Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft
File: gMez3pa5HtxunIXZ1aZoQZIDtfU.mft (raw, json)
Hash identifier: qqpldF+BfLlmoG9JpJnPU5A7WH9mOWMIXeklVEcVa9s=
Subject key identifier: 6B:C5:4A:63:33:10:01:79:72:21:F7:03:57:FF:C6:05:0B:84:5A:93
Authority key identifier: 80:C7:B3:DE:96:B9:1E:DC:6E:9C:85:D9:D5:A6:68:41:92:03:B5:F5
Certificate issuer: /CN=80c7b3de96b91edc6e9c85d9d5a668419203b5f5
Certificate serial: 01992B59AD337FA77A12870CF988A1FDCDDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft
Manifest number: 0451
Signing time: Mon 08 Sep 2025 22:02:01 +0000
Manifest this update: Mon 08 Sep 2025 22:02:01 +0000
Manifest next update: Tue 09 Sep 2025 22:02:01 +0000
Files and hashes: 1: gMez3pa5HtxunIXZ1aZoQZIDtfU.crl (hash: Ocf84T8Igxnu6KWhOw/nDnC9LoD2uCTQ8GvNDctQPdg=)
2: xVzCoBRTedY1vT9C7xN3NLO-WeY.roa (hash: ystLlP8JPbF13VOw8QCBVAQ5cldgA4v4fXVvBu8BWIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 22:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2b:59:ad:33:7f:a7:7a:12:87:0c:f9:88:a1:fd:cd:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80c7b3de96b91edc6e9c85d9d5a668419203b5f5
Validity
Not Before: Sep 8 22:02:01 2025 GMT
Not After : Sep 9 22:02:01 2025 GMT
Subject: CN=6bc54a63331001797221f70357ffc6050b845a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:18:87:63:66:bc:c4:28:50:74:93:a4:f7:ae:
4e:e7:ef:b9:56:d6:19:16:c1:1c:8d:0a:b4:6f:12:
1a:f6:1e:bb:6c:f3:0d:29:64:44:ad:ed:19:0a:a5:
ba:85:af:13:05:2a:8a:e6:a6:3f:0a:45:fb:82:f3:
0c:25:33:b1:18:c4:92:f8:d3:79:2e:47:78:23:a3:
67:f3:a8:93:6e:dc:01:fc:4d:2a:54:df:01:1d:8d:
1f:2e:37:e5:8c:85:06:91:e5:3f:ed:ed:6f:33:aa:
c8:ac:dc:9b:d1:de:0f:86:7f:69:7b:e2:17:72:b1:
52:19:b6:c1:a3:73:fd:db:d9:cf:e5:0c:5c:8a:68:
d1:f0:d0:55:22:09:16:7b:fa:87:3e:5e:c4:3c:ac:
2d:d5:20:ce:19:89:66:5a:f6:fe:1e:30:3d:26:60:
f2:87:c3:5d:56:97:63:e0:ab:d5:9b:d0:7f:bf:62:
78:6b:7d:71:4a:39:0b:eb:65:6e:12:68:ae:16:ad:
7e:8b:4d:63:4e:d9:97:b1:75:ee:7e:c1:ca:3b:fe:
9c:81:2a:07:2e:34:36:f6:11:b6:ce:74:7a:24:ae:
46:17:b5:ea:2a:37:bd:bb:f7:ec:e2:88:fc:25:cd:
78:d6:62:d3:2a:b0:0a:bd:4f:bc:d0:95:34:c0:fe:
fa:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:C5:4A:63:33:10:01:79:72:21:F7:03:57:FF:C6:05:0B:84:5A:93
X509v3 Authority Key Identifier:
