Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
File: gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft (raw, json)
Hash identifier: oOj3RAhSGmDBx4Oa15TwvlayIVfJYxYNqbiZShmm0DY=
Subject key identifier: CD:EF:97:E4:CA:A5:66:34:9D:C2:E5:BB:6D:B5:09:EB:B5:30:6E:D2
Authority key identifier: 80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15
Certificate issuer: /CN=80c028ad0e60d7ea8914b13c3a53d8f089160315
Certificate serial: 019921B08AC335B4CD1F4B3FFB9D1B79979A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
Manifest number: 0D82
Signing time: Sun 07 Sep 2025 01:00:41 +0000
Manifest this update: Sun 07 Sep 2025 01:00:41 +0000
Manifest next update: Mon 08 Sep 2025 01:00:41 +0000
Files and hashes: 1: gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl (hash: I677gOcIpV/46MpKi3HaFelvvdDo9ip3TpkQMG8clyA=)
2: kT72_rs6FeeCr3dDSGrEzG7Qc-Y.roa (hash: aU4YilQ/j5WNVY1Q5u9ZzL1FCZbvOH4ANv0D/Jw9+To=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:8a:c3:35:b4:cd:1f:4b:3f:fb:9d:1b:79:97:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80c028ad0e60d7ea8914b13c3a53d8f089160315
Validity
Not Before: Sep 7 01:00:41 2025 GMT
Not After : Sep 8 01:00:41 2025 GMT
Subject: CN=cdef97e4caa566349dc2e5bb6db509ebb5306ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:86:bb:d8:9a:2e:40:c2:1c:0b:90:2c:4e:eb:
5c:dc:41:2a:14:08:0b:5c:46:56:a4:4f:5d:5a:de:
16:72:7f:96:9a:c0:0f:19:29:4d:03:b7:f9:ba:f1:
1d:a5:c0:d0:eb:1a:25:27:97:9f:27:19:68:51:de:
3b:07:f1:18:0c:2e:cf:5c:3d:76:ff:89:b6:e8:74:
24:ae:01:b5:76:03:7a:9d:a7:ed:6b:63:85:d0:a6:
da:cd:99:37:89:f5:cf:30:3b:e7:0b:da:a0:57:10:
f2:bd:19:4d:0d:16:ed:a0:e0:8e:1a:c5:ad:aa:88:
67:bf:c6:17:0f:d2:ec:c1:81:8a:b6:b9:f5:85:23:
f7:e1:dc:a4:d5:0f:bf:55:70:3a:29:b4:6d:fc:1d:
65:0c:a3:70:1f:95:90:44:6f:ac:eb:d0:c9:c5:38:
81:e7:bb:9a:cf:e3:57:9a:83:9e:2a:9f:2c:95:3b:
7b:ed:ae:17:6e:b4:f9:c0:05:93:6a:3d:ec:59:00:
1f:a8:11:9d:f9:f5:1b:4f:7c:26:fb:57:cc:e3:e8:
45:90:b1:28:55:ac:ec:ad:4b:15:e5:8b:8f:31:aa:
1d:98:9c:24:f0:f7:57:10:5e:83:64:94:28:80:c9:
cc:59:5d:10:fd:18:22:c1:ad:eb:a7:6b:d5:fe:d1:
ea:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:EF:97:E4:CA:A5:66:34:9D:C2:E5:BB:6D:B5:09:EB:B5:30:6E:D2
X509v3 Authority Key Identifier:
keyid:80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:1f:1e:53:77:bd:0b:a5:f9:a5:af:2b:2a:3d:26:18:65:58:
d0:78:38:33:87:60:75:19:59:67:e0:a4:76:76:62:48:23:97:
94:2a:62:44:c6:f0:f8:c2:90:a3:dc:d4:9a:cd:8b:cf:cd:71:
56:c8:d3:d0:2f:fc:f3:cd:47:81:ba:65:e0:13:eb:60:d6:c7:
b9:d2:32:98:f6:b2:ff:93:a6:29:cc:93:8d:2a:c2:56:f2:9e:
f2:8f:e2:3a:9b:c5:81:c9:fe:9c:ee:79:21:8e:78:64:d4:f2:
41:8c:34:8d:34:28:61:ea:91:20:9e:e2:73:04:5e:f7:b5:8f:
a3:8f:fb:43:38:d5:93:4e:3a:9c:97:d8:d5:f2:16:ee:59:19:
91:b5:a7:ea:fe:f3:ae:aa:a7:1b:95:21:d5:59:bd:c1:36:f6:
81:02:58:62:a0:b8:68:3d:8d:31:00:63:00:a7:35:69:80:67:
14:80:a9:81:fa:0e:4c:53:c7:47:28:ac:3d:e1:ab:dd:b7:f2:
92:74:25:4d:71:8f:41:df:a1:3f:78:87:b3:16:5f:e9:6d:75:
e1:ea:6c:b2:8a:ce:22:37:f7:36:a3:df:76:8d:8a:af:8f:44:
1b:43:b6:5a:26:bb:47:2f:60:51:fb:30:87:c4:19:a4:ad:cb:
df:82:44:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:49:52 2025 by rpki-client