Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
File: 1GbRcMgQujTELpIOhNQmKEWXf4U.mft (raw, json)
Hash identifier: /+kiTApU2RhJORQeoiI4rwc0T4xdPZC71zlNPdrMlwg=
Subject key identifier: 29:09:26:41:1F:91:7F:7B:DF:FF:88:92:DB:FE:F9:A1:EA:68:84:DC
Authority key identifier: D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
Certificate issuer: /CN=d466d170c810ba34c42e920e84d4262845977f85
Certificate serial: 019D389BDC5D0D74E20256CB7FE0C4FD1C21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
Manifest number: 07A3
Signing time: Sun 29 Mar 2026 08:00:31 +0000
Manifest this update: Sun 29 Mar 2026 08:00:31 +0000
Manifest next update: Mon 30 Mar 2026 08:00:31 +0000
Files and hashes: 1: 1GbRcMgQujTELpIOhNQmKEWXf4U.crl (hash: /9RKtzYPUo9uOoXL85Q6lQGwGQazaI+4dZlM9JTng8I=)
2: XyvlakrX669O27yJ8vUEJgcOTBA.roa (hash: bXnP/tpzRgnQjjCGNcc58oyJ9DS3aNnplVA7Ww2qw84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:dc:5d:0d:74:e2:02:56:cb:7f:e0:c4:fd:1c:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d466d170c810ba34c42e920e84d4262845977f85
Validity
Not Before: Mar 29 08:00:31 2026 GMT
Not After : Mar 30 08:00:31 2026 GMT
Subject: CN=290926411f917f7bdfff8892dbfef9a1ea6884dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:72:34:38:db:78:ca:fe:f8:77:2d:67:c5:ee:
60:79:00:26:52:0a:cc:78:80:fc:9f:7d:fe:19:f1:
2f:35:46:c9:76:3f:f1:cf:bd:bf:b1:f7:54:f5:42:
49:67:d4:69:32:8e:be:40:b4:56:22:91:d7:c4:57:
b1:92:2d:6f:09:87:21:e2:f5:87:76:35:12:de:69:
fe:d3:71:3f:66:25:0e:04:0c:e6:23:1b:bc:24:18:
e5:e6:48:bd:06:92:02:cf:79:92:06:56:4a:01:38:
d9:c0:92:f9:15:d6:4e:b2:1a:5b:a8:a4:31:be:07:
73:00:27:11:70:32:08:82:88:62:65:c0:67:05:7e:
41:0c:b6:9f:90:13:b5:cc:88:ed:50:27:35:f7:a9:
bf:d8:be:c3:94:54:cc:ef:87:74:6c:d0:7f:ba:8a:
2f:cb:7f:87:d4:e5:ab:e8:5c:0c:5d:97:fc:da:e0:
b1:82:f6:56:82:2b:9b:b1:9d:ab:36:96:81:25:9c:
c6:34:c1:0f:61:3b:71:22:10:89:ad:23:03:e5:f3:
ef:77:40:70:91:0e:df:32:81:33:ee:6b:e4:ae:65:
86:67:24:25:bb:d0:28:83:36:7a:da:b4:7d:c1:a6:
ae:2c:34:a7:3b:5b:89:55:81:e5:8d:fd:a3:e0:40:
6b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:09:26:41:1F:91:7F:7B:DF:FF:88:92:DB:FE:F9:A1:EA:68:84:DC
X509v3 Authority Key Identifier:
keyid:D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:3f:0d:9b:87:37:4e:8a:65:d0:e2:30:40:52:c7:f8:47:22:
e8:aa:25:ac:ff:f3:8f:ec:60:e1:26:66:68:cf:8c:d3:22:01:
fa:8f:2f:dc:59:d0:61:13:52:02:bc:86:cc:7f:e1:9e:6d:47:
2b:d8:13:d2:f9:e3:a6:a8:87:a2:2b:a3:77:e9:13:0e:a0:4b:
a4:cb:74:af:d2:8d:0b:35:a3:87:a8:e8:16:51:e7:a2:d6:60:
ff:40:a6:09:85:17:c6:71:57:f6:46:82:39:a6:46:e3:a4:4f:
2d:22:20:5f:36:bf:01:10:61:86:db:9e:63:d2:18:ce:dd:3c:
b6:27:bf:20:12:8c:15:cc:2e:b1:77:7a:33:f4:b2:42:3c:da:
f1:c6:f1:81:f0:6e:80:1d:15:78:9d:75:c1:94:3f:3d:a7:66:
68:48:fe:8c:49:cd:a3:f4:bc:ac:b4:6d:98:b4:cf:d7:33:b7:
36:65:7c:f4:74:f8:e0:d5:58:b2:c7:d6:ad:4c:f7:f4:1f:82:
ef:7d:ac:d4:44:88:5c:1c:ea:5a:30:59:d3:46:67:86:bc:de:
37:83:e6:30:5c:a8:d3:e2:1b:41:de:1b:b3:8d:e2:d3:a5:2b:
d2:c6:cd:ec:ae:e9:f8:8b:d3:fd:84:50:3b:7c:32:56:07:72:
eb:e6:c3:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:40 2026 by rpki-client