Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
File: gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft (raw, json)
Hash identifier: t5Mu48IbIra1fBZ56kGofEqmrCpjNfDAINtqilqGXA4=
Subject key identifier: B1:F5:59:D3:3F:FB:A0:55:05:11:8D:DC:29:EB:BC:7A:33:FD:97:4E
Authority key identifier: 81:66:03:83:85:B3:43:D5:5E:76:B7:28:EF:E2:3C:07:31:78:76:68
Certificate issuer: /CN=8166038385b343d55e76b728efe23c0731787668
Certificate serial: 0199FCC6BFCC4611820597966FA10E1FFC0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
Manifest number: 0FE3
Signing time: Sun 19 Oct 2025 14:01:47 +0000
Manifest this update: Sun 19 Oct 2025 14:01:47 +0000
Manifest next update: Mon 20 Oct 2025 14:01:47 +0000
Files and hashes: 1: 2iJw4EQoXKQlcgvYyAFZ8L2PyY4.roa (hash: iiK5pamhZGxd1XFCTcN85Gnci+JOI25h5MBN1jWndgw=)
2: gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl (hash: 80lwvcW0kGrEPKXO6ExBmsfSlXlpqk6GdTet+t0dNjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:bf:cc:46:11:82:05:97:96:6f:a1:0e:1f:fc:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8166038385b343d55e76b728efe23c0731787668
Validity
Not Before: Oct 19 14:01:47 2025 GMT
Not After : Oct 20 14:01:47 2025 GMT
Subject: CN=b1f559d33ffba05505118ddc29ebbc7a33fd974e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:25:a3:b6:94:0d:0f:26:23:b8:44:af:eb:50:
be:5d:32:f8:1a:0b:8c:ee:1f:bc:2d:2c:b5:6c:61:
bb:15:cb:92:51:89:42:9d:63:0a:23:44:08:fb:1f:
37:a2:94:e4:7d:8f:b2:ef:85:69:4c:4c:e7:0e:2a:
d7:8a:24:a1:d0:61:37:d8:06:0a:c9:44:6d:a1:0a:
58:56:a6:92:28:01:d0:74:fc:0b:82:dc:24:a0:f9:
91:a8:58:90:0a:c5:b0:93:17:a2:84:4a:db:6b:b4:
b1:a1:72:1e:2f:d9:8a:a5:ab:ab:5e:12:1c:26:c7:
4e:c5:10:3e:15:2e:d7:76:b3:ab:e6:20:3f:cf:01:
f0:8b:40:c6:25:2a:96:01:48:a6:39:b3:25:b2:b9:
3b:4c:1c:2e:92:db:8e:23:0c:3c:8e:84:0c:78:db:
ca:e9:ed:26:8d:5c:68:37:c9:d5:f6:24:1a:04:5f:
a8:85:07:96:be:aa:fd:f5:7e:f6:42:55:ca:74:c2:
22:c5:45:6b:96:6b:73:e0:14:b0:f5:43:58:6b:0f:
55:40:39:8e:47:84:5b:59:56:f8:91:e7:e9:cd:16:
fa:90:35:da:0e:e4:00:db:f9:67:11:49:fe:61:b2:
d5:c1:81:c3:e2:c6:29:8a:67:e5:0f:86:3f:b7:69:
90:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:F5:59:D3:3F:FB:A0:55:05:11:8D:DC:29:EB:BC:7A:33:FD:97:4E
X509v3 Authority Key Identifier:
keyid:81:66:03:83:85:B3:43:D5:5E:76:B7:28:EF:E2:3C:07:31:78:76:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:37:95:5f:53:03:6d:b3:12:d9:2c:9f:a0:ec:55:66:73:15:
45:70:07:69:19:99:39:ed:8c:ac:72:9c:cc:1b:5c:ef:37:57:
8b:97:2f:d9:3b:7d:07:65:0c:29:48:29:04:ca:87:e2:bc:85:
6b:a5:b9:6d:eb:fc:67:ce:69:d9:70:31:af:a9:b6:23:2f:ff:
6a:b6:66:2e:bb:b1:36:64:57:6b:ca:94:5e:23:09:c9:bc:b8:
43:76:9e:5a:78:33:2e:54:b7:62:6c:46:d8:8e:0d:28:3c:4d:
25:66:13:6a:36:f3:93:ab:a7:0d:61:1e:9b:0d:93:97:98:28:
5a:25:0f:82:15:ee:61:d0:93:37:66:47:ed:78:fd:f3:df:ea:
75:45:32:eb:b0:4c:c7:97:63:6c:03:e0:e0:22:37:c2:58:43:
0b:8f:6e:a9:20:e1:b9:db:8c:ad:df:f6:76:29:67:61:e0:a1:
83:36:25:7e:8a:b1:11:27:a8:f5:79:3c:8a:06:0a:57:e7:1a:
5b:5b:36:21:14:4b:23:cc:86:78:50:e0:89:a9:8b:a5:17:cd:
c6:40:ad:a5:38:dd:9a:67:d6:31:31:ff:f3:db:bf:87:a5:59:
ab:52:2a:98:3b:bb:b5:21:8b:c5:94:50:8b:ae:5a:89:23:4f:
b7:63:86:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:37 2025 by rpki-client