Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
File: GZdiXDlfuGf12AjVNZehHOfzxMs.mft (raw, json)
Hash identifier: sq4C4N0Elq4zU9FbkAVFnYorrK01v2+c/nwRTQe/Lsw=
Subject key identifier: ED:98:C2:60:E8:62:7A:7D:1B:B7:54:2A:D2:13:7D:79:14:BA:E3:51
Authority key identifier: 19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB
Certificate issuer: /CN=1997625c395fb867f5d808d53597a11ce7f3c4cb
Certificate serial: 0198D660EB62BFB0B7A6F8C3B7EC42145987
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 10:02:12 +0000
Manifest this update: Sat 23 Aug 2025 10:02:12 +0000
Manifest next update: Sun 24 Aug 2025 10:02:12 +0000
Files and hashes: 1: GZdiXDlfuGf12AjVNZehHOfzxMs.crl (hash: sBNzxqVsLYqSmV4q3hVeHQQNgisyUnTDnxuL4gHM3eU=)
2: ocSKLBAvwLdO6Bz9BzgpYro5A9k.roa (hash: Gf/KD5MQfVoD7yuJC1PN6VI3qKYUcNl5HcQ7qcq9TAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:eb:62:bf:b0:b7:a6:f8:c3:b7:ec:42:14:59:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1997625c395fb867f5d808d53597a11ce7f3c4cb
Validity
Not Before: Aug 23 10:02:12 2025 GMT
Not After : Aug 24 10:02:12 2025 GMT
Subject: CN=ed98c260e8627a7d1bb7542ad2137d7914bae351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a7:96:48:1a:e2:5f:14:a4:a9:a2:76:df:49:
a0:e6:bf:f4:06:68:73:cd:ff:b4:28:25:ad:7a:d7:
ed:02:6d:f5:45:aa:f8:28:5b:00:6d:12:45:92:78:
a0:20:b5:9d:a7:ac:e4:4a:3f:e3:5f:3d:01:2a:84:
c0:39:b9:e7:9e:5f:14:5a:70:22:89:0a:dd:1a:2c:
1a:d1:46:37:be:f6:96:6a:ce:49:ab:18:6a:db:2d:
a3:ed:1f:15:11:9a:8a:18:9e:30:c6:77:5e:47:24:
f5:97:0a:40:35:c1:44:dc:07:33:58:ea:2f:06:14:
f6:e9:9d:3a:a4:10:c3:50:53:e1:52:dd:90:63:9c:
d9:9c:50:07:0d:35:dc:8d:9e:f1:60:b1:0a:ce:f6:
cf:44:6b:bd:9b:75:94:bb:61:9c:93:4c:00:59:ae:
18:c4:e1:de:87:3e:8a:28:83:ba:71:08:c4:2d:d8:
f0:88:75:63:99:7c:aa:b4:b5:3f:c6:6c:ef:65:54:
75:f9:ef:b7:b6:af:b0:5c:da:89:34:54:9e:ee:a2:
00:70:0d:a4:72:d1:b7:2c:3c:fd:d5:bc:b2:53:18:
e9:a2:c5:e5:4e:78:de:dd:fd:9e:df:fa:1f:53:21:
3b:9c:d0:24:e0:79:84:a4:23:f0:0d:65:46:d0:e3:
69:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:98:C2:60:E8:62:7A:7D:1B:B7:54:2A:D2:13:7D:79:14:BA:E3:51
X509v3 Authority Key Identifier:
keyid:19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:e4:24:c3:fe:bc:8b:42:30:dc:66:d3:c6:a0:da:92:e5:68:
c5:36:4d:51:68:2d:22:b1:ad:17:3c:3a:af:e0:cc:82:e6:92:
