Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.mft
File: gwn4FzfW8X58GtWISa_3HFAGTwQ.mft (raw, json)
Hash identifier: in3mbdN5sau5s4uTjF//RxvkN2gEJq5WbE2868Hu4es=
Subject key identifier: 14:B4:14:17:8F:BB:F0:0B:15:AB:A3:1E:CE:51:CE:2E:8D:1A:AA:0E
Authority key identifier: 83:09:F8:17:37:D6:F1:7E:7C:1A:D5:88:49:AF:F7:1C:50:06:4F:04
Certificate issuer: /CN=8309f81737d6f17e7c1ad58849aff71c50064f04
Certificate serial: 0197C9F0748252ECAF53744065C3B3DED41E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.mft
Manifest number: 13A6
Signing time: Wed 02 Jul 2025 07:01:08 +0000
Manifest this update: Wed 02 Jul 2025 07:01:08 +0000
Manifest next update: Thu 03 Jul 2025 07:01:08 +0000
Files and hashes: 1: C29j8BjW64hUTo90rvT2p7vncMk.roa (hash: z1gCCbWIlJIwgYs0Ud8cLUPoe3m6/PGlyP6Xd1WDnws=)
2: gwn4FzfW8X58GtWISa_3HFAGTwQ.crl (hash: G0TRat24+cRNKejSvbVUEk3eS33jaVn8CAtLipFjvWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 07:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:f0:74:82:52:ec:af:53:74:40:65:c3:b3:de:d4:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8309f81737d6f17e7c1ad58849aff71c50064f04
Validity
Not Before: Jul 2 07:01:08 2025 GMT
Not After : Jul 3 07:01:08 2025 GMT
Subject: CN=14b414178fbbf00b15aba31ece51ce2e8d1aaa0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:81:87:e8:5e:72:e7:cb:dd:92:5e:4d:22:44:
a3:f1:81:a5:55:2f:7f:66:83:f9:f3:aa:c9:8b:7b:
8a:2a:51:6a:9c:cc:1a:90:05:90:a3:6b:37:cf:f7:
d2:2e:36:b0:1c:7b:ad:ae:76:5a:41:1c:ee:3a:36:
27:a6:f8:1d:e0:3c:dd:a7:0e:91:f9:9c:1d:b1:a1:
2c:0d:d0:2d:1f:ef:a6:b2:54:38:8c:db:d0:e5:8b:
5c:4c:4f:46:58:f3:0d:74:88:c3:6d:d7:e5:8c:67:
81:23:26:07:8d:8f:f8:d3:ac:a5:5f:54:0d:91:14:
ac:21:24:84:b0:c7:2c:8a:de:f2:ca:32:d2:2b:ee:
73:94:2f:e6:a7:20:e0:96:ad:c3:4c:00:06:96:8c:
5f:93:bc:fe:70:07:ea:b5:e5:7a:26:0d:b6:d5:b4:
a8:88:a4:33:5a:73:85:52:94:aa:a5:86:67:1a:cb:
eb:05:6b:dc:4e:69:04:83:01:ee:d8:b5:a2:97:9e:
aa:b5:57:db:5b:7f:e9:93:0b:ff:39:48:b0:41:a1:
89:5b:7d:a6:40:5e:3e:69:83:79:ec:40:35:ea:82:
29:8b:95:3d:b6:f5:3f:d6:f7:7a:8a:6f:24:72:34:
70:c7:f6:0c:98:e5:a8:ec:38:91:d1:07:d8:0d:cc:
ea:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:B4:14:17:8F:BB:F0:0B:15:AB:A3:1E:CE:51:CE:2E:8D:1A:AA:0E
X509v3 Authority Key Identifier:
keyid:83:09:F8:17:37:D6:F1:7E:7C:1A:D5:88:49:AF:F7:1C:50:06:4F:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:b5:a5:60:25:9a:84:6f:ad:e6:3c:4f:db:b7:ba:e7:31:7e:
