Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
File: GyceKuYih3VSuJ28R016EwWEpI4.mft (raw, json)
Hash identifier: bWmziESapRO1bSWID2buw/Zj1IL0VvijRel6WZ4ufiM=
Subject key identifier: FF:48:C8:C0:17:24:57:09:CF:03:55:A1:54:AE:3F:4E:F2:C1:A7:0B
Authority key identifier: 1B:27:1E:2A:E6:22:87:75:52:B8:9D:BC:47:4D:7A:13:05:84:A4:8E
Certificate issuer: /CN=1b271e2ae622877552b89dbc474d7a130584a48e
Certificate serial: 019A70A57BDD0AEFCE856C51B7391303F131
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
Manifest number: 0B2B
Signing time: Tue 11 Nov 2025 02:01:24 +0000
Manifest this update: Tue 11 Nov 2025 02:01:24 +0000
Manifest next update: Wed 12 Nov 2025 02:01:24 +0000
Files and hashes: 1: GyceKuYih3VSuJ28R016EwWEpI4.crl (hash: ic9c92NsZZB7fAoXARBjD5dEoVwCDFQCQWvw7A6g6uc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:7b:dd:0a:ef:ce:85:6c:51:b7:39:13:03:f1:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b271e2ae622877552b89dbc474d7a130584a48e
Validity
Not Before: Nov 11 02:01:24 2025 GMT
Not After : Nov 12 02:01:24 2025 GMT
Subject: CN=ff48c8c017245709cf0355a154ae3f4ef2c1a70b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1c:0e:ee:8a:28:5f:36:cc:6d:32:c1:de:6d:
91:69:5c:35:75:db:0a:6a:db:83:6d:f4:23:6d:11:
3a:85:35:44:8f:d9:28:f2:4c:79:ef:38:97:4a:a6:
ea:0a:c0:bc:e1:4d:15:3b:fa:bd:55:09:d9:54:55:
77:b6:78:92:b7:2b:4f:2b:38:df:a3:e8:8f:d9:3d:
49:ad:9f:c4:e3:00:07:da:36:ad:9a:ec:44:83:d0:
28:41:0f:91:f8:25:f6:91:d7:f3:3b:d0:45:1b:fc:
3b:4f:1d:66:a6:22:a8:9c:c6:f3:45:4f:41:00:6e:
73:86:fa:f8:13:fc:4d:d9:ca:75:ba:36:ba:3a:c1:
89:be:f8:d4:15:86:66:f9:5a:08:f2:35:0b:95:15:
aa:95:c9:8b:1e:22:3f:3a:82:b8:79:3f:c7:4c:70:
de:38:ae:3b:bd:a2:21:a2:04:71:60:92:9c:09:2e:
78:3c:41:f0:60:62:69:5b:35:77:61:97:f0:a6:b9:
86:fa:dc:cb:71:23:19:37:c9:f7:15:8e:7e:6e:06:
1a:2e:f8:ef:bf:3b:bc:dd:32:54:e3:16:07:f1:25:
da:fb:41:55:a9:93:ee:f0:6b:6d:b9:d9:f3:ed:f8:
12:ed:0c:f7:d1:17:19:c0:8d:bb:12:c7:fe:e8:aa:
dc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:48:C8:C0:17:24:57:09:CF:03:55:A1:54:AE:3F:4E:F2:C1:A7:0B
X509v3 Authority Key Identifier:
keyid:1B:27:1E:2A:E6:22:87:75:52:B8:9D:BC:47:4D:7A:13:05:84:A4:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:89:ab:5d:37:d7:7e:87:f3:59:d7:42:df:38:8e:9f:3f:e8:
0d:79:4b:da:dc:3d:22:d5:a9:39:8d:6d:56:0b:0b:4e:b3:58:
51:e1:2f:aa:f2:11:b5:4f:28:57:34:1a:b8:a6:e6:ea:b1:25:
99:67:46:ae:4f:77:fb:1c:4e:1a:69:53:da:14:9e:18:3b:02:
2f:58:f4:0d:b9:f2:59:bf:c5:3d:dd:e2:66:cc:49:65:b3:a4:
0b:4b:ec:60:c4:a2:9a:ef:30:95:fd:3c:3c:76:e2:38:2c:ea:
69:cd:64:68:89:3e:d0:27:3a:a2:a6:b9:e2:74:4b:4f:fd:da:
6b:2d:2c:54:74:38:a7:6b:07:75:f1:36:d3:3e:95:f7:5d:be:
29:4c:01:02:87:de:b7:0d:1b:86:65:32:13:79:a0:3a:f5:b7:
87:27:eb:f1:44:e1:74:04:b4:6c:d4:28:e8:1c:8b:6f:90:37:
6a:76:86:43:b5:16:a3:09:d6:23:e2:b8:69:e6:47:94:5b:80:
da:aa:ad:e9:af:19:6c:50:ff:a1:43:0f:82:78:7a:64:7f:6c:
16:0c:79:48:d1:34:e0:42:59:13:0c:b4:5f:5c:a4:33:00:ee:
5a:64:1a:37:fc:c9:93:55:68:7a:3b:40:7e:56:e8:e8:e2:a8:
f7:96:bb:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpwpXvdCu/OhWxRtzkTA/ExMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMjcxZTJhZTYyMjg3NzU1MmI4OWRiYzQ3NGQ3YTEzMDU4
NGE0OGUwHhcNMjUxMTExMDIwMTI0WhcNMjUxMTEyMDIwMTI0WjAzMTEwLwYDVQQD
EyhmZjQ4YzhjMDE3MjQ1NzA5Y2YwMzU1YTE1NGFlM2Y0ZWYyYzFhNzBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkBwO7oooXzbMbTLB3m2RaVw1ddsK
atuDbfQjbRE6hTVEj9ko8kx57ziXSqbqCsC84U0VO/q9VQnZVFV3tniStytPKzjf
o+iP2T1JrZ/E4wAH2jatmuxEg9AoQQ+R+CX2kdfzO9BFG/w7Tx1mpiKonMbzRU9B
AG5zhvr4E/xN2cp1uja6OsGJvvjUFYZm+VoI8jULlRWqlcmLHiI/OoK4eT/HTHDe
OK47vaIhogRxYJKcCS54PEHwYGJpWzV3YZfwprmG+tzLcSMZN8n3FY5+bgYaLvjv
vzu83TJU4xYH8SXa+0FVqZPu8Gttudnz7fgS7Qz30RcZwI27Esf+6KrchQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP9IyMAXJFcJzwNVoVSuP07ywacLMB8GA1UdIwQY
MBaAFBsnHirmIod1UridvEdNehMFhKSOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3ljZUt1WWloM1ZTdUoyOFIwMTZFd1dFcEk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8yMGQ2YTgtYzRlMi00N2UzLTkwZGYt
MWM4ZWQzNmQyNTY2LzEvR3ljZUt1WWloM1ZTdUoyOFIwMTZFd1dFcEk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi8yMGQ2YTgtYzRlMi00N2UzLTkwZGYtMWM4ZWQzNmQyNTY2
LzEvR3ljZUt1WWloM1ZTdUoyOFIwMTZFd1dFcEk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPImrXTfX
fofzWddC3ziOnz/oDXlL2tw9ItWpOY1tVgsLTrNYUeEvqvIRtU8oVzQauKbm6rEl
mWdGrk93+xxOGmlT2hSeGDsCL1j0DbnyWb/FPd3iZsxJZbOkC0vsYMSimu8wlf08
PHbiOCzqac1kaIk+0Cc6oqa54nRLT/3aay0sVHQ4p2sHdfE20z6V912+KUwBAofe
tw0bhmUyE3mgOvW3hyfr8UThdAS0bNQo6ByLb5A3anaGQ7UWownWI+K4aeZHlFuA
2qqt6a8ZbFD/oUMPgnh6ZH9sFgx5SNE04EJZEwy0X1ykMwDuWmQaN/zJk1VoejtA
flbo6OKo95a7HQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:17 2025 by rpki-client