Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
File: G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft (raw, json)
Hash identifier: xXaK4JEsMwXyfOS099bnNEWc4vKqrPxQyExdHSWT86M=
Subject key identifier: 2A:8E:AF:0F:6C:FC:EA:BD:4C:79:25:0F:54:FD:C7:C1:BB:82:8F:5F
Authority key identifier: 1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE
Certificate issuer: /CN=1b69301fa8d788e02f7eb2fa8802109074206cfe
Certificate serial: 019D38667167A6A8CE4072A6A9A4E61E2AF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
Manifest number: 0435
Signing time: Sun 29 Mar 2026 07:02:10 +0000
Manifest this update: Sun 29 Mar 2026 07:02:10 +0000
Manifest next update: Mon 30 Mar 2026 07:02:10 +0000
Files and hashes: 1: G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl (hash: yJO8vCuZay5PsLUe4HleDy1HZURWoeVL35UePcZL87E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:71:67:a6:a8:ce:40:72:a6:a9:a4:e6:1e:2a:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b69301fa8d788e02f7eb2fa8802109074206cfe
Validity
Not Before: Mar 29 07:02:10 2026 GMT
Not After : Mar 30 07:02:10 2026 GMT
Subject: CN=2a8eaf0f6cfceabd4c79250f54fdc7c1bb828f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:23:8e:d0:65:28:68:7f:04:88:c2:d1:c8:f7:
d9:a9:82:89:0f:9b:20:af:ee:a0:f9:6b:83:ab:0c:
5d:4e:cb:8d:2f:d3:fb:6f:89:64:01:ff:df:ed:8c:
ed:2f:0e:df:47:10:fe:e2:95:05:a8:9c:b5:29:83:
9d:d0:f6:8a:3c:f7:0e:ef:8e:a4:43:5f:49:4b:20:
36:00:b1:8c:00:0b:4b:c1:6d:a3:da:56:da:7d:d0:
07:a9:20:3c:ad:cc:da:e7:9d:45:b7:e3:0a:82:e2:
2e:17:22:57:5e:b5:58:67:e1:0e:1b:1e:e8:a0:75:
93:d8:5d:20:52:29:c6:a0:78:16:c9:8d:26:22:ca:
dc:fe:b3:74:23:a2:a9:ac:26:1c:e6:da:d1:a6:4c:
01:c0:b0:18:8e:6c:16:1b:4e:12:8a:7e:2b:1d:54:
98:a4:80:0f:b9:9a:3d:91:13:5f:1a:c4:f9:db:01:
d6:ea:d6:42:36:40:65:29:aa:e0:e5:fb:3b:63:38:
11:6a:6e:c2:12:4a:07:24:b6:91:bf:35:33:0a:01:
52:f6:4c:b5:6b:c9:28:53:43:71:bb:66:fd:64:0d:
6c:27:15:93:f1:86:04:a4:8a:22:25:fc:73:15:9c:
b4:24:db:a6:2f:94:7b:9c:7f:ef:f9:be:43:4f:e6:
a5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:8E:AF:0F:6C:FC:EA:BD:4C:79:25:0F:54:FD:C7:C1:BB:82:8F:5F
X509v3 Authority Key Identifier:
keyid:1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:d9:44:e8:8a:9b:59:7e:eb:d9:7a:d9:1b:b3:63:ec:2a:97:
8c:cc:f2:3e:2b:4f:9d:b4:3e:39:9f:c8:dc:ed:a0:2c:26:f2:
52:e2:25:fb:21:6c:53:3c:c1:ca:52:82:df:c0:7c:58:78:e8:
7d:56:a0:cc:ab:e7:ea:0c:05:60:35:8e:3c:19:96:75:50:4f:
c2:f7:5c:01:c7:9c:fc:23:fc:23:d5:91:bd:bb:49:d5:6c:2f:
f9:7b:34:f1:9e:52:f8:7b:22:b8:dd:ca:5e:53:13:d2:31:f0:
32:33:eb:fd:bf:f4:f0:47:be:94:d7:2e:7b:9e:ba:b9:1c:6d:
58:22:74:72:ad:74:aa:a4:53:57:c9:10:89:a8:4d:90:80:d2:
0c:b8:9c:08:90:48:74:fa:ed:82:3c:26:72:13:34:4e:95:53:
9c:91:99:ce:ec:9e:04:a9:1c:96:79:d2:09:8f:56:40:e5:c2:
a1:d2:0f:f5:a0:8c:cb:bb:88:35:5e:57:0f:bd:ec:d9:6e:95:
a0:96:81:34:11:36:6f:ad:ce:d4:6d:0b:fd:d2:bb:98:46:fe:
60:c1:24:bd:25:c0:0a:38:f4:9b:38:51:a7:24:55:ce:32:fa:
6c:8e:27:d1:61:18:8a:f4:08:4f:bd:a4:e7:bd:b3:10:ed:cb:
b6:76:e9:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:08:37 2026 by rpki-client