Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft
File: gMez3pa5HtxunIXZ1aZoQZIDtfU.mft (raw, json)
Hash identifier: 2N822iw86mFB5fzXqVV2Xe4E0mle+ys0Mu02RPjh4fU=
Subject key identifier: 17:F1:0B:17:35:85:E7:7E:9D:38:FD:93:82:A1:1F:E8:BB:A5:C5:80
Authority key identifier: 80:C7:B3:DE:96:B9:1E:DC:6E:9C:85:D9:D5:A6:68:41:92:03:B5:F5
Certificate issuer: /CN=80c7b3de96b91edc6e9c85d9d5a668419203b5f5
Certificate serial: 019A1ACFDABFAAF6B4FCBB25BCF9DAA6F6C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft
Manifest number: 04CD
Signing time: Sat 25 Oct 2025 10:00:20 +0000
Manifest this update: Sat 25 Oct 2025 10:00:20 +0000
Manifest next update: Sun 26 Oct 2025 10:00:20 +0000
Files and hashes: 1: gMez3pa5HtxunIXZ1aZoQZIDtfU.crl (hash: sDrawc4jho0HzQl3D8eea9JIilseUkDfnQGLZPMpbC4=)
2: xVzCoBRTedY1vT9C7xN3NLO-WeY.roa (hash: ystLlP8JPbF13VOw8QCBVAQ5cldgA4v4fXVvBu8BWIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 10:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1a:cf:da:bf:aa:f6:b4:fc:bb:25:bc:f9:da:a6:f6:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80c7b3de96b91edc6e9c85d9d5a668419203b5f5
Validity
Not Before: Oct 25 10:00:20 2025 GMT
Not After : Oct 26 10:00:20 2025 GMT
Subject: CN=17f10b173585e77e9d38fd9382a11fe8bba5c580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ae:65:d2:61:5a:16:b4:2b:47:95:f2:d4:bd:
03:d7:fe:8d:6b:e8:5b:9d:4c:9b:ed:e6:9d:80:1b:
88:fd:b8:d7:55:ed:86:51:76:da:72:f5:1d:82:bc:
5a:59:7f:91:74:2d:6b:3f:06:2c:64:dd:0b:44:97:
18:e3:e7:25:dc:86:67:ff:68:f3:2b:8f:e5:8c:84:
7a:87:7d:09:1c:6b:3f:b4:3c:df:40:0c:6a:84:60:
a6:98:73:5b:32:30:37:7d:54:b0:bc:97:f2:c4:d2:
ae:ff:17:a6:38:16:79:b5:62:e6:18:aa:2e:09:19:
a9:b4:53:7c:22:a4:22:9e:07:3c:1c:b2:c2:60:65:
3f:c6:be:a1:40:f6:0b:d6:b2:40:87:d2:46:35:30:
be:c5:8b:bb:d4:1a:09:8f:78:51:d0:5c:ff:91:3f:
95:6e:b7:f5:ae:f0:56:4f:a4:78:e3:e4:ca:d4:6f:
06:52:38:c6:36:0b:50:8e:54:3b:ad:c4:47:41:b0:
83:13:7c:d1:0a:d1:af:36:48:e5:06:ec:97:a3:bc:
bc:47:13:3c:06:e5:32:06:68:8d:40:0d:52:48:ea:
86:68:0b:ea:79:e8:ed:c5:e6:a6:f8:33:34:51:8b:
49:4d:88:98:d7:41:a9:fc:a9:04:96:ea:b4:19:5e:
95:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:F1:0B:17:35:85:E7:7E:9D:38:FD:93:82:A1:1F:E8:BB:A5:C5:80
X509v3 Authority Key Identifier:
keyid:80:C7:B3:DE:96:B9:1E:DC:6E:9C:85:D9:D5:A6:68:41:92:03:B5:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:39:7f:84:24:1e:fa:4b:e1:f8:a5:50:fa:b9:67:7f:b5:96:
eb:fb:b6:6c:f7:f5:65:fa:14:42:b6:8c:49:80:d5:59:6b:d0:
d2:de:57:ae:ac:12:2b:98:1f:0b:02:c7:3a:2e:c9:81:65:2a:
23:ab:31:e0:7d:f7:5e:f4:f4:b8:36:bf:ec:93:03:2d:86:7f:
07:83:02:26:a0:29:32:d1:5d:75:ea:32:78:55:14:9e:1f:59:
9f:96:56:48:35:3a:28:9e:28:7d:c3:12:f7:71:f1:95:aa:10:
5f:b7:f0:da:10:a4:a5:cc:f5:41:ab:94:77:b5:05:6f:7d:9c:
20:65:2b:c5:25:28:9f:59:18:07:ae:43:a5:ba:1d:55:92:6e:
f6:87:e8:c7:42:47:ae:b1:e8:da:25:b2:2d:46:f5:8d:3a:e6:
0f:10:24:ea:54:71:d6:d6:37:9d:c6:7b:d7:9b:ab:e8:56:e1:
f0:b2:c1:36:89:01:d0:9b:fc:30:5d:36:39:94:26:7f:95:2e:
70:7f:d1:6a:13:13:f0:f9:cd:22:6f:81:0d:88:98:0a:d1:ed:
58:3b:5e:76:a5:68:d0:6d:66:33:8d:4a:13:eb:16:2f:0c:00:
96:6a:15:fe:34:55:33:42:a7:ef:80:d7:be:8e:60:5e:88:02:
3e:63:69:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 19:59:40 2025 by rpki-client