Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.mft
File: gnMxRuPp1uEVRjF_dSGeogLF-S0.mft (raw, json)
Hash identifier: yzeGOwh78dVPV4tgxli80BCSGE5j7gEKP+ObHjGbTtQ=
Subject key identifier: F5:85:83:EC:93:F0:26:20:D9:63:7C:3F:9E:85:7B:56:82:ED:91:4E
Authority key identifier: 82:73:31:46:E3:E9:D6:E1:15:46:31:7F:75:21:9E:A2:02:C5:F9:2D
Certificate issuer: /CN=82733146e3e9d6e11546317f75219ea202c5f92d
Certificate serial: 019937CAA959A751A5340EB8ABEB0527394E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMxRuPp1uEVRjF_dSGeogLF-S0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.mft
Manifest number: 0628
Signing time: Thu 11 Sep 2025 08:00:52 +0000
Manifest this update: Thu 11 Sep 2025 08:00:52 +0000
Manifest next update: Fri 12 Sep 2025 08:00:52 +0000
Files and hashes: 1: Ui37pni8yZO_R93Vyy6g6ty1CZs.roa (hash: KVFAYIQrtJyTceCsFbCiblO1P3leUs2Y5nLFzfChjkg=)
2: gnMxRuPp1uEVRjF_dSGeogLF-S0.crl (hash: qU6VZaxV4m90m/8o0gjbov/bnm63xrwiDYqvMnlrMCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gnMxRuPp1uEVRjF_dSGeogLF-S0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 08:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:37:ca:a9:59:a7:51:a5:34:0e:b8:ab:eb:05:27:39:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82733146e3e9d6e11546317f75219ea202c5f92d
Validity
Not Before: Sep 11 08:00:52 2025 GMT
Not After : Sep 12 08:00:52 2025 GMT
Subject: CN=f58583ec93f02620d9637c3f9e857b5682ed914e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:81:8b:69:8c:ee:4d:d3:15:33:12:e0:d2:0c:
ff:95:a6:2d:b9:17:c9:5c:6d:31:9a:c8:76:31:4f:
97:c9:75:ba:09:c8:f4:9d:65:3d:00:0a:9f:01:80:
31:d1:b3:2c:5f:0c:76:66:01:da:e0:6c:f6:08:7a:
e6:bd:a0:70:31:a8:ab:57:57:b2:92:65:47:83:32:
e0:4b:ab:d3:2b:f1:09:03:91:75:ab:e9:08:01:dd:
6e:30:58:ee:ec:0a:1a:1e:c7:a7:b1:5e:a6:5e:61:
47:c4:66:77:fd:03:5b:36:52:87:a8:0a:48:db:19:
ee:43:ec:62:87:5a:cb:f2:61:d5:e7:b3:95:17:a7:
1c:8f:d7:fb:7a:ad:f6:2d:a4:88:cc:4f:dd:b4:ee:
8f:03:c0:67:ee:1d:5d:07:76:07:08:3b:84:97:a9:
6d:cf:80:a4:d0:6b:6a:8d:c7:15:4a:c7:5d:ea:33:
79:81:43:37:87:7f:6d:35:57:23:25:60:70:0a:4b:
94:31:96:1b:7b:8f:c1:84:a7:ae:2e:de:03:82:63:
43:00:98:cd:3c:78:e9:0b:1e:98:47:69:91:71:d6:
a4:54:cc:cc:d6:4f:5d:28:51:db:05:c3:19:f0:c2:
88:41:c4:6a:79:71:66:d4:b8:29:b6:e0:95:6b:b2:
86:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:85:83:EC:93:F0:26:20:D9:63:7C:3F:9E:85:7B:56:82:ED:91:4E
X509v3 Authority Key Identifier:
keyid:82:73:31:46:E3:E9:D6:E1:15:46:31:7F:75:21:9E:A2:02:C5:F9:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMxRuPp1uEVRjF_dSGeogLF-S0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:43:c0:08:7d:76:07:ad:89:29:61:83:67:b2:7d:d6:23:18:
b0:1e:bc:18:7a:72:a3:4f:19:0a:5c:fb:f3:35:93:d2:fb:b5:
22:8d:b9:95:3b:e4:a1:78:af:28:b5:b2:66:48:ce:70:4a:b4:
fc:70:3b:b6:d4:75:53:58:fe:da:b0:a6:e1:37:2d:8b:58:57:
14:7c:19:e1:47:18:09:d6:10:28:d6:9c:23:e9:2d:0f:3d:11:
67:a1:03:df:20:5b:0a:22:b1:d3:72:30:cc:e5:e0:33:32:f5:
9a:17:e8:2a:71:ea:bf:8b:43:e5:f5:1a:ef:eb:5d:9e:1e:97:
1d:e8:9e:2f:85:77:36:4f:2b:d4:ec:f4:06:7a:fc:c8:73:6c:
c2:34:d4:70:fe:14:82:67:6c:90:c8:60:80:94:17:f3:96:13:
00:51:fa:44:6b:31:f9:3b:ec:4b:e0:ff:81:66:36:0b:e3:87:
f1:75:7c:2f:86:a9:ca:d2:8f:84:e7:1b:da:2a:51:f8:34:b4:
61:77:bf:96:58:85:dd:f7:9a:b5:a4:4f:9c:7f:ed:2f:6b:f7:
c0:3a:1c:3e:8c:b5:d1:ba:69:b2:1e:66:cd:03:4c:e8:da:b8:
a9:7c:6d:c9:78:4d:b3:c3:65:51:76:ce:f2:e9:12:71:b2:25:
89:c7:d8:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 16:39:12 2025 by rpki-client