
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
File: gXRkmx7wDcg8KFOaOdKQs1MO37A.mft (raw, json)
Hash identifier: Cpj2ZRn+yiSZWQJlHlbcDt66S+KjgEZu1GIlraxFB48=
Subject key identifier: C7:29:B9:6D:90:A2:AA:49:DD:F9:E0:36:EB:5F:E2:6D:67:C9:71:FA
Authority key identifier: 81:74:64:9B:1E:F0:0D:C8:3C:28:53:9A:39:D2:90:B3:53:0E:DF:B0
Certificate issuer: /CN=8174649b1ef00dc83c28539a39d290b3530edfb0
Certificate serial: 0198D4E08EA23536CF8B905E8A3C6C95D7B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gXRkmx7wDcg8KFOaOdKQs1MO37A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
Manifest number: 0156
Signing time: Sat 23 Aug 2025 03:02:23 +0000
Manifest this update: Sat 23 Aug 2025 03:02:23 +0000
Manifest next update: Sun 24 Aug 2025 03:02:23 +0000
Files and hashes: 1: GQ42kTqn472NU0Utg1aKLG7W0bI.roa (hash: oM3P06tzeH7/sG3RLnC5jVN3WHhv6hvEc5nYDWBm418=)
2: gXRkmx7wDcg8KFOaOdKQs1MO37A.crl (hash: nXl/AxV00I4l3cmTwYQgbPwe4i+0DTbr4mmG2r+/I1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
rsync://rpki.ripe.net/repository/DEFAULT/gXRkmx7wDcg8KFOaOdKQs1MO37A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:8e:a2:35:36:cf:8b:90:5e:8a:3c:6c:95:d7:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8174649b1ef00dc83c28539a39d290b3530edfb0
Validity
Not Before: Aug 23 03:02:23 2025 GMT
Not After : Aug 24 03:02:23 2025 GMT
Subject: CN=c729b96d90a2aa49ddf9e036eb5fe26d67c971fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2b:2b:8d:d2:f3:b2:db:3b:6b:f7:36:b1:1f:
07:07:23:c9:b6:1d:64:b8:55:31:66:01:cc:ad:ec:
fa:e6:38:6a:62:36:21:9f:0a:ac:f0:91:13:d3:9a:
3b:75:27:b0:25:30:01:d2:e8:c5:35:4f:52:0d:f0:
de:f1:ba:07:f6:16:df:03:ec:e7:ad:96:55:a5:fb:
b6:7f:87:8d:89:98:4b:d4:3d:04:f6:90:f5:36:59:
ca:f3:22:3e:7f:63:2e:80:6c:2d:02:62:6c:3a:58:
e8:a0:2a:af:14:4e:04:70:8c:9a:a4:bc:12:50:29:
99:c0:b9:fb:08:9c:73:33:bf:b3:3c:cb:69:70:f7:
82:a6:75:a8:3d:5e:5f:08:de:e1:44:50:60:99:fd:
d0:8f:c5:38:fc:17:b7:0b:b9:8a:83:fe:12:93:05:
0b:77:11:9b:12:fe:26:ff:8c:70:7c:64:45:be:14:
02:2a:9a:20:c6:67:72:67:57:95:3a:dd:3f:43:8f:
0d:bf:06:ff:06:32:de:ed:98:32:9f:d4:d4:12:62:
ff:4a:12:c6:01:f9:ae:21:9e:7f:bd:de:16:6c:71:
3f:29:13:f7:79:79:9d:1f:96:1f:d9:ba:13:d4:74:
21:cc:07:76:53:df:64:82:f0:f6:52:47:a3:79:47:
bd:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:29:B9:6D:90:A2:AA:49:DD:F9:E0:36:EB:5F:E2:6D:67:C9:71:FA
X509v3 Authority Key Identifier:
keyid:81:74:64:9B:1E:F0:0D:C8:3C:28:53:9A:39:D2:90:B3:53:0E:DF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gXRkmx7wDcg8KFOaOdKQs1MO37A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:44:6c:f9:50:da:b9:9a:28:a8:ad:2c:8f:00:3c:fb:48:e2:
8c:10:a4:02:02:59:24:c2:07:2a:57:49:36:08:4e:61:dd:c0:
d1:e9:29:f7:ea:5b:75:12:e5:a7:7c:59:02:3e:5f:a4:b2:f2:
ff:20:0b:d8:12:59:63:04:cf:31:d9:09:e0:2f:57:81:2a:3e:
fe:eb:77:96:43:44:72:9f:e2:fc:55:7f:20:5f:cc:33:2d:85:
b3:f4:ed:68:7a:35:0b:7b:58:06:f7:5c:61:d4:8e:41:e3:ed:
98:68:04:96:32:a9:0d:29:ea:e9:1d:b5:cd:56:c4:e2:20:e6:
69:ef:17:9c:65:6c:75:d7:f1:8c:0a:ec:43:fc:ca:97:15:0b:
5b:6f:d6:d8:28:ed:79:a5:0f:b4:ef:85:76:29:d6:02:1b:52:
f3:1a:41:17:5b:ec:a2:1a:00:5e:02:9e:9e:4f:11:6e:f6:c9:
46:2f:18:66:a1:c5:18:78:17:9c:d0:2c:51:36:b9:ef:47:63:
7a:fe:5a:3e:f3:7d:15:b8:60:de:14:eb:3e:98:19:e0:24:6d:
66:45:05:ac:2e:25:c1:a7:a5:c0:e1:69:97:b6:85:1d:9a:37:
cf:e3:d1:80:75:cd:04:ba:cd:a6:4e:e3:80:fb:7a:ee:b5:92:
6e:14:ce:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:00:19 2025 by rpki-client