Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
File: 1GbRcMgQujTELpIOhNQmKEWXf4U.mft (raw, json)
Hash identifier: KQbdHHA+3u12Pe+ni1wIzaI6xUlo14Ag09nDOly7mCY=
Subject key identifier: 57:48:25:E4:11:83:50:48:56:D1:59:71:3F:93:4B:A9:41:F0:5E:63
Authority key identifier: D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
Certificate issuer: /CN=d466d170c810ba34c42e920e84d4262845977f85
Certificate serial: 019F178C0CA7C1471946A2429B1C1156BC83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
Manifest number: 089B
Signing time: Tue 30 Jun 2026 08:01:21 +0000
Manifest this update: Tue 30 Jun 2026 08:01:21 +0000
Manifest next update: Wed 01 Jul 2026 08:01:21 +0000
Files and hashes: 1: 1GbRcMgQujTELpIOhNQmKEWXf4U.crl (hash: BMISZlYM/yw7wo5ZzeqqbuyJq1nGzNc4yHIm7r8M5G4=)
2: XyvlakrX669O27yJ8vUEJgcOTBA.roa (hash: bXnP/tpzRgnQjjCGNcc58oyJ9DS3aNnplVA7Ww2qw84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 08:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:8c:0c:a7:c1:47:19:46:a2:42:9b:1c:11:56:bc:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d466d170c810ba34c42e920e84d4262845977f85
Validity
Not Before: Jun 30 08:01:21 2026 GMT
Not After : Jul 1 08:01:21 2026 GMT
Subject: CN=574825e41183504856d159713f934ba941f05e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ae:c1:5e:2d:e9:aa:09:16:21:eb:3b:0b:a2:
38:b7:fa:54:cb:1d:a4:fb:1b:d2:c4:0f:ba:f8:32:
aa:8a:c9:a2:53:a1:dc:5d:07:42:db:d8:36:c3:1c:
fd:aa:e0:2a:40:56:b4:9f:65:77:a6:00:61:18:08:
41:d5:d7:fa:0a:14:08:b9:df:f4:70:e8:98:d6:96:
f7:b6:eb:25:6a:5a:d4:c0:71:bc:dc:6b:c1:d2:e0:
11:4e:44:f8:bf:fe:6d:47:8d:a6:30:df:9b:6e:0f:
d9:ed:b9:3e:3f:0b:47:7d:5c:f9:37:dc:b6:20:21:
26:6d:5f:fe:6d:c0:b3:cb:b1:17:2e:fb:ea:7b:fe:
e0:d5:c5:3a:18:f3:a4:df:02:7c:98:a5:79:85:0a:
e9:0f:b2:de:f6:52:a6:62:ff:3d:63:fe:41:59:87:
1a:dc:de:95:70:d6:f9:bd:f9:b6:df:93:39:c1:8d:
d8:c5:13:20:60:61:0e:56:28:7d:72:6d:9d:be:6d:
c2:e1:00:1d:1d:88:c1:28:88:38:03:5f:2f:c2:b5:
41:53:b4:61:90:37:4a:ee:ae:ff:fe:27:29:b6:77:
34:5b:73:03:cc:25:42:43:1a:20:94:24:c9:e2:86:
31:b6:6e:25:76:e6:fd:75:86:8d:fd:bf:21:f9:cf:
af:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:48:25:E4:11:83:50:48:56:D1:59:71:3F:93:4B:A9:41:F0:5E:63
X509v3 Authority Key Identifier:
keyid:D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:7d:bc:de:f7:24:06:b4:4a:04:b6:b9:89:62:b8:46:ff:e9:
ae:d5:d7:18:24:3c:ec:36:31:14:a4:09:aa:70:8b:67:9b:0b:
33:65:bf:db:46:51:65:44:5f:b2:7a:88:a0:dc:5d:a7:05:a8:
a9:3e:88:56:d0:e6:40:fe:e3:cc:50:07:d2:d3:64:b3:a0:70:
91:99:4f:db:09:3e:12:fa:60:56:94:42:fc:73:30:fa:37:72:
08:ad:e6:70:bf:05:19:c3:e0:2f:c6:7b:a8:26:23:96:38:5b:
97:ab:97:48:0b:8e:b6:68:91:0b:bb:48:a3:37:dc:bc:89:a6:
f8:c4:18:ef:e5:19:fc:3d:1c:d1:4d:ab:e5:0d:42:55:9e:b6:
b5:c5:53:4f:91:11:a3:01:56:c9:4b:b2:fa:e7:35:56:2c:ca:
79:f6:07:88:89:9c:cd:d7:48:fd:2c:fa:38:53:12:f0:7f:25:
7e:bd:20:b4:56:2b:9d:20:75:5d:68:1b:f5:a6:06:b0:6a:02:
d4:69:dc:24:72:b4:0f:1c:85:58:4f:e9:b8:7a:58:52:bf:6e:
49:0b:d0:a1:09:2e:d3:0a:43:6f:af:c5:62:1d:23:24:8c:7c:
fb:d1:79:64:2a:7e:1b:b5:dc:8a:7f:43:23:36:d0:b9:8a:31:
8d:f8:34:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:20:00 2026 by rpki-client