Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
File: G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft (raw, json)
Hash identifier: C2iJFNkXWxiGMDAl6yxbDGmaodAqSCKjS4vvOFmtUGo=
Subject key identifier: 61:11:9A:79:D8:E9:3B:63:AA:B9:43:E9:03:E3:14:5D:8E:FF:81:30
Authority key identifier: 1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE
Certificate issuer: /CN=1b69301fa8d788e02f7eb2fa8802109074206cfe
Certificate serial: 0199FBEBE6179046AF93A1DFE036619F14CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
Manifest number: 0288
Signing time: Sun 19 Oct 2025 10:02:45 +0000
Manifest this update: Sun 19 Oct 2025 10:02:45 +0000
Manifest next update: Mon 20 Oct 2025 10:02:45 +0000
Files and hashes: 1: G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl (hash: YPNtVdJXhlc3QJR7V9UXUGKi887Mm3cg32c4IcBBiKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:e6:17:90:46:af:93:a1:df:e0:36:61:9f:14:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b69301fa8d788e02f7eb2fa8802109074206cfe
Validity
Not Before: Oct 19 10:02:45 2025 GMT
Not After : Oct 20 10:02:45 2025 GMT
Subject: CN=61119a79d8e93b63aab943e903e3145d8eff8130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:45:ba:24:ea:3b:32:d5:56:31:94:db:a3:62:
64:3b:3d:ab:7d:6c:4c:e6:ba:32:69:61:78:18:8f:
89:67:9b:2b:df:6f:0b:e3:4a:a4:bb:a2:19:6f:45:
6e:6f:8f:7e:84:79:2d:19:0d:b3:7d:59:4c:3e:12:
0f:0c:cf:ee:02:b5:21:e0:69:3f:30:eb:26:af:80:
d9:6c:b3:aa:f3:06:0d:31:c5:e9:8b:a5:c0:9d:8d:
88:3b:ed:62:c6:34:81:67:55:3d:e1:d5:c8:01:42:
b6:98:a8:07:f6:71:7f:51:57:56:7b:60:99:80:f2:
da:47:01:e5:df:5a:ea:a0:cb:31:8f:61:47:dc:87:
ed:da:52:a7:04:33:54:5b:e4:b4:52:b5:c9:cf:e3:
ba:ec:9d:1b:95:ea:23:d9:68:0a:70:26:a9:fe:26:
f1:96:f4:18:ff:98:fe:b1:a0:5f:3e:16:00:29:23:
e7:83:03:9b:ce:9e:6f:21:18:62:df:f3:ca:2f:f4:
55:39:24:88:86:ae:fb:8c:90:0d:6d:1c:bf:b3:36:
4a:02:f6:15:0f:9e:c5:29:71:40:02:c2:88:d7:fd:
d3:75:8f:a5:39:66:ef:fe:c7:fd:d0:67:76:93:b8:
3b:dc:97:9c:bc:89:29:50:6e:a8:aa:dd:83:0a:fa:
4a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:11:9A:79:D8:E9:3B:63:AA:B9:43:E9:03:E3:14:5D:8E:FF:81:30
X509v3 Authority Key Identifier:
keyid:1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:63:d6:94:b7:bc:ba:e9:e5:9d:49:aa:a5:c9:6b:da:68:be:
fe:c9:30:51:08:97:7a:14:b2:d1:ed:40:d0:0d:d2:d2:ad:7b:
