Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.mft
File: GdlgBYpVOz9d-f5ychkDfEirUOE.mft (raw, json)
Hash identifier: z5I1tbGEJJ1a8O43v+j8O2J9uQSZOr4WW7K+f9NMLYQ=
Subject key identifier: 27:19:B1:83:94:6C:59:30:E7:BE:6D:73:F5:E2:38:2B:EB:D5:45:E3
Authority key identifier: 19:D9:60:05:8A:55:3B:3F:5D:F9:FE:72:72:19:03:7C:48:AB:50:E1
Certificate issuer: /CN=19d960058a553b3f5df9fe727219037c48ab50e1
Certificate serial: 019A16173D902052B1D2EAE655B676D2E6A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GdlgBYpVOz9d-f5ychkDfEirUOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.mft
Manifest number: 0DC0
Signing time: Fri 24 Oct 2025 12:00:13 +0000
Manifest this update: Fri 24 Oct 2025 12:00:13 +0000
Manifest next update: Sat 25 Oct 2025 12:00:13 +0000
Files and hashes: 1: GdlgBYpVOz9d-f5ychkDfEirUOE.crl (hash: scZE7r9ejkvvcyHlSvL408Vy7UM2Ca90kdW9+3KTja4=)
2: X3uPBxzPVXv3n_QN1aGdKbmuIRY.roa (hash: hUPc8yRkBzbeF7M/RRJW79E+lPzVmxoaNEB54waojEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/GdlgBYpVOz9d-f5ychkDfEirUOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 12:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:16:17:3d:90:20:52:b1:d2:ea:e6:55:b6:76:d2:e6:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19d960058a553b3f5df9fe727219037c48ab50e1
Validity
Not Before: Oct 24 12:00:13 2025 GMT
Not After : Oct 25 12:00:13 2025 GMT
Subject: CN=2719b183946c5930e7be6d73f5e2382bebd545e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:75:c8:7a:1f:fb:73:63:ea:e0:7f:87:7d:48:
e0:f4:2e:ab:eb:1a:e4:95:7e:22:af:9a:a2:b4:ce:
bb:06:c4:09:a0:89:13:11:2a:2e:c1:b5:ab:d0:c6:
98:e3:05:49:15:ce:c4:05:b3:14:a5:dc:2a:08:2c:
56:6c:21:4f:72:63:8c:36:47:ea:4e:f0:bd:b9:4d:
2b:3f:77:d8:23:84:17:fe:3c:3d:89:b9:c6:b0:6b:
8e:5c:57:77:e6:03:88:5d:e6:04:62:35:ba:32:83:
34:02:38:e4:59:c9:6e:54:16:97:b7:08:08:e9:07:
9f:a2:8e:74:67:72:63:ed:a4:36:13:f5:ec:eb:e5:
c7:2b:35:44:b0:ab:94:cd:7d:f4:72:83:ed:d0:81:
fb:32:a2:2a:24:a0:11:fa:9f:6c:52:d0:0f:36:bf:
66:93:f7:3f:86:6c:15:de:ce:ae:1c:86:37:97:7e:
6d:d8:16:58:c9:c1:5b:13:09:66:dc:b0:df:83:33:
d4:e9:25:12:ae:ef:8a:89:2d:07:c5:3b:e2:c2:1f:
f9:f1:b9:eb:cc:57:49:ff:f7:c9:21:9c:14:d4:a5:
52:7a:94:52:ac:94:5f:e6:e8:42:0a:57:97:57:ed:
4c:cc:45:e2:dc:a9:9d:2a:f8:fd:a3:62:90:21:b9:
72:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:19:B1:83:94:6C:59:30:E7:BE:6D:73:F5:E2:38:2B:EB:D5:45:E3
X509v3 Authority Key Identifier:
keyid:19:D9:60:05:8A:55:3B:3F:5D:F9:FE:72:72:19:03:7C:48:AB:50:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GdlgBYpVOz9d-f5ychkDfEirUOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:6a:e3:3b:da:35:90:4b:2e:ff:48:e9:a6:2d:f0:d3:12:ee:
1f:a1:7a:aa:6d:82:ca:47:2e:24:45:a9:d7:7b:1f:ea:97:2e:
c2:95:01:d9:ac:e6:dc:ca:8a:05:cb:97:f9:86:e1:d2:66:a8:
06:1e:74:30:10:dd:ec:e6:6f:13:39:29:83:d5:43:74:dd:76:
c4:e2:80:c0:78:8a:e6:0e:0e:a2:f2:e2:3c:57:47:9b:0a:a5:
48:cc:ab:6e:7e:d2:73:d3:36:9e:dc:56:34:84:b5:67:65:fb:
0e:38:aa:c6:f3:64:dd:c3:ce:34:a0:2c:0c:f8:63:9c:41:d0:
1c:83:5f:d3:ae:8b:e7:d8:c5:b0:d3:5f:aa:21:f6:54:8f:00:
dd:dc:c2:ec:d5:b0:6b:58:6a:92:bb:e3:39:28:dd:bb:1a:17:
d3:03:4d:01:27:6a:96:f2:82:dd:85:be:b1:d6:7d:cd:66:fb:
dc:43:71:78:8c:b4:ab:25:a4:66:a3:e9:0c:42:f5:22:2e:8d:
6a:e2:5c:e3:4b:99:d7:4a:33:9e:04:f6:01:8d:83:6f:2f:5c:
12:c8:b7:ea:4a:0b:87:69:c0:b6:3c:fc:2b:b3:f9:25:fb:3d:
7c:fa:ab:cf:16:17:c4:b4:a8:18:85:9e:24:a9:78:f1:31:41:
92:7c:9e:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 20:50:27 2025 by rpki-client