Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
File: GtYaUvEILs9Ml7USK0YRIlBzRRs.mft (raw, json)
Hash identifier: r7dSZbU/641M+5N5BlyKEWI8XG7Pa8fMDvEjISCDToA=
Subject key identifier: 6A:B8:2F:39:8A:25:AC:70:90:44:CB:5F:A6:73:7A:57:F9:AC:36:8F
Authority key identifier: 1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
Certificate issuer: /CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Certificate serial: 0198D54E57F55B0F74473DDACF8204AB6474
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 05:02:17 +0000
Manifest this update: Sat 23 Aug 2025 05:02:17 +0000
Manifest next update: Sun 24 Aug 2025 05:02:17 +0000
Files and hashes: 1: GtYaUvEILs9Ml7USK0YRIlBzRRs.crl (hash: Yuu+cR/gu0SgpFSfKquhxjszwzGo180PUdI6WVOm97w=)
2: rDCQZOSrxJZ5t1EHBcAmewJ2zuE.roa (hash: 5o5LCz2EfBpIGStnQttGujPIzxdxxRQF2IZp5UipRj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:57:f5:5b:0f:74:47:3d:da:cf:82:04:ab:64:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Validity
Not Before: Aug 23 05:02:17 2025 GMT
Not After : Aug 24 05:02:17 2025 GMT
Subject: CN=6ab82f398a25ac709044cb5fa6737a57f9ac368f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7f:f5:36:72:55:97:a1:38:0c:a9:d1:3b:0b:
d9:69:a9:ba:be:ad:93:01:64:d5:04:10:a5:d1:60:
08:ce:47:bf:80:18:31:e8:c1:10:37:1e:94:eb:59:
a5:2b:f5:57:3f:71:38:15:b6:be:94:3c:1e:8b:8d:
f9:e6:01:95:e7:74:08:ac:4f:45:fc:09:60:fc:ef:
e4:09:c4:87:a6:64:c9:dd:b0:22:62:f9:a2:7d:4b:
f1:13:26:61:d2:0e:dd:61:fc:64:98:ce:64:e4:74:
04:86:bf:77:62:56:74:4a:7a:f2:2b:32:fd:2d:5a:
61:52:15:74:5f:e8:a4:28:be:ef:5b:e9:47:bd:d8:
71:7d:f9:50:b4:50:a4:29:f5:f1:4a:95:2b:da:ec:
f9:22:5c:46:00:3c:99:ad:df:33:3c:27:2d:47:9f:
96:c0:70:4e:81:be:89:ab:87:de:7e:ec:1d:99:01:
75:05:7a:ed:47:6d:aa:cb:fa:76:43:11:75:bd:09:
14:78:16:01:5e:57:07:c3:52:7f:a8:13:52:79:db:
5f:78:e4:27:1d:0c:15:e7:f8:ca:5b:01:87:9d:8d:
8b:b5:97:15:63:e9:1b:94:a8:a7:29:71:be:34:81:
7d:8c:c9:c3:77:8b:83:c0:f4:ec:b8:99:f3:ae:70:
00:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B8:2F:39:8A:25:AC:70:90:44:CB:5F:A6:73:7A:57:F9:AC:36:8F
X509v3 Authority Key Identifier:
keyid:1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:c7:74:38:21:b5:71:b2:b7:73:64:44:8a:22:b6:89:53:84:
7b:3a:48:5d:1b:f8:76:44:92:cf:d3:12:e2:1e:33:e0:02:94:
bf:24:56:ce:b8:2c:79:d7:6e:26:46:bb:52:c9:57:04:d6:18:
cc:51:a9:24:54:6a:b5:5e:50:d9:9f:da:09:06:df:2b:60:0d:
aa:e0:0c:bd:b4:70:0f:a5:bd:fe:5f:36:70:6f:03:39:7d:b4:
c8:44:21:a5:7b:a0:63:e9:39:64:66:c5:23:86:65:2e:58:29:
47:95:01:14:22:39:57:24:f1:da:32:aa:46:fc:ae:3e:47:48:
b8:0a:15:42:90:6f:89:74:ae:b7:c0:60:d6:46:00:a8:b4:da:
60:42:d9:09:eb:b9:a1:9e:d5:e1:e6:70:b4:fe:b6:c2:91:66:
d8:00:48:5c:25:c1:36:88:c9:84:ca:d8:ad:88:7b:61:80:73:
e7:e9:dc:bc:54:9d:23:a0:36:ef:e1:41:c9:3a:49:b9:32:c6:
36:9c:ba:f1:5e:b3:71:85:01:76:03:c7:1d:7f:5c:7e:b5:60:
68:95:90:f9:40:9e:7c:07:69:73:84:4b:b0:77:f5:2e:92:f2:
93:e3:80:42:c1:8a:40:3c:08:ba:54:87:a0:44:1a:f0:4a:c5:
40:01:13:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:38 2025 by rpki-client