88:46:e4:96:c1:5b:50:40:4c:cb:c1:cd:dc:91:98:de:87:dc:
96:f1:a5:07:4b:a0:87:4f:a8:03:f3:e8:24:69:a6:85:d6:00:
b7:e0:06:5c:29:4e:ad:f8:1c:3f:28:a5:57:f5:dd:c7:66:37:
6f:f5:71:e2:bb:06:d5:ed:2b:40:f0:c2:ed:12:9f:09:ff:da:
ad:5b:02:76:2a:e3:b5:72:18:e6:ba:2b:6e:eb:aa:3d:87:a7:
18:79:db:33:9e:9a:78:f6:12:1b:2c:55:c4:7a:82:63:61:18:
61:44:90:95:fe:f6:5c:47:da:71:df:fc:32:64:b7:10:5c:f9:
dd:92:94:d4:b5:d6:a6:60:39:9c:d5:63:9e:51:45:30:cb:49:
44:00:c3:15:c9:5a:44:71:fa:97:a5:55:88:eb:b7:5e:e6:26:
15:63:06:b1:41:3b:05:88:ef:83:96:db:48:a6:b4:bc:48:d7:
13:e3:d0:7f:bb:65:a4:21:cb:91:b1:68:85:85:88:3a:fe:43:
8e:6d:ad:9d:30:5f:86:c3:fd:43:c6:13:2b:45:0f:8c:3c:74:
01:03:be:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYOtiv7C3pvjDt+xCFFmHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5OTc2MjVjMzk1ZmI4NjdmNWQ4MDhkNTM1OTdhMTFjZTdm
M2M0Y2IwHhcNMjUwODIzMTAwMjEyWhcNMjUwODI0MTAwMjEyWjAzMTEwLwYDVQQD
EyhlZDk4YzI2MGU4NjI3YTdkMWJiNzU0MmFkMjEzN2Q3OTE0YmFlMzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtaeWSBriXxSkqaJ230mg5r/0Bmhz
zf+0KCWtetftAm31Rar4KFsAbRJFknigILWdp6zkSj/jXz0BKoTAObnnnl8UWnAi
iQrdGiwa0UY3vvaWas5Jqxhq2y2j7R8VEZqKGJ4wxndeRyT1lwpANcFE3AczWOov
BhT26Z06pBDDUFPhUt2QY5zZnFAHDTXcjZ7xYLEKzvbPRGu9m3WUu2Gck0wAWa4Y
xOHehz6KKIO6cQjELdjwiHVjmXyqtLU/xmzvZVR1+e+3tq+wXNqJNFSe7qIAcA2k
ctG3LDz91byyUxjposXlTnje3f2e3/ofUyE7nNAk4HmEpCPwDWVG0ONpyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO2YwmDoYnp9G7dUKtITfXkUuuNRMB8GA1UdIwQY
MBaAFBmXYlw5X7hn9dgI1TWXoRzn88TLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1pkaVhEbGZ1R2YxMkFqVk5aZWhIT2Z6eE1zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS8xNmU4MTItMjdjNi00MDVkLWE0YzUt
YTdmN2I5ODA5MDA3LzEvR1pkaVhEbGZ1R2YxMkFqVk5aZWhIT2Z6eE1zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS8xNmU4MTItMjdjNi00MDVkLWE0YzUtYTdmN2I5ODA5MDA3
LzEvR1pkaVhEbGZ1R2YxMkFqVk5aZWhIT2Z6eE1zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIOQkw/68
i0Iw3GbTxqDakuVoxTZNUWgtIrGtFzw6r+DMguaSiEbklsFbUEBMy8HN3JGY3ofc
lvGlB0ugh0+oA/PoJGmmhdYAt+AGXClOrfgcPyilV/Xdx2Y3b/Vx4rsG1e0rQPDC
7RKfCf/arVsCdirjtXIY5rorbuuqPYenGHnbM56aePYSGyxVxHqCY2EYYUSQlf72
XEfacd/8MmS3EFz53ZKU1LXWpmA5nNVjnlFFMMtJRADDFclaRHH6l6VViOu3XuYm
FWMGsUE7BYjvg5bbSKa0vEjXE+PQf7tlpCHLkbFohYWIOv5Djm2tnTBfhsP9Q8YT
K0UPjDx0AQO+BA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:28:17 2025 by rpki-client