Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft
File: gQrwAiUQayCW6bIdmsLyBAaI3qI.mft (raw, json)
Hash identifier: 4jOg5GmCMwfe4XO58LuT8bGSTkQxOVrL/+4nw38boas=
Subject key identifier: 70:D9:6C:F2:31:8A:1C:A6:31:95:BB:21:F5:1F:66:5A:4C:FF:16:C2
Authority key identifier: 81:0A:F0:02:25:10:6B:20:96:E9:B2:1D:9A:C2:F2:04:06:88:DE:A2
Certificate issuer: /CN=810af00225106b2096e9b21d9ac2f2040688dea2
Certificate serial: 0199FB7C7EB62528DB0278A4656021B4BC00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft
Manifest number: 0A28
Signing time: Sun 19 Oct 2025 08:01:04 +0000
Manifest this update: Sun 19 Oct 2025 08:01:04 +0000
Manifest next update: Mon 20 Oct 2025 08:01:04 +0000
Files and hashes: 1: fvmPK9oBYawf3WrvWH2W-IrLack.roa (hash: jbyIzGoc+3nZMPPaYxP5PgX+7SvKTCObiN1ijSSrLNI=)
2: gQrwAiUQayCW6bIdmsLyBAaI3qI.crl (hash: C/Yu5ITEsxRd427iAG//1qJiGQMRtNmV4kSmI78eEE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:7e:b6:25:28:db:02:78:a4:65:60:21:b4:bc:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=810af00225106b2096e9b21d9ac2f2040688dea2
Validity
Not Before: Oct 19 08:01:04 2025 GMT
Not After : Oct 20 08:01:04 2025 GMT
Subject: CN=70d96cf2318a1ca63195bb21f51f665a4cff16c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f7:a3:fb:8c:cf:0d:7c:e7:b2:19:d5:82:06:
cc:ba:9d:b9:54:24:f0:c9:f3:7f:62:ca:fe:0e:22:
4f:d6:ed:0d:d8:26:90:36:3e:61:6f:69:73:bc:d5:
74:2f:78:db:2e:96:35:4b:06:5e:dc:d1:28:41:d9:
5f:dc:61:28:04:04:92:8c:8f:1f:f3:78:67:76:e1:
a2:b2:ff:22:07:7a:c9:d3:c2:1f:5d:13:a2:5b:53:
41:75:fa:b7:10:ff:56:f9:6a:4e:91:13:00:1e:58:
3c:bd:7e:9b:f6:61:23:d0:91:02:b5:db:89:8f:b1:
a0:12:a4:25:42:7f:34:ab:45:a8:0e:64:d4:4c:c7:
57:45:e6:e5:70:4e:8d:6b:bb:27:ca:a1:91:50:ac:
98:0b:c3:c5:28:ec:01:21:9f:c7:77:a4:95:6a:71:
59:bf:60:38:9d:32:9e:4c:a7:06:cb:4e:bb:9e:da:
bf:04:49:c6:8a:68:b0:e5:4d:cd:8b:4f:8c:18:f8:
2e:aa:a4:5a:8b:3a:13:56:84:6d:19:b2:0b:97:b2:
15:68:c1:31:cf:91:d4:9c:ae:37:6f:6e:fc:03:81:
9c:bc:b7:71:66:d0:b1:2c:77:53:65:7a:0c:90:95:
0b:76:b8:91:8f:d8:26:7a:7e:4e:9d:c3:73:70:5b:
be:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D9:6C:F2:31:8A:1C:A6:31:95:BB:21:F5:1F:66:5A:4C:FF:16:C2
X509v3 Authority Key Identifier:
keyid:81:0A:F0:02:25:10:6B:20:96:E9:B2:1D:9A:C2:F2:04:06:88:DE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:aa:bd:f0:1c:11:71:7a:4f:d5:f3:ca:8f:2d:87:94:8f:2a:
