Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
File: 1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft (raw, json)
Hash identifier: qwGWLFscKT8oiqufgo86wrBxaLbOb28LwHbA4afVgiY=
Subject key identifier: 31:38:69:62:5B:7E:0E:68:33:F0:64:81:D0:0C:FF:07:89:B8:08:6A
Authority key identifier: D4:69:86:7D:1D:69:3E:79:A6:A5:EE:90:14:E4:13:F0:39:EB:50:D8
Certificate issuer: /CN=d469867d1d693e79a6a5ee9014e413f039eb50d8
Certificate serial: 019A71131000BF80365766868A90948BA7F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
Manifest number: 114F
Signing time: Tue 11 Nov 2025 04:01:05 +0000
Manifest this update: Tue 11 Nov 2025 04:01:05 +0000
Manifest next update: Wed 12 Nov 2025 04:01:05 +0000
Files and hashes: 1: 1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl (hash: 6gSbW3+HRZT+L0KiawhZc43K6AbHtpQt+W6wBEHA01Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:10:00:bf:80:36:57:66:86:8a:90:94:8b:a7:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d469867d1d693e79a6a5ee9014e413f039eb50d8
Validity
Not Before: Nov 11 04:01:05 2025 GMT
Not After : Nov 12 04:01:05 2025 GMT
Subject: CN=313869625b7e0e6833f06481d00cff0789b8086a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:29:0c:b0:9d:1a:b3:c7:42:3a:56:f4:7d:59:
94:7e:37:02:7a:16:80:6e:f4:72:66:72:d2:0d:22:
6e:73:a0:3a:c6:d7:ce:19:20:b8:ef:ba:8e:37:67:
15:24:de:72:7a:a1:c7:e9:01:0b:a3:be:b9:1f:a1:
03:c8:cd:93:3f:4f:1d:bf:83:91:80:e9:17:00:2a:
a9:71:1f:c9:15:a0:67:16:85:9c:1b:c2:af:bd:00:
73:8d:b2:f2:79:46:dd:f2:fe:86:e5:59:3f:e3:df:
9d:8b:f6:ac:98:ca:3d:b1:c1:31:8e:10:de:77:6a:
9c:47:f8:f6:1f:c7:2d:5e:f3:75:50:fd:7a:08:24:
ec:d7:7b:2a:97:c5:5d:6c:33:49:fc:1f:17:9e:59:
02:37:ac:ca:05:37:9d:8d:e4:0e:8e:fc:96:5a:a3:
fe:c2:ee:cb:e0:03:2f:48:22:57:c2:14:ba:f9:e8:
3f:ca:93:95:e6:88:09:8c:f6:d3:6f:17:21:c3:19:
9f:fe:1c:38:f9:07:71:99:40:98:4e:69:c2:16:58:
5c:d7:09:82:ef:4a:fa:66:6f:11:c9:f6:35:eb:bc:
08:1d:76:cb:cb:dc:aa:93:55:8c:4f:94:da:f7:5a:
33:84:13:f0:a9:1d:d5:bf:73:48:d6:8c:d7:7f:b8:
c3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:38:69:62:5B:7E:0E:68:33:F0:64:81:D0:0C:FF:07:89:B8:08:6A
X509v3 Authority Key Identifier:
keyid:D4:69:86:7D:1D:69:3E:79:A6:A5:EE:90:14:E4:13:F0:39:EB:50:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:3b:a7:b1:c8:17:9b:19:b5:c5:05:68:93:ed:1d:cb:a7:b8:
12:d1:bb:76:c0:24:a6:38:30:e5:0a:4a:03:4f:60:16:2d:c4:
65:3b:bc:4f:95:cb:aa:bb:22:2b:bb:92:e8:4b:c2:c5:5f:5a:
40:69:20:43:12:d8:e6:75:c6:d1:c7:26:93:ff:4f:38:2b:f0:
bd:cb:f3:1e:4e:12:66:71:8f:23:9b:07:b4:8f:61:54:87:0e:
7b:80:c2:f1:bd:f2:5d:82:fb:24:9d:de:a4:37:50:9b:57:28:
3f:e0:1e:d8:dc:54:2e:16:c2:3d:f7:36:b2:07:15:07:7e:90:
63:7a:81:8a:12:da:4f:22:f7:c0:a2:91:90:a4:b4:a6:f3:cb:
d8:91:d4:33:b1:34:4c:8f:cb:78:6a:52:2c:37:5d:db:90:84:
c3:42:dd:0f:2a:07:71:cd:45:6d:07:e4:97:5f:04:67:54:fc:
7a:f2:e5:00:4c:56:a3:e5:4b:46:4f:26:43:6e:8c:05:c6:09:
1f:16:15:10:c0:77:76:a4:d9:f9:dd:47:d8:ed:26:a7:0e:2c:
28:8e:76:bc:fa:f1:12:ef:25:28:73:f9:b6:95:96:ec:4e:af:
a2:e0:60:1f:64:58:3c:04:1a:ce:85:5e:2f:43:3d:21:fa:39:
c0:40:b7:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxExAAv4A2V2aGipCUi6f2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0Njk4NjdkMWQ2OTNlNzlhNmE1ZWU5MDE0ZTQxM2YwMzll
YjUwZDgwHhcNMjUxMTExMDQwMTA1WhcNMjUxMTEyMDQwMTA1WjAzMTEwLwYDVQQD
EygzMTM4Njk2MjViN2UwZTY4MzNmMDY0ODFkMDBjZmYwNzg5YjgwODZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCkMsJ0as8dCOlb0fVmUfjcCehaA
bvRyZnLSDSJuc6A6xtfOGSC477qON2cVJN5yeqHH6QELo765H6EDyM2TP08dv4OR
gOkXACqpcR/JFaBnFoWcG8KvvQBzjbLyeUbd8v6G5Vk/49+di/asmMo9scExjhDe
d2qcR/j2H8ctXvN1UP16CCTs13sql8VdbDNJ/B8XnlkCN6zKBTedjeQOjvyWWqP+
wu7L4AMvSCJXwhS6+eg/ypOV5ogJjPbTbxchwxmf/hw4+QdxmUCYTmnCFlhc1wmC
70r6Zm8RyfY167wIHXbLy9yqk1WMT5Ta91ozhBPwqR3Vv3NI1ozXf7jD1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDE4aWJbfg5oM/BkgdAM/weJuAhqMB8GA1UdIwQY
MBaAFNRphn0daT55pqXukBTkE/A561DYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUdtR2ZSMXBQbm1tcGU2UUZPUVQ4RG5yVU5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9iNDg1ZDktZWVkYy00NzA2LWE5ZTYt
NDFkZTk3ZGM5YjZjLzEvMUdtR2ZSMXBQbm1tcGU2UUZPUVQ4RG5yVU5nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy9iNDg1ZDktZWVkYy00NzA2LWE5ZTYtNDFkZTk3ZGM5YjZj
LzEvMUdtR2ZSMXBQbm1tcGU2UUZPUVQ4RG5yVU5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARDunscgX
mxm1xQVok+0dy6e4EtG7dsAkpjgw5QpKA09gFi3EZTu8T5XLqrsiK7uS6EvCxV9a
QGkgQxLY5nXG0ccmk/9POCvwvcvzHk4SZnGPI5sHtI9hVIcOe4DC8b3yXYL7JJ3e
pDdQm1coP+Ae2NxULhbCPfc2sgcVB36QY3qBihLaTyL3wKKRkKS0pvPL2JHUM7E0
TI/LeGpSLDdd25CEw0LdDyoHcc1FbQfkl18EZ1T8evLlAExWo+VLRk8mQ26MBcYJ
HxYVEMB3dqTZ+d1H2O0mpw4sKI52vPrxEu8lKHP5tpWW7E6vouBgH2RYPAQazoVe
L0M9Ifo5wEC3kA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 13:11:06 2025 by rpki-client