Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
File: gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft (raw, json)
Hash identifier: MvdBVJT6jxW/QNOoyY5KTn6TnB/BfLlCVjR7fTITQwc=
Subject key identifier: 69:87:05:F2:14:31:E3:42:54:94:E0:B8:59:D1:C8:86:31:AF:23:BC
Authority key identifier: 80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15
Certificate issuer: /CN=80c028ad0e60d7ea8914b13c3a53d8f089160315
Certificate serial: 019A71B7B435164C93C3CAB2C4DDDBB2910A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
Manifest number: 0E30
Signing time: Tue 11 Nov 2025 07:00:55 +0000
Manifest this update: Tue 11 Nov 2025 07:00:55 +0000
Manifest next update: Wed 12 Nov 2025 07:00:55 +0000
Files and hashes: 1: gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl (hash: vlqYAIFSJCnk0evRx0UNJDdJVlZqBhL/5mgsWGtOL9A=)
2: kT72_rs6FeeCr3dDSGrEzG7Qc-Y.roa (hash: aU4YilQ/j5WNVY1Q5u9ZzL1FCZbvOH4ANv0D/Jw9+To=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:b4:35:16:4c:93:c3:ca:b2:c4:dd:db:b2:91:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80c028ad0e60d7ea8914b13c3a53d8f089160315
Validity
Not Before: Nov 11 07:00:55 2025 GMT
Not After : Nov 12 07:00:55 2025 GMT
Subject: CN=698705f21431e3425494e0b859d1c88631af23bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c8:1a:44:9b:38:a8:8f:81:0f:2a:0c:6a:c5:
c6:4a:01:a2:02:cd:ef:5a:5b:d1:a4:6a:a9:54:62:
f4:3b:f6:89:b0:09:08:20:bb:d6:0b:09:5e:c5:b9:
7b:12:02:69:86:ce:9c:a0:c2:5e:7e:0b:14:c9:55:
a6:ca:97:89:c1:5a:cd:a3:03:6f:4d:fe:c8:b1:d7:
08:ed:bd:de:c5:f8:d0:dc:08:bc:d7:2d:4a:29:1e:
d8:ca:99:66:32:56:28:ba:27:90:6c:a2:41:2e:6f:
de:42:85:27:ab:c5:2a:20:d5:66:9f:8f:37:d4:c5:
b5:d3:66:1b:1a:fc:27:9c:98:2a:de:33:c2:7e:f5:
8e:42:4e:87:7d:91:d1:10:aa:69:70:a9:a7:7d:3b:
2b:ee:4c:ca:0f:69:19:49:f3:10:f9:8b:a5:ee:91:
a4:23:4b:d7:df:b4:9f:62:25:e9:58:0d:b7:3a:46:
af:c6:9a:10:3b:31:1d:90:cf:a8:eb:dd:05:3b:77:
e4:b3:50:77:86:aa:b6:85:06:01:b3:c8:ac:2b:87:
e4:16:7d:46:08:df:f3:e2:31:06:c1:ba:e7:56:64:
c1:a7:e5:71:db:af:6e:5a:f7:5a:f8:71:4e:73:18:
59:0d:ed:06:8d:70:7a:9c:70:f1:bf:34:7c:1c:cf:
37:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:87:05:F2:14:31:E3:42:54:94:E0:B8:59:D1:C8:86:31:AF:23:BC
X509v3 Authority Key Identifier:
keyid:80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:c0:80:dc:54:96:88:d0:f3:13:fa:22:24:0b:52:df:40:7a:
d9:f5:fa:19:66:0d:18:a2:58:98:68:4b:c1:67:4c:29:9f:0e:
04:76:a2:7a:7f:ad:2f:de:ac:56:5a:16:54:e7:08:48:45:fe:
90:8d:3f:d9:12:09:89:f5:be:34:84:ba:8b:f9:10:ad:e0:26:
4a:f0:74:ea:23:9e:b9:4e:f7:e1:2f:fe:34:33:e2:dd:31:29:
af:b2:0e:bf:17:20:c8:79:5e:54:93:b6:7c:4d:8b:ca:e1:e6:
07:07:f1:3f:10:4e:23:fc:12:d8:0d:c2:63:21:72:db:af:38:
84:92:ab:fa:85:45:54:5b:47:bb:10:2f:0f:75:b9:1c:c0:56:
e8:34:99:3b:a5:9e:20:19:8b:49:45:eb:af:d0:19:18:de:e6:
07:36:7e:03:d7:0d:85:fa:22:49:2b:58:fd:2f:44:42:45:4e:
70:77:9c:a9:f0:c5:a1:78:a6:fc:8e:ca:bb:c2:70:aa:aa:b9:
ba:57:01:2b:cc:8e:47:98:c7:f3:ec:f3:2c:ef:71:ad:4b:79:
94:23:71:cb:1c:0c:d4:e1:42:ae:e2:88:92:5e:1f:06:ef:2d:
e6:76:08:c0:70:82:4d:d7:cd:18:ef:02:f5:03:3f:c5:0e:49:
52:af:56:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:43:19 2025 by rpki-client