Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
File: Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft (raw, json)
Hash identifier: DQk4qVqoDlMi7+1QeH7+f5T6NTbXQBxmzzEOEvv88L8=
Subject key identifier: C3:B4:EF:91:2B:81:AD:4F:9B:7F:6A:2B:B4:5E:D9:99:56:FD:4F:A7
Authority key identifier: 1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF
Certificate issuer: /CN=1a7cafde3135a26bdd4179029eebf7414e9643af
Certificate serial: 0199FCFD63E14D0C1181FABD3C38FAFCD9F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
Manifest number: 16DE
Signing time: Sun 19 Oct 2025 15:01:28 +0000
Manifest this update: Sun 19 Oct 2025 15:01:28 +0000
Manifest next update: Mon 20 Oct 2025 15:01:28 +0000
Files and hashes: 1: 1Cpy8hReysvqo6rJK2S7mrGPkKE.roa (hash: D4UL2BT0SqLhRGOh0lwv2Oqr8FVnOBm4wqYMVb3RDbk=)
2: Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl (hash: Qs7Yu1voEYavieSscUU63gvxpY6a1KJ4qs7/CiVzP1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:63:e1:4d:0c:11:81:fa:bd:3c:38:fa:fc:d9:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7cafde3135a26bdd4179029eebf7414e9643af
Validity
Not Before: Oct 19 15:01:28 2025 GMT
Not After : Oct 20 15:01:28 2025 GMT
Subject: CN=c3b4ef912b81ad4f9b7f6a2bb45ed99956fd4fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ea:37:81:87:0c:78:3f:c0:d8:84:da:54:79:
e3:2e:49:eb:ff:82:b0:82:46:e7:fb:b1:7c:f7:84:
11:77:77:a3:01:54:54:00:65:1f:f7:cc:70:ad:d8:
1e:09:64:ed:c6:a2:b1:c3:bd:00:0a:09:e1:22:1c:
1d:de:b7:75:c8:dc:4f:0b:1a:1b:b6:00:25:80:40:
a3:a4:d7:4f:e8:0c:71:3b:5c:46:23:74:ae:ea:60:
6d:ce:f1:74:72:8e:0f:3b:c0:ff:94:1f:0e:bf:a8:
b6:9c:75:80:4d:2f:02:22:13:60:70:a2:fc:e3:58:
af:23:5c:e8:64:1c:21:7a:76:62:82:38:ea:e2:11:
73:db:e9:36:60:2b:32:ee:0e:b8:7e:93:73:55:9a:
18:62:8f:64:fe:c6:97:d7:a5:1b:2f:45:31:30:cd:
a8:8c:f1:19:6a:bf:76:3c:6d:6d:40:58:0c:62:92:
96:c0:26:0e:e8:2a:19:0d:d4:51:99:6a:26:2c:bc:
1b:f3:75:f8:0c:b4:3d:b3:94:63:5d:42:72:f6:7b:
2d:21:02:e2:d7:ec:e0:84:f5:6f:30:21:bc:9b:15:
c3:93:48:61:1b:24:79:e2:d6:d4:35:93:f8:23:1f:
20:18:e1:7e:31:a8:1e:69:88:a5:0e:9f:76:1e:9e:
2f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B4:EF:91:2B:81:AD:4F:9B:7F:6A:2B:B4:5E:D9:99:56:FD:4F:A7
X509v3 Authority Key Identifier:
keyid:1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:6e:33:08:d1:fb:ad:2a:6f:c6:83:94:e5:73:f6:22:4d:83:
28:39:ab:ea:a7:13:03:09:26:8d:f0:62:f1:4d:be:fa:b2:92:
57:79:21:98:19:bb:dd:8c:c9:c2:05:44:97:a7:c4:dc:bf:3e:
dd:91:78:41:a5:b7:5c:1b:d1:ff:b1:f0:2a:18:43:41:7c:6e:
d0:ca:e1:d8:6e:0c:ed:3b:d6:df:89:5c:46:e5:af:7f:c0:d0:
e8:c8:21:12:0e:2f:31:37:da:a6:88:3b:13:11:bb:73:be:66:
a2:12:b0:16:12:3c:4b:bc:b6:82:32:3b:67:7a:14:0d:ad:31:
41:3d:3d:7b:ff:c0:c2:31:56:90:f0:0b:a3:40:2a:48:91:cd:
9a:20:30:49:e3:8c:9c:76:ec:b2:6e:4b:44:d8:64:fe:18:8d:
7c:07:41:fa:e2:1b:e5:58:ec:54:b1:a3:b9:f7:37:f3:85:39:
9d:69:dc:c4:6c:df:75:36:a2:70:00:f0:1a:5b:67:e9:c3:7b:
65:fa:91:9d:be:49:03:2b:fb:5f:a5:04:ee:2d:df:37:8b:f4:
f8:13:cf:aa:02:31:99:4e:d2:52:f4:be:77:63:55:b8:3d:3e:
84:41:b9:bf:1e:61:12:69:f5:dd:55:90:35:45:c0:9b:47:0c:
51:bf:3c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:20:46 2025 by rpki-client