5b:2d:c9:63:72:ef:fc:d9:23:a4:67:21:7b:21:d7:fc:fa:b8:
31:31:a6:57:8e:71:8a:03:4a:79:76:cd:1a:c9:e1:79:1e:d5:
b5:11:6f:a3:28:02:4b:3d:09:32:c8:94:09:51:4b:b0:9f:32:
f0:a4:c1:d9:63:b6:9e:76:9f:57:44:0d:fb:e8:46:72:fa:04:
86:b1:93:d7:8f:5c:78:f0:9c:1a:80:0b:c0:bc:ea:c8:cd:c4:
d9:25:d4:df:21:b1:6d:db:d4:f9:0d:b4:f2:96:20:60:c3:a7:
b5:32:35:0d:7e:43:4d:db:e4:c5:22:c0:cc:fc:ef:e3:f0:bd:
10:cd:29:6d:21:5e:8f:2f:61:c0:e4:04:95:7b:a2:e0:41:09:
01:fa:1c:f2:f0:8d:d7:b3:b3:cb:7f:90:ec:ea:59:64:5f:39:
34:a8:52:35:07:e9:5e:1c:94:81:9f:aa:78:76:22:a2:94:b7:
3b:7b:78:21:3f:23:6f:6e:b4:61:84:62:9e:9d:20:02:cd:b1:
ef:fe:28:cf:d0:97:3c:2f:5e:3e:c8:87:bf:5d:7c:72:03:67:
ad:92:73:9f:c4:af:c6:8e:0f:be:7e:fb:df:e7:e6:00:c2:2b:
d8:ed:85:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfJ8HSCUuyvU3RAZcOz3tQeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzMDlmODE3MzdkNmYxN2U3YzFhZDU4ODQ5YWZmNzFjNTAw
NjRmMDQwHhcNMjUwNzAyMDcwMTA4WhcNMjUwNzAzMDcwMTA4WjAzMTEwLwYDVQQD
EygxNGI0MTQxNzhmYmJmMDBiMTVhYmEzMWVjZTUxY2UyZThkMWFhYTBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4GH6F5y58vdkl5NIkSj8YGlVS9/
ZoP586rJi3uKKlFqnMwakAWQo2s3z/fSLjawHHutrnZaQRzuOjYnpvgd4Dzdpw6R
+ZwdsaEsDdAtH++mslQ4jNvQ5YtcTE9GWPMNdIjDbdfljGeBIyYHjY/406ylX1QN
kRSsISSEsMcsit7yyjLSK+5zlC/mpyDglq3DTAAGloxfk7z+cAfqteV6Jg221bSo
iKQzWnOFUpSqpYZnGsvrBWvcTmkEgwHu2LWil56qtVfbW3/pkwv/OUiwQaGJW32m
QF4+aYN57EA16oIpi5U9tvU/1vd6im8kcjRwx/YMmOWo7DiR0QfYDczqGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBS0FBePu/ALFaujHs5Rzi6NGqoOMB8GA1UdIwQY
MBaAFIMJ+Bc31vF+fBrViEmv9xxQBk8EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3duNEZ6Zlc4WDU4R3RXSVNhXzNIRkFHVHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zYTAwMjYtMjg0Ny00Mjc2LTk2YmEt
MTc0NzM3OGU2NTk0LzEvZ3duNEZ6Zlc4WDU4R3RXSVNhXzNIRkFHVHdRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zYTAwMjYtMjg0Ny00Mjc2LTk2YmEtMTc0NzM3OGU2NTk0
LzEvZ3duNEZ6Zlc4WDU4R3RXSVNhXzNIRkFHVHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAobWlYCWa
hG+t5jxP27e65zF+Wy3JY3Lv/NkjpGcheyHX/Pq4MTGmV45xigNKeXbNGsnheR7V
tRFvoygCSz0JMsiUCVFLsJ8y8KTB2WO2nnafV0QN++hGcvoEhrGT149cePCcGoAL
wLzqyM3E2SXU3yGxbdvU+Q208pYgYMOntTI1DX5DTdvkxSLAzPzv4/C9EM0pbSFe
jy9hwOQElXui4EEJAfoc8vCN17Ozy3+Q7OpZZF85NKhSNQfpXhyUgZ+qeHYiopS3
O3t4IT8jb260YYRinp0gAs2x7/4oz9CXPC9ePsiHv118cgNnrZJzn8Svxo4Pvn77
3+fmAMIr2O2Fxg==
-----END CERTIFICATE-----
Generated at Wed Jul 2 16:36:41 2025 by rpki-client