Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft
File: gmAVLt1HazFwhARFKVhhW2Xdywo.mft (raw, json)
Hash identifier: 3J7vq/gpjeX6K0k03ZBaiTpJEeaDtruAYHN4RoX3JcQ=
Subject key identifier: BE:61:41:19:0A:76:2C:38:C3:DC:07:1D:C2:33:53:34:2A:E3:8D:B8
Authority key identifier: 82:60:15:2E:DD:47:6B:31:70:84:04:45:29:58:61:5B:65:DD:CB:0A
Certificate issuer: /CN=8260152edd476b31708404452958615b65ddcb0a
Certificate serial: 019F15D3F0324EDF04AD5BA8A4617EE94367
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft
Manifest number: 1985
Signing time: Tue 30 Jun 2026 00:00:38 +0000
Manifest this update: Tue 30 Jun 2026 00:00:38 +0000
Manifest next update: Wed 01 Jul 2026 00:00:38 +0000
Files and hashes: 1: 75SRw9aNyewbtPYAMH8et8hfSr4.roa (hash: Ef79opNAcjrl49Rm2x5OxhpX27NyaA68e2jdXKrtpHA=)
2: gmAVLt1HazFwhARFKVhhW2Xdywo.crl (hash: rzKcY+blgfsm+eTcZhuepoO8xhcWbHHWKYFbyGbmB68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft
rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 21:41:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:15:d3:f0:32:4e:df:04:ad:5b:a8:a4:61:7e:e9:43:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8260152edd476b31708404452958615b65ddcb0a
Validity
Not Before: Jun 30 00:00:38 2026 GMT
Not After : Jul 1 00:00:38 2026 GMT
Subject: CN=be6141190a762c38c3dc071dc23353342ae38db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a3:67:2d:78:9d:8a:e2:49:bf:44:9b:38:8e:
2a:91:92:f3:03:cd:67:46:ff:ca:af:20:30:c7:a5:
5d:eb:7c:50:56:a3:4e:6e:24:a3:bb:a6:bf:72:3c:
97:2c:41:a3:61:b2:db:28:88:6b:18:46:42:16:ed:
b9:98:e9:ff:ac:7b:d5:af:2e:73:d9:30:02:20:5a:
0e:20:f8:11:b4:41:df:6f:be:93:bd:95:51:37:03:
96:c6:10:bb:c5:98:00:ed:8d:8a:2b:ec:2d:1f:51:
a4:44:52:20:97:fb:32:b6:48:2c:94:86:c3:04:bc:
c2:0f:ae:97:b3:9b:03:2e:5f:df:b0:0c:58:5b:1d:
d6:b6:6a:4e:aa:9c:70:eb:cd:42:f7:b0:6c:ea:6a:
cf:48:08:f6:3a:d7:ac:ac:8f:26:4a:fe:47:14:4d:
aa:97:a4:22:34:5e:d2:b5:1e:75:95:4a:c0:08:17:
64:91:6d:54:17:a7:09:1a:59:d3:b3:84:3a:af:39:
ec:a1:dc:f2:43:66:39:08:f0:5e:fd:0e:59:1a:49:
c3:f7:29:3f:37:08:ab:11:d7:74:16:77:0f:28:e1:
bd:56:b4:3f:3f:24:2c:27:cd:58:2a:38:20:58:21:
5e:19:59:7a:88:fb:81:3b:72:84:09:8a:73:33:84:
01:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:61:41:19:0A:76:2C:38:C3:DC:07:1D:C2:33:53:34:2A:E3:8D:B8
X509v3 Authority Key Identifier:
keyid:82:60:15:2E:DD:47:6B:31:70:84:04:45:29:58:61:5B:65:DD:CB:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:ac:fa:ff:8d:65:35:11:e8:ce:48:f0:85:bc:5f:f9:af:12:
bd:01:55:83:74:f1:ae:97:94:06:e4:e6:85:20:0b:da:93:48:
63:e4:1d:45:70:ac:e7:78:b5:16:d7:5f:db:5b:10:9f:d7:63:
f9:3e:31:a5:7d:51:ca:d1:6b:bb:ba:13:78:3e:14:35:59:31:
6c:37:2f:87:a6:eb:d4:7b:6d:3d:ba:71:36:e1:85:12:82:57:
cb:99:4b:38:03:60:ac:8d:fc:d0:68:b5:a0:84:38:07:3f:a6:
76:be:7e:8a:dc:c6:ec:ee:0e:d9:84:19:d0:e5:d0:6b:15:69:
39:a9:fc:56:b5:77:06:2b:11:15:0c:65:84:85:50:b9:2a:d5:
5a:77:7a:c8:81:c7:5a:7d:88:c3:f9:a7:fb:d2:46:00:7c:73:
42:32:68:a9:29:32:06:b0:f4:17:2e:3a:0d:d6:58:34:38:25:
b1:49:c7:99:7c:60:ff:23:4e:1d:68:da:f5:96:a2:51:b0:8c:
f8:bb:07:2c:26:7e:9c:18:94:28:b9:41:ea:ba:20:57:9a:35:
02:e3:e9:4c:1c:ef:9d:ec:5e:e0:4c:8a:24:37:28:40:4d:1a:
fc:44:17:43:a1:de:53:79:b1:26:67:5e:38:6e:15:e7:f2:76:
13:c1:35:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 02:26:21 2026 by rpki-client