Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
File: gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft (raw, json)
Hash identifier: iDSRMztxQvXFW45YlOgs1t/NEA/oRZU0Xr8vcGEAFVU=
Subject key identifier: A4:3A:ED:7B:9E:C0:71:27:92:0A:4C:5A:A5:F2:F7:25:36:3D:F1:8E
Authority key identifier: 83:23:F4:9D:6C:C6:50:CD:6D:65:48:23:48:E1:D6:D0:B8:FD:7E:AA
Certificate issuer: /CN=8323f49d6cc650cd6d65482348e1d6d0b8fd7eaa
Certificate serial: 019CE6A4040ADA9607AEAFAEF9415CE668B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
Manifest number: 1865
Signing time: Fri 13 Mar 2026 10:00:34 +0000
Manifest this update: Fri 13 Mar 2026 10:00:34 +0000
Manifest next update: Sat 14 Mar 2026 10:00:34 +0000
Files and hashes: 1: GFlr8uF2r8cVqmDJ2JXiNxwY91k.roa (hash: gwpmNBpGA7FAOM9cF2rmHJiCr7Axf/GeGVR5kW5sxyc=)
2: eR1kJt3AkvnRh9nnXa_66NaaHYY.roa (hash: vhKP6Uu//ijg9IWe7RT8txZCBV20sw0GmYZPsJN+rXk=)
3: gyP0nWzGUM1tZUgjSOHW0Lj9fqo.crl (hash: LXDzdl98+51pIRaec5bJXvcwR83bJ39SMDQO3YGFTBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:a4:04:0a:da:96:07:ae:af:ae:f9:41:5c:e6:68:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8323f49d6cc650cd6d65482348e1d6d0b8fd7eaa
Validity
Not Before: Mar 13 10:00:34 2026 GMT
Not After : Mar 14 10:00:34 2026 GMT
Subject: CN=a43aed7b9ec07127920a4c5aa5f2f725363df18e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:af:db:65:46:77:86:d7:fe:92:cf:75:1d:a5:
10:9a:a0:6c:c4:94:fd:77:91:a1:26:56:9a:7d:eb:
68:72:ce:3f:ca:4a:e6:3a:57:71:d2:f9:b5:13:7d:
72:f1:3b:fa:78:92:29:c2:c4:31:24:a7:5f:6f:0e:
03:d9:dc:b8:c0:d6:1d:9b:00:b5:e2:71:7b:c7:75:
0d:09:32:2d:c7:51:50:b1:da:40:34:ff:58:9d:e5:
4a:c8:0f:b7:d0:f8:3a:9b:b8:5d:05:83:8b:a3:27:
9c:50:1c:31:0c:b4:94:01:b5:f3:4b:71:d8:51:85:
5c:ba:b4:70:56:7d:3d:f0:18:3c:95:77:64:51:0d:
b0:d6:ee:58:f4:e6:88:e8:5e:e5:95:f5:77:16:0f:
07:a9:b3:65:0c:ea:8f:41:3e:5f:b4:71:0c:4b:b3:
24:14:46:ff:b8:88:53:b9:b4:9d:19:d6:de:1a:bb:
ee:d4:5d:a9:6d:b6:3a:ea:e7:ab:65:da:61:e6:1c:
62:bd:c7:3d:e8:a1:ef:49:8b:95:88:04:75:46:bb:
63:48:ae:86:e9:2a:32:e9:73:be:6a:5a:f8:ca:2a:
c4:96:1a:65:36:b0:72:a2:99:e4:4f:29:63:58:3e:
2c:7a:1d:e8:97:d7:f5:ed:4e:d8:09:6c:c8:94:94:
0c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:3A:ED:7B:9E:C0:71:27:92:0A:4C:5A:A5:F2:F7:25:36:3D:F1:8E
X509v3 Authority Key Identifier:
keyid:83:23:F4:9D:6C:C6:50:CD:6D:65:48:23:48:E1:D6:D0:B8:FD:7E:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:c7:25:54:f2:74:4d:fd:5b:db:b4:3e:24:6c:1f:db:2e:33:
ea:31:08:6e:3e:17:e9:6f:a8:a7:0b:0b:68:8b:04:35:c6:a6:
4b:a6:85:91:0a:58:f1:34:83:09:2e:69:f9:6a:f2:10:13:29:
58:11:e6:8d:18:96:c9:d3:9f:74:00:2f:2e:2c:87:bf:1d:23:
70:de:38:ee:3e:81:5b:9c:93:24:e3:b1:5f:43:cd:e7:30:a9:
9d:df:b7:86:46:c6:31:16:c5:5a:e9:cb:46:43:16:58:e7:84:
ca:bc:db:79:fb:bd:36:26:ad:9f:bf:da:6b:76:0c:c8:80:47:
a2:9d:55:7e:02:9c:b6:94:39:e8:35:f4:7d:f3:67:57:71:5d:
e1:1f:c0:5e:1a:48:74:98:5a:7d:64:2e:34:81:1a:27:29:28:
ac:13:b9:2d:c7:bb:7d:03:23:98:7d:0c:1f:b8:da:6f:77:7b:
5a:83:fd:c8:9b:5a:39:0f:00:ab:dd:91:3f:4e:14:cd:9b:b0:
06:55:36:96:a4:ec:09:c1:49:01:97:5e:ba:3b:88:24:4f:5a:
1b:d2:8f:7b:a4:f1:7a:86:e7:66:48:38:e7:97:db:39:d0:f4:
c8:fd:4a:8b:2d:03:1c:af:8e:d7:ef:a2:36:32:60:50:f0:48:
a6:cb:35:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 13:33:27 2026 by rpki-client