Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
File: gh9un_H7vyH2QToTfnNn3YqMA1w.mft (raw, json)
Hash identifier: Ec1QpYH1hi+/9t2l/6V3s1b8CE+9G6aN85FVvzLInRU=
Subject key identifier: DD:5F:97:06:74:11:27:DD:E2:88:2D:12:09:E2:FB:D2:08:38:8F:3D
Authority key identifier: 82:1F:6E:9F:F1:FB:BF:21:F6:41:3A:13:7E:73:67:DD:8A:8C:03:5C
Certificate issuer: /CN=821f6e9ff1fbbf21f6413a137e7367dd8a8c035c
Certificate serial: 019A733888F3DB1B683ADAA30BBAB38BD4EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
Manifest number: 0F62
Signing time: Tue 11 Nov 2025 14:01:16 +0000
Manifest this update: Tue 11 Nov 2025 14:01:16 +0000
Manifest next update: Wed 12 Nov 2025 14:01:16 +0000
Files and hashes: 1: LGI_BMqz48rF1CAQFBrnzf381U0.roa (hash: eJvU6iSIuiB2ZVQ2ar/OXbcHw5p8L+QuWzmrOM6M7qg=)
2: gh9un_H7vyH2QToTfnNn3YqMA1w.crl (hash: zE0RHBTlSlENlR2oK+ODlv953+2CblPVZl5gI2v7En8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:38:88:f3:db:1b:68:3a:da:a3:0b:ba:b3:8b:d4:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821f6e9ff1fbbf21f6413a137e7367dd8a8c035c
Validity
Not Before: Nov 11 14:01:16 2025 GMT
Not After : Nov 12 14:01:16 2025 GMT
Subject: CN=dd5f9706741127dde2882d1209e2fbd208388f3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:24:59:e2:86:42:52:b5:1c:96:8f:8d:42:ff:
ca:eb:da:3a:30:dd:49:92:5e:08:fe:ae:09:e7:21:
f3:12:f8:ae:cb:81:6a:be:28:12:ad:ab:98:73:a2:
ef:8d:b4:e2:6c:24:27:3d:ca:bd:7d:d7:7f:2a:32:
4b:d3:6e:de:9d:da:bc:8a:d3:f1:eb:d8:1c:34:3b:
a7:ae:f0:90:6f:83:43:50:1b:78:0f:74:3d:94:c1:
f4:3d:a5:cd:75:2c:57:73:78:59:77:d7:c3:d2:2c:
7c:2c:72:93:ac:0b:4f:2b:7b:9e:b0:90:7b:0f:38:
54:33:92:63:12:3b:dd:a0:e2:99:f2:96:ca:cf:ad:
8a:ae:90:62:db:92:2f:7a:db:46:fc:ef:62:f4:6f:
95:88:b4:74:ad:a5:4c:4a:51:48:99:9d:54:f2:d0:
f6:06:17:6f:94:94:a5:a7:77:94:12:81:18:45:f0:
cd:a7:f0:02:02:cc:f3:04:05:7c:b9:e0:23:c2:d6:
75:33:d1:36:cd:34:88:0e:4f:a4:11:4f:d6:d5:14:
1d:72:8f:df:d1:8f:8e:d7:0e:8e:78:5a:8a:96:a0:
89:f5:a7:80:01:f5:69:2b:8b:db:f8:f7:cd:66:82:
2b:f0:12:61:5c:a7:11:1d:b0:68:35:f0:76:65:08:
af:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:5F:97:06:74:11:27:DD:E2:88:2D:12:09:E2:FB:D2:08:38:8F:3D
X509v3 Authority Key Identifier:
keyid:82:1F:6E:9F:F1:FB:BF:21:F6:41:3A:13:7E:73:67:DD:8A:8C:03:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:7b:6b:27:5b:57:5d:d5:8d:f4:88:b5:4d:2a:f9:8d:1e:54:
1a:02:8b:f2:41:d0:60:b5:26:f5:03:d3:29:31:22:f4:3d:08:
fc:d8:32:87:f3:aa:51:90:ce:09:0d:62:4b:cc:9c:69:29:14:
1d:a3:53:5c:4d:e9:8f:02:e5:07:f2:fb:79:e9:1c:3c:b4:c9:
1f:46:66:d2:1f:7c:8c:73:e5:6f:a8:ff:d3:0e:02:c1:e8:14:
42:6b:aa:55:98:c7:67:d8:e0:ad:e9:22:28:92:4e:35:9e:37:
8d:da:49:cd:7b:53:bd:5b:8a:ed:ad:dc:10:5c:0d:ba:f2:d6:
4b:90:f8:b9:60:21:dc:8a:e3:43:c0:d7:e0:da:4f:70:70:eb:
6c:05:06:c0:96:7b:57:7b:b8:27:5f:fd:15:81:fb:60:c1:dc:
94:9e:b5:71:0d:b9:fa:ff:8b:61:04:14:8e:85:35:a0:c8:08:
89:6e:c4:2d:db:ed:48:20:82:6a:c9:31:37:4b:29:e6:b8:67:
b5:75:ca:8b:23:d7:28:4b:e8:53:38:cd:02:ee:10:e7:61:61:
01:74:5b:15:e5:92:82:4e:68:12:e9:ed:19:0f:4f:c5:12:98:
ee:79:14:48:2a:cf:43:ce:76:6b:c4:43:8d:46:b3:71:38:ee:
07:f3:13:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:39:36 2025 by rpki-client