Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft
File: rUS-GO4-DSdHZwVV6GsACWXoE5s.mft (raw, json)
Hash identifier: Yw0IZ8dK0bqp8gkflYtWKQxNni8bnmnV+PYic3de8Tc=
Subject key identifier: 2E:EA:87:97:B3:51:B7:60:E7:54:FF:70:D6:C3:D0:0A:DA:14:E7:E2
Authority key identifier: AD:44:BE:18:EE:3E:0D:27:47:67:05:55:E8:6B:00:09:65:E8:13:9B
Certificate issuer: /CN=ad44be18ee3e0d2747670555e86b000965e8139b
Certificate serial: 019D389C27B50A9B30D10298C0680F661C38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 08:00:50 +0000
Manifest this update: Sun 29 Mar 2026 08:00:50 +0000
Manifest next update: Mon 30 Mar 2026 08:00:50 +0000
Files and hashes: 1: IoZsqC7U-fQC_aty6wDytMhbNvQ.roa (hash: uSpnth7jpKViFNAUl0BHygMMK1vfeGylmztQwD5Bysw=)
2: rUS-GO4-DSdHZwVV6GsACWXoE5s.crl (hash: 2ADhWkbXMvK2L5EOTDuA7qM3O81pkxZru+NJATYwu38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:27:b5:0a:9b:30:d1:02:98:c0:68:0f:66:1c:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad44be18ee3e0d2747670555e86b000965e8139b
Validity
Not Before: Mar 29 08:00:50 2026 GMT
Not After : Mar 30 08:00:50 2026 GMT
Subject: CN=2eea8797b351b760e754ff70d6c3d00ada14e7e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:4d:25:4c:d6:27:1f:ac:1f:01:34:b8:0d:70:
99:78:b7:df:37:2d:46:4a:c2:5d:90:7d:08:08:08:
dd:a5:22:06:58:45:e5:f3:93:da:b0:a3:e5:5d:c4:
29:74:4a:a9:b6:f4:c2:f0:c2:33:5c:01:55:6c:9a:
c7:5f:ce:be:80:09:48:77:e1:9f:c2:d5:68:90:bf:
79:fd:8b:3b:d9:60:48:ab:03:fb:34:ce:0f:fc:96:
b6:1c:a9:0d:5f:5e:f3:b5:2f:84:6f:92:68:3e:4d:
7a:3a:c6:0e:3e:21:0b:20:9b:92:1f:84:60:0f:c5:
49:8a:bb:d2:7a:8f:ab:c6:c9:1c:7d:9f:87:6e:69:
22:62:a8:78:3b:13:2f:8b:68:ac:9d:a2:ba:09:ed:
d6:a9:19:27:22:59:94:f8:97:36:3a:fe:ed:59:ba:
11:e2:ae:99:b4:d6:32:42:16:20:0f:e0:f6:64:3a:
7b:36:d8:84:8c:68:88:08:0b:eb:a7:38:d3:4b:9c:
97:28:af:5a:cd:22:b9:7c:e1:04:16:74:13:42:d4:
45:0b:c3:35:2c:f2:2a:08:bf:a9:3c:80:68:10:d6:
ad:0a:59:92:6b:21:9b:00:66:68:37:05:25:f5:25:
b8:b3:0b:2a:25:a0:a7:cf:55:85:5c:73:25:cb:cf:
ab:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:EA:87:97:B3:51:B7:60:E7:54:FF:70:D6:C3:D0:0A:DA:14:E7:E2
X509v3 Authority Key Identifier:
keyid:AD:44:BE:18:EE:3E:0D:27:47:67:05:55:E8:6B:00:09:65:E8:13:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:60:39:11:95:ea:29:87:db:1e:70:58:da:89:a4:99:ad:b3:
12:4f:ed:db:0a:29:52:05:c0:84:ac:01:dc:2a:a8:93:d0:2d:
7c:f9:65:fe:7f:9b:ef:fc:6d:42:5a:d5:09:9e:6b:3f:87:cd:
b1:0f:54:96:f9:3d:9e:19:ff:02:44:8b:7d:99:92:01:15:5a:
c0:db:c1:55:c6:12:1f:0c:57:84:46:49:46:14:57:44:cb:73:
5b:c6:65:26:c9:93:68:44:9a:34:19:99:ce:58:4e:c9:c0:df:
35:49:d2:db:dc:c6:39:6e:d4:56:29:3b:f8:52:6d:b0:ea:5e:
11:8b:a0:0d:fc:73:b3:33:b3:f7:21:28:c5:f3:8b:05:ef:54:
e3:ae:b3:9f:42:91:3e:a3:3c:2c:e9:6e:1b:9f:2f:fd:5d:ae:
b5:a4:81:3f:5d:3b:78:f2:ca:c3:16:b5:bf:8f:17:eb:9b:96:
82:87:ae:65:20:32:81:e8:22:3b:89:85:1a:6b:6a:c6:1a:88:
6c:d0:7b:07:6b:b8:40:bb:7d:e9:12:6d:a8:2f:db:a5:4e:8d:
07:b6:26:03:c0:0e:35:3b:96:1b:58:0b:8b:3a:71:84:31:79:
ff:5c:29:69:d0:cb:cd:61:06:d5:e5:68:93:c2:84:ab:f7:c7:
76:b3:88:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:56 2026 by rpki-client