Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json)
Hash identifier: TGFNC6mNYsxj+quMUeVfiAAqjpKSMSCyxP+l+QG6aR0=
Subject key identifier: B5:FD:93:71:20:50:5A:26:39:83:16:21:F7:4A:21:65:EC:12:9D:0A
Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Certificate serial: 019DA265B62A6DF3B6346B5F86650E8E1E9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
Manifest number: 04AE
Signing time: Sat 18 Apr 2026 21:01:07 +0000
Manifest this update: Sat 18 Apr 2026 21:01:07 +0000
Manifest next update: Sun 19 Apr 2026 21:01:07 +0000
Files and hashes: 1: RRfH67NRANb78QCHIsNktj2AM8M.roa (hash: Kvb0sz/yAiVAWW/vkTFZtCm8iDPULJVC9JDaAm74c0I=)
2: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: D9etgZRSTz9FXn35IO34Gv0+PBCaE1DmPgWQCzlRYH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 17:59:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:65:b6:2a:6d:f3:b6:34:6b:5f:86:65:0e:8e:1e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Validity
Not Before: Apr 18 21:01:07 2026 GMT
Not After : Apr 19 21:01:07 2026 GMT
Subject: CN=b5fd937120505a2639831621f74a2165ec129d0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cd:4e:df:01:d7:e7:7c:a0:f4:b8:cc:7a:a1:
b9:88:82:63:f1:7e:32:03:25:b2:21:34:f4:32:b1:
92:11:17:8a:51:44:29:3a:6f:3b:a1:70:46:5b:32:
49:59:16:6f:e1:24:69:50:34:36:ba:a9:2a:f5:79:
a5:fb:7e:30:63:30:d2:61:14:cb:a5:29:4c:6a:65:
03:9b:0f:af:d1:75:3a:fc:ba:8f:df:09:2a:b6:84:
78:5e:8f:5e:e4:01:30:87:80:f8:3a:4e:c4:19:11:
42:14:43:dd:ef:d0:33:df:89:af:48:b1:da:30:b0:
35:6e:28:4b:53:45:bc:be:7e:fc:23:22:27:86:cd:
58:c4:39:f9:c4:fe:cd:0b:88:95:5a:e4:99:ce:57:
a6:33:0f:a8:3f:1d:09:93:b2:0c:be:f7:e5:64:a2:
d2:b2:24:87:49:ed:1f:6e:96:7d:71:de:5a:9d:ed:
33:a0:19:c2:88:c2:04:85:64:d9:d6:36:aa:2e:e1:
63:19:b2:61:bf:ff:90:c1:ea:9a:9c:c1:af:ba:7d:
30:f7:9e:39:ba:76:c0:88:ce:01:d8:89:91:87:db:
a3:d5:89:1b:9d:3b:dc:32:e1:be:0c:df:f4:1d:b0:
e9:d2:3a:81:f3:f2:96:9b:2a:b2:e7:46:f4:a8:b4:
99:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:FD:93:71:20:50:5A:26:39:83:16:21:F7:4A:21:65:EC:12:9D:0A
X509v3 Authority Key Identifier:
keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:0d:be:7b:40:65:b8:27:84:d9:13:d9:75:bc:c1:28:02:de:
20:b3:c4:d1:48:2a:ec:4e:bc:07:9d:19:c0:e3:53:3f:8d:99:
6b:54:41:cd:41:4c:c7:e6:d3:3a:c6:25:4e:12:61:3a:cc:eb:
f5:86:50:db:2e:88:e8:6f:fd:b1:61:65:85:26:d3:6a:cf:85:
3d:71:09:cd:9f:6d:0f:26:7d:c3:d4:ae:9c:f2:6d:38:ae:5c:
13:83:f5:99:b2:12:f6:bc:1a:17:45:9e:84:a1:c8:75:df:c9:
06:5d:56:bc:82:1b:01:6d:98:9b:29:e3:4a:68:32:b3:fc:ca:
c9:3d:8b:e8:d2:56:ad:1f:9c:39:60:a2:92:4d:83:f0:3f:cb:
49:40:88:64:16:aa:66:0b:c4:33:df:0f:ad:99:84:d4:2b:70:
b4:89:93:6f:64:73:c4:bc:e5:56:49:83:a8:0f:e0:bd:f3:87:
59:a3:0f:1f:76:ff:b4:de:f2:1e:fb:b0:56:69:25:90:7f:5d:
f7:df:77:63:8c:7c:29:e6:3f:3d:cb:80:2f:26:88:47:8f:8f:
6d:c1:15:4c:0a:ce:f7:74:00:87:ff:1b:1f:9a:2f:4a:92:a7:
0a:6b:54:ed:ac:33:a8:a5:e8:ff:3d:09:3c:25:35:f5:d0:d0:
c9:89:e3:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 01:10:30 2026 by rpki-client