Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.mft
File: GdlgBYpVOz9d-f5ychkDfEirUOE.mft (raw, json)
Hash identifier: Nm71kZV+HWTsVasaFzWabz5YzdPyfTzr4UqDtfgpSX4=
Subject key identifier: 9F:40:20:BD:4E:98:3A:72:06:47:61:CA:8D:E7:C5:FD:86:36:1B:E0
Authority key identifier: 19:D9:60:05:8A:55:3B:3F:5D:F9:FE:72:72:19:03:7C:48:AB:50:E1
Certificate issuer: /CN=19d960058a553b3f5df9fe727219037c48ab50e1
Certificate serial: 019926D7330B34E85CC6E2C6CA01EE07BF98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GdlgBYpVOz9d-f5ychkDfEirUOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.mft
Manifest number: 0D44
Signing time: Mon 08 Sep 2025 01:01:01 +0000
Manifest this update: Mon 08 Sep 2025 01:01:01 +0000
Manifest next update: Tue 09 Sep 2025 01:01:01 +0000
Files and hashes: 1: GdlgBYpVOz9d-f5ychkDfEirUOE.crl (hash: 5hyYZOocEd2Eb+UNps6O3BPLzakV97Em9RY7EQtUzQ8=)
2: X3uPBxzPVXv3n_QN1aGdKbmuIRY.roa (hash: hUPc8yRkBzbeF7M/RRJW79E+lPzVmxoaNEB54waojEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/GdlgBYpVOz9d-f5ychkDfEirUOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 01:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:26:d7:33:0b:34:e8:5c:c6:e2:c6:ca:01:ee:07:bf:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19d960058a553b3f5df9fe727219037c48ab50e1
Validity
Not Before: Sep 8 01:01:01 2025 GMT
Not After : Sep 9 01:01:01 2025 GMT
Subject: CN=9f4020bd4e983a72064761ca8de7c5fd86361be0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:96:4e:44:8a:b3:9b:7f:0c:0a:58:1a:f1:f2:
ca:52:5b:dd:8e:ad:26:d8:90:31:51:1d:4d:31:e5:
61:76:de:c5:ae:18:b5:fd:05:8a:75:98:5e:0a:b2:
85:2b:6e:70:98:6c:43:d6:b2:c6:56:3c:9d:d2:02:
be:6e:0d:9a:91:54:c4:32:e1:d6:9a:79:6e:75:20:
49:c4:5e:27:b8:25:2e:1b:97:56:53:55:b6:1b:b2:
21:ca:0d:33:73:12:8e:08:6e:c3:c6:90:b9:28:41:
3e:75:79:8b:fc:9e:1e:7e:32:7d:82:82:63:e0:d6:
2e:71:8a:fb:d5:bf:b7:3e:29:ff:0f:da:d5:ac:b9:
bb:f8:1f:6c:dd:2b:c6:72:1f:5d:2c:b7:4f:5e:0f:
b9:1a:6d:08:68:8a:a4:4d:5b:2e:28:4f:ab:a9:f1:
9c:37:b7:7a:16:65:bd:b6:27:73:8f:dd:81:5a:28:
52:73:b0:cf:ed:93:d3:b4:8b:87:c6:37:0d:ee:cc:
64:49:28:62:59:7b:48:da:bb:0a:f8:ec:51:06:dd:
59:fe:65:01:a7:21:9b:fc:6a:59:78:81:3d:67:03:
20:4f:79:47:33:00:10:63:3b:76:ff:9d:6d:53:fd:
f2:2d:c3:d2:b7:8b:05:ad:93:27:d4:01:2e:14:15:
7e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:40:20:BD:4E:98:3A:72:06:47:61:CA:8D:E7:C5:FD:86:36:1B:E0
X509v3 Authority Key Identifier:
keyid:19:D9:60:05:8A:55:3B:3F:5D:F9:FE:72:72:19:03:7C:48:AB:50:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GdlgBYpVOz9d-f5ychkDfEirUOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:c1:bd:37:0f:b7:ac:2c:66:3a:1c:bc:51:cd:10:47:f3:e0:
cc:9b:60:cf:8e:3c:1b:56:6a:c3:4f:1e:74:61:bf:a1:a3:e2:
46:d6:35:31:72:7b:2c:f4:14:68:a4:44:90:66:7f:e1:69:66:
28:82:89:81:c5:78:fc:33:05:14:b5:91:0b:30:38:ee:3b:5c:
3d:f3:cd:43:b2:4d:a0:39:e8:fa:4f:a7:9e:27:68:3a:fc:ee:
a9:8b:68:86:24:a3:13:8a:cb:61:3a:d6:dc:19:31:21:9d:05:
d3:b7:e7:f7:30:31:f8:be:0d:d0:ed:66:d4:88:16:39:ec:f3:
f1:6e:e7:fb:4d:37:03:09:5d:db:5c:18:5e:05:42:70:eb:a4:
6a:7c:59:3f:c2:e2:29:7f:ae:c4:77:82:13:8c:3e:8b:01:91:
89:6c:36:d7:b5:d4:fd:a9:bc:13:98:ae:b2:68:b4:75:a9:9d:
b4:ed:de:d7:10:d7:01:00:1c:f6:7e:57:7a:68:a1:78:f0:e7:
89:93:97:27:0e:b0:b7:f7:93:ba:7f:46:5a:4b:dc:a4:cd:b3:
1b:ed:da:17:e3:cd:be:b0:87:5f:00:f5:c0:69:1b:7e:67:7b:
7c:8f:9e:e0:0f:9c:57:2c:66:7b:5e:13:07:74:d9:5a:a4:92:
00:f2:c1:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 10:05:42 2025 by rpki-client