Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json)
Hash identifier: 8ecz4Mnh/Ie3aqeNkzOqlbuBNp+ldoTmJUKV2GPJR4k=
Subject key identifier: 3B:94:95:5D:97:8C:9B:78:D2:7E:92:99:2B:E9:1B:2A:AC:A2:95:D9
Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Certificate serial: 0199FD3457E171F268B8DA751D33B9AB5F7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
Manifest number: 02CA
Signing time: Sun 19 Oct 2025 16:01:29 +0000
Manifest this update: Sun 19 Oct 2025 16:01:29 +0000
Manifest next update: Mon 20 Oct 2025 16:01:29 +0000
Files and hashes: 1: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: jRhpTwVm7iK+FNXY2IDlFi09GaoFR1eFlDBLUy6mOyo=)
2: moIHrCUIysvqre1db9iG8YhXiD4.roa (hash: 3qmhRdBwt3IbZM/x/JJkjl8tv0bK7oEsrL8A8nVm2tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:57:e1:71:f2:68:b8:da:75:1d:33:b9:ab:5f:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Validity
Not Before: Oct 19 16:01:29 2025 GMT
Not After : Oct 20 16:01:29 2025 GMT
Subject: CN=3b94955d978c9b78d27e92992be91b2aaca295d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6b:c3:b1:4d:39:ca:2f:13:aa:91:03:67:3b:
28:93:c0:7f:00:db:b4:49:a9:bb:b0:51:c2:55:17:
15:b5:58:90:6e:77:9a:59:c0:3d:3a:74:32:da:4b:
fe:32:bc:22:cc:c0:ab:1b:70:a1:41:af:60:97:83:
1b:83:70:f5:30:cf:12:9a:09:c9:10:e6:b4:9f:ee:
e2:1d:c5:90:20:ff:28:84:79:ac:83:5d:5f:13:11:
7a:62:aa:68:88:bb:76:55:db:59:ed:1a:ee:36:4c:
1b:33:10:eb:11:9b:ca:c9:00:66:75:23:bc:5f:c2:
fb:19:bf:6e:92:fd:e2:c1:34:0b:2a:45:79:fb:d3:
24:f0:db:f4:3b:41:2e:7a:30:5a:4f:9b:9e:fd:aa:
a6:4f:98:86:29:2f:da:fa:63:0e:e6:8d:b4:8e:1c:
f9:6a:2a:8b:96:8e:58:9f:3c:98:af:6d:a8:be:df:
83:26:1c:92:8b:a7:a2:3a:c2:3c:97:68:a0:f1:ec:
8e:7d:cc:78:97:33:99:fc:e7:81:c7:ef:a9:16:fb:
45:61:88:78:30:95:ff:a6:11:96:30:e5:b7:d4:5e:
12:37:f1:5d:8b:3d:4c:73:0e:b7:db:6c:bb:fc:97:
4f:49:5a:9a:a2:a5:5f:c2:51:ea:2e:9b:ef:15:ba:
5e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:94:95:5D:97:8C:9B:78:D2:7E:92:99:2B:E9:1B:2A:AC:A2:95:D9
X509v3 Authority Key Identifier:
keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:f4:ff:9f:8d:20:0b:97:05:1a:fb:0c:4a:af:e3:e6:d3:9d:
12:95:60:22:8e:a8:11:9e:d6:a5:27:f7:44:80:34:50:0b:70:
63:26:bb:a6:c9:d8:56:b2:65:83:47:0a:10:02:1e:5d:cd:c6:
9a:42:3b:7f:00:85:16:8e:76:c2:32:87:58:23:57:9a:6f:7a:
5c:34:74:4b:80:28:25:ad:33:87:76:57:bf:27:4c:04:4c:1b:
e4:ae:da:4f:55:6f:ce:eb:06:b4:f7:d9:7f:52:17:4e:c1:ed:
a6:fa:a4:5b:2f:43:1d:00:dd:b9:34:3a:2b:2a:9f:09:59:f0:
44:f6:44:34:1d:a7:75:7f:46:0e:2e:bf:51:45:5c:92:8b:22:
76:91:f1:76:6a:cf:e0:4a:26:c0:a0:40:2e:22:6b:66:b1:cb:
b8:bc:7a:dd:74:7c:c9:41:96:9c:3d:8f:7f:eb:27:5a:c8:bf:
4a:7c:a5:3a:5a:96:31:f5:36:f2:0f:08:90:6d:f7:50:07:0b:
94:ef:a0:c4:9a:6b:0b:d8:9e:14:44:a6:cf:5b:45:eb:74:df:
d8:d0:43:3f:a7:d1:2d:32:a4:33:43:8d:db:17:1f:a0:a8:b0:
09:0e:37:22:78:f5:96:ff:06:24:9d:ca:19:b5:3b:e0:5a:f1:
67:ea:88:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:31:42 2025 by rpki-client