f1:ca:6b:a0:2e:70:d7:57:6e:c8:d7:7e:97:0d:82:6f:9b:e6:
9e:b1:3c:6b:bd:9b:69:78:6f:dd:bc:6e:e5:17:b7:52:e8:ea:
9b:8a:0c:45:87:f6:68:01:13:5b:fb:0d:d2:a8:2f:96:84:35:
8f:ca:17:9a:d6:7c:38:ad:66:e0:1b:da:1c:f6:00:c4:b5:3f:
44:b3:57:5c:43:8b:de:7a:43:83:41:be:23:97:e5:25:1d:26:
5d:19:8a:07:d2:de:5b:3f:f7:df:9e:5d:35:68:b8:2f:ae:d8:
36:f4:20:21:fd:b2:ea:4a:f0:98:73:20:57:26:36:72:5e:a5:
8e:23:3b:8d:11:ac:86:ff:88:1c:88:d6:23:7e:b6:75:cd:ba:
d7:79:3c:0a:7b:e2:27:18:b9:03:cd:8f:a8:b1:02:77:9f:dc:
96:80:7b:2f:f1:1a:32:b8:c6:b3:c8:46:43:5f:30:b8:c6:45:
18:5a:66:c2:b4:0d:0e:c2:60:e8:ea:59:3c:9a:95:2c:d3:2f:
f3:e6:d3:49:c6:12:8c:a6:fa:93:58:8b:9e:32:1d:2b:d6:1b:
eb:3f:11:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76+YXkEavk6Hf4DZhnxTOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiNjkzMDFmYThkNzg4ZTAyZjdlYjJmYTg4MDIxMDkwNzQy
MDZjZmUwHhcNMjUxMDE5MTAwMjQ1WhcNMjUxMDIwMTAwMjQ1WjAzMTEwLwYDVQQD
Eyg2MTExOWE3OWQ4ZTkzYjYzYWFiOTQzZTkwM2UzMTQ1ZDhlZmY4MTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokW6JOo7MtVWMZTbo2JkOz2rfWxM
5royaWF4GI+JZ5sr328L40qku6IZb0Vub49+hHktGQ2zfVlMPhIPDM/uArUh4Gk/
MOsmr4DZbLOq8wYNMcXpi6XAnY2IO+1ixjSBZ1U94dXIAUK2mKgH9nF/UVdWe2CZ
gPLaRwHl31rqoMsxj2FH3Ift2lKnBDNUW+S0UrXJz+O67J0bleoj2WgKcCap/ibx
lvQY/5j+saBfPhYAKSPngwObzp5vIRhi3/PKL/RVOSSIhq77jJANbRy/szZKAvYV
D57FKXFAAsKI1/3TdY+lOWbv/sf90Gd2k7g73JecvIkpUG6oqt2DCvpKvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGERmnnY6TtjqrlD6QPjFF2O/4EwMB8GA1UdIwQY
MBaAFBtpMB+o14jgL36y+ogCEJB0IGz+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzJrd0g2alhpT0F2ZnJMNmlBSVFrSFFnYlA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS81ZDcyOGEtOTNkYS00ODBiLWE3MzUt
NDE2YzI4Nzk4ZmUyLzEvRzJrd0g2alhpT0F2ZnJMNmlBSVFrSFFnYlA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS81ZDcyOGEtOTNkYS00ODBiLWE3MzUtNDE2YzI4Nzk4ZmUy
LzEvRzJrd0g2alhpT0F2ZnJMNmlBSVFrSFFnYlA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0WPWlLe8
uunlnUmqpclr2mi+/skwUQiXehSy0e1A0A3S0q178cproC5w11duyNd+lw2Cb5vm
nrE8a72baXhv3bxu5Re3Uujqm4oMRYf2aAETW/sN0qgvloQ1j8oXmtZ8OK1m4Bva
HPYAxLU/RLNXXEOL3npDg0G+I5flJR0mXRmKB9LeWz/3355dNWi4L67YNvQgIf2y
6krwmHMgVyY2cl6ljiM7jRGshv+IHIjWI362dc2613k8CnviJxi5A82PqLECd5/c
loB7L/EaMrjGs8hGQ18wuMZFGFpmwrQNDsJg6OpZPJqVLNMv8+bTScYSjKb6k1iL
njIdK9Yb6z8Rig==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:14 2025 by rpki-client