Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft
File: G_A9uL9mABk75I-xDm4xa4tfiOM.mft (raw, json)
Hash identifier: 12eJbe89yepZdaj5n9PYK7qa/dYL4ETWnELYh8DVW5g=
Subject key identifier: 48:84:E9:91:07:AE:A8:CC:37:B2:16:E7:34:1D:55:06:AF:F6:0C:F6
Authority key identifier: 1B:F0:3D:B8:BF:66:00:19:3B:E4:8F:B1:0E:6E:31:6B:8B:5F:88:E3
Certificate issuer: /CN=1bf03db8bf6600193be48fb10e6e316b8b5f88e3
Certificate serial: 0199FF22E133687CA094745BFFACCAB365F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G_A9uL9mABk75I-xDm4xa4tfiOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft
Manifest number: 062B
Signing time: Mon 20 Oct 2025 01:01:39 +0000
Manifest this update: Mon 20 Oct 2025 01:01:39 +0000
Manifest next update: Tue 21 Oct 2025 01:01:39 +0000
Files and hashes: 1: G_A9uL9mABk75I-xDm4xa4tfiOM.crl (hash: CV6aENxkYpTH7B3T8EzKlPmfnbpgae1yDcTBae5mwzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/G_A9uL9mABk75I-xDm4xa4tfiOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:e1:33:68:7c:a0:94:74:5b:ff:ac:ca:b3:65:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bf03db8bf6600193be48fb10e6e316b8b5f88e3
Validity
Not Before: Oct 20 01:01:39 2025 GMT
Not After : Oct 21 01:01:39 2025 GMT
Subject: CN=4884e99107aea8cc37b216e7341d5506aff60cf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e2:75:24:d9:40:b9:c9:fe:a9:cc:3b:c5:37:
ed:42:d0:89:c4:47:07:f8:c8:69:07:87:69:74:3c:
b7:84:93:d6:83:69:74:e5:f1:07:d7:4f:78:44:3b:
06:a7:2d:96:47:8e:00:bf:9f:7c:f2:7a:06:22:11:
b7:3d:83:31:ee:97:4e:5e:36:b3:29:1a:82:46:76:
eb:ce:29:c5:3b:31:d0:2e:e1:05:7e:f9:c4:26:c5:
18:7a:5d:31:ee:29:21:f4:3c:27:87:9a:5b:3b:52:
da:60:64:b7:22:e7:10:3f:1d:62:09:55:ee:98:c8:
e5:bf:35:c8:da:e1:87:82:5e:2e:58:a0:65:6b:2d:
3e:43:3e:42:53:bb:0f:7a:bc:87:e0:84:d0:f5:32:
00:30:40:8e:2f:fb:0d:7d:10:82:4c:a3:f7:3a:c1:
fd:d3:99:61:67:45:b6:6d:3c:fd:f6:d6:83:c8:64:
bc:d5:23:fa:5a:b2:82:56:b6:01:6e:19:aa:d7:fa:
88:9b:a4:40:c2:ab:6e:e1:2c:4e:61:d6:e3:44:f3:
03:54:f5:5b:a7:7e:60:26:e2:51:2d:fe:68:8c:67:
53:2b:7e:a6:f8:2d:9a:e8:d3:4e:99:01:42:f0:d6:
38:56:1b:88:38:8f:3e:91:58:2b:7b:36:75:d5:0f:
69:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:84:E9:91:07:AE:A8:CC:37:B2:16:E7:34:1D:55:06:AF:F6:0C:F6
X509v3 Authority Key Identifier:
keyid:1B:F0:3D:B8:BF:66:00:19:3B:E4:8F:B1:0E:6E:31:6B:8B:5F:88:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_A9uL9mABk75I-xDm4xa4tfiOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:d3:c5:82:2d:a6:a8:ee:0d:56:81:c7:91:2e:b1:0f:9b:c8:
86:4e:54:28:11:6f:36:0d:3e:51:53:22:23:71:e7:0b:60:24:
76:6a:b1:73:b9:c7:4b:da:64:aa:6c:94:f1:75:48:66:39:61:
bf:39:2f:89:54:66:de:31:7c:e7:55:22:2d:ee:cf:64:6d:09:
b1:23:e4:cf:df:65:c4:f5:91:21:9b:9f:b1:98:63:03:04:73:
70:25:db:9f:d3:b6:fd:90:b8:2a:04:42:2f:f2:69:aa:a8:18:
1c:89:a9:fd:fe:9a:d5:12:bb:8a:1e:3d:8e:54:82:ec:28:56:
3d:04:2a:f1:d2:07:06:ee:a8:58:51:50:50:89:be:df:f8:73:
75:51:36:2c:cf:0a:57:d9:4c:3e:32:29:51:6d:3d:08:65:da:
8c:56:8c:43:63:ad:02:42:2e:67:2b:4e:44:8f:25:94:b6:35:
66:aa:88:19:a9:f6:c9:c9:d6:46:a3:6a:c0:31:af:8e:8a:61:
5b:7d:eb:02:9c:0d:67:ec:1c:38:4f:d4:f5:25:58:54:c9:c9:
30:05:29:ad:11:a8:d3:ba:4d:ce:16:29:06:24:9f:49:80:3a:
68:bf:d6:d4:a8:d7:d5:2b:47:c4:95:aa:66:0f:fb:dc:15:83:
e2:d3:e6:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 07:31:22 2025 by rpki-client