Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
File: GZdiXDlfuGf12AjVNZehHOfzxMs.mft (raw, json)
Hash identifier: hgiqL2WNl2M2bkT76pMJKpT3125j4DC3bw9mCi9Jw1E=
Subject key identifier: E6:CD:55:2D:39:2E:B0:89:42:A4:C8:40:3F:13:B3:FC:B3:BA:F7:D5
Authority key identifier: 19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB
Certificate issuer: /CN=1997625c395fb867f5d808d53597a11ce7f3c4cb
Certificate serial: 0199FDD9AEF7DF16411F0C367A8538805746
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 19:02:05 +0000
Manifest this update: Sun 19 Oct 2025 19:02:05 +0000
Manifest next update: Mon 20 Oct 2025 19:02:05 +0000
Files and hashes: 1: GZdiXDlfuGf12AjVNZehHOfzxMs.crl (hash: BxsfzD/i3zdK/mUj4fDBNiUf2Fa/PZk+8NBnSAmVaus=)
2: ocSKLBAvwLdO6Bz9BzgpYro5A9k.roa (hash: Gf/KD5MQfVoD7yuJC1PN6VI3qKYUcNl5HcQ7qcq9TAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:ae:f7:df:16:41:1f:0c:36:7a:85:38:80:57:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1997625c395fb867f5d808d53597a11ce7f3c4cb
Validity
Not Before: Oct 19 19:02:05 2025 GMT
Not After : Oct 20 19:02:05 2025 GMT
Subject: CN=e6cd552d392eb08942a4c8403f13b3fcb3baf7d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ef:db:dd:c3:a5:06:ad:26:4f:76:4c:b0:18:
80:cd:43:15:83:70:55:13:3c:f9:c2:4c:90:49:d9:
fe:ba:a9:29:44:0c:83:e5:da:f2:71:8d:9c:5f:3b:
a3:65:5f:7b:83:b9:fa:b3:65:14:43:40:d7:89:fb:
2f:73:c2:5f:78:aa:53:10:13:e4:87:b1:f9:3d:90:
9f:04:c1:8a:c3:cb:50:db:b3:fe:56:a6:b0:d9:06:
4b:5e:ca:7e:2e:db:fd:e1:40:7b:15:a1:ca:cf:85:
4c:71:63:8b:1c:bc:45:6e:f9:ba:f7:55:e1:46:05:
a7:7e:ba:87:82:af:fc:14:db:45:c5:f9:8c:de:41:
8a:12:46:85:06:3f:c6:ba:5f:73:ff:eb:13:2e:6b:
8e:85:af:7e:3e:94:f7:f3:f1:61:aa:b2:c0:fd:38:
7d:d7:35:ef:30:95:95:6d:63:c5:6e:18:d7:ad:f4:
74:40:1e:9d:3e:59:c2:16:c5:c1:4e:86:85:9f:5e:
81:b3:1e:c9:7b:bd:fc:5d:01:66:4a:10:ae:d3:b4:
dc:5b:b0:26:69:9c:0a:87:e5:d8:fa:62:21:39:5b:
c5:c7:1a:b0:dd:d8:d2:47:47:b1:6b:92:54:84:4d:
0b:35:21:82:46:47:72:c3:8d:bd:4c:aa:09:1d:33:
b1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:CD:55:2D:39:2E:B0:89:42:A4:C8:40:3F:13:B3:FC:B3:BA:F7:D5
X509v3 Authority Key Identifier:
keyid:19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:48:45:e3:1f:c1:b9:ad:1c:c0:1a:6d:c8:85:e1:44:5f:07:
9c:e4:f5:22:5d:fb:79:3a:17:13:49:4f:3d:b1:e0:71:29:33:
4c:0b:17:8d:1c:b7:32:9d:43:11:f5:64:ed:88:ba:cb:08:42:
38:8b:e7:97:67:6f:8a:61:e3:90:9c:64:83:0a:8d:f3:6a:a9:
f5:8d:89:7d:3a:80:5a:02:9a:c7:6f:ab:ae:d1:73:73:5f:5d:
ea:76:7d:d0:16:66:53:be:49:27:29:11:4f:a1:33:8c:b7:6f:
aa:eb:9f:6d:09:ce:3a:f5:0f:20:54:39:f3:9c:33:ac:20:89:
85:f0:ad:23:ae:19:cc:09:0e:02:1d:58:22:c2:d3:54:cf:5e:
47:78:e6:4b:15:24:e7:35:08:40:ad:65:2f:09:78:c2:bf:82:
ae:a2:5b:7f:16:20:cd:0c:1b:3a:ce:26:d4:91:67:02:71:30:
54:05:ca:2d:34:5f:1f:af:27:b8:f6:85:39:3d:53:af:0b:1e:
f3:3b:26:9b:f9:b4:46:4d:a6:03:a2:fd:59:5b:f2:09:56:48:
9e:05:50:40:94:06:ac:18:91:47:36:08:bb:b8:ad:be:25:6b:
0e:2a:50:5e:da:b1:ab:7d:c0:d8:83:a6:de:24:b5:af:35:18:
11:19:1e:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:31:46 2025 by rpki-client