Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
File: 1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft (raw, json)
Hash identifier: D6bTp4Ss+sbCqEbmHZ4G+tWeEdCbb9q9vmDd05VsY48=
Subject key identifier: A8:38:FB:A9:68:0E:8D:01:0E:5C:52:10:E8:D8:F7:72:69:19:43:FF
Authority key identifier: D4:69:86:7D:1D:69:3E:79:A6:A5:EE:90:14:E4:13:F0:39:EB:50:D8
Certificate issuer: /CN=d469867d1d693e79a6a5ee9014e413f039eb50d8
Certificate serial: 019D37C0A42036E9508C7E7B9C9AB8E6339E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
Manifest number: 12BF
Signing time: Sun 29 Mar 2026 04:01:04 +0000
Manifest this update: Sun 29 Mar 2026 04:01:04 +0000
Manifest next update: Mon 30 Mar 2026 04:01:04 +0000
Files and hashes: 1: 1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl (hash: oJVJSVsxIl8rTssskr5BV4F2cvPufGierAWXr9JV/+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:a4:20:36:e9:50:8c:7e:7b:9c:9a:b8:e6:33:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d469867d1d693e79a6a5ee9014e413f039eb50d8
Validity
Not Before: Mar 29 04:01:04 2026 GMT
Not After : Mar 30 04:01:04 2026 GMT
Subject: CN=a838fba9680e8d010e5c5210e8d8f772691943ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:84:b4:c8:6a:1e:d4:3a:19:1c:12:7c:e8:05:
2b:2d:09:e0:12:37:6d:ff:9d:32:66:12:64:ff:a2:
e7:01:cf:b9:08:8f:29:cd:41:e6:4a:17:c0:f0:4a:
f7:2b:ac:d9:2e:7c:09:7e:3f:bb:4b:93:bb:89:94:
86:93:25:48:34:17:5b:94:6b:9d:3d:24:95:7f:bb:
ec:c6:14:dc:76:6d:26:68:b2:a2:b9:ee:c6:16:c9:
ea:e2:38:ea:91:cd:cd:39:9d:33:f5:2d:33:b0:e0:
e9:9f:84:ab:bb:78:26:5c:24:f8:fd:d7:4d:f9:2b:
a9:82:dd:05:95:b0:a6:a9:20:02:59:9c:a1:33:d2:
31:d7:c2:b9:25:d6:90:85:cf:35:01:0c:1d:a2:37:
01:41:ff:9e:e3:04:27:2c:02:05:a5:39:1a:04:fb:
68:3e:87:55:13:77:cd:74:99:9d:b5:b3:85:26:26:
0e:ff:57:6a:c0:14:a8:7d:10:47:34:bb:4d:a3:74:
74:4c:fd:1c:da:e5:a1:f9:0b:cb:9c:da:89:23:73:
14:62:44:ad:8a:7c:1d:df:23:a0:06:eb:cb:cc:8b:
34:93:51:d8:b9:39:97:e8:42:ce:08:94:5a:37:b8:
e0:56:81:51:37:e1:2d:1b:d5:c6:25:40:c3:a8:54:
a1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:38:FB:A9:68:0E:8D:01:0E:5C:52:10:E8:D8:F7:72:69:19:43:FF
X509v3 Authority Key Identifier:
keyid:D4:69:86:7D:1D:69:3E:79:A6:A5:EE:90:14:E4:13:F0:39:EB:50:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:de:a2:de:85:d2:91:33:c8:28:10:21:71:41:46:7d:af:ab:
0d:0e:7a:d1:48:ce:76:4b:6f:de:7e:3d:e2:41:42:96:f9:b0:
04:13:ff:e8:96:56:57:3e:75:77:6c:09:47:15:2f:6e:94:3c:
fd:71:c2:de:74:7c:d9:03:01:6a:3c:81:18:0b:32:c7:0d:c4:
f7:6a:75:93:d4:f6:13:09:11:18:f4:c9:59:33:10:7a:7f:d0:
84:43:a5:22:a4:24:26:87:02:c0:5a:bc:4d:63:58:e3:d4:4d:
9a:9e:f9:ac:41:bb:45:5e:c3:53:b5:84:7f:78:c0:06:d2:77:
c9:f6:de:5d:96:6b:50:19:01:f9:19:f2:4f:56:e7:ab:c9:8a:
9b:b3:25:ea:dc:9d:e8:94:81:51:ff:ba:c1:4e:ce:17:5e:29:
53:a0:f4:24:32:50:0a:7b:89:6d:6b:20:ea:b6:7c:2e:4d:73:
9a:01:95:c9:a3:0e:88:c1:e7:3c:f8:80:e8:aa:f1:6a:52:ba:
3b:ce:70:09:ab:4c:5a:a3:0c:47:0f:6e:27:3b:a0:fc:92:fd:
d6:a4:66:26:1b:e5:08:62:3d:37:be:5c:f3:02:1d:eb:79:48:
f7:f1:ed:4d:ed:c8:29:76:fb:21:35:f6:2f:8e:e2:55:ee:d0:
81:17:04:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:22 2026 by rpki-client