Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
File: G2t-l-0j1mqR-4qRv9nGdxEpsas.mft (raw, json)
Hash identifier: +WKJHsZ33AJB/7+/RqNomqVcBsv2eO1q5+pJR52D/B0=
Subject key identifier: 9C:A6:4C:EF:1C:2C:6E:0F:25:8C:54:37:5E:16:B7:EC:13:48:88:6A
Authority key identifier: 1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB
Certificate issuer: /CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab
Certificate serial: 019A72258253DBC61A8F5D984984FC2ED889
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
Manifest number: 1018
Signing time: Tue 11 Nov 2025 09:00:52 +0000
Manifest this update: Tue 11 Nov 2025 09:00:52 +0000
Manifest next update: Wed 12 Nov 2025 09:00:52 +0000
Files and hashes: 1: G2t-l-0j1mqR-4qRv9nGdxEpsas.crl (hash: nuOMvvMQwyItnp1m6gst+nKZ4/FUSv7UimASfNWjZnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:82:53:db:c6:1a:8f:5d:98:49:84:fc:2e:d8:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab
Validity
Not Before: Nov 11 09:00:52 2025 GMT
Not After : Nov 12 09:00:52 2025 GMT
Subject: CN=9ca64cef1c2c6e0f258c54375e16b7ec1348886a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:92:85:f1:b2:cd:32:6f:24:d2:2e:d3:e2:97:
82:ec:dc:61:19:31:03:29:9d:8e:cd:a1:7a:0b:8d:
67:d3:37:13:a6:22:a4:06:c6:9b:d0:b4:83:f8:e5:
5c:4a:0f:05:f0:a2:34:f2:7a:6f:c3:b8:39:6b:c6:
51:3e:56:22:e7:f8:06:f6:20:46:07:d2:0e:40:08:
b8:1c:26:20:c8:23:79:ef:89:89:e5:8f:b6:90:5b:
37:5b:b1:f3:c6:ba:02:2c:38:f8:e1:e5:2b:e4:66:
54:51:72:e9:0c:3e:fe:61:14:16:36:a4:e7:6c:dc:
71:85:24:10:7c:62:fa:34:3c:f7:19:26:c6:9b:14:
37:10:84:5f:01:74:39:ec:32:0a:44:c1:18:9b:cb:
22:62:a4:a8:69:0d:98:17:4a:96:25:4d:e7:43:98:
69:3b:99:9f:6a:cf:b8:9d:1b:75:1c:69:0c:a3:76:
ef:14:be:21:05:53:70:e8:d0:9f:d8:35:5c:0a:19:
ac:37:ca:23:82:5c:0c:ac:4c:8c:3b:33:7e:a7:30:
54:ad:80:22:8d:aa:96:fc:28:d0:45:79:0a:8b:a4:
3b:99:10:db:6e:0e:b3:7b:48:a9:13:f4:fd:04:16:
bb:e7:04:0a:09:cc:70:1e:50:b3:39:e3:9d:9a:f9:
4b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:A6:4C:EF:1C:2C:6E:0F:25:8C:54:37:5E:16:B7:EC:13:48:88:6A
X509v3 Authority Key Identifier:
keyid:1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:16:39:79:9e:75:a9:fc:b9:d5:a7:9f:32:83:c9:8a:d7:ff:
fd:43:b3:ea:b9:fd:61:df:7e:93:1e:41:2c:4a:4b:71:cf:51:
52:a8:9b:a9:73:04:c8:7c:98:cf:82:a7:6f:41:13:7d:5c:da:
55:c3:eb:4b:ca:e7:30:29:37:ef:31:f3:5d:e8:73:57:41:50:
98:07:a2:1d:8a:f9:8b:ca:18:d8:51:ce:6e:52:34:53:11:70:
a8:bc:d8:07:47:72:d0:d0:04:3d:28:3e:e7:d2:2b:83:db:fc:
64:ea:a6:9a:a6:ee:7d:6d:bc:83:54:d1:40:e8:01:7d:cb:14:
4b:89:e6:cb:c6:43:f5:1e:79:22:a0:d5:68:7f:a2:5e:31:1e:
e1:92:bc:c2:dc:12:70:4b:d9:85:3c:2a:6d:d3:6b:85:4f:b3:
9d:94:6f:4b:c5:22:30:0c:3f:2c:d1:f0:35:5e:ab:69:a7:63:
d3:d0:1c:e6:11:94:81:70:76:07:e8:f3:3c:5d:77:db:7f:82:
b8:5a:11:5e:91:ce:31:1d:39:88:73:76:ee:f6:61:e6:98:e3:
cb:fb:22:5c:88:db:c9:f3:95:43:63:fa:f0:5a:a2:43:e2:00:
45:f0:80:a0:42:96:97:a6:d9:66:09:5e:a4:16:58:9c:f3:eb:
49:a1:d9:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:13:58 2025 by rpki-client