Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
File: GtYaUvEILs9Ml7USK0YRIlBzRRs.mft (raw, json)
Hash identifier: XFfOiuA1QRVgLBTntIRBDDbBoqtvxgv+LU86Pb5xUHw=
Subject key identifier: 29:01:1A:4D:27:CA:63:CD:7F:91:B6:16:B9:8B:47:AA:7D:CE:2C:C5
Authority key identifier: 1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
Certificate issuer: /CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Certificate serial: 0199FAD7B9316460B095BA47330626CDD2D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 05:01:05 +0000
Manifest this update: Sun 19 Oct 2025 05:01:05 +0000
Manifest next update: Mon 20 Oct 2025 05:01:05 +0000
Files and hashes: 1: GtYaUvEILs9Ml7USK0YRIlBzRRs.crl (hash: VCKBMvtZpu+aaJrMZK65u2EwCPOq7rnDTwnNIWHTEr8=)
2: rDCQZOSrxJZ5t1EHBcAmewJ2zuE.roa (hash: 5o5LCz2EfBpIGStnQttGujPIzxdxxRQF2IZp5UipRj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:b9:31:64:60:b0:95:ba:47:33:06:26:cd:d2:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Validity
Not Before: Oct 19 05:01:05 2025 GMT
Not After : Oct 20 05:01:05 2025 GMT
Subject: CN=29011a4d27ca63cd7f91b616b98b47aa7dce2cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:86:81:cd:be:ac:c3:72:aa:6b:1b:58:3a:24:
db:97:02:bb:0e:bc:5d:b9:fb:ab:b2:ad:a8:fe:b8:
73:45:a8:85:a7:ae:a0:b2:43:fd:a9:ec:58:45:54:
dd:ad:53:f2:2b:a0:85:8d:37:df:5f:3e:a9:8d:72:
bc:31:6d:f4:b0:e7:8b:ba:14:72:a6:7d:c9:dd:5d:
05:13:10:c9:3f:de:d0:31:2c:45:12:2c:f7:24:d3:
25:c2:b0:a9:bc:41:ea:71:5b:a9:cd:58:d4:33:7e:
80:eb:3b:ff:c5:6a:42:93:d9:16:8d:99:8f:1a:8f:
f2:64:f8:c5:91:a6:a7:ca:02:31:e8:a6:a9:3b:d0:
b1:96:71:50:01:8d:ce:52:76:6a:d2:15:31:61:1c:
cb:bc:33:00:8e:8d:a3:42:32:c2:25:2f:dd:79:72:
6b:6d:1b:ca:d5:5e:90:10:18:86:6c:40:bc:d6:8f:
b2:3f:07:fb:0f:5b:5a:b9:e5:b2:9e:ef:72:a9:4d:
c8:5e:8e:7a:f8:d9:35:10:ee:eb:0c:5f:13:c4:7c:
15:2a:42:b4:d6:94:4d:55:ed:be:25:8e:56:2e:a7:
43:38:73:1a:69:27:b3:93:5b:a0:68:35:5c:bf:c3:
5b:c0:32:b0:2c:e4:47:4b:77:77:d3:91:79:0f:03:
dd:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:01:1A:4D:27:CA:63:CD:7F:91:B6:16:B9:8B:47:AA:7D:CE:2C:C5
X509v3 Authority Key Identifier:
keyid:1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:b8:9c:53:72:1a:ac:0e:e3:cc:e3:54:9e:cd:88:ec:9f:af:
c8:e8:a6:0d:60:ab:a9:f0:6d:96:f2:6a:3b:c1:9a:06:7f:ca:
53:9f:e0:1e:11:14:35:10:27:c0:95:6f:42:a3:da:f7:ee:54:
13:9e:a4:41:48:04:63:74:68:89:7e:5a:60:5a:03:a1:87:ff:
34:e5:f0:e1:55:d8:9e:d1:0b:5b:28:91:f1:a3:a8:63:9e:28:
6f:cf:68:a7:32:27:61:8d:3e:14:e7:ae:e7:7d:ac:7b:02:7b:
76:5b:cf:a9:3d:da:3d:60:19:40:f5:7c:0b:4e:24:96:f5:f8:
de:16:ab:60:0b:9b:14:26:65:34:04:f5:f2:bd:38:7a:c4:e9:
2d:a6:95:8d:58:2b:da:39:1b:67:2e:2e:e3:c3:18:89:02:cd:
a0:b5:76:e2:da:38:40:b9:7c:e8:34:3f:d3:0a:b0:1a:2c:18:
b9:29:3b:1e:7c:74:2a:a8:d5:ea:93:e6:31:4a:6b:71:16:69:
20:f8:30:2b:86:fd:cf:0f:a7:27:10:e8:bd:3d:d0:e2:0c:d4:
24:46:fd:ea:04:02:d8:44:d0:ec:28:9d:2b:37:2c:0f:ec:e4:
0e:eb:e5:88:a2:38:0a:f2:85:9c:59:78:e4:e7:d5:0f:d6:58:
38:78:6a:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn617kxZGCwlbpHMwYmzdLWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhZDYxYTUyZjEwODJlY2Y0Yzk3YjUxMjJiNDYxMTIyNTA3
MzQ1MWIwHhcNMjUxMDE5MDUwMTA1WhcNMjUxMDIwMDUwMTA1WjAzMTEwLwYDVQQD
EygyOTAxMWE0ZDI3Y2E2M2NkN2Y5MWI2MTZiOThiNDdhYTdkY2UyY2M1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4aBzb6sw3KqaxtYOiTblwK7Drxd
ufursq2o/rhzRaiFp66gskP9qexYRVTdrVPyK6CFjTffXz6pjXK8MW30sOeLuhRy
pn3J3V0FExDJP97QMSxFEiz3JNMlwrCpvEHqcVupzVjUM36A6zv/xWpCk9kWjZmP
Go/yZPjFkaanygIx6KapO9CxlnFQAY3OUnZq0hUxYRzLvDMAjo2jQjLCJS/deXJr
bRvK1V6QEBiGbEC81o+yPwf7D1taueWynu9yqU3IXo56+Nk1EO7rDF8TxHwVKkK0
1pRNVe2+JY5WLqdDOHMaaSezk1ugaDVcv8NbwDKwLORHS3d305F5DwPdeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCkBGk0nymPNf5G2FrmLR6p9zizFMB8GA1UdIwQY
MBaAFBrWGlLxCC7PTJe1EitGESJQc0UbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3RZYVV2RUlMczlNbDdVU0swWVJJbEJ6UlJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81OWQ1NTUtMjBiZC00YzQyLTg0YmEt
NzJjZTk1YmE5YWZhLzEvR3RZYVV2RUlMczlNbDdVU0swWVJJbEJ6UlJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81OWQ1NTUtMjBiZC00YzQyLTg0YmEtNzJjZTk1YmE5YWZh
LzEvR3RZYVV2RUlMczlNbDdVU0swWVJJbEJ6UlJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG7icU3Ia
rA7jzONUns2I7J+vyOimDWCrqfBtlvJqO8GaBn/KU5/gHhEUNRAnwJVvQqPa9+5U
E56kQUgEY3RoiX5aYFoDoYf/NOXw4VXYntELWyiR8aOoY54ob89opzInYY0+FOeu
532sewJ7dlvPqT3aPWAZQPV8C04klvX43harYAubFCZlNAT18r04esTpLaaVjVgr
2jkbZy4u48MYiQLNoLV24to4QLl86DQ/0wqwGiwYuSk7Hnx0KqjV6pPmMUprcRZp
IPgwK4b9zw+nJxDovT3Q4gzUJEb96gQC2ETQ7CidKzcsD+zkDuvliKI4CvKFnFl4
5OfVD9ZYOHhqpA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:01:17 2025 by rpki-client