Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
File: 32GikiI62a68itgsKlZHX72XqDQ.mft (raw, json)
Hash identifier: kyVbbF1BJ7/bYox4BMk8rkh5y0fFc6hHapsIgQDnDQg=
Subject key identifier: 82:D3:01:89:26:A7:B7:8A:7B:F6:40:C4:2E:22:F3:6F:A9:70:95:48
Authority key identifier: DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
Certificate issuer: /CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Certificate serial: 019A258A67EA2419EABBDEE3A04B11180833
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
Manifest number: 0DA6
Signing time: Mon 27 Oct 2025 12:00:18 +0000
Manifest this update: Mon 27 Oct 2025 12:00:18 +0000
Manifest next update: Tue 28 Oct 2025 12:00:18 +0000
Files and hashes: 1: 32GikiI62a68itgsKlZHX72XqDQ.crl (hash: V6BgXHNxHOICz6usUClJXldp2TnFW1v9Kwzskh7GsU4=)
2: DmQguxgVyJ_d0tpi3KUPtRcdGUQ.roa (hash: OiuAWrEvvfbOYm4huTJvJrvDJABO3FsTpYDNXs6sb+s=)
3: aI06tjVZeZrIS1TA5LHHtgH2TfE.roa (hash: LKF1KEnQy5/5rD4HRU7tZBGEwLV0sJ0zLyAcVF0BY1c=)
4: gCOrJJaf7HO535LCuEoI7vxf65A.roa (hash: 7Nbxw9zLeIaRzeX3DJv4MIaTHvVYcSTc1CbOKxR59lQ=)
5: k6eyynVladw6I8I9j1dsAe95OA8.roa (hash: A0AAtMX//zpiq0We38ivcj7YmnJWOeaOBnQnV51DCG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 08:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:8a:67:ea:24:19:ea:bb:de:e3:a0:4b:11:18:08:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Validity
Not Before: Oct 27 12:00:18 2025 GMT
Not After : Oct 28 12:00:18 2025 GMT
Subject: CN=82d3018926a7b78a7bf640c42e22f36fa9709548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:22:12:9b:78:6d:b7:b7:0a:55:6f:03:cb:28:
6f:76:3b:1d:0c:75:43:4a:48:a6:c1:be:3f:c5:3a:
da:a6:6e:72:f6:58:3a:fc:42:55:2e:3e:96:f3:fa:
a9:87:ae:2f:9b:ee:14:e6:e5:2b:a6:95:45:0d:83:
f4:5b:51:18:7b:cd:57:19:9c:18:f4:be:2b:5a:7e:
a2:55:bf:32:be:e8:a5:b2:da:09:83:4f:37:03:72:
3d:cf:83:31:87:cb:a4:8d:f5:0f:17:9e:40:21:28:
39:6d:df:10:45:89:7a:59:bb:83:7e:4c:56:62:42:
ef:fe:3e:eb:b5:1a:27:a2:fd:dc:f3:44:f5:69:a1:
df:00:bb:26:ef:09:38:10:b4:d6:d4:d6:b3:c9:97:
40:9e:95:48:24:74:2b:c4:04:2f:47:bf:4c:c4:81:
6f:bc:99:3f:4e:bd:2f:bb:1a:12:b7:dd:d1:79:df:
11:ff:20:41:d6:24:18:3c:64:9b:ec:88:29:9e:5e:
2a:ac:1e:b4:db:b7:bb:b5:f7:80:b2:b8:79:61:91:
ef:f4:ac:d0:db:49:ec:f6:f4:30:bb:97:66:b8:10:
44:7a:2a:85:64:97:5b:9f:d6:60:d7:7b:d8:23:ef:
1d:05:1d:c6:df:17:7f:62:b0:5d:42:ab:4e:32:74:
e3:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D3:01:89:26:A7:B7:8A:7B:F6:40:C4:2E:22:F3:6F:A9:70:95:48
X509v3 Authority Key Identifier:
keyid:DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:9a:99:ff:8f:05:c7:36:3b:0a:0a:66:67:d0:a4:93:d5:8a:
91:20:9f:7c:aa:b1:d2:19:d1:3e:61:0a:cd:37:50:e1:9a:4c:
f0:f8:b6:e9:06:75:ae:c3:5f:09:0a:85:a0:97:b1:f4:f7:fd:
d8:67:63:60:95:db:ce:cc:0b:80:bf:70:b9:4e:d5:89:39:25:
f9:cc:64:d7:76:fe:17:70:6b:17:f2:70:82:36:07:1f:e5:69:
92:57:45:38:0c:40:6c:32:0f:ec:95:f0:5d:a9:10:28:59:64:
6d:a8:c3:87:42:59:cf:4f:f9:f5:9d:d2:7e:e4:3e:03:a7:5b:
4f:06:1f:12:cb:29:83:5f:e2:a0:d6:2d:83:c4:87:7c:fb:cb:
83:0f:5a:d5:c5:2a:c9:10:b7:b4:f3:b2:0f:51:2d:01:bf:2c:
3f:c7:63:41:bf:fd:77:2b:ee:58:08:9e:f2:c0:c8:1b:47:0c:
2e:a5:48:06:c5:95:9f:50:b7:87:41:e9:c9:89:ee:1c:25:53:
f4:11:13:ea:42:67:54:99:34:96:56:83:88:37:58:e0:ce:9e:
bb:8b:8c:5a:ea:98:be:b8:29:78:f0:19:ac:33:6f:52:c3:eb:
8b:84:d1:fe:ce:b2:9a:fd:17:35:d2:98:e3:27:9c:46:20:5a:
f2:bf:b9:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 14:17:11 2025 by rpki-client