Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
File: 1GL5scD2-pylMXZOJtOu0hG_7YE.mft (raw, json)
Hash identifier: QP10YJVzLUW6/ZW5qGaVVjDypX8px6GGW+kbLR8aCWg=
Subject key identifier: 27:91:E5:92:6B:5E:5D:97:48:46:1E:E2:E2:F4:AE:B1:8A:DC:B9:AF
Authority key identifier: D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
Certificate issuer: /CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Certificate serial: 0199FB0EEE57554B68072A7263DA8667F228
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
Manifest number: 0D00
Signing time: Sun 19 Oct 2025 06:01:23 +0000
Manifest this update: Sun 19 Oct 2025 06:01:23 +0000
Manifest next update: Mon 20 Oct 2025 06:01:23 +0000
Files and hashes: 1: 1GL5scD2-pylMXZOJtOu0hG_7YE.crl (hash: ZQXyRJ2v59zVbLmNV4RA5QZJk531zkNcxJsU4tk2MRs=)
2: CzS60ntrl-ifakYiPMHnNys_2hg.roa (hash: gJEVLSYuR5fsAEatKrGL8Os1DpygWBOtVxsvnHWW9x0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:ee:57:55:4b:68:07:2a:72:63:da:86:67:f2:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Validity
Not Before: Oct 19 06:01:23 2025 GMT
Not After : Oct 20 06:01:23 2025 GMT
Subject: CN=2791e5926b5e5d9748461ee2e2f4aeb18adcb9af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:37:27:47:13:b8:84:43:88:e0:3c:1a:b9:ef:
dd:7a:0f:e2:4c:cc:6d:15:0e:3e:fa:25:dc:89:6a:
cb:df:6f:0b:03:4f:71:2f:39:12:d4:69:4d:9a:c3:
32:4d:08:0f:22:23:e4:d0:ee:bb:b0:27:1a:fc:0e:
b7:23:5c:12:f3:60:82:95:72:33:c6:37:f1:b9:e7:
65:c9:df:df:83:e4:e9:1b:04:9e:78:fa:d8:a5:f5:
04:36:2b:f1:b6:ef:02:c5:92:b8:38:38:26:a2:80:
9a:da:07:f6:c3:5e:ea:15:ed:db:63:32:05:99:72:
6e:45:e2:79:49:c9:17:cb:49:7e:6b:f4:63:10:f5:
94:17:93:6d:09:bd:7f:ed:23:30:b9:63:f1:d8:92:
55:52:22:36:8a:90:19:75:ad:90:c8:ab:42:a6:37:
9e:8f:2f:c0:1a:12:77:7a:0c:48:c8:e7:3c:62:3d:
7d:73:ab:f1:6c:d0:a1:7b:9e:91:d6:cb:26:3d:0a:
cd:5b:08:cd:e6:06:d6:3a:ae:ef:72:9f:f8:ba:67:
8f:2e:df:2c:38:59:74:1c:96:7d:cc:89:66:9c:42:
94:ae:43:e1:f5:f0:89:16:91:5e:22:ee:a7:89:7a:
e3:14:ef:87:9e:a1:f5:04:d5:64:18:94:ea:62:c1:
16:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:91:E5:92:6B:5E:5D:97:48:46:1E:E2:E2:F4:AE:B1:8A:DC:B9:AF
X509v3 Authority Key Identifier:
keyid:D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:c5:e1:5d:11:e2:f1:e4:7b:5c:22:33:92:df:69:f7:59:15:
d6:12:d1:28:bd:96:1e:ff:fb:1a:4e:83:d6:ba:ff:67:19:06:
b8:ff:1b:4e:1a:f3:6c:d9:05:26:65:b0:10:d9:c2:2a:a3:39:
8d:08:0e:5b:59:fb:f8:ad:f7:ae:6f:88:c9:a7:61:0a:b8:b1:
60:85:51:b3:04:7f:c3:4e:cd:9e:b8:7a:00:20:ff:ee:84:2c:
5a:39:3b:5b:f5:4b:d3:45:b5:18:ab:93:fa:ec:0f:cd:89:31:
80:2a:c3:fb:c6:6b:98:15:96:78:6f:94:b3:0d:b4:ab:12:ae:
fb:f1:cd:a3:84:cc:e8:df:7d:cd:8b:d1:51:30:ce:03:d1:ed:
3a:3b:12:fb:36:c7:cf:c8:b7:a0:e5:8f:71:32:98:0b:38:67:
fa:b4:f1:46:cf:5f:3a:6a:69:ae:0b:b8:35:57:1a:cf:1e:80:
cc:cf:a1:dc:bf:b9:a0:d8:c1:58:51:82:4e:bc:13:27:6a:50:
74:a8:c5:30:87:2d:42:89:df:c8:87:a0:fc:b9:8e:8c:e3:cc:
79:f0:ef:e4:59:ab:60:e4:13:2f:cc:ae:b3:e4:55:38:55:c2:
a6:d0:1e:bf:59:c1:7f:3d:18:bd:75:e2:f4:24:05:38:b3:38:
50:fd:8d:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:07:01 2025 by rpki-client