Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json)
Hash identifier: LGxZMrRAtWg/FX3W+BzZzpkziopRWitx5FW/28eJ3Fs=
Subject key identifier: 4F:E0:F5:8B:BA:FA:07:E4:CC:B9:66:6A:75:30:55:F5:5E:16:F0:D1
Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Certificate serial: 019F190D3159F7AA54E7FF76191D55C1009C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
Manifest number: 0570
Signing time: Tue 30 Jun 2026 15:02:02 +0000
Manifest this update: Tue 30 Jun 2026 15:02:02 +0000
Manifest next update: Wed 01 Jul 2026 15:02:02 +0000
Files and hashes: 1: RRfH67NRANb78QCHIsNktj2AM8M.roa (hash: Kvb0sz/yAiVAWW/vkTFZtCm8iDPULJVC9JDaAm74c0I=)
2: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: Gl32lHPU7mRQMc7QM9dUTwe755fSu3Soft9RTsO1jxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0d:31:59:f7:aa:54:e7:ff:76:19:1d:55:c1:00:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Validity
Not Before: Jun 30 15:02:02 2026 GMT
Not After : Jul 1 15:02:02 2026 GMT
Subject: CN=4fe0f58bbafa07e4ccb9666a753055f55e16f0d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0f:4a:18:f1:65:e6:74:b0:74:f5:80:7b:c0:
9b:ef:63:a8:56:00:1e:9a:30:7f:2e:2b:59:a0:c4:
74:02:3b:2b:38:51:f2:0e:ee:cb:f0:a3:58:34:5f:
95:25:16:35:fd:04:38:17:0c:2e:28:70:ee:ca:4b:
48:19:a1:6a:a8:5b:89:5c:87:fe:a8:4e:4c:29:24:
14:c8:7c:fc:d4:12:a9:4d:ae:4d:51:ac:b9:eb:ea:
cb:e2:6c:40:21:8b:74:66:f1:6c:06:ef:75:92:f5:
4a:14:65:db:86:4f:1f:69:ff:06:af:49:c4:c8:4f:
f5:13:55:8d:36:4b:ce:66:bb:46:86:d5:d5:22:37:
1c:bd:15:f8:cd:f5:4d:00:0c:11:a5:d6:5f:10:e6:
39:e7:c1:93:84:1d:45:23:25:21:24:bb:e5:c7:8e:
86:05:c9:60:74:f5:fe:92:aa:8b:4c:2f:43:82:7a:
71:d0:00:db:dd:ec:14:89:d2:f2:c2:ed:bf:fd:07:
f0:5f:7f:a8:ef:7c:c1:9d:4c:72:8e:20:d4:16:55:
46:b1:15:1c:40:0e:56:ee:2c:a6:4a:6f:d2:6f:68:
cd:07:d9:0c:76:3a:20:bc:94:bc:c5:3a:c7:fb:2c:
c7:2f:9b:69:59:d1:6a:a0:d1:a6:56:9e:d7:97:7e:
ef:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:E0:F5:8B:BA:FA:07:E4:CC:B9:66:6A:75:30:55:F5:5E:16:F0:D1
X509v3 Authority Key Identifier:
keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:6b:6c:6e:81:0f:79:50:51:57:d6:45:81:38:cc:2c:ff:fd:
9c:81:ab:88:05:05:57:03:14:2c:e7:34:49:17:70:f7:6b:0c:
9a:45:24:8f:2e:40:1f:4e:48:33:b9:82:97:9b:41:03:55:f8:
d9:e5:66:2b:84:44:35:ad:23:74:36:66:83:98:0b:d0:0a:d3:
da:5c:29:50:b4:e0:ed:cd:d5:77:0c:98:50:a6:50:61:26:69:
0b:48:03:be:ff:35:e1:ec:3f:41:1a:00:24:5b:1d:28:48:42:
7a:1c:3b:ad:45:3b:b8:63:51:b5:84:7d:83:f8:71:8a:52:3e:
5c:0a:f1:8f:14:82:a5:61:8a:4b:6a:70:9a:10:a4:5b:07:9e:
83:2c:0d:9c:bb:3e:1c:54:6e:92:dc:93:d3:5e:85:4b:a0:0d:
b9:23:39:64:78:36:69:97:f5:e6:23:fd:96:00:a4:e8:d6:04:
98:20:09:e3:2e:0c:fb:59:9f:fc:8f:e7:5e:4e:25:59:9f:75:
fa:f6:7f:3f:85:00:ad:c4:13:7f:34:17:f4:19:c0:d7:85:28:
a5:84:68:70:98:e5:58:8c:75:6e:0e:eb:fe:e7:d9:8a:a5:9c:
fc:57:5c:09:5f:c5:2d:56:1a:f2:95:f6:b6:13:85:62:03:a7:
8b:7b:9a:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:42:55 2026 by rpki-client