
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
File: Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft (raw, json)
Hash identifier: ICKHwtlmNQXtVlowKyItHF0aTyYgPau2fzUO+pVq9Ck=
Subject key identifier: 38:55:C6:FB:3F:D8:C5:00:0A:95:6B:BF:E7:30:1C:C7:86:69:14:9C
Authority key identifier: 1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF
Certificate issuer: /CN=1a7cafde3135a26bdd4179029eebf7414e9643af
Certificate serial: 0198D773DB400520B208D166FCCCC527E4DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 15:02:30 +0000
Manifest this update: Sat 23 Aug 2025 15:02:30 +0000
Manifest next update: Sun 24 Aug 2025 15:02:30 +0000
Files and hashes: 1: 1Cpy8hReysvqo6rJK2S7mrGPkKE.roa (hash: D4UL2BT0SqLhRGOh0lwv2Oqr8FVnOBm4wqYMVb3RDbk=)
2: Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl (hash: QrRfik3DMdk6UGuU9fr6U9FG3dbz7/ke3+xtpij0SYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:db:40:05:20:b2:08:d1:66:fc:cc:c5:27:e4:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7cafde3135a26bdd4179029eebf7414e9643af
Validity
Not Before: Aug 23 15:02:30 2025 GMT
Not After : Aug 24 15:02:30 2025 GMT
Subject: CN=3855c6fb3fd8c5000a956bbfe7301cc78669149c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:da:3c:95:5c:ea:8d:f5:c0:4e:34:60:d5:b8:
45:58:55:49:cc:d7:14:92:22:d7:f7:bd:97:43:39:
c4:55:13:99:81:da:be:f6:8e:58:e3:d8:04:d8:01:
b0:ac:23:66:b3:06:21:bb:42:a1:2c:56:d5:14:68:
45:3f:40:2d:0f:25:5e:4f:06:c2:3a:a8:82:41:6f:
f8:fb:ea:ff:e7:a8:2f:89:66:1f:9a:0b:42:d5:00:
b8:36:00:88:2e:24:7a:6d:af:dc:e1:c6:b6:70:d9:
a5:6e:7f:71:b2:48:d5:84:0e:5b:cb:e4:50:22:1d:
bf:ff:c2:28:51:39:32:c5:f0:a5:3a:b9:76:52:ea:
f3:18:0e:70:1d:d3:c6:b4:f3:e2:46:a4:cf:a3:48:
a5:a3:38:e8:50:46:02:d6:17:30:74:8e:3b:ce:d2:
ea:3d:0e:41:ac:47:92:82:0b:dc:a3:6e:ae:27:96:
d4:41:7b:a0:12:9d:c5:1b:45:f2:f2:2f:83:f6:9a:
e6:57:53:96:f0:e3:c4:e1:e3:be:85:8d:57:ac:c2:
3f:89:04:0e:55:3d:07:17:9c:f7:97:02:3b:2b:70:
c0:bb:42:a5:e2:c6:9b:a7:39:55:bc:cc:99:57:cb:
7e:bf:6d:c2:40:50:61:cf:44:90:f9:82:10:40:27:
85:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:55:C6:FB:3F:D8:C5:00:0A:95:6B:BF:E7:30:1C:C7:86:69:14:9C
X509v3 Authority Key Identifier:
keyid:1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:81:4a:73:23:4e:70:38:db:2d:97:6e:78:86:77:92:06:30:
e1:b1:b4:eb:3b:8f:94:e5:36:9d:89:4e:b3:f7:29:6a:44:a6:
2b:4f:0b:20:20:08:1b:79:a4:ef:11:d0:4c:3c:7a:78:62:f3:
38:9f:23:9a:33:d7:4d:bd:54:a5:2f:70:aa:b9:4f:1c:c3:da:
ea:c5:fb:82:06:0d:38:6c:37:48:b4:2a:05:4f:3d:bd:aa:20:
a5:bb:71:0e:98:30:a5:0c:ca:2b:fd:21:1e:c2:05:1d:d3:ac:
aa:eb:73:52:88:3e:be:cf:f4:9f:3a:5b:1d:97:f9:9f:66:3b:
13:44:32:1b:d1:8d:a1:c1:3e:e3:6e:70:61:ae:af:88:95:88:
54:a6:23:93:9d:d3:16:92:93:3d:73:b9:0a:e6:83:e7:b2:9d:
9d:f5:4f:8b:57:ef:79:31:d4:d1:10:c6:2e:94:ad:66:09:7b:
96:7f:17:d5:55:bc:0f:f4:7d:f4:5b:f3:96:3c:3c:98:40:9b:
98:c5:60:08:5e:b8:82:c9:05:bb:87:8f:de:ba:25:3c:14:03:
8b:b1:d9:aa:2c:6b:54:d4:03:b2:42:bd:8c:74:ed:54:16:55:
d4:56:ef:77:b4:06:2d:41:e7:a1:dc:70:32:ff:85:4b:0c:39:
ab:b2:60:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:24:54 2025 by rpki-client