Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
File: 1GbRcMgQujTELpIOhNQmKEWXf4U.mft (raw, json)
Hash identifier: GcGDGxZmCHJ0+OUisaNDFgylKkh06DUKcf6w3IG3PuE=
Subject key identifier: 60:E1:D2:C6:0B:10:B4:83:45:C0:13:02:09:53:3C:D4:EB:69:57:E7
Authority key identifier: D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
Certificate issuer: /CN=d466d170c810ba34c42e920e84d4262845977f85
Certificate serial: 019E2FCDAF2D00F660DB3FF61AC1D1475FE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
Manifest number: 0823
Signing time: Sat 16 May 2026 08:01:09 +0000
Manifest this update: Sat 16 May 2026 08:01:09 +0000
Manifest next update: Sun 17 May 2026 08:01:09 +0000
Files and hashes: 1: 1GbRcMgQujTELpIOhNQmKEWXf4U.crl (hash: yUNaC9pSlQnYAzzTPXS4V+DoGAcCm6HmnmQ4W4tQAfQ=)
2: XyvlakrX669O27yJ8vUEJgcOTBA.roa (hash: bXnP/tpzRgnQjjCGNcc58oyJ9DS3aNnplVA7Ww2qw84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 08:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:cd:af:2d:00:f6:60:db:3f:f6:1a:c1:d1:47:5f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d466d170c810ba34c42e920e84d4262845977f85
Validity
Not Before: May 16 08:01:09 2026 GMT
Not After : May 17 08:01:09 2026 GMT
Subject: CN=60e1d2c60b10b48345c0130209533cd4eb6957e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:28:95:92:f9:0b:d9:48:7f:b6:28:e1:bc:6a:
27:27:20:d1:a0:3d:1c:41:b9:08:c9:6e:4e:16:47:
bb:58:23:e6:d3:5a:34:2a:ac:15:f0:d7:06:dd:de:
da:5a:d3:8d:6a:bd:cb:45:9f:0e:57:22:a0:cd:e4:
19:ec:63:aa:59:39:8e:e3:e9:68:04:fe:fe:eb:07:
7e:48:91:ba:f7:a9:64:a2:9b:c0:f3:c9:21:62:9d:
17:91:87:7b:87:f8:a8:20:2e:cf:b8:ae:fb:06:e1:
a5:9f:a3:06:9a:20:30:02:f4:e8:b4:c3:6f:d3:40:
68:a1:1f:0a:5e:49:ee:c0:28:b2:76:92:f9:f8:d8:
eb:04:e0:bf:0f:f5:d6:12:ff:85:42:4b:5a:d9:6a:
57:5c:d9:df:50:35:c3:3a:21:2c:3f:d8:f3:87:6a:
0a:5f:3f:f1:21:84:24:76:41:a2:e2:7b:9c:3e:ef:
5c:2c:ac:1f:df:e3:b9:2a:8a:fb:ae:e2:a6:8c:4a:
95:24:7a:ff:46:52:3b:25:69:28:34:fa:fd:bc:5b:
63:63:1f:55:f3:cd:7a:47:d0:99:eb:a9:30:bb:56:
14:e1:32:5b:bf:51:42:cb:0d:76:72:e8:92:0d:1f:
f8:0f:72:7d:da:a5:87:d2:d0:e9:7b:10:f9:8b:d6:
a0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E1:D2:C6:0B:10:B4:83:45:C0:13:02:09:53:3C:D4:EB:69:57:E7
X509v3 Authority Key Identifier:
keyid:D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:5e:a6:39:c5:02:84:93:73:5b:ed:de:c2:dc:96:e4:b7:dc:
2e:56:33:dd:06:7d:2f:6d:9e:51:12:92:c9:8e:20:a5:15:bb:
80:61:1d:1b:94:2b:d7:3e:72:2f:f2:28:92:6b:da:b9:78:a8:
b3:3a:5b:66:cd:f7:9e:17:43:2c:f1:40:a2:58:b5:8e:0d:92:
c3:0b:33:d8:75:a6:68:c5:8f:89:4c:d5:3d:6f:9d:88:f0:c1:
6b:8f:63:30:60:fb:bc:e7:87:ae:19:13:a2:e0:c6:31:40:b4:
a9:17:8c:10:e0:24:87:d0:db:54:f8:85:70:a6:83:c1:eb:3b:
01:1b:91:65:1e:bc:76:8e:6d:5c:10:b8:ae:fd:5d:be:7c:3d:
48:b8:55:70:44:ad:b8:3a:0f:a3:f2:6e:dc:bf:06:07:16:33:
ed:21:5d:12:cc:52:59:c6:9e:8f:1e:15:4c:0e:0f:3b:c5:92:
1e:26:bb:db:65:45:6b:a7:ba:cb:d9:43:07:48:bd:c9:79:66:
4c:0d:56:81:ec:4d:cc:2f:82:4f:3c:63:4e:59:77:90:2f:37:
b5:4d:3a:a8:6b:84:39:26:8d:16:f3:ec:3b:d5:de:9c:4e:2e:
3e:70:88:07:50:9f:9f:49:be:a8:ae:1c:45:61:fb:12:e2:1c:
67:ee:2a:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:13:58 2026 by rpki-client