Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
File: gswXHj3IRnEeBW4uNiQdrJlKYA0.mft (raw, json)
Hash identifier: +trVjdtt/w6zxeWseIeuOvBUkpRBcCwXPps7aaVRKMA=
Subject key identifier: 80:3A:7B:A0:C9:B9:41:29:3D:D2:25:77:DD:A4:40:1F:92:F4:9D:4B
Authority key identifier: 82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
Certificate issuer: /CN=82cc171e3dc846711e056e2e36241dac994a600d
Certificate serial: 019D389C1C5C3E28BE147575ED0BBD6FD173
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 08:00:48 +0000
Manifest this update: Sun 29 Mar 2026 08:00:48 +0000
Manifest next update: Mon 30 Mar 2026 08:00:48 +0000
Files and hashes: 1: gswXHj3IRnEeBW4uNiQdrJlKYA0.crl (hash: dzU8p6DiZWTgbA/MVvbM3uWZ0xLFp9HWLb47+m+dF/I=)
2: oE95njlQkWBSsnH1Yv9Om16L1QQ.roa (hash: 9ZO1XVhjSwITS249EhJW2diCc6ZjgTy8NQDIzTk8aNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:1c:5c:3e:28:be:14:75:75:ed:0b:bd:6f:d1:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82cc171e3dc846711e056e2e36241dac994a600d
Validity
Not Before: Mar 29 08:00:48 2026 GMT
Not After : Mar 30 08:00:48 2026 GMT
Subject: CN=803a7ba0c9b941293dd22577dda4401f92f49d4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:35:1b:b3:3d:cd:93:86:07:67:f3:5a:9b:4b:
44:af:7d:e6:55:72:52:69:bd:55:21:49:ea:4b:dd:
59:56:be:f5:5c:26:7e:e6:4b:3d:fd:14:31:32:83:
aa:23:02:c8:f8:d8:d6:7b:c8:80:cd:d7:b8:a4:d8:
81:05:5a:4e:fc:53:15:4c:8e:5e:a8:40:f0:a5:3c:
1d:45:95:c8:0e:19:11:92:cc:4a:2e:ba:f1:ae:b2:
e0:21:d6:93:74:2d:6e:74:f5:c2:61:b9:7d:e4:ee:
83:ae:26:d5:76:98:58:83:20:ce:99:70:64:ca:2b:
9c:e5:56:d4:16:59:95:68:28:54:5f:88:59:10:6c:
a2:ad:f2:a6:99:b5:c2:93:88:0b:fd:9f:dd:a0:e0:
9a:38:33:c2:c6:97:50:58:c8:8c:8c:ba:92:66:c4:
8c:7f:47:de:5e:fe:16:df:35:bb:51:fa:89:36:eb:
85:aa:39:93:50:90:8b:4f:c0:87:54:0e:fb:08:67:
e5:f5:89:2a:a9:1c:0f:75:1e:6a:d1:99:11:50:5b:
9a:17:24:6f:ef:a1:4d:6f:07:c2:25:fe:a5:9b:20:
7a:e1:b4:4b:3f:74:cc:2b:4b:f7:82:25:51:df:fb:
08:aa:d6:41:17:d9:7f:0a:54:ca:a8:93:5d:92:db:
f5:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:3A:7B:A0:C9:B9:41:29:3D:D2:25:77:DD:A4:40:1F:92:F4:9D:4B
X509v3 Authority Key Identifier:
keyid:82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:1a:4c:78:65:a8:df:23:1b:b3:02:16:3a:9e:7d:34:9b:e1:
c7:e3:10:28:67:32:ed:2a:c2:eb:e1:d8:a3:14:ca:fa:e5:4c:
96:bc:fa:39:4a:03:90:87:10:87:df:77:e0:97:55:88:ae:dc:
33:98:60:fd:e8:d4:81:71:d5:83:54:f2:14:c5:0c:6e:12:a2:
1d:05:57:b4:31:42:1d:c0:18:00:f0:66:ee:05:67:68:e5:75:
f0:aa:2d:58:3c:0e:f3:9b:c3:fe:9c:00:4c:79:ef:40:9d:9c:
ae:de:cd:d7:0c:80:49:05:94:9b:40:34:ce:bc:ad:32:41:29:
20:67:e8:fd:dd:a5:0b:b2:4c:93:8c:f6:ce:b9:de:2e:94:24:
cf:6c:0a:75:68:55:5d:b3:68:b5:13:04:3a:6d:b0:ce:72:01:
ea:96:23:e5:e0:a2:71:94:0a:ed:46:29:be:5a:bf:18:f5:10:
11:6f:75:95:56:ca:7b:66:4f:8f:94:cf:37:38:82:61:64:9b:
b4:51:48:0d:73:e0:64:f5:62:5d:d4:fc:e6:fb:38:db:b9:82:
d3:90:b3:18:17:a4:ed:c1:f3:31:08:2f:5c:32:71:d0:42:63:
3c:b4:a2:5d:d9:56:9a:22:27:81:06:1e:ca:0c:bf:0a:d8:a0:
4c:29:d6:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:08:18 2026 by rpki-client