Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/577eae-3f3d-4d3f-9c07-f019db2acca8/1/gwOkyyOEwgfdNzfwkk-gjpMoLQY.mft
File: gwOkyyOEwgfdNzfwkk-gjpMoLQY.mft (raw, json)
Hash identifier: LHNN/iLDiJfftfvG8rMBQlXkAcc/CBN8Nthji5lJ+Gs=
Subject key identifier: 5B:E9:AD:6A:86:89:E1:F3:8F:8B:25:57:16:AD:DF:B0:9C:D7:87:DD
Authority key identifier: 83:03:A4:CB:23:84:C2:07:DD:37:37:F0:92:4F:A0:8E:93:28:2D:06
Certificate issuer: /CN=8303a4cb2384c207dd3737f0924fa08e93282d06
Certificate serial: 019D382E2382E0C7633B8546E9DA5DAF25D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwOkyyOEwgfdNzfwkk-gjpMoLQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/577eae-3f3d-4d3f-9c07-f019db2acca8/1/gwOkyyOEwgfdNzfwkk-gjpMoLQY.mft
Manifest number: 023A
Signing time: Sun 29 Mar 2026 06:00:40 +0000
Manifest this update: Sun 29 Mar 2026 06:00:40 +0000
Manifest next update: Mon 30 Mar 2026 06:00:40 +0000
Files and hashes: 1: 8SSKTH9s3HU_rS-TPm-_-xBMgPE.roa (hash: dT0653K9AV0eXk/TvV3UtuvNeuEkUytkEKjWnMa0YLs=)
2: gwOkyyOEwgfdNzfwkk-gjpMoLQY.crl (hash: NxkoDDRTYHGrVGeDOvOaX+YoxpokUSOETL82reF0LkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/577eae-3f3d-4d3f-9c07-f019db2acca8/1/gwOkyyOEwgfdNzfwkk-gjpMoLQY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/577eae-3f3d-4d3f-9c07-f019db2acca8/1/gwOkyyOEwgfdNzfwkk-gjpMoLQY.mft
rsync://rpki.ripe.net/repository/DEFAULT/gwOkyyOEwgfdNzfwkk-gjpMoLQY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:23:82:e0:c7:63:3b:85:46:e9:da:5d:af:25:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8303a4cb2384c207dd3737f0924fa08e93282d06
Validity
Not Before: Mar 29 06:00:40 2026 GMT
Not After : Mar 30 06:00:40 2026 GMT
Subject: CN=5be9ad6a8689e1f38f8b255716addfb09cd787dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c1:4b:f5:2e:00:dc:10:7c:78:85:bd:6f:fd:
36:0a:00:8f:44:d7:a9:e9:6d:cc:ee:1e:cb:07:d8:
06:89:77:31:96:99:1a:c0:3c:4a:7c:97:f0:3b:1d:
81:fd:29:03:94:ee:29:55:35:dd:4a:89:ab:11:04:
a2:be:91:27:b7:fe:90:93:1a:06:b3:82:9a:68:ee:
85:bf:dc:0a:75:70:f4:52:b3:ef:28:01:da:a9:c0:
cf:d7:d1:74:99:25:ed:39:c0:74:6e:4a:29:42:93:
10:7a:81:b4:05:27:97:64:26:13:8c:b0:cb:8e:35:
0a:6c:0e:92:b6:bd:b3:fa:04:4c:43:29:ea:82:c6:
d4:e1:34:22:fb:87:57:d0:d0:dd:0e:ab:2a:a4:df:
b0:b2:d5:b3:37:73:f7:4b:fb:54:5a:14:99:70:b7:
b7:e6:08:32:dc:4a:03:ff:49:1f:7a:d1:bd:99:71:
50:27:81:60:e7:3e:de:32:cb:fd:f9:22:f3:2f:dc:
bd:75:f7:3b:25:ae:80:14:62:63:2a:56:0e:6a:6d:
77:af:ea:b7:29:aa:9b:36:47:9c:95:8f:8c:d7:e4:
c4:34:7d:19:fa:b3:87:e0:b6:e4:49:58:88:c4:3e:
56:5f:52:56:e3:32:5d:22:74:1a:87:6d:f2:5a:bb:
c7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E9:AD:6A:86:89:E1:F3:8F:8B:25:57:16:AD:DF:B0:9C:D7:87:DD
X509v3 Authority Key Identifier:
keyid:83:03:A4:CB:23:84:C2:07:DD:37:37:F0:92:4F:A0:8E:93:28:2D:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwOkyyOEwgfdNzfwkk-gjpMoLQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/577eae-3f3d-4d3f-9c07-f019db2acca8/1/gwOkyyOEwgfdNzfwkk-gjpMoLQY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/577eae-3f3d-4d3f-9c07-f019db2acca8/1/gwOkyyOEwgfdNzfwkk-gjpMoLQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:d5:45:ed:c4:6c:55:3c:ff:29:42:de:07:83:72:6a:7b:e2:
ea:de:cc:4a:d2:84:c6:e7:c5:c0:3f:ad:4c:95:56:fb:8e:13:
d6:f0:06:52:47:3c:d8:39:95:91:07:fd:c1:13:7d:c7:e5:a3:
8d:74:31:48:ed:4a:65:c5:dd:32:38:6f:bb:cc:64:43:01:62:
95:d2:88:f2:b1:b1:db:a4:af:94:87:2a:22:ed:c6:96:98:01:
00:ac:5e:43:38:e2:63:53:a0:4c:36:f0:57:e1:25:28:57:1f:
5e:98:23:0b:f1:3e:5a:a3:aa:72:cb:29:ac:06:da:3a:af:69:
f4:56:cb:63:d5:e2:0d:2a:f9:71:f9:06:5e:4f:1e:90:a3:ee:
58:42:c9:c5:40:b4:88:25:a7:23:7b:a8:e8:0e:76:9e:7a:46:
86:f2:11:a1:40:49:1e:26:f2:a7:cf:61:f0:48:d9:4b:b8:0f:
d1:11:cf:79:1b:5f:2a:31:9d:34:0f:26:26:5c:f5:c1:b5:2f:
19:9a:1a:23:33:0b:40:f6:5c:90:80:00:25:28:43:ac:b6:7a:
59:89:a2:c1:41:9b:d7:e9:39:1b:cd:49:7b:2e:2e:79:5c:6d:
0b:c0:4b:4f:68:58:96:73:f3:55:5f:93:c8:21:7a:60:9c:66:
57:ab:1c:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:17 2026 by rpki-client