Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
File: gCNZN6302riSXVgEWjNxgWyYBTE.mft (raw, json)
Hash identifier: OGxXP6QLU3bnDaVcO6eeLQyrkiPH9+Y2nQIt1HuoaGU=
Subject key identifier: 8E:59:C6:F9:E9:10:17:C5:8E:C7:73:DC:BD:A3:1A:34:D6:4F:E7:35
Authority key identifier: 80:23:59:37:AD:F4:DA:B8:92:5D:58:04:5A:33:71:81:6C:98:05:31
Certificate issuer: /CN=80235937adf4dab8925d58045a3371816c980531
Certificate serial: 019D382EA80EC1FC0FBED0F5703708EA0AC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
Manifest number: 0A74
Signing time: Sun 29 Mar 2026 06:01:14 +0000
Manifest this update: Sun 29 Mar 2026 06:01:14 +0000
Manifest next update: Mon 30 Mar 2026 06:01:14 +0000
Files and hashes: 1: gCNZN6302riSXVgEWjNxgWyYBTE.crl (hash: SHjp3USsbGQUL51q5uSFyCFWvJkSok1UOGnhoHuYOB8=)
2: ni8xOmyPG8GcK3Z8TZmDGUp0yPU.roa (hash: iTNz2JkVG0lyLMF9W3w/Ic91Eg7OidyUS/S/a+cGNtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:a8:0e:c1:fc:0f:be:d0:f5:70:37:08:ea:0a:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80235937adf4dab8925d58045a3371816c980531
Validity
Not Before: Mar 29 06:01:14 2026 GMT
Not After : Mar 30 06:01:14 2026 GMT
Subject: CN=8e59c6f9e91017c58ec773dcbda31a34d64fe735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6c:b7:be:5c:81:e3:56:2d:d8:2c:fb:84:c8:
0a:b4:95:26:da:ea:0a:e0:4f:de:1c:0e:66:d6:0a:
7f:f9:a7:51:d9:f1:c5:c2:c7:d4:6f:94:99:c4:7f:
9d:b3:48:0d:45:71:77:57:c2:6f:5a:7b:ff:a0:5c:
57:7c:5b:c0:6a:fe:e2:ca:8c:07:dc:97:d3:65:63:
41:c2:70:ee:99:ea:b8:fb:04:34:69:9f:13:53:3b:
80:24:d8:0b:8b:f3:11:2c:92:35:97:6e:e1:4d:cc:
cd:9a:66:ec:d8:3a:6f:cb:22:71:6f:23:b2:37:63:
d1:85:0a:43:52:51:44:89:d3:a7:36:fd:31:c2:5e:
8e:76:14:c7:c0:77:fc:f3:8c:88:b8:1a:de:ac:a5:
81:b3:25:5a:a5:19:e8:71:1d:53:69:60:a5:aa:38:
15:c3:89:35:f8:a9:fc:36:c1:2d:52:8f:27:0b:4d:
d7:1f:ab:fc:4e:55:34:f0:13:7a:2b:d8:a2:44:26:
cc:a1:97:31:33:7d:10:dd:6a:52:26:8b:be:7d:27:
43:7a:68:ee:13:52:aa:fb:56:ab:19:a6:ca:e4:9c:
0d:f1:98:93:33:96:50:f5:49:89:b5:9e:43:fe:7a:
a0:06:26:cf:11:65:b7:51:72:f6:e7:36:93:24:19:
46:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:59:C6:F9:E9:10:17:C5:8E:C7:73:DC:BD:A3:1A:34:D6:4F:E7:35
X509v3 Authority Key Identifier:
keyid:80:23:59:37:AD:F4:DA:B8:92:5D:58:04:5A:33:71:81:6C:98:05:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:b6:de:54:95:8c:98:ef:43:c0:8e:03:f0:d8:e2:3b:9b:ad:
f4:86:1c:f6:1e:00:91:e5:9b:14:c0:2d:49:fd:96:78:7f:79:
7d:2f:c7:71:4e:f9:07:2f:cd:d6:e9:1a:85:e9:42:e1:73:e1:
7f:40:8f:7c:b1:92:35:45:95:a2:4f:7a:ec:24:e7:d1:e2:0f:
f0:62:79:c5:24:0b:ab:6e:c0:ec:f8:73:4d:cc:41:c1:72:b6:
48:30:19:ca:0d:d7:11:ac:b8:d1:57:e4:83:38:0f:6f:88:ea:
1e:64:7b:9d:cb:5d:c6:39:da:8a:24:b5:ad:e4:d2:de:c7:4a:
16:76:43:57:30:1d:ca:3f:06:89:40:65:d6:92:08:3c:eb:72:
9e:6e:07:9d:63:2a:b0:d3:65:c7:08:73:91:e1:6c:15:df:b3:
02:57:83:47:01:2e:75:c8:c0:71:11:59:26:dc:47:3e:29:12:
46:11:c9:6c:99:32:9b:9f:42:9b:2f:68:56:77:8f:41:a3:db:
cd:50:b2:2f:c4:95:ff:03:91:55:07:26:00:4a:6c:e5:63:ac:
fc:02:c2:52:91:af:39:92:b7:84:24:ed:6b:c3:2a:c0:3d:29:
b3:e8:dc:48:30:de:e1:48:5e:23:88:6f:23:f2:7e:a2:8a:e7:
25:e1:f0:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:15:21 2026 by rpki-client