Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
File: GeBhVfweN2UrK3nJpTbS5hRNBPc.mft (raw, json)
Hash identifier: Wb/+67HTLb3hoI23kHq+k+tbfvE7g5rM11u9Ynl9be8=
Subject key identifier: 8F:DC:5D:1F:E7:4B:DF:97:0D:A6:C4:C4:F0:A9:B9:8D:9D:D9:DC:4D
Authority key identifier: 19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
Certificate issuer: /CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Certificate serial: 0198D65FDC28E19C76860C20DFBE67B61816
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
Manifest number: 0EB2
Signing time: Sat 23 Aug 2025 10:01:03 +0000
Manifest this update: Sat 23 Aug 2025 10:01:03 +0000
Manifest next update: Sun 24 Aug 2025 10:01:03 +0000
Files and hashes: 1: GeBhVfweN2UrK3nJpTbS5hRNBPc.crl (hash: iRSyK9mr/HCMyKKqFtums9dWrG8ekhiCcm47KsJ9++8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:dc:28:e1:9c:76:86:0c:20:df:be:67:b6:18:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Validity
Not Before: Aug 23 10:01:03 2025 GMT
Not After : Aug 24 10:01:03 2025 GMT
Subject: CN=8fdc5d1fe74bdf970da6c4c4f0a9b98d9dd9dc4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c3:e2:63:d9:f0:f0:8e:91:37:0f:ff:11:90:
23:60:ba:88:56:34:b7:8a:7f:a8:2d:e5:34:68:f0:
3f:73:4a:b9:b4:94:48:98:34:97:a0:e4:fa:71:9f:
f0:1a:d9:a7:65:6e:d5:0f:78:d3:75:b6:cc:85:31:
1f:cf:c5:0a:83:49:6c:5b:87:da:c9:e2:84:88:43:
56:de:cb:24:6b:59:8a:68:95:6f:d8:40:3b:73:db:
1f:50:4a:f5:2e:f5:e3:cd:a2:cb:65:7b:ba:b0:29:
ad:98:d8:7b:b0:6f:c7:8b:76:d3:7a:da:85:bb:dd:
d8:71:72:82:e6:0a:53:5c:cb:58:ef:d1:48:ca:eb:
a5:7f:5c:3a:f2:8f:58:cb:58:8e:c1:4f:a1:44:b5:
b0:bb:e2:b5:e0:d7:db:dd:fe:a6:c9:f7:46:d0:50:
36:36:6d:99:ce:50:84:7c:eb:d4:82:3a:55:ef:9a:
09:bf:55:88:ad:9a:59:f3:8c:89:15:75:f4:94:ac:
97:65:07:b7:ba:d2:8f:f7:05:ac:ad:f8:42:fc:5c:
61:84:5c:c3:eb:80:b4:51:f7:e3:e4:b0:7d:6b:4b:
49:b2:06:d6:00:6d:a9:54:fd:5e:48:0e:01:08:9e:
c3:67:60:7d:2a:99:a4:ce:a2:cc:c9:12:51:0d:8d:
fb:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:DC:5D:1F:E7:4B:DF:97:0D:A6:C4:C4:F0:A9:B9:8D:9D:D9:DC:4D
X509v3 Authority Key Identifier:
keyid:19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:dc:44:6c:ca:c3:65:28:1e:cc:d5:1e:52:29:67:64:06:29:
39:3a:39:54:04:ce:f7:d0:fd:9e:6b:6c:04:23:ee:a3:78:4a:
38:d1:47:de:1b:59:2c:93:8c:a5:46:33:5b:a3:cf:88:4b:25:
ab:16:f5:2f:ee:5c:08:48:a5:a0:6b:26:61:27:08:a5:df:8b:
a8:d6:be:1d:b1:6b:38:30:9f:11:71:d2:07:d8:32:17:10:e2:
be:c9:7a:6a:a9:f0:90:17:0b:cd:31:46:24:0e:be:02:36:bc:
b9:ab:ef:a0:cd:b1:25:1f:67:bd:9f:d5:bc:1c:c9:8b:41:7f:
36:48:d5:4f:97:7b:cd:8a:23:da:5a:43:3c:c6:4f:4d:49:0d:
ad:48:83:57:7e:db:a1:ee:df:e2:65:0e:6a:74:3f:5c:fc:2c:
b3:bb:73:3f:45:72:88:3c:21:8d:e8:86:0f:7b:52:f2:ae:f3:
b2:ce:40:f8:03:8a:24:5f:d3:78:e3:fd:4e:76:16:40:69:8f:
23:38:9f:4c:69:46:0b:0e:8e:f5:0e:e7:1d:b6:cc:db:4e:19:
60:6c:2c:eb:38:0e:1a:50:2a:72:22:30:ac:23:be:5f:78:2c:
54:f8:de:f3:9b:6f:b3:20:46:91:41:dd:72:5b:ce:0a:24:f0:
f0:fe:07:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX9wo4Zx2hgwg375nthgWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5ZTA2MTU1ZmMxZTM3NjUyYjJiNzljOWE1MzZkMmU2MTQ0
ZDA0ZjcwHhcNMjUwODIzMTAwMTAzWhcNMjUwODI0MTAwMTAzWjAzMTEwLwYDVQQD
Eyg4ZmRjNWQxZmU3NGJkZjk3MGRhNmM0YzRmMGE5Yjk4ZDlkZDlkYzRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8PiY9nw8I6RNw//EZAjYLqIVjS3
in+oLeU0aPA/c0q5tJRImDSXoOT6cZ/wGtmnZW7VD3jTdbbMhTEfz8UKg0lsW4fa
yeKEiENW3sska1mKaJVv2EA7c9sfUEr1LvXjzaLLZXu6sCmtmNh7sG/Hi3bTetqF
u93YcXKC5gpTXMtY79FIyuulf1w68o9Yy1iOwU+hRLWwu+K14Nfb3f6myfdG0FA2
Nm2ZzlCEfOvUgjpV75oJv1WIrZpZ84yJFXX0lKyXZQe3utKP9wWsrfhC/FxhhFzD
64C0Uffj5LB9a0tJsgbWAG2pVP1eSA4BCJ7DZ2B9KpmkzqLMyRJRDY37CQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI/cXR/nS9+XDabExPCpuY2d2dxNMB8GA1UdIwQY
MBaAFBngYVX8HjdlKyt5yaU20uYUTQT3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9iYjg1ZDctN2NkZS00ZTFjLWI5ZGYt
NzllZWI2MzIxZWI3LzEvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9iYjg1ZDctN2NkZS00ZTFjLWI5ZGYtNzllZWI2MzIxZWI3
LzEvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdNxEbMrD
ZSgezNUeUilnZAYpOTo5VATO99D9nmtsBCPuo3hKONFH3htZLJOMpUYzW6PPiEsl
qxb1L+5cCEiloGsmYScIpd+LqNa+HbFrODCfEXHSB9gyFxDivsl6aqnwkBcLzTFG
JA6+Aja8uavvoM2xJR9nvZ/VvBzJi0F/NkjVT5d7zYoj2lpDPMZPTUkNrUiDV37b
oe7f4mUOanQ/XPwss7tzP0VyiDwhjeiGD3tS8q7zss5A+AOKJF/TeOP9TnYWQGmP
IzifTGlGCw6O9Q7nHbbM204ZYGws6zgOGlAqciIwrCO+X3gsVPje85tvsyBGkUHd
clvOCiTw8P4HCg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:24:43 2025 by rpki-client