Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/690f87-28c9-4482-85f2-989671001e91/1/grQaKruE3kSzFPizq8zqGKSIFyc.mft
File: grQaKruE3kSzFPizq8zqGKSIFyc.mft (raw, json)
Hash identifier: M3p/6uWeHWM3O+gRlQfgL91gx6fCCW8aFqzEsbFrZIM=
Subject key identifier: 41:EA:FE:8A:9A:32:BC:B7:D0:67:EA:3C:96:62:F8:1C:C3:63:DA:C5
Authority key identifier: 82:B4:1A:2A:BB:84:DE:44:B3:14:F8:B3:AB:CC:EA:18:A4:88:17:27
Certificate issuer: /CN=82b41a2abb84de44b314f8b3abccea18a4881727
Certificate serial: 019D382E42D081B40C0DCF37197DA35DBD8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grQaKruE3kSzFPizq8zqGKSIFyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/690f87-28c9-4482-85f2-989671001e91/1/grQaKruE3kSzFPizq8zqGKSIFyc.mft
Manifest number: 0225
Signing time: Sun 29 Mar 2026 06:00:49 +0000
Manifest this update: Sun 29 Mar 2026 06:00:49 +0000
Manifest next update: Mon 30 Mar 2026 06:00:49 +0000
Files and hashes: 1: grQaKruE3kSzFPizq8zqGKSIFyc.crl (hash: NiLAVRH/fRVzltP4vm4IwQ/c/oyNQXvbaTAoAn/SVmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/690f87-28c9-4482-85f2-989671001e91/1/grQaKruE3kSzFPizq8zqGKSIFyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/690f87-28c9-4482-85f2-989671001e91/1/grQaKruE3kSzFPizq8zqGKSIFyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/grQaKruE3kSzFPizq8zqGKSIFyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:42:d0:81:b4:0c:0d:cf:37:19:7d:a3:5d:bd:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82b41a2abb84de44b314f8b3abccea18a4881727
Validity
Not Before: Mar 29 06:00:49 2026 GMT
Not After : Mar 30 06:00:49 2026 GMT
Subject: CN=41eafe8a9a32bcb7d067ea3c9662f81cc363dac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:18:bc:6b:ef:b4:9c:39:7e:c1:8e:29:94:24:
43:10:f9:dd:21:76:72:75:8c:75:39:09:a6:7c:62:
fe:de:43:99:a0:c2:c8:05:12:9c:fe:30:35:f4:0b:
26:32:86:de:55:88:a9:e4:9d:36:f4:33:32:30:21:
ee:f6:e3:b6:f7:cc:3f:c3:47:f2:ac:62:aa:cb:5f:
07:20:d3:b5:99:cb:8b:e9:38:a8:37:b9:2c:d6:9c:
e9:4b:64:01:55:c1:9c:ee:9d:0d:7f:74:25:06:6f:
0f:5f:92:da:6f:b3:93:20:52:39:05:cb:73:b1:d5:
ed:7d:bc:0b:18:5a:f7:7d:ef:dd:aa:f9:55:02:a6:
af:17:bd:fc:82:07:b7:eb:dc:df:e2:67:88:12:8f:
1c:53:94:88:45:fa:d7:35:b2:29:2c:8c:5c:70:66:
34:f3:ea:b6:db:35:9a:99:b9:f9:6f:a4:bb:1b:85:
bf:0c:8c:0a:ca:83:02:95:2a:38:4f:db:f4:f6:64:
4e:f4:20:58:9d:74:ac:98:27:ca:e9:81:66:42:01:
80:49:e7:bd:c1:1d:c4:35:f5:38:a8:43:f1:02:a8:
a8:f9:42:f3:39:81:13:88:db:7a:4a:3c:06:f5:ab:
bd:e2:4a:af:88:1a:b0:6d:25:72:81:aa:ef:97:50:
ca:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:EA:FE:8A:9A:32:BC:B7:D0:67:EA:3C:96:62:F8:1C:C3:63:DA:C5
X509v3 Authority Key Identifier:
keyid:82:B4:1A:2A:BB:84:DE:44:B3:14:F8:B3:AB:CC:EA:18:A4:88:17:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grQaKruE3kSzFPizq8zqGKSIFyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/690f87-28c9-4482-85f2-989671001e91/1/grQaKruE3kSzFPizq8zqGKSIFyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/690f87-28c9-4482-85f2-989671001e91/1/grQaKruE3kSzFPizq8zqGKSIFyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:ce:6c:96:77:a5:4d:62:39:8f:94:9c:77:48:fc:40:3d:32:
34:74:cb:72:ea:b6:c5:fa:fb:f3:42:21:ed:50:3c:52:fb:3f:
30:ab:41:44:e2:0e:22:cd:ca:e0:98:cf:6a:1d:58:28:a9:2a:
79:ea:36:18:8e:d7:da:2d:8c:2d:81:92:70:38:3a:0d:8e:25:
bd:a5:f9:f3:0e:a7:8b:f6:83:69:ed:bb:c6:fb:5f:13:d2:81:
95:ac:52:4c:30:0f:a8:b9:70:e2:37:3d:7b:ce:68:52:6b:03:
6a:e5:c1:d1:0d:09:72:32:59:32:e2:0c:02:7a:72:41:76:66:
0a:e7:0a:93:67:b9:4a:9b:17:9a:d3:4f:7d:24:e5:6f:f4:c7:
30:8a:db:29:76:8f:4d:d4:0f:f5:55:b2:f3:3e:7f:ed:29:cb:
6a:71:ff:f2:7e:48:ce:90:b9:11:65:25:ac:a8:e6:13:98:fb:
e1:23:33:c0:be:06:6d:37:e5:17:ea:e8:6c:37:e8:ca:ae:5f:
70:8d:4a:a7:a3:64:0b:e0:2d:6c:fd:77:d4:42:d9:b8:05:f3:
3c:80:1b:1e:b4:3b:57:1f:30:e4:23:48:f5:c0:e5:d3:48:61:
70:cd:d6:cc:63:d7:21:e8:db:15:37:85:fc:7d:70:48:63:7f:
77:24:84:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:54:36 2026 by rpki-client