Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
File: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft (raw, json)
Hash identifier: qyrP72uWLcZKcEV+XRvHZqA2T7qnB7eDu36eeLWvn7c=
Subject key identifier: 22:5E:FF:60:0B:81:71:49:EE:98:C4:38:51:EB:98:BE:DF:A5:C7:C4
Authority key identifier: 83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
Certificate issuer: /CN=83c8d01caf2b0751d035c537566f45627925e4f6
Certificate serial: 019D37F7452B3F2C3BF1C5104ABA4E2C3C25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
Manifest number: 13D4
Signing time: Sun 29 Mar 2026 05:00:45 +0000
Manifest this update: Sun 29 Mar 2026 05:00:45 +0000
Manifest next update: Mon 30 Mar 2026 05:00:45 +0000
Files and hashes: 1: g2p638fZZwCrnvRFqg9eTRpbiw4.roa (hash: qSK6pl1sLuO5L8q2M8N4Ull7ELILSQAIXlEcO8nJrKo=)
2: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl (hash: AHuL64n6BYFeVk0hkrT6PP5wV8FsuRqiDd72/zRH+7I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:45:2b:3f:2c:3b:f1:c5:10:4a:ba:4e:2c:3c:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c8d01caf2b0751d035c537566f45627925e4f6
Validity
Not Before: Mar 29 05:00:45 2026 GMT
Not After : Mar 30 05:00:45 2026 GMT
Subject: CN=225eff600b817149ee98c43851eb98bedfa5c7c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:22:e9:5e:b7:cc:d3:9b:60:6c:1e:6e:c6:d0:
8c:1d:2f:af:78:96:44:8e:a6:64:e9:9c:bf:04:47:
54:5c:88:db:2c:a6:39:a1:2d:2c:bb:2b:97:c7:1a:
9d:e6:28:2b:42:51:f7:0a:9f:ad:65:be:fa:49:99:
4a:50:02:83:48:32:3b:9a:dc:a8:95:54:88:cf:ed:
08:92:3d:87:40:0b:ae:e9:9e:aa:0a:90:96:67:39:
41:b6:f0:2d:8f:5d:ac:ef:83:5d:51:15:c8:e7:1b:
7e:f0:93:c3:aa:57:cc:8f:50:de:de:04:fd:0f:9f:
d4:00:e1:12:44:db:06:68:78:1b:bb:7e:61:07:81:
8f:f7:3d:e4:a3:83:8d:b6:84:f0:76:c8:d0:cd:90:
24:cf:cb:72:20:17:6f:9f:75:a1:58:35:d0:fb:69:
17:bd:07:82:c4:e2:23:52:13:75:e6:87:62:87:46:
8c:47:fb:7e:94:06:e8:06:07:d9:29:e1:d5:6a:83:
72:1a:94:30:d5:01:25:98:a4:d8:39:f3:59:4b:a0:
ff:49:57:b0:c3:1c:78:5b:ea:e3:b5:19:d9:ea:fe:
2d:50:78:7e:9d:63:41:22:95:54:33:fd:e6:32:d9:
91:ce:bd:78:1d:04:b4:72:ab:fc:da:58:b8:05:c7:
77:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:5E:FF:60:0B:81:71:49:EE:98:C4:38:51:EB:98:BE:DF:A5:C7:C4
X509v3 Authority Key Identifier:
keyid:83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:c5:88:49:23:83:c9:d0:38:94:0d:a8:46:c6:5d:69:f7:89:
88:42:36:42:75:8b:dd:49:74:e9:0a:7a:ae:dd:22:85:5d:c5:
f0:fe:c9:2b:13:89:48:ac:de:b3:3f:3e:b3:47:fe:90:97:4c:
e3:9e:2c:d5:0f:79:be:10:5a:c1:59:1a:90:6e:7b:86:bc:5c:
20:04:1c:9a:3f:e2:a6:cb:a7:99:5e:e9:e7:16:df:19:c4:de:
42:07:41:2a:e6:05:e7:b1:30:45:d3:9a:4d:b2:c0:1e:77:64:
46:38:38:0a:47:15:6b:db:b8:8a:7a:cc:b5:98:a8:6b:e8:8d:
fc:31:c1:35:3f:50:9d:3c:3f:98:8d:fa:63:1a:b7:7e:7e:a2:
c2:b7:2a:f7:a9:86:12:a1:67:e6:19:63:d0:c5:9d:8f:96:2b:
69:a7:43:ce:99:38:f6:a2:d5:df:7d:e8:46:e2:03:6d:6a:0d:
92:52:d0:02:9a:3e:db:39:29:4f:c5:39:c9:80:7d:54:80:3f:
73:2d:b0:b2:a1:20:2e:de:c7:3b:51:78:42:0a:29:c6:00:17:
58:9b:5e:14:9b:27:1e:ec:1e:09:b6:4d:75:ef:87:41:78:86:
dd:84:88:d2:b5:1c:99:8b:34:e4:09:b3:d0:a9:52:7d:50:85:
21:ee:a7:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:27:47 2026 by rpki-client