Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
File: G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft (raw, json)
Hash identifier: eMRR8zWX6KmlUok3F7Zwg8nXPULSdcOUhTpwTkF2GTE=
Subject key identifier: A4:40:4C:77:2C:B2:3F:B3:3D:6D:95:EF:C8:4E:0F:8C:83:31:EE:8F
Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Certificate serial: 019D389C0B8AEACD629B46102A5D5C948673
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
Manifest number: 1822
Signing time: Sun 29 Mar 2026 08:00:43 +0000
Manifest this update: Sun 29 Mar 2026 08:00:43 +0000
Manifest next update: Mon 30 Mar 2026 08:00:43 +0000
Files and hashes: 1: G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl (hash: hv6fr6xx95Jamz1FjIQiXpZmTOjG4XKnzp7pkc08WP8=)
2: eIPNgPUYQZlq-n_9mt6Q4q91rPk.roa (hash: DizOEdr2TMu6P8YAoF1vtJ1S55eopXRESZDog/i+PLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:0b:8a:ea:cd:62:9b:46:10:2a:5d:5c:94:86:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Validity
Not Before: Mar 29 08:00:43 2026 GMT
Not After : Mar 30 08:00:43 2026 GMT
Subject: CN=a4404c772cb23fb33d6d95efc84e0f8c8331ee8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8d:03:7b:04:bb:d9:8b:bb:90:69:37:62:4b:
b8:9f:11:80:ca:98:f7:d3:9e:32:c8:91:64:ff:0b:
4d:d5:77:09:0c:42:65:7a:c0:d9:02:f3:32:f7:d2:
af:68:fe:29:e3:15:ac:ce:1e:2c:52:93:9f:64:85:
f4:d7:ae:e6:7b:67:39:ff:d4:2a:26:ad:a6:78:89:
be:e1:d9:11:d2:5e:1f:70:1f:2c:4e:7a:1a:f4:10:
e0:7a:83:ce:9f:01:34:d8:67:21:86:b3:ee:ae:e1:
1c:4f:ca:d5:3b:db:09:da:4e:3b:20:29:b9:a3:42:
5b:ff:82:4f:79:91:90:df:53:cf:e4:13:38:e5:0a:
82:df:5e:50:4e:9b:73:69:23:59:37:5b:2e:1b:92:
f5:e8:15:a6:06:56:09:67:8f:57:ae:bf:f9:bd:10:
30:8a:c5:bb:76:60:a4:60:b4:e1:57:04:62:dc:19:
99:b4:44:cf:41:90:a6:23:10:dc:73:c5:7c:29:c7:
bf:55:d1:f5:d8:1e:c1:29:77:6b:7f:80:28:47:d8:
6c:13:5a:11:67:35:a1:bd:70:86:d0:8c:60:ba:db:
9c:13:6b:3a:ae:f0:31:a3:d4:2c:a3:16:1d:d9:ec:
50:39:a5:70:41:74:bf:ba:47:d5:d5:7b:26:24:20:
fb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:40:4C:77:2C:B2:3F:B3:3D:6D:95:EF:C8:4E:0F:8C:83:31:EE:8F
X509v3 Authority Key Identifier:
keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:80:d3:1d:40:ab:18:0e:84:b9:9d:29:12:63:40:e8:ad:51:
0f:1a:47:91:15:56:c1:da:7f:94:d2:ae:f6:04:ce:fa:54:ef:
1d:eb:fa:e7:8f:6f:89:21:a1:e7:bd:8b:f1:e0:7b:5e:25:1d:
81:3f:de:6d:c2:f1:21:88:c2:be:0c:5d:ff:31:58:9f:74:30:
e7:31:7b:c6:1a:12:8f:40:a6:90:97:67:fd:c4:63:09:27:56:
8b:29:b4:6a:bf:a8:d9:55:83:71:0e:e7:65:bd:a7:8c:73:7a:
17:0c:12:62:fc:2f:19:07:2e:89:9d:ef:68:a2:2c:9e:f5:49:
ac:1b:35:b8:e8:a2:b9:76:39:88:4e:ca:90:33:f6:8c:e5:53:
e8:aa:0b:08:38:bf:f5:a6:58:ac:69:2f:7d:ee:33:ed:89:4b:
72:6d:57:17:c0:4b:0f:2c:d0:6a:c1:7a:47:36:c4:f2:3d:8c:
e2:56:f5:c6:d3:17:18:3a:bd:a2:8a:1e:06:d5:1b:76:0e:e3:
e7:c3:d2:1d:39:d0:28:ec:79:c7:3c:3b:e3:11:a4:b4:15:54:
ef:ef:d1:9c:41:e4:a8:d4:bc:3c:4b:19:ac:43:39:f7:85:d1:
5e:66:b1:4a:44:21:21:df:f7:75:6d:4d:53:d5:b7:be:7b:24:
a2:e8:66:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:13:20 2026 by rpki-client