5f:13:c6:6d:18:12:12:a9:bb:3f:63:52:8e:72:8d:05:55:e4:
c6:cb:9e:48:cf:0a:6c:0c:ff:f9:ef:b4:e2:6e:78:57:d7:45:
a5:76:f4:fa:2d:a9:60:0b:e5:37:0f:cd:b8:fa:c7:dd:af:de:
61:c2:ef:58:22:3a:d4:85:d2:22:6a:de:a8:11:8f:7e:71:f6:
3e:78:5f:1b:5d:b8:8d:dc:f9:84:60:55:de:31:7b:4d:92:bb:
9e:e3:31:b4:c4:fd:31:bb:02:07:ed:b6:8c:cb:f6:e0:75:cf:
db:f6:4b:09:79:d2:bc:db:68:ee:c0:9f:4c:c7:7c:d8:a6:a6:
0c:f7:38:66:ce:e5:fa:6a:b7:3c:1b:cc:06:bf:0c:af:45:20:
8d:ee:88:53:ae:b7:22:f7:d8:13:61:a1:f2:6c:ae:0e:51:01:
3f:b2:94:6b:37:6d:66:a3:44:03:61:4c:c8:75:ae:74:db:f0:
34:6f:55:de:7b:ab:e8:67:31:6b:98:04:a5:06:f7:6a:61:bf:
57:39:1b:5a:c1:0b:1d:20:07:44:d4:71:6e:b4:8d:ae:ce:f0:
76:fb:04:a8:e9:dc:92:32:ed:c1:74:f1:eb:78:81:64:2d:d1:
78:ff:0e:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fH62JSjbAnikZWAhtLwAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxMGFmMDAyMjUxMDZiMjA5NmU5YjIxZDlhYzJmMjA0MDY4
OGRlYTIwHhcNMjUxMDE5MDgwMTA0WhcNMjUxMDIwMDgwMTA0WjAzMTEwLwYDVQQD
Eyg3MGQ5NmNmMjMxOGExY2E2MzE5NWJiMjFmNTFmNjY1YTRjZmYxNmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/ej+4zPDXznshnVggbMup25VCTw
yfN/Ysr+DiJP1u0N2CaQNj5hb2lzvNV0L3jbLpY1SwZe3NEoQdlf3GEoBASSjI8f
83hnduGisv8iB3rJ08IfXROiW1NBdfq3EP9W+WpOkRMAHlg8vX6b9mEj0JECtduJ
j7GgEqQlQn80q0WoDmTUTMdXReblcE6Na7snyqGRUKyYC8PFKOwBIZ/Hd6SVanFZ
v2A4nTKeTKcGy067ntq/BEnGimiw5U3Ni0+MGPguqqRaizoTVoRtGbILl7IVaMEx
z5HUnK43b278A4GcvLdxZtCxLHdTZXoMkJULdriRj9gmen5OncNzcFu+GQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHDZbPIxihymMZW7IfUfZlpM/xbCMB8GA1UdIwQY
MBaAFIEK8AIlEGsglumyHZrC8gQGiN6iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1Fyd0FpVVFheUNXNmJJZG1zTHlCQWFJM3FJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC80NDJhOWItOWVkNy00OTNkLTgzZjMt
M2NhNDg4ZGVlZTg5LzEvZ1Fyd0FpVVFheUNXNmJJZG1zTHlCQWFJM3FJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC80NDJhOWItOWVkNy00OTNkLTgzZjMtM2NhNDg4ZGVlZTg5
LzEvZ1Fyd0FpVVFheUNXNmJJZG1zTHlCQWFJM3FJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABKq98BwR
cXpP1fPKjy2HlI8qXxPGbRgSEqm7P2NSjnKNBVXkxsueSM8KbAz/+e+04m54V9dF
pXb0+i2pYAvlNw/NuPrH3a/eYcLvWCI61IXSImreqBGPfnH2PnhfG124jdz5hGBV
3jF7TZK7nuMxtMT9MbsCB+22jMv24HXP2/ZLCXnSvNto7sCfTMd82KamDPc4Zs7l
+mq3PBvMBr8Mr0Ugje6IU663IvfYE2Gh8myuDlEBP7KUazdtZqNEA2FMyHWudNvw
NG9V3nur6Gcxa5gEpQb3amG/VzkbWsELHSAHRNRxbrSNrs7wdvsEqOnckjLtwXTx
63iBZC3ReP8O7w==
-----END CERTIFICATE-----
Generated at Sun Oct 19 12:52:36 2025 by rpki-client