keyid:80:C7:B3:DE:96:B9:1E:DC:6E:9C:85:D9:D5:A6:68:41:92:03:B5:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:54:f5:80:19:47:f3:fd:b6:44:56:b8:d2:46:f6:9a:2f:5b:
a1:49:f1:dd:99:37:c4:24:26:3f:c4:2b:a1:b2:93:15:ff:7b:
46:ac:9d:a2:1c:e8:a6:8e:5f:60:41:76:da:c7:b1:55:0c:21:
51:f1:78:3e:98:13:d9:d2:a0:f2:6f:98:df:6f:88:04:00:8e:
31:d2:9f:d4:d3:1d:bb:df:77:84:6d:01:15:bc:d8:c0:1a:fe:
ba:d9:9c:c2:76:4f:ba:b7:4e:7f:3c:44:ab:a8:8f:8c:16:9d:
22:be:d6:60:e4:7b:b6:51:a5:50:38:c8:74:e7:8f:59:45:64:
08:ef:43:69:0f:fa:ed:74:0c:a8:d9:f8:0b:d4:be:ed:1c:c3:
77:9c:54:34:5e:de:3d:86:c6:6a:7d:41:8f:71:cc:3a:83:84:
21:f7:98:a1:87:e9:b5:8a:8d:5f:5b:7c:96:b7:d4:69:14:50:
ca:e1:95:ef:83:a4:6c:0b:c9:8f:07:ad:40:32:41:d4:f6:39:
77:48:f4:35:a3:24:03:70:20:04:e6:b7:73:fa:b4:58:eb:68:
31:f6:f8:1f:39:88:03:ea:e7:29:ef:09:f4:4a:6e:f9:b2:1c:
58:77:5d:f8:0d:d1:76:a0:fd:f6:0d:ed:26:39:d4:ab:f1:2b:
e0:7b:36:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkrWa0zf6d6EocM+Yih/c3dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwYzdiM2RlOTZiOTFlZGM2ZTljODVkOWQ1YTY2ODQxOTIw
M2I1ZjUwHhcNMjUwOTA4MjIwMjAxWhcNMjUwOTA5MjIwMjAxWjAzMTEwLwYDVQQD
Eyg2YmM1NGE2MzMzMTAwMTc5NzIyMWY3MDM1N2ZmYzYwNTBiODQ1YTkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArRiHY2a8xChQdJOk965O5++5VtYZ
FsEcjQq0bxIa9h67bPMNKWREre0ZCqW6ha8TBSqK5qY/CkX7gvMMJTOxGMSS+NN5
Lkd4I6Nn86iTbtwB/E0qVN8BHY0fLjfljIUGkeU/7e1vM6rIrNyb0d4Phn9pe+IX
crFSGbbBo3P929nP5QxcimjR8NBVIgkWe/qHPl7EPKwt1SDOGYlmWvb+HjA9JmDy
h8NdVpdj4KvVm9B/v2J4a31xSjkL62VuEmiuFq1+i01jTtmXsXXufsHKO/6cgSoH
LjQ29hG2znR6JK5GF7XqKje9u/fs4oj8Jc141mLTKrAKvU+80JU0wP76TwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGvFSmMzEAF5ciH3A1f/xgULhFqTMB8GA1UdIwQY
MBaAFIDHs96WuR7cbpyF2dWmaEGSA7X1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9jMzAxZmItMzE3NC00NWMzLWE0NDct
YTdmY2ZiNTI5ZGM3LzEvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC9jMzAxZmItMzE3NC00NWMzLWE0NDctYTdmY2ZiNTI5ZGM3
LzEvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhlT1gBlH
8/22RFa40kb2mi9boUnx3Zk3xCQmP8QrobKTFf97Rqydohzopo5fYEF22sexVQwh
UfF4PpgT2dKg8m+Y32+IBACOMdKf1NMdu993hG0BFbzYwBr+utmcwnZPurdOfzxE
q6iPjBadIr7WYOR7tlGlUDjIdOePWUVkCO9DaQ/67XQMqNn4C9S+7RzDd5xUNF7e
PYbGan1Bj3HMOoOEIfeYoYfptYqNX1t8lrfUaRRQyuGV74OkbAvJjwetQDJB1PY5
d0j0NaMkA3AgBOa3c/q0WOtoMfb4HzmIA+rnKe8J9Epu+bIcWHdd+A3RdqD99g3t
JjnUq/Er4Hs2og==
-----END CERTIFICATE-----
Generated at Tue Sep 9 01:28:50 2025 by rpki-client