Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
File: G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft (raw, json)
Hash identifier: nA5LIqyr/maFYZUu7UARSxrzk3WMttt+ZTsLA842vO8=
Subject key identifier: E1:F4:8E:22:03:B0:03:BB:4B:6F:A6:DE:92:73:3B:77:51:47:80:32
Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Certificate serial: 019A300E576BA8A2D14EA04823A71C4317C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
Manifest number: 168F
Signing time: Wed 29 Oct 2025 13:00:37 +0000
Manifest this update: Wed 29 Oct 2025 13:00:37 +0000
Manifest next update: Thu 30 Oct 2025 13:00:37 +0000
Files and hashes: 1: G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl (hash: +utvonoW3Tsr0nnOzWlXTT2A6EwYXasna4ZFWQ3ztBI=)
2: h-vjilG4zsTOTFr8jyiuNr7YOYQ.roa (hash: J1qho6qvh9PzDmhMh26kyKPFY1m2ydeARTE83gY+gJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 13:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:30:0e:57:6b:a8:a2:d1:4e:a0:48:23:a7:1c:43:17:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Validity
Not Before: Oct 29 13:00:37 2025 GMT
Not After : Oct 30 13:00:37 2025 GMT
Subject: CN=e1f48e2203b003bb4b6fa6de92733b7751478032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:3c:3b:fb:86:57:e1:d8:c9:eb:01:6d:43:ca:
27:99:db:44:50:78:52:b3:92:43:06:3f:d5:65:6d:
ae:e2:cb:0a:cb:cf:dd:73:eb:44:54:af:92:26:0c:
9f:90:5f:c6:de:ed:2c:86:c8:37:1f:9d:05:aa:1f:
8e:0b:6b:25:91:bc:d1:fd:1b:7a:05:f8:15:c8:2a:
4a:68:a0:9b:eb:40:5d:80:3f:b0:9e:8c:1d:58:73:
a4:29:ed:b7:d5:15:25:e1:cb:3b:47:b4:e4:0c:77:
d5:91:47:b2:0f:2c:d9:76:74:bf:81:f4:81:51:4a:
e5:dc:5a:ac:ae:2b:72:f4:75:5e:19:2c:21:89:ba:
55:8b:28:12:62:5f:0a:c6:03:cd:73:49:78:c6:8d:
5b:03:d6:92:d5:31:e9:92:6f:99:80:56:6e:4a:9d:
3e:73:51:74:10:6f:d9:f5:3f:d0:db:fd:61:70:db:
c6:ef:b4:65:93:2c:26:06:af:f1:08:d4:0b:83:32:
fb:f0:1d:5f:9e:7e:4f:c4:5f:2b:d4:de:d7:6f:77:
1e:8b:b0:90:ea:59:fd:7d:1b:01:91:0d:4f:8c:cd:
ab:a0:04:d8:58:f4:ec:33:ae:c5:d3:da:c8:1f:38:
83:82:52:30:7a:c4:50:bc:ef:b2:1c:8d:18:78:a2:
29:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F4:8E:22:03:B0:03:BB:4B:6F:A6:DE:92:73:3B:77:51:47:80:32
X509v3 Authority Key Identifier:
keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:09:03:fe:c1:1f:75:08:da:fb:03:4a:74:1d:45:e9:4f:90:
d0:1c:6c:c0:f6:9e:c5:c3:54:85:d6:39:82:cb:a3:3c:29:20:
e9:dc:77:04:90:ff:fb:d5:c6:26:fd:4a:73:f0:19:0c:a9:8e:
9c:aa:24:7d:13:73:65:53:78:31:4c:d5:20:c5:7e:46:00:b1:
bb:65:13:e2:e6:f2:3a:90:d1:a0:68:8a:69:59:1f:8b:84:ac:
be:87:39:4c:e7:d1:cc:5e:d3:4d:c5:e4:5b:3b:44:ef:eb:7c:
aa:dd:1b:0e:e4:41:86:d5:74:b4:d4:06:b0:51:76:0f:2d:c6:
e0:40:15:ee:f1:68:1b:71:71:fd:6a:7f:1f:d8:95:d8:77:b5:
5e:c9:a3:1e:9b:dd:34:97:e2:5f:fe:a5:40:f8:cc:9a:02:a5:
ac:41:84:9a:5e:b7:04:32:45:b9:38:28:5b:b2:03:db:11:d9:
e3:fd:62:47:e9:2b:ad:4d:18:d6:fd:2f:d3:b6:4f:05:cd:f1:
6d:e9:44:27:d0:87:57:48:63:44:8c:f4:16:e0:d4:71:1d:6b:
70:a0:b3:ad:89:2c:91:3a:7a:c1:0c:a2:18:03:c2:0a:f3:03:
f5:5b:30:8c:4a:c4:96:ef:0b:10:79:9e:5f:7b:d0:6d:05:b3:
e1:a4:8d:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 18:57:18 2025 by rpki-client