Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
File: 1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft (raw, json)
Hash identifier: RQkMLG55XasAskm3bT0do0IMNwPGVxOxbzOm3y/raWM=
Subject key identifier: 27:5A:22:54:7D:FA:C3:53:55:C7:7A:97:37:5F:D7:11:03:3E:E8:2A
Authority key identifier: D4:69:86:7D:1D:69:3E:79:A6:A5:EE:90:14:E4:13:F0:39:EB:50:D8
Certificate issuer: /CN=d469867d1d693e79a6a5ee9014e413f039eb50d8
Certificate serial: 019E30E0411995690FF3D24E8A8BFE9B8FA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
Manifest number: 1340
Signing time: Sat 16 May 2026 13:01:03 +0000
Manifest this update: Sat 16 May 2026 13:01:03 +0000
Manifest next update: Sun 17 May 2026 13:01:03 +0000
Files and hashes: 1: 1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl (hash: 6hJyZY0SKztv7WyFmKtABN1ps7fSCqD2a4NPk/IO3QI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:41:19:95:69:0f:f3:d2:4e:8a:8b:fe:9b:8f:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d469867d1d693e79a6a5ee9014e413f039eb50d8
Validity
Not Before: May 16 13:01:03 2026 GMT
Not After : May 17 13:01:03 2026 GMT
Subject: CN=275a22547dfac35355c77a97375fd711033ee82a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:96:85:16:9c:fe:05:4d:ca:b9:6a:03:80:60:
50:6c:96:c3:c8:b7:2b:3e:3d:c6:cb:2f:e0:8e:26:
49:a1:d6:f0:21:cd:14:11:94:ba:c4:6c:37:ac:37:
91:c3:d4:3c:37:13:f3:81:d3:e0:4e:2d:78:af:d2:
2c:06:14:55:f2:2e:92:51:2c:64:d6:d2:7c:6c:15:
84:ce:22:89:e5:2f:72:96:2f:86:69:5d:79:c1:d2:
55:0b:43:dd:3f:94:7a:7c:19:80:0e:9d:32:a5:5a:
f9:10:2b:14:27:17:3c:b5:2d:22:70:35:89:96:d0:
43:f4:b5:e4:50:59:dc:76:a1:62:36:90:91:2c:9c:
7e:dc:ad:c6:fc:e0:da:81:13:1a:6a:bb:50:a9:40:
0f:a1:a5:4a:20:aa:b3:dc:ae:65:06:15:43:e2:9d:
4c:55:bc:ba:6f:e0:e8:fc:24:ed:c6:05:1e:4d:31:
8b:7a:b6:f0:d5:3d:1f:b5:85:bf:74:54:dc:6c:3c:
4e:95:06:d4:21:9b:6d:d3:e0:79:6d:c7:c9:58:47:
0d:7c:be:13:c6:5c:7b:bc:18:6c:d3:9a:d5:dc:b1:
bf:ac:89:e5:d4:13:2c:54:de:af:d8:56:db:a8:e1:
30:5e:ef:cc:be:bf:3f:1f:85:50:2f:4f:27:da:9e:
57:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:5A:22:54:7D:FA:C3:53:55:C7:7A:97:37:5F:D7:11:03:3E:E8:2A
X509v3 Authority Key Identifier:
keyid:D4:69:86:7D:1D:69:3E:79:A6:A5:EE:90:14:E4:13:F0:39:EB:50:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:e0:94:a4:72:64:f9:84:ea:67:03:54:c2:b0:ca:47:9b:16:
a1:cb:ed:6a:71:8a:71:23:f6:ec:8c:df:3c:00:c3:2c:13:f6:
e7:81:ca:4c:a9:10:42:8a:79:17:c4:e5:f8:14:98:6a:ac:61:
33:f3:82:17:98:7d:bb:ad:8d:3d:9a:86:25:09:c7:09:4b:16:
a1:e9:52:58:7d:71:35:2b:0c:6e:fa:48:bb:7b:27:c8:d9:df:
49:65:4b:eb:4c:f7:c9:f6:78:cb:27:9f:87:69:5c:42:83:ee:
73:ab:84:03:0c:31:5f:5a:a5:c3:c3:6b:b5:bb:c5:34:e7:42:
b9:16:d2:8a:18:71:f8:4a:59:a9:41:a7:7d:eb:3c:ae:1d:e1:
20:41:8e:24:83:38:be:24:18:3d:6f:1b:25:6a:8b:c9:90:e8:
81:15:9a:67:eb:4c:f7:c3:bc:b8:25:60:68:a0:e9:bd:02:cd:
37:ce:1d:00:9c:b0:9e:eb:3b:36:e0:dc:93:95:d4:0e:a3:2b:
59:63:e5:c2:38:cc:f4:2e:e8:5f:94:d4:1b:3a:6c:20:3b:4a:
24:5c:bb:ed:c0:e2:ba:f2:ab:52:10:0f:d6:4a:33:38:c3:4e:
80:75:04:41:a5:c4:3a:88:95:19:f1:e8:57:79:ae:00:d8:a6:
5e:a7:c1:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:54 2026 by rpki-client