Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
File: 1GL5scD2-pylMXZOJtOu0hG_7YE.mft (raw, json)
Hash identifier: a9OxyopjaEfEHP9AKX2qAZNlIxSVlJ1GwNdWq6uvoi8=
Subject key identifier: E3:8F:40:D2:A9:C7:E0:64:09:EE:A5:9F:EC:49:89:E4:3B:12:67:AD
Authority key identifier: D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
Certificate issuer: /CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Certificate serial: 019A70DBFB8402DB078CE54FBCE83AF15F38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
Manifest number: 0D3D
Signing time: Tue 11 Nov 2025 03:00:56 +0000
Manifest this update: Tue 11 Nov 2025 03:00:56 +0000
Manifest next update: Wed 12 Nov 2025 03:00:56 +0000
Files and hashes: 1: 1GL5scD2-pylMXZOJtOu0hG_7YE.crl (hash: W4aXtgh8ldhBgAQfASDCEyutOznimagfU2ZRDPN9mcU=)
2: CzS60ntrl-ifakYiPMHnNys_2hg.roa (hash: gJEVLSYuR5fsAEatKrGL8Os1DpygWBOtVxsvnHWW9x0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:db:fb:84:02:db:07:8c:e5:4f:bc:e8:3a:f1:5f:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Validity
Not Before: Nov 11 03:00:56 2025 GMT
Not After : Nov 12 03:00:56 2025 GMT
Subject: CN=e38f40d2a9c7e06409eea59fec4989e43b1267ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a9:d2:7b:66:8a:73:05:72:14:08:45:43:00:
c7:4d:31:a1:81:d8:b7:bf:17:fd:58:92:93:fc:4c:
89:c9:92:38:11:43:f7:55:23:b6:6f:a4:ec:03:af:
19:74:a7:16:7c:7f:b0:89:bf:a1:8d:2a:0c:03:2c:
e1:95:4e:b3:fc:f3:43:db:2c:00:74:58:aa:3c:63:
22:09:87:8e:d0:5b:cf:16:66:c4:2d:38:20:41:cd:
52:89:3a:87:0f:87:a9:fb:18:18:40:1f:a9:cc:f3:
8f:62:32:93:e3:96:3e:20:e8:07:16:2d:46:6d:a5:
46:91:6e:4f:cc:a8:c7:85:99:81:10:b7:28:63:e1:
2b:25:61:5d:71:02:db:de:0e:35:7f:d8:b2:24:ca:
07:63:25:48:f4:0b:2e:19:cd:2f:60:24:f9:cf:89:
6e:65:e8:8e:5e:bf:65:39:13:7f:87:c2:21:c9:86:
9f:ba:bf:cc:4d:60:2b:f4:a7:37:4f:8a:67:24:15:
24:fc:0b:80:e2:c6:8b:c5:f9:4f:86:f4:6d:39:2e:
c5:63:9b:86:04:75:74:89:00:52:e4:5a:06:a4:fc:
c6:97:f4:36:86:96:96:4e:83:76:88:16:05:34:d7:
48:1e:d6:5b:00:2f:75:fd:a5:c7:01:62:f0:14:18:
e2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8F:40:D2:A9:C7:E0:64:09:EE:A5:9F:EC:49:89:E4:3B:12:67:AD
X509v3 Authority Key Identifier:
keyid:D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:4f:41:41:aa:ba:1a:2e:f8:b7:36:4b:e0:af:f0:6d:53:33:
56:fc:d4:86:a3:a2:e0:fe:d9:b3:90:21:ab:09:76:da:9b:10:
f0:16:18:3f:35:33:60:37:9f:02:9b:6a:31:8f:ed:b6:32:17:
0e:2f:49:b9:17:57:38:e5:06:87:22:bf:21:96:ab:9f:e1:63:
e2:36:f1:47:68:f8:98:c6:f0:d6:e3:1e:a1:c2:08:53:52:40:
95:90:1b:e9:7d:dc:57:87:93:84:b9:1e:57:2f:e3:c7:b4:34:
e7:e4:5c:3c:17:54:f7:b8:b7:57:ae:88:1f:26:8f:83:2f:a3:
fb:68:d6:72:23:bb:f9:53:1e:2b:0a:a9:4e:cd:b2:db:94:86:
8e:51:56:c5:58:01:52:d8:67:c6:4a:5c:c6:ee:dc:6a:c9:33:
82:b8:b8:e4:38:dd:20:b8:7b:a1:12:39:82:1f:13:b9:21:29:
0a:f6:a7:e9:73:35:71:f8:93:05:41:77:9e:8d:5a:08:90:14:
37:ee:57:11:8a:d2:4f:82:66:ab:ad:ad:8f:12:1d:61:c1:f8:
7c:90:ea:9f:d8:26:8f:e1:e6:3a:e5:ed:55:01:7e:b7:7e:09:
4a:01:fe:23:46:65:70:3f:88:4e:73:1b:9f:5f:17:83:9b:33:
e6:46:a6:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:25 2025 by rpki-client