Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
File: GQAdVXoGmNrXfEs-3fKn02tyqwA.mft (raw, json)
Hash identifier: YHB9+fg6R8wthOx976r1Bzqt/SFM6sRj8GJ5drQnTBI=
Subject key identifier: 21:60:83:08:90:8D:2C:F3:F9:0F:B4:A7:ED:67:68:83:DB:01:92:DE
Authority key identifier: 19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00
Certificate issuer: /CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00
Certificate serial: 0199507864B7F039DE59E6D150D479187039
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
Manifest number: 05C9
Signing time: Tue 16 Sep 2025 03:01:31 +0000
Manifest this update: Tue 16 Sep 2025 03:01:31 +0000
Manifest next update: Wed 17 Sep 2025 03:01:31 +0000
Files and hashes: 1: GQAdVXoGmNrXfEs-3fKn02tyqwA.crl (hash: K9kNYVAyVq2fmQoDAadZ5KyUMn0xdMa2+ExU3f3ns1I=)
2: _Y3WU0rL_Z5yMospeFK2kheOtgM.roa (hash: qqDo+PPhN0qvkLG+7KSZ3FS8hY7kC2hitlOvSMnc4pQ=)
3: cqleo2TkA-Dax9YzlbPC4oCeXks.roa (hash: WDLbfAf8uLhRV57uZSklRDXJ7tKTUOclgtS0od1R4M4=)
4: spoNsBquI5wjgn7gu8viZ3BO3l4.roa (hash: G+9zvvKyQogrHpfux1dzt3BVRrnfOK8LLcMasK0KKtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Sep 2025 03:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:50:78:64:b7:f0:39:de:59:e6:d1:50:d4:79:18:70:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00
Validity
Not Before: Sep 16 03:01:31 2025 GMT
Not After : Sep 17 03:01:31 2025 GMT
Subject: CN=21608308908d2cf3f90fb4a7ed676883db0192de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:59:de:ed:ea:76:ee:76:35:a7:e8:2e:78:3e:
98:4b:ec:db:6e:c5:2e:92:9f:f6:36:d5:c9:56:f9:
32:86:a5:d1:36:09:56:b3:9a:7c:87:4c:eb:a6:b8:
a5:62:9f:b6:ee:f4:21:3e:a1:cc:b2:10:c3:67:58:
e3:c7:cb:b2:69:1e:cc:2f:f0:0b:76:9f:da:80:5e:
8b:c6:b6:c9:75:03:44:33:7d:62:3d:27:8c:b7:46:
01:6f:e0:c5:60:e9:8e:21:b2:f6:3a:49:41:3b:01:
8a:c4:ad:df:43:d7:52:c9:b4:bb:06:2c:45:d4:d8:
5c:3a:9e:d5:e7:1e:d4:59:97:77:e7:f1:06:c6:6e:
0e:4d:81:3b:13:59:35:66:d1:5b:10:c2:cf:28:0a:
4f:06:67:c1:73:74:ae:06:5a:bd:65:7b:16:d9:a7:
ec:05:ee:47:59:85:e5:2a:35:8d:47:8e:72:54:26:
ff:58:4a:18:ee:23:6a:ef:41:04:00:7a:de:ce:69:
ce:67:1d:c5:76:57:46:19:f2:8f:8d:b5:90:a2:f9:
42:41:17:ac:03:17:18:d4:40:cc:0f:58:15:47:12:
f6:2f:7e:0f:f5:1a:1e:4f:13:01:97:cf:a6:54:2f:
24:2c:69:b7:e2:08:f3:3a:91:dc:40:74:4c:d2:55:
9d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:60:83:08:90:8D:2C:F3:F9:0F:B4:A7:ED:67:68:83:DB:01:92:DE
X509v3 Authority Key Identifier:
keyid:19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:48:e6:1e:18:7d:2f:cb:70:ad:3c:09:ea:a9:a2:5f:db:3e:
18:c5:8c:d4:34:68:81:6a:97:ed:41:3f:b6:87:ca:c3:16:2d:
01:b5:b5:a4:1f:4a:62:5d:7a:fa:b2:de:13:8e:fe:27:e8:c4:
a6:db:dc:d6:e5:4f:bc:59:ee:4a:fa:8a:d8:f1:c3:01:5c:57:
d4:8f:8d:32:75:22:16:ae:2e:0c:8e:4c:ad:85:cc:6c:82:58:
05:31:0b:ef:5e:78:11:41:40:eb:a2:07:1f:2b:34:8a:54:c3:
47:b9:3e:be:80:eb:99:16:25:87:e5:af:7a:0d:b1:71:9f:57:
b1:55:3f:5c:f2:f8:b1:8c:ec:dc:47:2b:a9:46:f2:57:af:b1:
60:08:93:4b:1b:40:65:8c:a4:17:2b:55:44:d6:0e:85:bb:7b:
33:0f:7c:3e:f9:1c:01:4e:c9:3d:5c:da:99:5d:a5:8d:e7:02:
f2:e7:53:f9:7b:5d:d2:39:14:d3:69:f4:cf:21:14:b5:35:cb:
76:29:22:05:7e:85:ec:b9:48:58:37:fe:03:00:ad:a5:90:8e:
7c:a0:df:40:96:a5:1e:6c:12:5f:e2:9f:7b:24:45:8b:25:47:
58:2f:23:ab:55:d8:bc:d3:00:0d:a9:f7:64:d1:f7:81:4f:da:
25:de:e1:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 09:29:33 2025 by rpki-client