Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
File: gh9un_H7vyH2QToTfnNn3YqMA1w.mft (raw, json)
Hash identifier: yn/GJFiSlnmOmBmZH/t4IUfR44UUPv+nOZ/n2yWFG7w=
Subject key identifier: 73:2D:F4:A9:B4:B6:9C:7F:EF:82:EE:C3:23:18:42:64:7C:ED:C5:2F
Authority key identifier: 82:1F:6E:9F:F1:FB:BF:21:F6:41:3A:13:7E:73:67:DD:8A:8C:03:5C
Certificate issuer: /CN=821f6e9ff1fbbf21f6413a137e7367dd8a8c035c
Certificate serial: 019923310CD62049B250FDB5D8E526BC4941
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
Manifest number: 0EB4
Signing time: Sun 07 Sep 2025 08:00:41 +0000
Manifest this update: Sun 07 Sep 2025 08:00:41 +0000
Manifest next update: Mon 08 Sep 2025 08:00:41 +0000
Files and hashes: 1: LGI_BMqz48rF1CAQFBrnzf381U0.roa (hash: eJvU6iSIuiB2ZVQ2ar/OXbcHw5p8L+QuWzmrOM6M7qg=)
2: gh9un_H7vyH2QToTfnNn3YqMA1w.crl (hash: wIPWDNR21QP8UMFNaWMn4iVJTM5bzQoVdpSKii+/338=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:0c:d6:20:49:b2:50:fd:b5:d8:e5:26:bc:49:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821f6e9ff1fbbf21f6413a137e7367dd8a8c035c
Validity
Not Before: Sep 7 08:00:41 2025 GMT
Not After : Sep 8 08:00:41 2025 GMT
Subject: CN=732df4a9b4b69c7fef82eec3231842647cedc52f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1f:04:1a:03:26:de:d3:47:f5:25:30:a1:e8:
9e:ed:74:25:6e:7b:97:66:8e:c4:14:40:f0:93:52:
e4:b8:19:70:25:9f:c4:b1:a3:8e:54:3e:a2:10:03:
a3:5f:4f:b4:72:56:3b:5a:d0:d9:c3:c9:04:78:ad:
08:d5:99:05:05:ba:fa:5e:d1:8c:f9:82:3c:2b:4e:
5e:ad:e9:b1:36:94:d7:3b:70:8a:7c:e6:ea:e9:70:
43:8d:a1:33:a2:45:b8:4f:3b:58:de:30:42:9e:0a:
8f:9e:c4:d8:fe:41:79:62:a2:dc:90:e6:8c:33:d5:
a6:38:01:3c:2d:16:91:9b:e4:53:10:a6:e0:c7:ec:
8c:8e:42:e4:c7:94:f5:74:8c:99:ea:61:f3:8d:b3:
72:f9:01:06:a1:c0:b4:5f:f4:72:e6:e3:06:e1:15:
f9:36:bb:3f:04:96:86:e8:21:fc:a7:58:70:2e:ce:
ad:07:46:39:40:d1:e8:97:7c:00:8b:e0:f5:fa:c7:
81:a5:b6:bf:b1:06:bc:15:b0:90:72:c0:0c:bb:87:
5e:fe:93:80:df:4d:45:5e:d0:45:de:8c:9d:d8:20:
63:82:ed:d4:64:ab:f3:ce:7e:6d:05:f3:d7:0c:06:
9f:fb:ad:07:ef:84:75:ad:e0:d6:40:f7:26:05:58:
90:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:2D:F4:A9:B4:B6:9C:7F:EF:82:EE:C3:23:18:42:64:7C:ED:C5:2F
X509v3 Authority Key Identifier:
keyid:82:1F:6E:9F:F1:FB:BF:21:F6:41:3A:13:7E:73:67:DD:8A:8C:03:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:2c:8f:2b:9e:5a:98:d7:9e:92:76:50:cb:f7:27:5a:48:e3:
f4:09:8b:ed:e9:91:d5:41:85:6e:2d:23:9a:36:38:d2:c0:7a:
2c:98:93:4c:88:72:13:ae:f4:b3:37:a2:b3:d8:1e:84:fd:bf:
ba:17:0b:89:87:ef:a2:8c:5e:49:9a:15:84:31:67:50:90:b2:
58:32:e3:93:39:fc:2b:70:f6:e3:58:94:73:b6:55:28:8e:61:
64:7e:41:96:0d:53:5a:ca:69:c7:4a:3f:42:bf:c6:f2:bb:7e:
0a:da:63:e6:2c:de:ca:b7:c5:25:85:e7:44:ee:09:1f:7b:48:
54:d6:96:a4:78:47:5a:0b:0b:6c:a6:85:ec:22:f8:ec:c3:c3:
94:44:1d:bd:52:ab:a7:31:98:d7:69:41:84:bc:f4:ef:ab:00:
0a:2f:e1:99:d3:31:15:9d:1d:b8:9a:a4:92:d0:05:ad:e6:cf:
a2:6e:24:01:41:a0:ed:91:7b:f8:e5:f4:9a:6c:b9:49:02:61:
ff:20:28:a0:62:27:93:81:73:1b:ed:d6:3b:da:dc:75:32:e1:
31:da:b7:63:b0:49:06:1f:14:68:15:7d:e7:7a:4f:91:30:5e:
1c:45:33:50:62:77:b2:04:83:ee:b4:c6:83:47:63:a0:54:cb:
7c:d3:52:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:40:11 2025 by rpki-client