Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json)
Hash identifier: 6axcJl7wA+BR2CE+b0cxdGfwhx95wiuJfrCieWfP8tw=
Subject key identifier: 5A:4D:83:0F:33:A8:93:F6:1F:FC:6A:54:47:1B:88:B0:0D:9C:71:7F
Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Certificate serial: 0197C56F403F2D2646D3EE414F2F17829C43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
Manifest number: 01A4
Signing time: Tue 01 Jul 2025 10:01:31 +0000
Manifest this update: Tue 01 Jul 2025 10:01:31 +0000
Manifest next update: Wed 02 Jul 2025 10:01:31 +0000
Files and hashes: 1: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: THlWXfDFb85mnq8jz25mbl+GPOAn8b0GVSva4R1OZ2M=)
2: moIHrCUIysvqre1db9iG8YhXiD4.roa (hash: 3qmhRdBwt3IbZM/x/JJkjl8tv0bK7oEsrL8A8nVm2tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c5:6f:40:3f:2d:26:46:d3:ee:41:4f:2f:17:82:9c:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Validity
Not Before: Jul 1 10:01:31 2025 GMT
Not After : Jul 2 10:01:31 2025 GMT
Subject: CN=5a4d830f33a893f61ffc6a54471b88b00d9c717f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b5:0b:bd:97:e8:57:3b:df:33:76:45:e4:bc:
7a:1d:a8:76:69:cc:07:d5:71:b0:19:07:fc:02:8e:
08:16:ea:37:a5:0b:b8:ff:5c:06:7a:27:d2:5c:77:
11:06:f4:05:ad:c1:19:28:28:3e:58:59:4c:c5:bf:
08:88:b0:99:1d:4b:4d:2f:bc:70:52:e9:be:d5:8e:
b3:1a:b7:02:3c:1b:e7:d8:91:53:2c:c9:0f:17:80:
a6:34:e7:3c:97:b7:3a:c1:57:00:b0:82:f0:9d:8a:
c1:62:dc:66:29:2d:4f:e4:39:37:9a:f3:ff:7d:46:
20:59:0e:9f:2f:81:a8:28:6d:d0:1e:1e:ac:30:97:
cc:cc:42:a4:59:af:6a:06:4a:6d:7c:fe:bb:23:9b:
9f:fc:a0:0c:71:cd:28:2d:e9:f0:96:00:06:6c:8d:
82:86:6f:de:44:86:a1:c2:e6:c1:da:53:02:4c:19:
ca:f7:22:8d:86:4c:ce:a3:01:6f:d4:c0:af:28:80:
d5:cd:4b:af:1d:62:c5:3d:df:27:1e:bf:a4:e9:c9:
6e:7a:10:3d:1b:17:a1:66:8f:99:97:bb:9c:b6:1e:
82:e2:23:ff:79:96:42:32:b2:d3:28:00:dd:15:e9:
5b:02:eb:71:e1:67:05:82:69:b5:ee:4f:69:8d:73:
93:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:4D:83:0F:33:A8:93:F6:1F:FC:6A:54:47:1B:88:B0:0D:9C:71:7F
X509v3 Authority Key Identifier:
keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:b2:fe:57:76:d4:a7:5d:2f:e2:ea:bb:48:fe:5d:0e:d4:6e:
ef:cc:b2:b4:fa:73:0d:7e:25:17:b7:41:54:37:a9:37:e4:72:
51:a3:12:ac:9b:d7:8d:e0:8c:92:60:40:c2:9d:43:8d:0f:ce:
62:c2:b7:91:2f:99:7e:19:1b:70:7b:7a:d6:ed:dc:d2:6a:77:
46:ac:e1:1a:8c:76:e9:4d:e7:44:18:46:31:2e:fc:fe:7a:55:
0e:92:4d:8a:80:80:68:8a:ac:39:8b:18:25:0e:17:f7:64:de:
aa:46:0f:42:db:7b:39:dd:e4:3d:99:3e:3d:fa:fa:02:89:99:
4f:de:ee:16:d0:e2:a0:36:b9:ce:2f:a7:3d:ad:02:c8:40:6b:
f2:21:44:99:4c:8c:24:e3:72:9d:d8:54:3f:e1:8d:ba:9e:6d:
70:e3:98:23:8b:07:aa:e9:85:1d:62:f1:e2:91:1b:aa:b3:60:
69:09:48:8f:ab:78:08:79:a4:cc:f4:68:2e:27:f9:e2:0b:b6:
cc:f3:a5:ec:8a:d9:c4:41:df:b9:93:c7:42:15:a4:6d:91:7b:
25:7b:02:52:7c:dd:d7:38:23:d7:f9:4d:e5:7d:0f:b1:21:01:
b5:5b:8a:d2:33:09:cc:e6:7f:59:4f:43:b6:46:8c:11:62:6a:
80:0c:1d:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfFb0A/LSZG0+5BTy8XgpxDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyYWQzZGM0MGFjZDE4NTJmYzc0YWNkZDM3ZDhmMDdiYmIw
MjVkMTgwHhcNMjUwNzAxMTAwMTMxWhcNMjUwNzAyMTAwMTMxWjAzMTEwLwYDVQQD
Eyg1YTRkODMwZjMzYTg5M2Y2MWZmYzZhNTQ0NzFiODhiMDBkOWM3MTdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu7ULvZfoVzvfM3ZF5Lx6Hah2acwH
1XGwGQf8Ao4IFuo3pQu4/1wGeifSXHcRBvQFrcEZKCg+WFlMxb8IiLCZHUtNL7xw
Uum+1Y6zGrcCPBvn2JFTLMkPF4CmNOc8l7c6wVcAsILwnYrBYtxmKS1P5Dk3mvP/
fUYgWQ6fL4GoKG3QHh6sMJfMzEKkWa9qBkptfP67I5uf/KAMcc0oLenwlgAGbI2C
hm/eRIahwubB2lMCTBnK9yKNhkzOowFv1MCvKIDVzUuvHWLFPd8nHr+k6cluehA9
GxehZo+Zl7ucth6C4iP/eZZCMrLTKADdFelbAutx4WcFgmm17k9pjXOT5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFpNgw8zqJP2H/xqVEcbiLANnHF/MB8GA1UdIwQY
MBaAFIKtPcQKzRhS/HSs3TfY8Hu7Al0YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8yMTdiNzMtMDU2Mi00NzZlLThkODMt
ODQ5YzVjODhkYmZjLzEvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi8yMTdiNzMtMDU2Mi00NzZlLThkODMtODQ5YzVjODhkYmZj
LzEvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANbL+V3bU
p10v4uq7SP5dDtRu78yytPpzDX4lF7dBVDepN+RyUaMSrJvXjeCMkmBAwp1DjQ/O
YsK3kS+ZfhkbcHt61u3c0mp3RqzhGox26U3nRBhGMS78/npVDpJNioCAaIqsOYsY
JQ4X92TeqkYPQtt7Od3kPZk+Pfr6AomZT97uFtDioDa5zi+nPa0CyEBr8iFEmUyM
JONyndhUP+GNup5tcOOYI4sHqumFHWLx4pEbqrNgaQlIj6t4CHmkzPRoLif54gu2
zPOl7IrZxEHfuZPHQhWkbZF7JXsCUnzd1zgj1/lN5X0PsSEBtVuK0jMJzOZ/WU9D
tkaMEWJqgAwd6A==
-----END CERTIFICATE-----
Generated at Tue Jul 1 13:11:18 2025 by rpki-client