
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
File: G2t-l-0j1mqR-4qRv9nGdxEpsas.mft (raw, json)
Hash identifier: +IFx5gS5pdo9aMRx3OSy0drOkhmP90/xFpebD4+DBis=
Subject key identifier: A4:7A:59:3B:DE:02:78:45:C5:B7:D8:21:8A:B6:DD:AF:D9:F8:78:51
Authority key identifier: 1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB
Certificate issuer: /CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab
Certificate serial: 01989336146D651D4A22B474F61392E099A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
Manifest number: 0F20
Signing time: Sun 10 Aug 2025 09:00:51 +0000
Manifest this update: Sun 10 Aug 2025 09:00:51 +0000
Manifest next update: Mon 11 Aug 2025 09:00:51 +0000
Files and hashes: 1: G2t-l-0j1mqR-4qRv9nGdxEpsas.crl (hash: tEHXtUmuIxrBBDHMR60jjoP1CkmDGaN8JuuZ/ZMt8Us=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:36:14:6d:65:1d:4a:22:b4:74:f6:13:92:e0:99:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab
Validity
Not Before: Aug 10 09:00:51 2025 GMT
Not After : Aug 11 09:00:51 2025 GMT
Subject: CN=a47a593bde027845c5b7d8218ab6ddafd9f87851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ed:62:78:f4:7d:65:7c:85:8f:c4:14:8c:ab:
85:86:e7:d0:e4:8e:e9:ab:a1:a5:ad:e3:91:63:42:
fe:ef:1c:74:2f:ab:b0:7e:c3:1d:88:94:ee:90:56:
93:1b:94:51:33:bb:db:24:a2:ca:47:80:f0:b6:f7:
36:8d:71:5f:01:cd:db:64:62:e8:40:0d:21:49:14:
a3:10:06:93:9a:69:12:be:02:46:13:28:03:e4:a0:
1a:bd:e6:f9:46:98:67:9c:ff:94:8c:06:53:97:f8:
0f:2b:e9:e7:66:f1:2f:8a:64:7c:ad:74:5e:80:0a:
c1:22:3b:91:80:55:0f:e9:72:96:96:36:34:d0:b8:
11:ea:a3:ea:87:9e:35:ec:73:46:81:5c:07:ff:e0:
8f:8f:ee:8b:06:fc:8d:3e:76:08:9f:7f:2b:dd:76:
b8:b0:b9:fb:55:8b:de:40:33:b7:f4:b2:ea:f6:6b:
31:6a:cf:72:40:60:a9:ae:e6:bb:ea:e8:34:75:93:
63:73:ea:19:c8:65:b7:f2:6c:48:1c:fc:c8:7a:dd:
85:4b:62:9a:93:e8:e0:3f:fa:35:6b:d2:a3:ce:69:
c1:e8:96:b6:c9:f0:5d:ec:44:7d:e1:e3:39:1d:e8:
ff:fc:9e:6a:52:6c:76:5c:72:41:17:02:cf:b6:02:
51:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:7A:59:3B:DE:02:78:45:C5:B7:D8:21:8A:B6:DD:AF:D9:F8:78:51
X509v3 Authority Key Identifier:
keyid:1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:e4:a1:69:2e:79:9b:3e:8a:ad:0e:f4:56:f3:e3:73:d1:28:
a6:06:09:2a:e6:2d:ea:98:1a:cf:98:fe:7b:5f:7d:12:a0:bb:
3f:c4:bd:80:91:a9:27:32:22:d3:2a:c2:05:fa:21:cf:e2:4d:
1f:4f:75:74:52:e7:60:8c:17:b9:99:32:3b:b7:60:d9:65:f3:
cf:df:6e:8f:a2:60:39:0b:28:8e:35:5e:9a:2d:d1:ac:52:3b:
10:40:9a:80:cf:0a:10:93:35:3e:f3:38:e3:53:96:36:1b:2e:
d1:d7:ed:16:3f:17:d6:92:58:79:ce:1f:64:6e:b3:ab:7b:2d:
86:a4:23:fb:fc:91:98:8d:bd:19:fd:73:40:77:51:3e:6b:69:
86:c9:a9:98:e6:9c:00:56:0e:3f:9d:9e:c7:66:19:ae:6b:9f:
4a:a3:99:87:ba:67:77:f6:e4:85:f8:80:1e:17:87:4b:f2:c9:
c8:6d:e9:58:47:d4:e6:19:e4:b7:35:21:49:02:53:ae:e1:ec:
f0:be:f8:9c:86:bc:95:08:c7:7d:18:41:56:d2:cc:df:e4:55:
37:57:c7:81:14:20:23:8a:51:ca:fc:7f:a5:94:ac:db:40:01:
79:19:3d:74:17:87:a5:3b:cf:16:0c:f1:fe:1a:14:d3:04:a8:
10:ec:ac:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiTNhRtZR1KIrR09hOS4JmlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiNmI3ZTk3ZWQyM2Q2NmE5MWZiOGE5MWJmZDljNjc3MTEy
OWIxYWIwHhcNMjUwODEwMDkwMDUxWhcNMjUwODExMDkwMDUxWjAzMTEwLwYDVQQD
EyhhNDdhNTkzYmRlMDI3ODQ1YzViN2Q4MjE4YWI2ZGRhZmQ5Zjg3ODUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmu1iePR9ZXyFj8QUjKuFhufQ5I7p
q6GlreORY0L+7xx0L6uwfsMdiJTukFaTG5RRM7vbJKLKR4Dwtvc2jXFfAc3bZGLo
QA0hSRSjEAaTmmkSvgJGEygD5KAaveb5RphnnP+UjAZTl/gPK+nnZvEvimR8rXRe
gArBIjuRgFUP6XKWljY00LgR6qPqh5417HNGgVwH/+CPj+6LBvyNPnYIn38r3Xa4
sLn7VYveQDO39LLq9msxas9yQGCprua76ug0dZNjc+oZyGW38mxIHPzIet2FS2Ka
k+jgP/o1a9KjzmnB6Ja2yfBd7ER94eM5Hej//J5qUmx2XHJBFwLPtgJRhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKR6WTveAnhFxbfYIYq23a/Z+HhRMB8GA1UdIwQY
MBaAFBtrfpftI9ZqkfuKkb/ZxncRKbGrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzJ0LWwtMGoxbXFSLTRxUnY5bkdkeEVwc2FzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9iYjBlMDAtYTI0ZC00OTM1LThjMDct
MTM2MTU1MGNiM2Q1LzEvRzJ0LWwtMGoxbXFSLTRxUnY5bkdkeEVwc2FzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny9iYjBlMDAtYTI0ZC00OTM1LThjMDctMTM2MTU1MGNiM2Q1
LzEvRzJ0LWwtMGoxbXFSLTRxUnY5bkdkeEVwc2FzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA+ShaS55
mz6KrQ70VvPjc9EopgYJKuYt6pgaz5j+e199EqC7P8S9gJGpJzIi0yrCBfohz+JN
H091dFLnYIwXuZkyO7dg2WXzz99uj6JgOQsojjVemi3RrFI7EECagM8KEJM1PvM4
41OWNhsu0dftFj8X1pJYec4fZG6zq3sthqQj+/yRmI29Gf1zQHdRPmtphsmpmOac
AFYOP52ex2YZrmufSqOZh7pnd/bkhfiAHheHS/LJyG3pWEfU5hnktzUhSQJTruHs
8L74nIa8lQjHfRhBVtLM3+RVN1fHgRQgI4pRyvx/pZSs20ABeRk9dBeHpTvPFgzx
/hoU0wSoEOyslQ==
-----END CERTIFICATE-----
Generated at Sun Aug 10 13:48:25 2025 by rpki-client