Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
File: GtTMzv5VxeIjqbMgW5OKPRyehtU.mft (raw, json)
Hash identifier: xcoM1LZQMN9rk4zyY377iIochaZ+2udqHNPi+y4sF24=
Subject key identifier: 54:FF:79:A4:87:A1:1C:AA:C7:58:1E:2D:0E:E3:E4:82:42:D1:C1:E1
Authority key identifier: 1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
Certificate issuer: /CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Certificate serial: 019A4F628142D25A5051E203B534F1A8C843
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
Manifest number: 13EE
Signing time: Tue 04 Nov 2025 15:00:46 +0000
Manifest this update: Tue 04 Nov 2025 15:00:46 +0000
Manifest next update: Wed 05 Nov 2025 15:00:46 +0000
Files and hashes: 1: 7lJrTTIO2zooVSl7zZp_UO3NA2A.roa (hash: ob9QTWC/tQoW4XviSigFRT+IWVM+wZzBVH2/SY3oV7I=)
2: GtTMzv5VxeIjqbMgW5OKPRyehtU.crl (hash: LSaUNmi9DgcbdheZN48MYTDrqjuoVhM8Xnh4tJtvStU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:81:42:d2:5a:50:51:e2:03:b5:34:f1:a8:c8:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Validity
Not Before: Nov 4 15:00:46 2025 GMT
Not After : Nov 5 15:00:46 2025 GMT
Subject: CN=54ff79a487a11caac7581e2d0ee3e48242d1c1e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:09:b2:72:00:17:ee:df:2a:e2:04:8b:39:cf:
52:f0:db:c1:7b:43:a7:bb:41:29:30:c0:7b:f1:2b:
3c:6a:fb:8c:18:c1:00:03:a0:c7:ed:75:91:41:8a:
82:20:ae:b8:84:71:ac:8e:7a:61:4a:6f:8d:e3:59:
f4:1d:15:69:8e:71:45:bd:51:0d:e3:a8:52:0c:9e:
d3:e1:27:43:f3:31:51:49:12:cf:ed:a5:02:d2:50:
7d:73:5f:6f:a9:0c:24:d7:0c:4e:4b:5e:3a:1f:7c:
0b:96:d9:57:96:f3:91:94:4a:f4:1e:7b:36:db:ab:
a3:3a:0c:86:af:01:0e:1e:39:e1:e4:02:48:c9:8c:
1e:48:1b:8a:6a:ff:bb:3f:56:1d:cb:37:c7:67:3d:
c8:33:a2:24:e3:34:ff:81:e6:9d:3a:90:b7:76:c6:
63:72:4e:7e:b2:6d:a3:dc:a4:16:d3:63:aa:ae:ed:
60:0a:b2:2f:b4:f9:cb:2d:a5:b5:c6:2e:fb:96:56:
36:fe:e7:62:e4:62:86:b5:09:da:5b:55:55:69:38:
3f:16:98:51:c1:29:3c:ef:43:e0:ba:a5:c3:9b:bd:
88:95:1f:41:cc:f6:c2:98:c7:63:57:14:e4:d4:5d:
63:9e:43:a5:e5:2a:11:23:45:cd:c5:df:d3:e8:51:
54:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:FF:79:A4:87:A1:1C:AA:C7:58:1E:2D:0E:E3:E4:82:42:D1:C1:E1
X509v3 Authority Key Identifier:
keyid:1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:6e:af:0e:1c:ec:23:27:bf:77:ba:19:eb:c9:1c:82:82:06:
c9:a7:20:08:22:41:a2:22:4a:e6:70:3e:53:59:f0:49:0b:ae:
34:b1:16:1b:78:dd:d9:ff:e5:1e:d1:6d:db:1e:9d:e4:12:6b:
d7:b8:09:4f:d4:f1:23:bf:93:57:61:11:23:44:9c:9c:3e:46:
34:cb:02:ec:e3:b5:17:60:d3:15:d7:0a:0d:07:ef:9d:d5:d4:
3d:87:15:1d:43:df:0e:c7:5c:c3:81:f9:84:05:42:04:eb:95:
fd:62:09:61:54:12:33:d4:9f:34:12:96:64:c5:f0:be:b1:73:
a6:d8:e6:ca:6d:29:38:71:a0:d1:98:38:cc:ba:54:b1:47:76:
bc:e6:c8:5a:2c:0a:d1:5f:ac:7f:55:09:f6:73:25:c6:ec:0b:
10:df:94:95:d3:ad:0d:44:27:76:c5:4a:3d:ae:06:48:59:63:
18:6a:f9:09:b4:26:d8:ee:3c:5c:0a:55:75:a3:99:0d:94:c1:
5a:70:4b:c9:a1:5e:d0:f4:ee:3b:de:f1:4d:31:35:49:2f:c6:
d1:c0:e4:71:48:a7:5c:af:e4:a3:86:04:7e:84:48:8a:03:d3:
29:f7:3e:3c:8c:a3:e0:fa:77:28:ee:fa:ec:77:38:6a:02:81:
ab:b4:cc:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:00:40 2025 by rpki-client