Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
File: gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft (raw, json)
Hash identifier: k2vVSk7qad1bTZcZlLXKnDdzF5JTYwRnoIrtrFSlR10=
Subject key identifier: EF:1D:BC:54:46:47:D6:19:47:AB:C7:CF:9C:77:E3:45:17:00:1B:47
Authority key identifier: 81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE
Certificate issuer: /CN=819b97b20ccb4f696518e47c437259a8913e72ae
Certificate serial: 019D38D31BDFF8BC9B252127EFB02CFB8B27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
Manifest number: 12DF
Signing time: Sun 29 Mar 2026 09:00:52 +0000
Manifest this update: Sun 29 Mar 2026 09:00:52 +0000
Manifest next update: Mon 30 Mar 2026 09:00:52 +0000
Files and hashes: 1: L2sVy84YNgdXdVRcFvky1jOyapo.roa (hash: 3nfkWDukO5seERRcNCHmDmoRPYQO0LEHGFHMMpgINH8=)
2: ehALNgmvDMXOCz1qDVIzrXU9qPs.roa (hash: dn6QOi6y7D3WWFMRmemHXTmqvY1tGOW3y/+Az1xAbxM=)
3: gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl (hash: 8D+DZJAJcWAk4NQMH33UoJpH1jaAyzRdDAqQ2LgCPME=)
4: hwtVlXCFjo--idd4yO5s0tt7X3I.roa (hash: NUHjZYJkOekWUWwDXQIom+k1M6skxKicFwBdcoVK9n8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:1b:df:f8:bc:9b:25:21:27:ef:b0:2c:fb:8b:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=819b97b20ccb4f696518e47c437259a8913e72ae
Validity
Not Before: Mar 29 09:00:52 2026 GMT
Not After : Mar 30 09:00:52 2026 GMT
Subject: CN=ef1dbc544647d61947abc7cf9c77e34517001b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4a:24:5f:47:0d:cf:9c:a3:2c:7a:09:62:c5:
88:31:f9:43:38:bc:ba:db:28:0d:74:9c:ee:c8:3e:
ad:bb:c0:4d:af:47:60:0c:98:bf:d8:89:89:16:0f:
c8:9e:91:92:ee:ff:d7:7d:85:c7:bf:93:19:98:6b:
c5:b9:05:75:74:f0:d0:70:8a:57:cb:6b:6c:76:c4:
89:e3:4e:19:23:0d:a8:09:2a:b0:d9:6d:61:d6:45:
84:ac:34:30:bd:bf:26:55:8e:51:7e:a6:e2:59:db:
91:4e:a3:fe:97:d3:9e:8e:e0:da:d5:db:86:76:f2:
3d:2c:49:cb:7b:1a:ba:6f:d0:3d:48:7a:51:e7:2a:
ef:5f:48:ab:79:c6:92:b8:7d:35:81:0a:c4:f1:a8:
db:a0:de:6c:ee:4d:24:4f:ff:7c:3e:a1:80:68:18:
f2:0f:ec:e6:8a:7f:0d:f1:6e:45:80:83:ba:50:a1:
de:4b:55:78:cd:fb:54:0b:8f:0e:81:a8:60:be:62:
50:39:f5:7a:0c:33:40:1f:6f:6d:03:d2:ce:c9:fb:
7d:5b:ff:14:c4:a8:a4:c4:3a:cc:46:49:24:8f:51:
8f:ba:78:b9:f5:5a:f3:c0:8d:1b:cb:b2:f7:b7:80:
d2:7e:a7:9e:6b:bd:07:78:06:1f:be:cb:2d:54:5e:
c4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:1D:BC:54:46:47:D6:19:47:AB:C7:CF:9C:77:E3:45:17:00:1B:47
X509v3 Authority Key Identifier:
keyid:81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:c4:9c:1f:43:b5:0c:f1:46:be:20:d8:44:63:18:30:05:0f:
ae:c2:93:64:47:d1:4f:2b:17:62:81:74:83:de:28:9f:e6:a3:
d1:9b:f2:e3:b0:e7:1b:6e:45:7e:1a:15:f3:bd:e2:d9:f8:ab:
15:05:70:f2:54:1c:19:66:96:36:e5:37:61:c2:d3:87:1d:ae:
28:20:57:a9:ae:1a:cb:4e:92:fd:52:3c:2f:38:9b:1d:e6:dc:
02:34:91:2c:d3:4c:95:1e:6b:21:18:d1:c1:2a:71:da:1c:63:
5c:c9:06:36:9e:d3:ca:03:05:0f:9f:38:f3:58:f3:6c:46:30:
9a:18:9f:86:13:cd:2e:b3:2e:ac:34:cd:02:80:73:16:c1:98:
0b:d3:b2:e4:21:3f:14:da:d3:4e:6c:2b:05:32:f1:af:9c:0d:
9a:56:4b:f9:84:64:5c:1d:c1:d2:57:ac:8e:a3:84:9e:7e:2e:
f6:d2:b2:08:a6:9f:17:d1:3c:7b:32:19:b5:97:a3:a9:a8:cf:
f7:4d:49:50:1e:8f:cc:ce:1f:ec:af:c4:f9:fb:f6:3d:c9:a2:
f6:fc:43:ef:0d:92:28:de:e0:ea:fb:55:36:c2:b5:93:b5:04:
98:fc:46:04:61:89:2b:f4:52:09:ff:be:ab:83:df:11:e6:7e:
78:7c:f2:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:27:22 2026 by rpki-client