzktMIUXjDzROGKvu9Pe0VX7zifq6Syafd
JIS2TDBg5KLnHU2qPngDMASxsulINUMuP7MYqGb5j62ReDcdHfAffeuhYjNB7vJu
JUgy53G7SjbmqA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:23:11 2025 by rpki-client