Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
File: GtTMzv5VxeIjqbMgW5OKPRyehtU.mft (raw, json)
Hash identifier: i2QagJo7LzivHQSeIXCTpXiX/Cjpjotjm1BjorNm4aE=
Subject key identifier: E2:3C:A2:43:EF:33:58:2F:E7:F1:27:C3:4A:E0:35:A8:29:91:29:01
Authority key identifier: 1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
Certificate issuer: /CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Certificate serial: 019963C825B86BE537FCBDAEEA4B29D29A26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
Manifest number: 1374
Signing time: Fri 19 Sep 2025 21:01:25 +0000
Manifest this update: Fri 19 Sep 2025 21:01:25 +0000
Manifest next update: Sat 20 Sep 2025 21:01:25 +0000
Files and hashes: 1: 7lJrTTIO2zooVSl7zZp_UO3NA2A.roa (hash: ob9QTWC/tQoW4XviSigFRT+IWVM+wZzBVH2/SY3oV7I=)
2: GtTMzv5VxeIjqbMgW5OKPRyehtU.crl (hash: EinLWbwsgxMPooCIEu8kn1dpersIyZgsmR+eXuT9JP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 16:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:63:c8:25:b8:6b:e5:37:fc:bd:ae:ea:4b:29:d2:9a:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Validity
Not Before: Sep 19 21:01:25 2025 GMT
Not After : Sep 20 21:01:25 2025 GMT
Subject: CN=e23ca243ef33582fe7f127c34ae035a829912901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5a:63:49:42:8e:1f:38:1a:e8:b6:ab:cc:ee:
30:d2:a6:78:ff:c2:c3:7a:c7:57:0a:80:95:7d:98:
9b:4f:13:df:fc:7b:35:16:88:b4:7c:5d:01:68:6d:
2c:f0:6b:a1:e0:76:0d:bd:7f:88:80:e6:c1:16:55:
40:6f:09:aa:53:40:75:06:62:51:c0:2f:3a:4f:bb:
15:d7:3f:30:59:48:10:16:5d:a2:23:fb:40:de:3f:
72:01:ea:5d:c6:1d:ee:30:88:c2:aa:4a:a9:2b:5d:
3b:73:08:16:69:e4:58:25:a8:52:fa:9d:21:d1:12:
ca:0e:60:f6:05:94:d3:99:b7:5f:81:61:30:c7:c8:
f9:27:c3:56:ca:c6:7a:66:30:d2:95:33:d0:ed:30:
30:27:86:7b:7d:34:a4:99:65:db:0b:1d:3f:9f:ea:
e5:6d:ec:4e:82:7d:9c:33:4f:44:92:c4:fd:f5:90:
ab:ae:04:f2:0b:b1:8a:75:68:b1:cd:3d:99:93:79:
fc:f9:f2:75:0f:ee:5b:e3:05:a9:a0:e9:20:56:ca:
69:6a:bf:38:fd:86:ff:e6:07:a0:50:21:08:80:82:
06:4b:dd:9a:2c:5a:93:1d:d4:32:21:27:4b:7c:d8:
b4:45:1d:04:b6:4c:e4:87:04:06:0d:88:56:04:59:
e5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:3C:A2:43:EF:33:58:2F:E7:F1:27:C3:4A:E0:35:A8:29:91:29:01
X509v3 Authority Key Identifier:
keyid:1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:c3:34:d1:9d:15:70:1a:b8:2d:cb:fa:de:e9:38:e1:67:56:
57:5a:bf:73:96:8a:3f:af:68:63:80:fb:c7:65:94:b7:cf:aa:
f5:10:b1:d5:a2:4e:88:fe:5d:25:69:56:df:5f:67:c9:0d:2e:
49:af:d0:b4:9d:9d:2c:57:3c:1d:3b:90:a0:6e:46:7f:76:7d:
0e:9d:11:fe:80:b4:16:6e:bd:04:eb:4f:7b:dc:6b:21:15:9b:
ac:ac:bb:9f:82:03:cc:b1:f5:5e:9c:27:81:80:fc:1e:c9:91:
18:c1:7c:95:b1:1b:d5:cf:ff:be:52:a2:ba:8b:2a:5b:80:03:
d7:14:ab:ec:bb:4d:44:01:9f:b8:24:aa:d5:24:94:82:4b:7e:
ee:4b:bf:2b:10:fa:d7:0a:ce:35:18:79:bc:6e:5b:28:6f:3e:
f8:b8:b9:5b:3f:c3:82:35:75:01:46:bc:d3:56:0e:5f:9a:3a:
80:1d:66:f3:5e:2a:b7:4a:96:dd:24:a3:5b:1b:82:ee:3a:3f:
9e:96:e6:0c:54:65:6b:2a:6b:c8:f3:f0:05:c7:e0:02:53:0f:
e3:0c:c7:0b:62:b4:6c:78:37:8d:47:a5:c4:6a:b0:2d:b0:b3:
8a:bb:4e:9c:6f:e4:b9:55:41:a0:38:11:d2:88:68:95:0b:e0:
d9:e0:a0:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZljyCW4a+U3/L2u6ksp0pomMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhZDRjY2NlZmU1NWM1ZTIyM2E5YjMyMDViOTM4YTNkMWM5
ZTg2ZDUwHhcNMjUwOTE5MjEwMTI1WhcNMjUwOTIwMjEwMTI1WjAzMTEwLwYDVQQD
EyhlMjNjYTI0M2VmMzM1ODJmZTdmMTI3YzM0YWUwMzVhODI5OTEyOTAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvFpjSUKOHzga6LarzO4w0qZ4/8LD
esdXCoCVfZibTxPf/Hs1Foi0fF0BaG0s8Guh4HYNvX+IgObBFlVAbwmqU0B1BmJR
wC86T7sV1z8wWUgQFl2iI/tA3j9yAepdxh3uMIjCqkqpK107cwgWaeRYJahS+p0h
0RLKDmD2BZTTmbdfgWEwx8j5J8NWysZ6ZjDSlTPQ7TAwJ4Z7fTSkmWXbCx0/n+rl
bexOgn2cM09EksT99ZCrrgTyC7GKdWixzT2Zk3n8+fJ1D+5b4wWpoOkgVsppar84
/Yb/5gegUCEIgIIGS92aLFqTHdQyISdLfNi0RR0EtkzkhwQGDYhWBFnlDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOI8okPvM1gv5/Enw0rgNagpkSkBMB8GA1UdIwQY
MBaAFBrUzM7+VcXiI6mzIFuTij0cnobVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3RUTXp2NVZ4ZUlqcWJNZ1c1T0tQUnllaHRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9kMjM4NzAtNzRjNy00YTg0LTkwZWMt
YzMyMDM2NzUwZTM2LzEvR3RUTXp2NVZ4ZUlqcWJNZ1c1T0tQUnllaHRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi9kMjM4NzAtNzRjNy00YTg0LTkwZWMtYzMyMDM2NzUwZTM2
LzEvR3RUTXp2NVZ4ZUlqcWJNZ1c1T0tQUnllaHRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApMM00Z0V
cBq4Lcv63uk44WdWV1q/c5aKP69oY4D7x2WUt8+q9RCx1aJOiP5dJWlW319nyQ0u
Sa/QtJ2dLFc8HTuQoG5Gf3Z9Dp0R/oC0Fm69BOtPe9xrIRWbrKy7n4IDzLH1Xpwn
gYD8HsmRGMF8lbEb1c//vlKiuosqW4AD1xSr7LtNRAGfuCSq1SSUgkt+7ku/KxD6
1wrONRh5vG5bKG8++Li5Wz/DgjV1AUa801YOX5o6gB1m814qt0qW3SSjWxuC7jo/
npbmDFRlaypryPPwBcfgAlMP4wzHC2K0bHg3jUelxGqwLbCzirtOnG/kuVVBoDgR
0oholQvg2eCgIw==
-----END CERTIFICATE-----
Generated at Sat Sep 20 00:38:44 2025 by rpki-client