Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
File: gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft (raw, json)
Hash identifier: Ws6MTDoUHSmketniNzGfCoSjlOxwsGRJBkNpnb5j2S8=
Subject key identifier: 49:FF:CA:75:DF:43:99:62:F9:DC:10:A4:87:16:6A:2B:7E:69:87:9F
Authority key identifier: 81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9
Certificate issuer: /CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9
Certificate serial: 0198D583B68A74A2C133921AF1AFFB1670A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
Manifest number: 150E
Signing time: Sat 23 Aug 2025 06:00:35 +0000
Manifest this update: Sat 23 Aug 2025 06:00:35 +0000
Manifest next update: Sun 24 Aug 2025 06:00:35 +0000
Files and hashes: 1: gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl (hash: wEpHOJBsOJEFP5Lzw+5h8IpQX6s8XqC9ljc3j1pUAIU=)
2: iu1uLDkjA2lC4iCmh3mgoTg-ECs.roa (hash: J1M6seCPFdUQmcH1n+B1kmRcatuaeOrkFhV5roQrzQ8=)
3: v8ccsfcClsGmMzK5ErZ40TAGM8E.roa (hash: Q9p1muZAlrW8hgiW0f/ptqTJ13sqmr8gLFOoDcBj9jc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:b6:8a:74:a2:c1:33:92:1a:f1:af:fb:16:70:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9
Validity
Not Before: Aug 23 06:00:35 2025 GMT
Not After : Aug 24 06:00:35 2025 GMT
Subject: CN=49ffca75df439962f9dc10a487166a2b7e69879f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bf:ee:10:c5:1b:43:12:97:de:c5:eb:cd:1f:
27:c7:ac:e6:34:e4:18:61:bb:bd:91:a3:f9:87:29:
63:a5:9b:6e:6f:b5:b9:cc:f4:58:6e:ef:89:3a:57:
fe:63:77:59:92:09:8f:0d:34:ca:2c:5b:95:d0:22:
7c:e2:b1:9e:6b:fb:a5:30:1a:b5:21:ab:4a:6b:3d:
9f:c9:d1:ce:96:1f:55:1a:34:a3:3a:3d:5a:69:81:
1b:2f:08:9c:24:26:9f:71:1a:9d:54:cc:c1:17:f0:
dc:9a:ec:45:c5:78:3d:7f:59:7a:28:5e:e3:49:47:
2d:14:7a:c4:ad:2f:50:9b:2e:d1:a3:eb:aa:90:10:
8c:a9:1f:89:3c:f6:f4:9c:d6:0a:01:d8:6a:18:e3:
f6:36:b3:9a:50:94:65:4a:8c:86:48:0d:8f:cc:f6:
b1:20:de:f2:0e:75:6d:86:c4:6f:39:c1:ae:32:0e:
5b:47:37:55:55:39:ea:5b:38:30:7b:f5:a2:2f:d9:
75:e0:ce:2e:77:9e:b5:a2:46:0b:4d:14:38:ab:cd:
77:c7:25:f9:91:2f:62:65:a7:55:11:40:d2:89:a5:
5a:2c:37:4b:4a:46:9b:2b:a2:bd:88:57:cc:5b:9d:
d3:e7:ce:5d:05:2f:dd:0a:6c:ac:ea:17:14:ee:58:
cf:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:FF:CA:75:DF:43:99:62:F9:DC:10:A4:87:16:6A:2B:7E:69:87:9F
X509v3 Authority Key Identifier:
keyid:81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:88:4f:13:16:f8:eb:2b:f1:9b:02:76:86:4f:32:0a:8a:7b:
