Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
File: 1GRmfDSn27AvBTC85ILRGtQkh70.mft (raw, json)
Hash identifier: D5mzEbfWWqtRfH8zttotXqcu0PcAKfqf3XiXK8KiUfU=
Subject key identifier: 21:4A:94:FE:19:B4:15:E2:32:66:48:ED:BB:0D:C2:DE:D1:52:7E:6C
Authority key identifier: D4:64:66:7C:34:A7:DB:B0:2F:05:30:BC:E4:82:D1:1A:D4:24:87:BD
Certificate issuer: /CN=d464667c34a7dbb02f0530bce482d11ad42487bd
Certificate serial: 019E28B8CDF9E3B387227A8D4D9F1979C88B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
Manifest number: 0BF7
Signing time: Thu 14 May 2026 23:01:00 +0000
Manifest this update: Thu 14 May 2026 23:01:00 +0000
Manifest next update: Fri 15 May 2026 23:01:00 +0000
Files and hashes: 1: 1GRmfDSn27AvBTC85ILRGtQkh70.crl (hash: xPzxfBJ9nUn2o5T7u+aW0mIEYOgoXxzzYlj9koBLBS4=)
2: dligzRRVoWtfjy4qlRdbw7o42uM.roa (hash: 2ujZTExymeWh5nps9OWeUYEciPPWZb859+jQp6T2I7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:b8:cd:f9:e3:b3:87:22:7a:8d:4d:9f:19:79:c8:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d464667c34a7dbb02f0530bce482d11ad42487bd
Validity
Not Before: May 14 23:01:00 2026 GMT
Not After : May 15 23:01:00 2026 GMT
Subject: CN=214a94fe19b415e2326648edbb0dc2ded1527e6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:51:27:28:c6:ae:33:5a:0e:90:38:de:60:18:
24:a8:6b:a2:09:39:93:53:73:c0:13:75:2b:71:aa:
c3:9d:b8:af:12:95:33:b7:f4:8b:f4:de:4f:04:e3:
d8:29:47:41:74:ba:8d:85:ea:a8:fc:45:a5:33:92:
4b:c5:ae:7b:44:a2:3b:98:33:03:a5:a7:a2:b1:d2:
c8:05:1b:e7:0d:1c:73:1d:6b:17:4f:c4:b7:88:9c:
03:39:26:d6:88:4e:1b:a5:8a:f9:13:31:ba:f3:fa:
92:c9:70:87:3c:8d:c8:43:3f:4b:d9:df:98:9f:51:
44:09:ef:08:48:3a:10:05:84:c5:3f:4c:3a:81:25:
8d:d5:04:f0:57:85:de:d2:63:8d:f8:4c:92:4a:64:
18:3b:75:cb:e5:d7:24:74:d0:f3:fd:4a:d5:38:23:
70:69:1e:24:6d:1a:7a:bd:8d:94:cb:ca:86:6f:66:
fa:ef:a4:0c:04:72:f1:69:19:e2:94:6e:d3:12:9b:
36:bb:0b:a5:9f:3c:d1:b5:bd:03:ab:2d:2e:00:e9:
b4:33:0e:80:8f:d1:4d:a8:59:16:2d:5b:33:91:ee:
98:c8:43:8d:8f:3e:7c:40:ec:5a:59:0f:90:31:93:
21:ca:6f:97:f6:76:4f:1b:54:0e:a4:e4:af:2f:6a:
ec:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:4A:94:FE:19:B4:15:E2:32:66:48:ED:BB:0D:C2:DE:D1:52:7E:6C
X509v3 Authority Key Identifier:
keyid:D4:64:66:7C:34:A7:DB:B0:2F:05:30:BC:E4:82:D1:1A:D4:24:87:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:17:76:be:2c:ac:4f:89:cb:6b:32:60:f8:e8:64:35:a1:75:
ae:45:0c:c3:ff:ec:72:fd:46:9d:ae:59:32:3f:27:d9:dc:6e:
69:52:9f:51:cb:5d:36:47:df:09:45:7f:a1:32:47:3f:de:af:
d8:99:a3:06:41:fc:69:c8:4b:91:f8:29:d1:97:5d:22:ef:36:
2c:4a:83:fc:43:bc:0b:41:dc:05:97:9e:45:f0:4d:e5:a3:e9:
90:76:1e:29:28:b5:c4:db:75:2e:9e:e9:e6:58:e8:59:43:47:
1b:ba:0f:f4:8e:62:80:4f:50:db:38:b3:b0:55:1d:e4:e2:5d:
ab:73:2d:dd:34:33:16:6c:32:39:5c:51:98:61:4b:6e:1f:df:
9a:44:8d:af:28:39:87:60:8c:f2:8c:26:5a:e2:d5:a2:89:46:
c2:bb:5f:24:f8:68:96:9c:ac:a7:b8:8d:86:b8:b7:41:71:c3:
0a:2a:0a:1a:2e:65:b4:97:9d:28:9e:82:62:8d:f0:bf:32:ba:
10:6c:45:ea:81:43:52:66:bf:c9:41:c8:6b:4a:8b:bb:19:48:
6e:84:ce:2b:6c:c0:d2:40:52:92:a2:37:9b:df:d2:11:4b:35:
73:72:5f:c0:bc:86:ae:44:81:8a:a3:5a:14:14:7a:32:1c:e0:
34:5f:b3:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 01:40:48 2026 by rpki-client