Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft
File: gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft (raw, json)
Hash identifier: 4z0x4ofu1qPdL9aS1/QPFqd5z7XemWNhKTyqpOeO51U=
Subject key identifier: 9F:9F:A3:A5:B4:18:18:7F:60:CE:56:0B:3D:FA:D3:52:E7:1E:A9:9F
Authority key identifier: 83:3A:0B:55:94:33:9A:EF:E8:B5:58:E3:72:92:90:B4:2B:B1:A9:74
Certificate issuer: /CN=833a0b5594339aefe8b558e3729290b42bb1a974
Certificate serial: 0199FCC6CDB887E1172E8054C2309C38BF32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzoLVZQzmu_otVjjcpKQtCuxqXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft
Manifest number: 105B
Signing time: Sun 19 Oct 2025 14:01:51 +0000
Manifest this update: Sun 19 Oct 2025 14:01:51 +0000
Manifest next update: Mon 20 Oct 2025 14:01:51 +0000
Files and hashes: 1: 1-27kWYKAbmGvckcGXREu8_O6E5Q.roa (hash: TMyKOohNPE+V9J//F3lIZGfAGQhVpkDHjFotXauXdgo=)
2: gzoLVZQzmu_otVjjcpKQtCuxqXQ.crl (hash: zfMA2yenUbi7Gvt+KU4YdMmLLqRoUvjxEZgEUmQWLBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzoLVZQzmu_otVjjcpKQtCuxqXQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:cd:b8:87:e1:17:2e:80:54:c2:30:9c:38:bf:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833a0b5594339aefe8b558e3729290b42bb1a974
Validity
Not Before: Oct 19 14:01:51 2025 GMT
Not After : Oct 20 14:01:51 2025 GMT
Subject: CN=9f9fa3a5b418187f60ce560b3dfad352e71ea99f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:16:21:80:8c:ae:36:77:a1:e8:05:f8:bf:27:
b5:88:fe:de:11:ec:7b:56:02:67:02:58:59:f2:4d:
d6:cf:7e:08:5e:9f:ae:6d:db:33:7b:db:57:57:fa:
98:c6:9c:6e:d6:53:76:6c:54:47:d1:0f:04:d8:d6:
a7:82:cc:14:ac:58:c0:04:7c:55:62:45:f7:20:ca:
05:ff:18:a9:fd:04:22:4f:66:17:6b:3b:fc:aa:89:
b6:f7:ed:5e:2e:f3:ca:2b:6e:6e:c6:8a:fc:cb:ab:
64:fb:b5:61:5b:2c:31:d2:d4:73:0b:9d:e8:cf:0e:
8a:16:b8:1c:90:8b:b0:33:4e:61:cc:c4:ec:09:a3:
43:9a:49:ca:ad:30:3e:32:1f:5a:41:cf:02:50:aa:
23:20:e5:00:58:1f:dc:01:25:76:f8:a4:1f:cd:58:
44:03:72:7a:a7:ca:e6:5e:bc:69:9e:88:e0:61:f5:
60:6b:0b:6e:f6:1f:0a:a4:48:5f:d2:ef:44:58:72:
92:ca:8f:ed:30:ba:e4:d0:8e:e7:d3:ca:68:f7:60:
c0:37:f4:d3:4a:8d:29:73:76:53:9d:97:2b:8d:b9:
3c:f5:ff:e6:65:5c:cf:36:7c:57:a2:be:65:05:a5:
77:67:90:2c:e5:96:88:17:61:6c:28:e5:ab:20:92:
f5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:9F:A3:A5:B4:18:18:7F:60:CE:56:0B:3D:FA:D3:52:E7:1E:A9:9F
X509v3 Authority Key Identifier:
keyid:83:3A:0B:55:94:33:9A:EF:E8:B5:58:E3:72:92:90:B4:2B:B1:A9:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzoLVZQzmu_otVjjcpKQtCuxqXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:00:ab:50:79:b0:8b:fd:88:63:1f:31:16:08:6d:60:5b:ae:
26:fc:b4:08:a3:01:3c:9d:89:67:45:23:2a:4e:cc:dd:40:8b:
b2:67:0a:a8:3b:6a:5a:51:8a:eb:24:00:b2:67:d0:b9:74:7e:
25:19:8c:b4:b4:19:a8:27:ef:1f:a7:b7:e4:19:d7:2e:56:45:
7c:f8:f9:0b:4d:c7:a0:2c:4f:5e:dc:03:71:81:b5:b8:f2:7c:
e0:5b:99:36:c5:d5:12:9e:52:9b:7b:8c:c6:5a:87:c7:27:a2:
c0:53:4e:06:b3:f9:ad:5d:7a:44:0e:95:13:3b:c4:3c:e1:19:
ef:1e:cb:09:f0:6d:b9:89:87:7f:00:d5:85:9f:62:06:7c:5c:
bf:96:e9:05:5d:96:3f:1d:25:3d:a2:a1:be:b8:2c:18:ed:6c:
a3:fb:ec:00:59:b4:f9:fb:2c:4e:5e:67:6c:c8:8f:f7:ff:c5:
de:d9:9c:2b:09:4a:2e:02:d1:cc:a5:36:97:55:9a:9f:cf:8d:
f9:cd:ed:5f:d0:90:ba:62:12:dd:e2:ba:8a:db:ca:7f:3e:f7:
96:e0:4a:d0:f3:4d:60:51:25:41:47:13:82:9c:6d:4f:fb:be:
58:d6:df:0b:64:ae:4b:09:a3:fd:e5:27:94:11:8a:d4:64:4f:
2b:52:74:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xs24h+EXLoBUwjCcOL8yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2EwYjU1OTQzMzlhZWZlOGI1NThlMzcyOTI5MGI0MmJi
MWE5NzQwHhcNMjUxMDE5MTQwMTUxWhcNMjUxMDIwMTQwMTUxWjAzMTEwLwYDVQQD
Eyg5ZjlmYTNhNWI0MTgxODdmNjBjZTU2MGIzZGZhZDM1MmU3MWVhOTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7BYhgIyuNneh6AX4vye1iP7eEex7
VgJnAlhZ8k3Wz34IXp+ubdsze9tXV/qYxpxu1lN2bFRH0Q8E2NangswUrFjABHxV
YkX3IMoF/xip/QQiT2YXazv8qom29+1eLvPKK25uxor8y6tk+7VhWywx0tRzC53o
zw6KFrgckIuwM05hzMTsCaNDmknKrTA+Mh9aQc8CUKojIOUAWB/cASV2+KQfzVhE
A3J6p8rmXrxpnojgYfVgawtu9h8KpEhf0u9EWHKSyo/tMLrk0I7n08po92DAN/TT
So0pc3ZTnZcrjbk89f/mZVzPNnxXor5lBaV3Z5As5ZaIF2FsKOWrIJL1dQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ+fo6W0GBh/YM5WCz3601LnHqmfMB8GA1UdIwQY
MBaAFIM6C1WUM5rv6LVY43KSkLQrsal0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3pvTFZaUXptdV9vdFZqamNwS1F0Q3V4cVhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy83NjYwNmUtNzI0My00YjBiLTgyYTMt
M2QwNmQyNDJmOTkyLzEvZ3pvTFZaUXptdV9vdFZqamNwS1F0Q3V4cVhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy83NjYwNmUtNzI0My00YjBiLTgyYTMtM2QwNmQyNDJmOTky
LzEvZ3pvTFZaUXptdV9vdFZqamNwS1F0Q3V4cVhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAowCrUHmw
i/2IYx8xFghtYFuuJvy0CKMBPJ2JZ0UjKk7M3UCLsmcKqDtqWlGK6yQAsmfQuXR+
JRmMtLQZqCfvH6e35BnXLlZFfPj5C03HoCxPXtwDcYG1uPJ84FuZNsXVEp5Sm3uM
xlqHxyeiwFNOBrP5rV16RA6VEzvEPOEZ7x7LCfBtuYmHfwDVhZ9iBnxcv5bpBV2W
Px0lPaKhvrgsGO1so/vsAFm0+fssTl5nbMiP9//F3tmcKwlKLgLRzKU2l1Wan8+N
+c3tX9CQumIS3eK6itvKfz73luBK0PNNYFElQUcTgpxtT/u+WNbfC2SuSwmj/eUn
lBGK1GRPK1J05w==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:39:23 2025 by rpki-client