11:4a:e7:ef:08:34:8d:a6:b1:fc:c2:19:1a:95:fe:ca:d2:a3:
4d:8d:9b:98:f2:3d:8b:6d:a4:9d:5f:5f:36:c4:65:c4:8d:74:
fa:e1:1f:0f:05:62:f2:19:7a:1a:5c:4c:03:e8:91:d5:9a:d4:
4c:04:e3:b2:8a:88:be:a5:41:7d:33:fe:12:c4:8c:25:6d:b9:
65:60:7a:8f:28:62:cd:af:00:df:a5:dc:fe:eb:24:db:7b:3f:
c1:bd:59:24:92:22:fd:e7:d1:81:b2:be:ef:4e:81:1e:0f:0f:
a9:02:a9:e7:d0:d3:b4:fc:47:08:53:f1:ec:ff:d5:f6:30:bc:
35:f9:54:77:b3:0e:c8:78:af:b6:b9:49:f3:1a:1d:1a:d7:5e:
19:1e:41:0c:14:e6:23:1e:64:7b:66:64:71:67:87:ea:59:07:
2f:2a:ec:d4:b7:24:aa:e5:99:4b:72:71:84:3b:79:9b:dc:a6:
6e:ef:44:50:73:c5:b1:05:ff:7d:95:60:bf:3f:26:56:4b:04:
d1:ff:6b:64:09:a3:47:52:fb:a7:47:f2:c9:0c:9a:dd:fc:24:
33:2b:d6:52:29:bc:7b:48:ac:0a:5f:e5:06:b4:2c:bc:52:13:
50:2f:2a:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg7aKdKLBM5Ia8a/7FnCnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxYTJkMGRjZDUwYTY4MmY5NzVlYTNkOGMzOGU1ZTY3YmIw
MzIyZjkwHhcNMjUwODIzMDYwMDM1WhcNMjUwODI0MDYwMDM1WjAzMTEwLwYDVQQD
Eyg0OWZmY2E3NWRmNDM5OTYyZjlkYzEwYTQ4NzE2NmEyYjdlNjk4NzlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArb/uEMUbQxKX3sXrzR8nx6zmNOQY
Ybu9kaP5hyljpZtub7W5zPRYbu+JOlf+Y3dZkgmPDTTKLFuV0CJ84rGea/ulMBq1
IatKaz2fydHOlh9VGjSjOj1aaYEbLwicJCafcRqdVMzBF/DcmuxFxXg9f1l6KF7j
SUctFHrErS9Qmy7Ro+uqkBCMqR+JPPb0nNYKAdhqGOP2NrOaUJRlSoyGSA2PzPax
IN7yDnVthsRvOcGuMg5bRzdVVTnqWzgwe/WiL9l14M4ud561okYLTRQ4q813xyX5
kS9iZadVEUDSiaVaLDdLSkabK6K9iFfMW53T585dBS/dCmys6hcU7ljPYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEn/ynXfQ5li+dwQpIcWait+aYefMB8GA1UdIwQY
MBaAFIGi0NzVCmgvl16j2MOOXme7AyL5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2FMUTNOVUthQy1YWHFQWXc0NWVaN3NESXZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9kMjVhNzItYmJlMy00YWIwLTk1NjQt
ZmU0NWQ1MTYwYzM5LzEvZ2FMUTNOVUthQy1YWHFQWXc0NWVaN3NESXZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9kMjVhNzItYmJlMy00YWIwLTk1NjQtZmU0NWQ1MTYwYzM5
LzEvZ2FMUTNOVUthQy1YWHFQWXc0NWVaN3NESXZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAohPExb4
6yvxmwJ2hk8yCop7EUrn7wg0jaax/MIZGpX+ytKjTY2bmPI9i22knV9fNsRlxI10
+uEfDwVi8hl6GlxMA+iR1ZrUTATjsoqIvqVBfTP+EsSMJW25ZWB6jyhiza8A36Xc
/usk23s/wb1ZJJIi/efRgbK+706BHg8PqQKp59DTtPxHCFPx7P/V9jC8NflUd7MO
yHivtrlJ8xodGtdeGR5BDBTmIx5ke2ZkcWeH6lkHLyrs1LckquWZS3JxhDt5m9ym
bu9EUHPFsQX/fZVgvz8mVksE0f9rZAmjR1L7p0fyyQya3fwkMyvWUim8e0isCl/l
BrQsvFITUC8qCQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:09 2025 by rpki-client