Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft
File: gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft (raw, json)
Hash identifier: aQ2/XeLEmkVDefOIpVzeUqaIx9NXEcZ7r9dnQGoynpU=
Subject key identifier: B8:A0:77:4A:0B:CF:32:92:4B:0B:05:4B:C2:B6:35:F9:C6:B7:F3:3B
Authority key identifier: 81:A3:6C:67:E9:A2:35:39:C8:15:3A:98:34:EF:83:E5:C1:8E:6B:72
Certificate issuer: /CN=81a36c67e9a23539c8153a9834ef83e5c18e6b72
Certificate serial: 0198D5163AF7D59025995AA11A38DA4332DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaNsZ-miNTnIFTqYNO-D5cGOa3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft
Manifest number: 0490
Signing time: Sat 23 Aug 2025 04:01:00 +0000
Manifest this update: Sat 23 Aug 2025 04:01:00 +0000
Manifest next update: Sun 24 Aug 2025 04:01:00 +0000
Files and hashes: 1: gaNsZ-miNTnIFTqYNO-D5cGOa3I.crl (hash: A/jZvnEJtOgHRtNtoQEEixotAJTZIXTo7blD/7OPjpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaNsZ-miNTnIFTqYNO-D5cGOa3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:3a:f7:d5:90:25:99:5a:a1:1a:38:da:43:32:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a36c67e9a23539c8153a9834ef83e5c18e6b72
Validity
Not Before: Aug 23 04:01:00 2025 GMT
Not After : Aug 24 04:01:00 2025 GMT
Subject: CN=b8a0774a0bcf32924b0b054bc2b635f9c6b7f33b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:53:5d:64:70:8d:c8:90:57:98:9c:de:eb:28:
92:7d:c1:42:f1:0e:df:d2:74:55:9a:11:d6:f2:b5:
16:60:7d:3b:2d:71:22:1a:59:3d:33:b1:dc:05:1b:
bd:7e:83:ab:fb:5d:7c:39:c4:bc:6d:ed:85:17:bf:
61:11:68:4d:a8:24:35:04:f1:7d:1a:fb:4d:30:ea:
e0:d7:a0:fd:86:13:c1:38:f3:3f:25:ca:86:97:33:
e6:df:9c:a0:6b:74:6c:3e:bf:40:01:22:04:fc:05:
77:5b:ab:1c:e6:10:2d:77:49:06:d4:59:a4:9d:fa:
bf:5a:b9:92:f2:36:c6:27:52:3f:f0:6d:62:93:0f:
05:02:72:1f:9b:bd:3b:7d:3d:00:84:7a:28:aa:6b:
30:10:95:26:cf:6a:78:17:3a:99:3e:ad:88:e2:df:
14:04:f8:68:a8:a2:61:7f:af:f5:32:3b:e3:05:93:
ba:c9:08:39:28:5d:6f:ea:bc:95:df:c2:49:f3:69:
e9:96:9b:3d:98:9b:f8:53:44:57:7d:2d:eb:e1:f1:
8c:a5:e5:fe:89:1e:0f:af:17:05:db:6f:e7:12:0a:
c5:dd:58:ba:77:b2:e6:28:a5:f3:a0:b6:d4:22:46:
0f:64:f1:8f:69:e0:f2:b5:c0:06:d0:36:81:99:2b:
1a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A0:77:4A:0B:CF:32:92:4B:0B:05:4B:C2:B6:35:F9:C6:B7:F3:3B
X509v3 Authority Key Identifier:
keyid:81:A3:6C:67:E9:A2:35:39:C8:15:3A:98:34:EF:83:E5:C1:8E:6B:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaNsZ-miNTnIFTqYNO-D5cGOa3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:f5:d3:ad:32:09:66:8d:72:5e:d8:d5:c5:ba:44:68:25:70:
ab:a0:5b:bc:d1:5d:06:e3:40:fb:a6:eb:7b:66:7f:f0:54:c6:
f5:f6:e4:0f:35:4e:49:0b:05:3c:b6:a0:0b:32:05:1a:21:89:
23:61:7d:de:f7:72:1e:f6:14:d3:ab:ae:60:7e:13:5f:6c:ee:
d9:e0:a0:be:c4:a6:ec:95:13:dd:29:02:b4:1b:73:ba:40:3a:
51:a1:5e:35:a2:3c:a6:7a:69:b5:ac:76:27:00:3b:39:e7:d2:
4f:b8:72:b4:1f:1f:1f:7c:fd:46:58:52:03:98:c7:68:b1:a2:
77:20:03:53:8a:28:f8:11:8c:87:4e:34:f5:6e:b8:73:9f:a2:
cf:3a:32:28:0b:0a:a6:26:e8:47:7a:43:49:6d:5d:6b:51:2c:
98:9d:58:73:6b:f3:aa:d0:c6:16:9a:4e:21:e9:08:51:20:4b:
18:6e:9e:6e:27:22:90:32:10:69:24:8b:e0:95:2d:b5:b7:24:
f7:30:65:66:d6:db:18:a5:29:ce:fd:66:11:87:c4:07:fb:82:
6e:cb:10:7e:11:e9:4b:78:e3:7a:4c:28:0e:c7:70:24:7e:c1:
29:71:e3:7c:d5:1c:99:1e:ac:e9:01:df:e1:fd:66:9d:9a:a8:
c3:3d:11:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFjr31ZAlmVqhGjjaQzLbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxYTM2YzY3ZTlhMjM1MzljODE1M2E5ODM0ZWY4M2U1YzE4
ZTZiNzIwHhcNMjUwODIzMDQwMTAwWhcNMjUwODI0MDQwMTAwWjAzMTEwLwYDVQQD
EyhiOGEwNzc0YTBiY2YzMjkyNGIwYjA1NGJjMmI2MzVmOWM2YjdmMzNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu1NdZHCNyJBXmJze6yiSfcFC8Q7f
0nRVmhHW8rUWYH07LXEiGlk9M7HcBRu9foOr+118OcS8be2FF79hEWhNqCQ1BPF9
GvtNMOrg16D9hhPBOPM/JcqGlzPm35yga3RsPr9AASIE/AV3W6sc5hAtd0kG1Fmk
nfq/WrmS8jbGJ1I/8G1ikw8FAnIfm707fT0AhHooqmswEJUmz2p4FzqZPq2I4t8U
BPhoqKJhf6/1MjvjBZO6yQg5KF1v6ryV38JJ82nplps9mJv4U0RXfS3r4fGMpeX+
iR4PrxcF22/nEgrF3Vi6d7LmKKXzoLbUIkYPZPGPaeDytcAG0DaBmSsaTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLigd0oLzzKSSwsFS8K2NfnGt/M7MB8GA1UdIwQY
MBaAFIGjbGfpojU5yBU6mDTvg+XBjmtyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2FOc1otbWlOVG5JRlRxWU5PLUQ1Y0dPYTNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8yNWNiYWQtNjEzNC00NWIxLThiM2Qt
ZWI1NjlhOGEyMTBmLzEvZ2FOc1otbWlOVG5JRlRxWU5PLUQ1Y0dPYTNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8yNWNiYWQtNjEzNC00NWIxLThiM2QtZWI1NjlhOGEyMTBm
LzEvZ2FOc1otbWlOVG5JRlRxWU5PLUQ1Y0dPYTNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnvXTrTIJ
Zo1yXtjVxbpEaCVwq6BbvNFdBuNA+6bre2Z/8FTG9fbkDzVOSQsFPLagCzIFGiGJ
I2F93vdyHvYU06uuYH4TX2zu2eCgvsSm7JUT3SkCtBtzukA6UaFeNaI8pnpptax2
JwA7OefST7hytB8fH3z9RlhSA5jHaLGidyADU4oo+BGMh0409W64c5+izzoyKAsK
piboR3pDSW1da1EsmJ1Yc2vzqtDGFppOIekIUSBLGG6ebicikDIQaSSL4JUttbck
9zBlZtbbGKUpzv1mEYfEB/uCbssQfhHpS3jjekwoDsdwJH7BKXHjfNUcmR6s6QHf
4f1mnZqowz0ReA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:27:23 2025 by rpki-client