Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
File: GeBhVfweN2UrK3nJpTbS5hRNBPc.mft (raw, json)
Hash identifier: H42rBbyr+Klfnc2yjoIgV3LuQww3gDNgFH5QmWgVLEc=
Subject key identifier: 95:59:56:3B:73:5E:7F:D7:07:9A:22:87:77:F8:07:4F:86:DB:61:65
Authority key identifier: 19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
Certificate issuer: /CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Certificate serial: 0199FBEBDEEA89B0DBB6B534FD5CA4CF1BCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
Manifest number: 0F4A
Signing time: Sun 19 Oct 2025 10:02:43 +0000
Manifest this update: Sun 19 Oct 2025 10:02:43 +0000
Manifest next update: Mon 20 Oct 2025 10:02:43 +0000
Files and hashes: 1: GeBhVfweN2UrK3nJpTbS5hRNBPc.crl (hash: CRbSsiPUCEkOdkoKixSw3SkKrIePKKpyD2TbAzzfhrk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:de:ea:89:b0:db:b6:b5:34:fd:5c:a4:cf:1b:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Validity
Not Before: Oct 19 10:02:43 2025 GMT
Not After : Oct 20 10:02:43 2025 GMT
Subject: CN=9559563b735e7fd7079a228777f8074f86db6165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:12:2d:a3:48:7e:41:92:c0:d7:37:a2:9a:cf:
e0:7f:f0:37:f0:cc:82:4d:05:27:c0:ef:ae:76:ca:
13:bd:bf:8e:f1:6b:7a:27:2c:ed:b5:e8:39:94:39:
fe:a4:a8:a2:a5:9e:8d:22:b5:f7:81:97:7e:87:bb:
52:25:d7:d1:f3:fc:62:f3:d1:d8:ae:bc:5f:6a:5a:
7a:2e:f0:eb:5f:ea:12:7e:90:e6:d8:6f:b7:c6:7d:
de:1a:d2:6c:ea:b7:11:5e:b7:10:d4:f3:82:36:d2:
d5:cf:d4:e7:16:4a:ac:c7:7c:0c:36:2b:8b:77:aa:
5f:ff:40:9d:72:38:92:db:99:64:7d:b1:f5:9d:43:
3d:a3:04:9d:90:3c:8c:34:08:82:e8:78:de:ac:e1:
bb:6a:65:a7:e1:60:5a:52:89:ca:ff:57:ee:b6:7e:
74:2f:74:52:6c:6f:7e:6a:ea:ad:d8:01:da:03:9e:
9c:5f:0c:f9:44:97:b5:9f:ab:0e:f2:95:4c:2a:a6:
ca:e9:65:ae:5f:ed:14:fc:7e:20:67:17:9b:cf:7f:
34:47:7e:f4:7b:10:f5:d8:56:d0:c5:ab:9a:46:3b:
89:e3:72:e3:24:fd:3f:97:e3:79:f0:b7:79:0f:b2:
13:00:4e:c9:bd:80:e0:cb:c5:ac:85:3a:84:1d:b1:
62:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:59:56:3B:73:5E:7F:D7:07:9A:22:87:77:F8:07:4F:86:DB:61:65
X509v3 Authority Key Identifier:
keyid:19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:29:1e:e3:b6:c5:9c:d7:14:b0:4e:98:0d:69:b1:cc:05:b0:
80:79:ab:56:2b:c1:e7:d0:24:a4:3e:c1:04:90:a8:b3:84:0a:
96:da:ed:84:59:ac:46:20:8a:50:d9:7b:8b:a9:9e:aa:b8:20:
c1:ee:55:67:58:de:5c:a7:b8:1c:dd:e3:8e:64:29:89:d3:a3:
a7:03:53:b0:db:55:a4:80:61:69:c0:95:5d:1c:6a:e5:f9:bb:
68:44:9e:8d:c6:31:e8:67:77:5d:5c:d2:09:e2:54:ff:04:8e:
81:02:0e:0a:60:1a:47:72:fd:b0:5c:0e:97:bd:5b:c2:ea:1b:
2b:3a:50:bf:5f:93:2b:84:c5:49:6b:cc:1e:8e:e4:4a:3b:3d:
1b:29:43:c9:ac:b5:48:cf:fe:db:d9:2e:3f:7c:29:11:8f:ec:
09:5e:e8:d5:7e:50:b9:20:91:aa:be:75:77:40:6f:6a:d3:31:
53:71:51:34:3d:e2:74:33:87:18:f3:c1:6d:60:07:68:96:8c:
d6:93:77:87:88:79:48:17:f7:0c:70:b6:66:e9:c2:5b:b1:ba:
f2:04:50:ad:16:b7:1f:08:fb:67:39:b3:65:90:71:a5:19:2c:
63:9b:6a:f9:01:fc:67:6a:cb:b7:94:de:87:87:98:58:e4:6e:
94:d9:c7:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7697qibDbtrU0/VykzxvOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5ZTA2MTU1ZmMxZTM3NjUyYjJiNzljOWE1MzZkMmU2MTQ0
ZDA0ZjcwHhcNMjUxMDE5MTAwMjQzWhcNMjUxMDIwMTAwMjQzWjAzMTEwLwYDVQQD
Eyg5NTU5NTYzYjczNWU3ZmQ3MDc5YTIyODc3N2Y4MDc0Zjg2ZGI2MTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4hIto0h+QZLA1zeims/gf/A38MyC
TQUnwO+udsoTvb+O8Wt6Jyztteg5lDn+pKiipZ6NIrX3gZd+h7tSJdfR8/xi89HY
rrxfalp6LvDrX+oSfpDm2G+3xn3eGtJs6rcRXrcQ1POCNtLVz9TnFkqsx3wMNiuL
d6pf/0CdcjiS25lkfbH1nUM9owSdkDyMNAiC6HjerOG7amWn4WBaUonK/1futn50
L3RSbG9+auqt2AHaA56cXwz5RJe1n6sO8pVMKqbK6WWuX+0U/H4gZxebz380R370
exD12FbQxauaRjuJ43LjJP0/l+N58Ld5D7ITAE7JvYDgy8WshTqEHbFijwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJVZVjtzXn/XB5oih3f4B0+G22FlMB8GA1UdIwQY
MBaAFBngYVX8HjdlKyt5yaU20uYUTQT3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9iYjg1ZDctN2NkZS00ZTFjLWI5ZGYt
NzllZWI2MzIxZWI3LzEvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9iYjg1ZDctN2NkZS00ZTFjLWI5ZGYtNzllZWI2MzIxZWI3
LzEvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOCke47bF
nNcUsE6YDWmxzAWwgHmrVivB59AkpD7BBJCos4QKltrthFmsRiCKUNl7i6meqrgg
we5VZ1jeXKe4HN3jjmQpidOjpwNTsNtVpIBhacCVXRxq5fm7aESejcYx6Gd3XVzS
CeJU/wSOgQIOCmAaR3L9sFwOl71bwuobKzpQv1+TK4TFSWvMHo7kSjs9GylDyay1
SM/+29kuP3wpEY/sCV7o1X5QuSCRqr51d0BvatMxU3FRND3idDOHGPPBbWAHaJaM
1pN3h4h5SBf3DHC2ZunCW7G68gRQrRa3Hwj7ZzmzZZBxpRksY5tq+QH8Z2rLt5Te
h4eYWORulNnHMQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 19:57:11 2025 by rpki-client