Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
File: G2uUO5o9_2loAVFr6EcbxFiFZug.mft (raw, json)
Hash identifier: ALQGS5weTXfV8NBraRZqEr+Af6G1Xzm+DjeRHhvysv4=
Subject key identifier: 0A:56:32:86:8F:C5:E9:0E:FC:38:0D:AB:39:65:45:A9:93:78:A2:61
Authority key identifier: 1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8
Certificate issuer: /CN=1b6b943b9a3dff696801516be8471bc4588566e8
Certificate serial: 0199FC8F4972402E02AD3D569855C9CEBAA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
Manifest number: 1387
Signing time: Sun 19 Oct 2025 13:01:12 +0000
Manifest this update: Sun 19 Oct 2025 13:01:12 +0000
Manifest next update: Mon 20 Oct 2025 13:01:12 +0000
Files and hashes: 1: 1ISrUMvXtY8idtkbmSmcNCBmXOs.roa (hash: JdzcjRC1qPASLJAyKXCJZ2jvTuTxM21yeidKZ9A5IsQ=)
2: G2uUO5o9_2loAVFr6EcbxFiFZug.crl (hash: Pm9PxYMJssqt7I4bSh8gfoBO9GjS9Txy/cGS04pxvm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:49:72:40:2e:02:ad:3d:56:98:55:c9:ce:ba:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b6b943b9a3dff696801516be8471bc4588566e8
Validity
Not Before: Oct 19 13:01:12 2025 GMT
Not After : Oct 20 13:01:12 2025 GMT
Subject: CN=0a5632868fc5e90efc380dab396545a99378a261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7e:f1:b4:e8:eb:a4:56:2c:a3:af:a4:aa:9f:
8c:31:b0:3f:23:e3:18:fa:c0:f0:0a:83:35:4a:db:
83:bb:0d:ad:a5:2b:f8:2d:c7:9b:5f:1d:ab:85:a4:
9a:6b:bc:8d:d2:a5:f5:05:ca:85:7f:7f:a4:31:a5:
d9:ef:93:b9:da:d4:30:6a:a5:07:35:e0:67:f7:d6:
61:7f:bc:36:69:3e:1f:20:be:fc:8d:36:60:59:61:
56:aa:4d:b5:8d:ea:8d:84:f6:49:59:75:b3:be:89:
cf:e3:e5:e1:17:9c:b0:43:1a:af:a8:44:46:34:19:
df:45:ec:d5:b5:5a:d8:54:58:7f:7c:c2:05:77:5b:
59:38:a6:b7:04:af:82:94:76:1a:68:74:57:06:3c:
06:82:d9:d9:67:8b:ed:4d:b0:45:2d:ec:6a:96:b8:
13:0c:79:0f:e1:7b:b6:9d:24:1c:c7:22:ce:db:dc:
3e:84:ab:79:8f:8c:f3:87:9d:03:99:b7:f6:5b:74:
51:68:f3:2a:88:69:d1:ba:bc:a7:a6:b5:bb:e1:a4:
43:d8:33:35:96:b1:36:4a:4f:84:fa:6a:41:90:ae:
b1:01:45:64:6a:83:c1:d9:5c:28:d1:da:13:d5:92:
a7:ac:e3:84:5c:52:37:0b:06:33:4a:d5:0a:e6:29:
c9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:56:32:86:8F:C5:E9:0E:FC:38:0D:AB:39:65:45:A9:93:78:A2:61
X509v3 Authority Key Identifier:
keyid:1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:27:d4:e2:b0:d7:b0:a2:58:99:4c:5b:1f:f0:04:5d:c8:09:
97:cc:7a:e5:0c:bd:20:ed:ae:e6:55:98:b7:d7:d9:c2:9d:97:
42:03:6c:a7:50:9e:30:68:31:39:9e:97:53:ec:8c:8a:97:b1:
52:70:28:58:bb:de:68:22:43:9d:61:5b:e3:77:a4:f4:50:bc:
28:6b:ef:0f:82:73:55:e8:5e:46:28:cd:29:32:cd:b2:d8:63:
dc:8f:7e:f4:6e:60:a7:a7:cd:48:88:82:04:83:98:14:d0:7e:
cd:8a:c7:79:61:f1:a6:46:74:fa:b2:6e:a8:32:a6:e9:78:ac:
3c:d7:af:e6:b9:d0:82:9c:ed:51:6f:65:18:32:92:20:9a:ef:
0f:8a:fa:b3:b4:1e:f9:56:2a:27:9e:26:e8:9f:b6:1d:3a:c8:
a5:8d:c7:b3:9c:1d:2c:81:80:5c:be:25:d2:7b:7b:e6:22:db:
38:e2:a9:49:71:eb:f0:81:ce:7c:2b:e5:0e:83:f7:fb:9a:c9:
f1:eb:5b:54:ed:1b:81:84:25:a6:18:66:13:90:b7:b2:c6:ab:
10:10:d3:00:7b:b0:fc:9c:1a:34:58:b8:09:5b:52:06:5d:89:
81:87:05:7b:63:23:e9:b6:e3:71:c8:ba:a5:a5:cc:4e:06:9b:
09:f6:de:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:34:46 2025 by rpki-client