Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
File: G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft (raw, json)
Hash identifier: cQBMv7yGiDWMeyFFsgS14LX7/wzRmS7x76fCvaRcgmk=
Subject key identifier: 73:71:DA:F6:04:7B:E8:7C:54:2D:27:19:E2:70:5A:72:27:34:80:26
Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Certificate serial: 019935009783A65CB4925DDF3C846C08DCDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
Manifest number: 160D
Signing time: Wed 10 Sep 2025 19:00:55 +0000
Manifest this update: Wed 10 Sep 2025 19:00:55 +0000
Manifest next update: Thu 11 Sep 2025 19:00:55 +0000
Files and hashes: 1: G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl (hash: SocAxwjY3K+BQCexnou8HF4SUmbQ6fwF7+qyYEMfSXs=)
2: h-vjilG4zsTOTFr8jyiuNr7YOYQ.roa (hash: J1qho6qvh9PzDmhMh26kyKPFY1m2ydeARTE83gY+gJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 19:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:00:97:83:a6:5c:b4:92:5d:df:3c:84:6c:08:dc:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Validity
Not Before: Sep 10 19:00:55 2025 GMT
Not After : Sep 11 19:00:55 2025 GMT
Subject: CN=7371daf6047be87c542d2719e2705a7227348026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:39:9c:c7:ef:dd:25:5c:29:33:20:91:86:6c:
9d:53:06:f3:2c:60:25:23:06:64:e7:21:79:8f:44:
e0:99:93:2a:5c:ee:7c:7c:f6:a8:43:33:0a:3b:92:
4e:63:f0:2f:46:9e:52:78:a5:9b:cb:85:3d:5d:b8:
d4:c1:61:50:80:77:31:e3:90:b0:fe:06:01:93:da:
0a:68:dd:6d:54:76:ea:3a:bc:df:cc:4f:eb:e2:10:
bd:1b:35:4d:9c:93:7f:ea:b8:cb:1c:fa:93:fb:26:
52:17:80:75:b2:75:c1:0c:f5:76:12:5c:4c:cd:2d:
a5:bf:81:26:30:16:dc:e8:1d:8f:ac:0d:17:91:ba:
da:fa:9d:52:17:a6:da:e4:09:37:62:96:81:90:61:
d6:c6:f4:01:12:4d:ce:d0:97:b3:28:b3:93:4c:d3:
24:05:36:a6:e8:0a:c3:19:56:5b:c4:96:2f:26:9b:
e3:7f:f9:b8:c7:01:c3:46:59:a3:42:8c:61:23:dc:
ed:0c:0d:06:a5:e0:09:52:95:4a:aa:24:b0:0f:0f:
07:f9:bf:ee:6f:cf:63:1a:46:63:bd:d9:c6:df:48:
d8:1f:eb:b8:b3:16:65:6d:79:f0:d3:bb:4f:1a:78:
b5:5b:08:9f:5a:7c:9a:20:d2:df:c2:f7:75:fa:29:
69:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:71:DA:F6:04:7B:E8:7C:54:2D:27:19:E2:70:5A:72:27:34:80:26
X509v3 Authority Key Identifier:
keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:88:25:af:53:2d:a3:6d:7e:22:26:e7:49:ce:c3:79:4a:bd:
fd:43:07:f3:d3:3d:98:fd:a5:11:7f:78:c1:f5:e8:4c:53:52:
a3:8d:90:ea:e3:d1:03:57:86:87:a6:3f:3a:58:21:65:96:e6:
5c:9f:39:97:b7:62:f0:d4:ef:cc:45:51:62:b8:f4:21:80:b6:
1a:5f:c3:6d:d8:ed:14:ee:ba:36:3f:b3:9b:51:3f:55:07:e9:
33:df:94:7d:60:ff:36:03:65:af:a4:80:94:46:39:57:23:35:
7f:f8:3a:a5:a5:48:98:ef:d2:88:97:24:95:91:e1:42:61:84:
43:14:45:08:ba:ea:45:e1:ee:d7:f8:5e:40:3b:3d:dc:6e:4a:
7a:18:8f:f0:c8:c6:73:c7:41:18:01:b4:86:cd:de:96:fb:d3:
59:c9:a0:aa:ea:8d:d9:44:bf:c5:9b:14:a2:14:ef:38:56:cd:
c9:8e:08:17:68:1b:6f:48:8e:53:7f:cb:7c:06:57:7e:0a:9a:
99:78:a8:6d:dd:a9:67:24:e3:68:dc:21:58:52:4c:ef:31:8c:
a2:74:b7:a3:c7:de:bf:e3:2c:0b:b6:d0:c9:be:61:cf:d4:78:
41:54:86:eb:3c:23:3b:fc:e8:bd:c5:66:36:d1:ba:4e:8e:9e:
f1:c4:df:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 22:16:27 2025 by rpki-client