Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
File: GQAdVXoGmNrXfEs-3fKn02tyqwA.mft (raw, json)
Hash identifier: QG60yUDXQPRIomrV5+sKgS+P1xf4DCLvJ/P+yVn4IsI=
Subject key identifier: 34:84:80:7A:6E:E2:C4:6F:9D:BD:82:57:26:BF:C1:A8:9D:4D:95:1B
Authority key identifier: 19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00
Certificate issuer: /CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00
Certificate serial: 019A72264DE5AC52FB4BC5728A90F387C2E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
Manifest number: 065F
Signing time: Tue 11 Nov 2025 09:01:43 +0000
Manifest this update: Tue 11 Nov 2025 09:01:43 +0000
Manifest next update: Wed 12 Nov 2025 09:01:43 +0000
Files and hashes: 1: GQAdVXoGmNrXfEs-3fKn02tyqwA.crl (hash: 9AbuHYEioVF0RoeRRHVfSzzFdTbcTxgFzTBwtAi9y4E=)
2: _Y3WU0rL_Z5yMospeFK2kheOtgM.roa (hash: qqDo+PPhN0qvkLG+7KSZ3FS8hY7kC2hitlOvSMnc4pQ=)
3: cqleo2TkA-Dax9YzlbPC4oCeXks.roa (hash: WDLbfAf8uLhRV57uZSklRDXJ7tKTUOclgtS0od1R4M4=)
4: spoNsBquI5wjgn7gu8viZ3BO3l4.roa (hash: G+9zvvKyQogrHpfux1dzt3BVRrnfOK8LLcMasK0KKtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:4d:e5:ac:52:fb:4b:c5:72:8a:90:f3:87:c2:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00
Validity
Not Before: Nov 11 09:01:43 2025 GMT
Not After : Nov 12 09:01:43 2025 GMT
Subject: CN=3484807a6ee2c46f9dbd825726bfc1a89d4d951b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5f:94:68:64:60:d6:49:2e:49:3d:cf:a5:56:
84:50:68:7c:5b:52:9d:b4:1c:13:dd:71:44:3e:4f:
0e:9f:97:b4:bc:82:1e:de:84:c7:41:db:81:2e:d8:
f2:03:c5:fc:0e:75:7a:a4:90:64:a8:e3:3a:54:a0:
7b:ab:b8:2f:7d:d1:58:06:d3:7b:b3:fa:01:4e:7a:
f9:73:7b:25:5e:4a:c4:d9:eb:80:b0:2d:d2:a6:23:
b6:0b:50:9e:47:51:1b:cb:8d:fb:17:bd:22:0c:78:
eb:3a:46:8a:1c:59:f6:cd:1d:65:e1:f7:79:fe:0b:
86:d7:a3:77:99:05:e7:99:fc:6d:91:00:b8:32:09:
ef:4f:3b:10:de:e3:4c:38:b9:e5:6f:f8:35:f5:89:
d0:0d:10:bb:d4:b8:58:17:a9:26:ac:dc:f1:93:ba:
5d:3c:f5:73:6d:25:3a:12:26:ef:ea:cd:ee:a1:ae:
f0:49:49:8f:8a:17:f7:ab:ca:5d:1b:84:6e:e2:ef:
26:03:99:0d:3b:3d:d0:f6:1a:6f:29:bf:34:0d:9e:
7e:c3:9c:52:9a:b8:b4:19:94:43:22:e8:ae:65:80:
3f:55:2e:ff:31:66:62:e7:99:28:7b:e0:ba:3a:b5:
e1:bf:75:f3:77:4d:5e:bd:88:15:f4:63:a0:2e:9c:
73:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:84:80:7A:6E:E2:C4:6F:9D:BD:82:57:26:BF:C1:A8:9D:4D:95:1B
X509v3 Authority Key Identifier:
keyid:19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:a5:c5:ea:06:63:32:ec:03:4d:d3:e0:e9:9e:f1:f7:0f:3a:
9a:63:1f:07:5a:91:72:13:de:af:93:03:f5:e3:c7:93:0d:c0:
45:38:ae:32:02:fe:c0:82:62:1c:b3:e0:3b:f8:34:1e:a8:31:
cf:4f:d2:13:61:60:51:65:89:de:5a:c2:49:d1:f5:8e:5f:c0:
be:8d:28:da:65:d0:af:74:d0:21:40:f9:c2:51:d7:0e:87:71:
a2:1f:24:a3:6a:53:b4:d8:7a:76:50:c9:3d:9d:ed:28:b7:a0:
81:49:9d:6e:44:f1:df:37:0a:7b:6f:38:c1:fd:b1:14:de:37:
98:13:e5:42:6e:0d:88:13:76:43:26:db:6e:00:8f:03:ea:66:
b6:4f:65:2d:09:9d:a8:04:5e:51:e5:39:ee:e3:72:cc:e2:4e:
c3:bc:14:48:c1:93:aa:3f:1d:94:78:0a:ec:bd:cf:8d:1a:52:
86:e7:f1:a8:34:3d:d9:ec:7b:b8:35:fb:d9:8a:b5:4d:18:df:
4a:99:16:5b:bb:1b:e6:99:c4:30:e6:b4:69:fd:66:dc:62:8e:
01:61:3e:6a:90:3b:0c:9d:a7:70:80:fa:75:55:b8:7f:4d:ec:
de:3b:06:8b:8d:91:3d:10:5d:b8:0c:17:c6:03:00:44:f3:35:
b0:a0:e0:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJk3lrFL7S8VyipDzh8LiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5MDAxZDU1N2EwNjk4ZGFkNzdjNGIzZWRkZjJhN2QzNmI3
MmFiMDAwHhcNMjUxMTExMDkwMTQzWhcNMjUxMTEyMDkwMTQzWjAzMTEwLwYDVQQD
EygzNDg0ODA3YTZlZTJjNDZmOWRiZDgyNTcyNmJmYzFhODlkNGQ5NTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvF+UaGRg1kkuST3PpVaEUGh8W1Kd
tBwT3XFEPk8On5e0vIIe3oTHQduBLtjyA8X8DnV6pJBkqOM6VKB7q7gvfdFYBtN7
s/oBTnr5c3slXkrE2euAsC3SpiO2C1CeR1Eby437F70iDHjrOkaKHFn2zR1l4fd5
/guG16N3mQXnmfxtkQC4MgnvTzsQ3uNMOLnlb/g19YnQDRC71LhYF6kmrNzxk7pd
PPVzbSU6Eibv6s3uoa7wSUmPihf3q8pdG4Ru4u8mA5kNOz3Q9hpvKb80DZ5+w5xS
mri0GZRDIuiuZYA/VS7/MWZi55koe+C6OrXhv3Xzd01evYgV9GOgLpxzmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDSEgHpu4sRvnb2CVya/waidTZUbMB8GA1UdIwQY
MBaAFBkAHVV6Bpja13xLPt3yp9NrcqsAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1FBZFZYb0dtTnJYZkVzLTNmS24wMnR5cXdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9iY2RlY2QtNjY4OS00Y2Q4LWExMDkt
MjBkZTY5NzI2MDliLzEvR1FBZFZYb0dtTnJYZkVzLTNmS24wMnR5cXdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy9iY2RlY2QtNjY4OS00Y2Q4LWExMDktMjBkZTY5NzI2MDli
LzEvR1FBZFZYb0dtTnJYZkVzLTNmS24wMnR5cXdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoKXF6gZj
MuwDTdPg6Z7x9w86mmMfB1qRchPer5MD9ePHkw3ARTiuMgL+wIJiHLPgO/g0Hqgx
z0/SE2FgUWWJ3lrCSdH1jl/Avo0o2mXQr3TQIUD5wlHXDodxoh8ko2pTtNh6dlDJ
PZ3tKLeggUmdbkTx3zcKe284wf2xFN43mBPlQm4NiBN2QybbbgCPA+pmtk9lLQmd
qAReUeU57uNyzOJOw7wUSMGTqj8dlHgK7L3PjRpShufxqDQ92ex7uDX72Yq1TRjf
SpkWW7sb5pnEMOa0af1m3GKOAWE+apA7DJ2ncID6dVW4f03s3jsGi42RPRBduAwX
xgMARPM1sKDgAg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 18:39:15 2025 by rpki-client