Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
File: 1GL5scD2-pylMXZOJtOu0hG_7YE.mft (raw, json)
Hash identifier: 2woDW8HV4IJNKRcOrr7GY3evh8aSE92SgjDjzW2lyIs=
Subject key identifier: 9A:7B:19:50:84:3F:61:F4:B2:5A:ED:14:CF:65:63:B6:81:73:9B:16
Authority key identifier: D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
Certificate issuer: /CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Certificate serial: 0198D583DC3F0B1143E016E903C9ECE44397
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
Manifest number: 0C68
Signing time: Sat 23 Aug 2025 06:00:45 +0000
Manifest this update: Sat 23 Aug 2025 06:00:45 +0000
Manifest next update: Sun 24 Aug 2025 06:00:45 +0000
Files and hashes: 1: 1GL5scD2-pylMXZOJtOu0hG_7YE.crl (hash: fuLFV/KymeP8U6su25SCGiBMs7bKxQRwWgKWMuOS4fQ=)
2: CzS60ntrl-ifakYiPMHnNys_2hg.roa (hash: gJEVLSYuR5fsAEatKrGL8Os1DpygWBOtVxsvnHWW9x0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:dc:3f:0b:11:43:e0:16:e9:03:c9:ec:e4:43:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Validity
Not Before: Aug 23 06:00:45 2025 GMT
Not After : Aug 24 06:00:45 2025 GMT
Subject: CN=9a7b1950843f61f4b25aed14cf6563b681739b16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1e:0d:c3:5c:e7:eb:50:f2:9f:3f:2f:5b:e2:
33:ff:ac:c1:2b:27:8c:91:37:6d:35:4b:2d:2d:51:
66:d8:c6:7c:50:08:f4:a7:f1:24:8d:8c:6b:80:7e:
d9:58:16:3e:b1:67:d6:ba:25:c0:20:65:1b:37:87:
f3:ff:54:97:e1:05:ce:d1:2a:2a:a8:55:98:b9:83:
16:4a:92:99:a8:24:60:a1:52:72:ee:c6:5b:77:34:
02:5b:9c:16:b1:18:22:12:ac:66:e7:d0:6c:7c:b8:
bf:0f:f4:88:0f:13:23:e8:ed:c9:d3:e3:89:b9:71:
b7:67:b0:76:f3:99:d2:24:c8:b4:bc:11:01:f9:2f:
46:d1:0f:9e:70:75:f3:ca:e1:20:05:b9:41:04:8d:
b3:de:e5:72:42:32:7f:71:c0:49:8d:95:cc:45:45:
be:03:15:13:e8:d0:d7:b6:03:51:26:56:18:34:b3:
16:e7:2f:bf:12:be:7e:8c:81:f0:30:29:92:46:9d:
ca:d0:32:2a:22:07:0b:32:ff:62:55:a8:78:28:2c:
cb:fa:7b:3b:d0:b6:49:74:b0:33:18:08:15:45:7c:
60:98:b7:b9:64:10:86:70:b8:90:c7:dd:a3:c4:80:
be:79:f7:5c:c5:69:dc:b4:28:40:85:87:0a:b5:7a:
b6:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:7B:19:50:84:3F:61:F4:B2:5A:ED:14:CF:65:63:B6:81:73:9B:16
X509v3 Authority Key Identifier:
keyid:D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:ed:f9:72:61:38:36:c7:12:78:f9:16:c8:95:27:25:48:0e:
d4:39:e8:a0:4c:18:ea:9e:30:31:b0:d6:b7:f2:9b:f1:69:0c:
1b:69:1b:19:87:22:52:84:c1:bc:42:f4:2a:60:6b:3e:00:72:
54:af:2d:7f:df:ea:87:78:04:f1:7a:d7:eb:22:26:6c:22:fb:
82:91:4b:b4:54:4b:4a:c8:e5:3a:3e:e1:69:d6:ad:df:05:50:
83:69:ea:a8:1a:f8:c9:f0:83:b0:33:5e:ee:e3:e9:3d:ff:da:
3a:47:3d:25:ec:d3:56:f0:56:d1:37:86:87:62:dc:6e:27:63:
c8:f6:34:73:ea:38:f6:74:51:ed:a4:39:06:e2:b0:b5:0b:96:
4c:1f:04:53:1d:71:36:91:1e:b2:43:53:ca:53:44:ea:e0:dc:
82:49:5c:b0:86:b6:bf:54:1d:0c:54:3d:ad:dc:14:40:69:8b:
23:92:fe:4f:62:a6:64:71:12:46:0b:99:7a:95:bc:92:fd:24:
45:f3:35:60:23:bb:15:77:93:47:fa:4c:37:d8:df:a7:23:1c:
e6:a7:ba:41:56:76:63:79:a1:d4:26:3d:09:12:bb:73:fc:f7:
85:b4:d4:d2:39:d5:2d:6d:49:01:fb:50:fa:1a:f9:c1:16:f7:
ed:08:dc:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:46 2025 by rpki-client