Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
File: Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft (raw, json)
Hash identifier: kMVzS12FhzzOTUeKtVcPyUF/K7x/Mnm00u1lC39e7xE=
Subject key identifier: 86:70:AF:C5:D6:5B:BE:08:22:08:23:68:C7:64:CE:ED:7B:74:23:E2
Authority key identifier: 1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF
Certificate issuer: /CN=1a7cafde3135a26bdd4179029eebf7414e9643af
Certificate serial: 0197CEDF9BC58CD350BED70CD9D1A89D6F33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
Manifest number: 15BD
Signing time: Thu 03 Jul 2025 06:00:50 +0000
Manifest this update: Thu 03 Jul 2025 06:00:50 +0000
Manifest next update: Fri 04 Jul 2025 06:00:50 +0000
Files and hashes: 1: 1Cpy8hReysvqo6rJK2S7mrGPkKE.roa (hash: D4UL2BT0SqLhRGOh0lwv2Oqr8FVnOBm4wqYMVb3RDbk=)
2: Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl (hash: B/aiyXHHQGo0IUoeIbj3RkgmV9rc/4UxP3hHi1xlLG8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ce:df:9b:c5:8c:d3:50:be:d7:0c:d9:d1:a8:9d:6f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7cafde3135a26bdd4179029eebf7414e9643af
Validity
Not Before: Jul 3 06:00:50 2025 GMT
Not After : Jul 4 06:00:50 2025 GMT
Subject: CN=8670afc5d65bbe0822082368c764ceed7b7423e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:47:a4:99:aa:1a:ad:bb:f7:71:e4:a5:ec:06:
08:50:fe:0f:45:0f:dd:56:89:af:f0:c4:6f:25:61:
e2:c0:01:68:0a:eb:45:15:2c:c4:a2:35:52:d9:27:
c2:02:af:21:56:0a:f8:43:c5:81:08:a8:9f:b8:0d:
a8:b9:4f:8d:e2:fe:81:18:aa:00:3b:aa:d1:f8:5a:
22:61:2c:b7:d5:f3:9b:cd:f4:50:43:1b:b0:65:b7:
0d:26:ec:f3:62:5d:c6:61:34:9e:42:d4:e6:d3:98:
76:5a:86:bc:2c:ad:94:68:2d:b1:67:24:0c:51:7b:
2c:91:4c:5a:85:8b:2f:16:9b:dd:ce:4c:4b:e7:b1:
75:8d:7e:9c:50:52:23:15:db:5e:70:44:e8:ce:8d:
ae:37:ff:7f:b2:c2:f5:cb:78:24:ea:eb:93:cd:21:
1d:eb:48:3f:e1:e7:a7:ad:37:4e:5a:d3:5f:2f:4c:
b6:9b:d5:b1:08:87:19:93:db:8b:8a:6c:29:3d:cc:
41:93:4e:6f:83:d8:25:47:58:dd:83:a6:45:10:f5:
70:0a:13:99:50:67:52:b6:a2:58:3a:42:02:e1:95:
fa:d0:cd:a4:7f:b5:ad:8f:10:ce:33:26:b0:e4:e3:
6b:fa:74:cb:9c:fc:a0:07:39:f5:55:f0:df:79:cb:
04:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:70:AF:C5:D6:5B:BE:08:22:08:23:68:C7:64:CE:ED:7B:74:23:E2
X509v3 Authority Key Identifier:
keyid:1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:a0:31:97:86:a9:47:61:1f:07:d2:26:1c:b7:03:bf:9e:cc:
65:17:3d:e2:31:a0:8d:b0:80:71:42:58:02:48:eb:b5:8b:11:
47:21:39:0e:e8:f1:bb:ea:6f:16:22:08:ba:eb:d3:97:11:1d:
a3:46:0d:b7:bd:82:53:13:5a:c2:a8:72:ee:8c:6e:9e:4c:68:
20:1a:33:db:5c:46:75:91:a1:d4:c0:e1:e2:9a:17:cf:06:47:
40:7e:f3:6a:ce:c4:93:0a:04:01:6e:a1:fb:44:db:5b:d4:c5:
a5:99:18:cb:09:e0:d0:ea:b7:01:e0:ff:0c:26:40:a6:db:8a:
d6:a5:0e:e8:05:b3:18:c8:c2:80:1c:84:2e:42:94:43:05:08:
d9:8d:79:35:b7:1f:35:c8:24:92:92:9a:f0:13:36:79:78:b1:
f3:b4:31:06:6a:bb:2c:3c:3f:f7:a2:17:d5:86:e5:87:0b:ef:
51:0c:27:2a:91:22:e5:c1:b3:ad:a7:b9:a7:4d:29:52:cb:f1:
69:eb:c7:52:07:90:33:d5:a3:2f:9d:62:ae:0b:b6:0e:73:2a:
83:c3:82:d9:6a:b8:dd:b5:bc:51:aa:74:9d:20:82:e5:9f:da:
55:c6:22:c8:cb:d0:dd:9c:a9:4c:ab:7e:29:5b:a0:eb:3a:d6:
5a:3e:a9:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfO35vFjNNQvtcM2dGonW8zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhN2NhZmRlMzEzNWEyNmJkZDQxNzkwMjllZWJmNzQxNGU5
NjQzYWYwHhcNMjUwNzAzMDYwMDUwWhcNMjUwNzA0MDYwMDUwWjAzMTEwLwYDVQQD
Eyg4NjcwYWZjNWQ2NWJiZTA4MjIwODIzNjhjNzY0Y2VlZDdiNzQyM2UyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEekmaoarbv3ceSl7AYIUP4PRQ/d
Vomv8MRvJWHiwAFoCutFFSzEojVS2SfCAq8hVgr4Q8WBCKifuA2ouU+N4v6BGKoA
O6rR+FoiYSy31fObzfRQQxuwZbcNJuzzYl3GYTSeQtTm05h2Woa8LK2UaC2xZyQM
UXsskUxahYsvFpvdzkxL57F1jX6cUFIjFdtecETozo2uN/9/ssL1y3gk6uuTzSEd
60g/4eenrTdOWtNfL0y2m9WxCIcZk9uLimwpPcxBk05vg9glR1jdg6ZFEPVwChOZ
UGdStqJYOkIC4ZX60M2kf7WtjxDOMyaw5ONr+nTLnPygBzn1VfDfecsECwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIZwr8XWW74IIggjaMdkzu17dCPiMB8GA1UdIwQY
MBaAFBp8r94xNaJr3UF5Ap7r90FOlkOvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR255djNqRTFvbXZkUVhrQ251djNRVTZXUTY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My82MmFmYmItYjhmOC00YjEyLTkxOTMt
MWM1MTA3Y2FiMzUzLzEvR255djNqRTFvbXZkUVhrQ251djNRVTZXUTY4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My82MmFmYmItYjhmOC00YjEyLTkxOTMtMWM1MTA3Y2FiMzUz
LzEvR255djNqRTFvbXZkUVhrQ251djNRVTZXUTY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZqAxl4ap
R2EfB9ImHLcDv57MZRc94jGgjbCAcUJYAkjrtYsRRyE5Dujxu+pvFiIIuuvTlxEd
o0YNt72CUxNawqhy7oxunkxoIBoz21xGdZGh1MDh4poXzwZHQH7zas7EkwoEAW6h
+0TbW9TFpZkYywng0Oq3AeD/DCZAptuK1qUO6AWzGMjCgByELkKUQwUI2Y15Nbcf
NcgkkpKa8BM2eXix87QxBmq7LDw/96IX1YblhwvvUQwnKpEi5cGzrae5p00pUsvx
aevHUgeQM9WjL51irgu2DnMqg8OC2Wq43bW8Uap0nSCC5Z/aVcYiyMvQ3ZypTKt+
KVug6zrWWj6pMw==
-----END CERTIFICATE-----
Generated at Thu Jul 3 09:05:13 2025 by rpki-client