Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json)
Hash identifier: COjdKwquXSUS85NxoERJvhKGM8cwbCK9Cd/zmUBZRUY=
Subject key identifier: 02:66:FB:37:93:40:4A:A1:15:97:C3:D0:ED:34:A7:08:99:92:F6:05
Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Certificate serial: 019CB8B9299D5794DEC876CA1796BE1E7291
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
Manifest number: 0435
Signing time: Wed 04 Mar 2026 12:01:08 +0000
Manifest this update: Wed 04 Mar 2026 12:01:08 +0000
Manifest next update: Thu 05 Mar 2026 12:01:08 +0000
Files and hashes: 1: RRfH67NRANb78QCHIsNktj2AM8M.roa (hash: Kvb0sz/yAiVAWW/vkTFZtCm8iDPULJVC9JDaAm74c0I=)
2: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: Em7sCC0qa4uENZ86U4Fx36e655Aux9asnomcchnkBMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 12:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b8:b9:29:9d:57:94:de:c8:76:ca:17:96:be:1e:72:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Validity
Not Before: Mar 4 12:01:08 2026 GMT
Not After : Mar 5 12:01:08 2026 GMT
Subject: CN=0266fb3793404aa11597c3d0ed34a7089992f605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cd:38:a6:c6:95:78:19:c3:c5:be:46:e0:f0:
73:b4:99:1a:50:1c:b5:cc:3a:9d:27:4e:b0:d7:7a:
85:0f:10:09:c8:e6:36:d2:b8:81:68:7b:55:3b:b7:
87:30:e8:54:d2:f6:1d:b6:3b:9b:6e:c9:a8:d1:08:
0f:e6:df:7e:33:3f:bc:34:c9:9e:6a:49:40:ab:df:
c2:d9:bf:54:f2:fb:2c:cf:b6:49:ec:25:93:0a:84:
7a:c7:db:8d:bc:89:e5:a9:21:6c:d2:d5:49:38:e2:
d6:c7:4d:90:24:7a:46:cc:b9:b1:b8:e6:07:82:a4:
26:c7:44:c7:39:4f:dc:e6:07:38:74:34:e3:ae:78:
1c:36:48:50:d9:fe:f8:27:8e:6f:12:20:10:84:b7:
1a:66:c0:a4:6b:29:9a:7d:45:fc:31:61:3a:52:58:
76:e8:1f:60:94:06:09:c1:80:09:63:38:b1:65:ec:
72:35:8c:5a:e8:bb:17:06:51:93:c1:f3:fc:83:dc:
1e:24:ff:d6:31:10:fd:36:73:05:90:ae:f4:13:2e:
cd:53:bf:4d:b2:d9:5a:f6:78:b4:08:a0:6b:90:96:
6a:ce:9c:6d:3c:01:8a:8b:22:1e:5f:cf:2c:f9:5e:
cc:33:0c:bb:ab:b8:ac:57:68:37:e7:69:1c:6b:f6:
71:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:66:FB:37:93:40:4A:A1:15:97:C3:D0:ED:34:A7:08:99:92:F6:05
X509v3 Authority Key Identifier:
keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:19:e2:15:ff:a9:c2:d5:d9:24:50:74:6c:d6:d6:c1:f1:b0:
d3:42:2d:de:e1:17:06:df:be:ea:71:ef:69:5d:ce:21:45:9e:
a0:23:e3:88:9f:62:d1:9a:eb:ff:cb:9e:a2:c7:58:80:cd:c6:
98:b1:f1:0a:63:63:7f:ac:32:71:0f:92:f1:f6:2a:ca:a8:33:
b7:a0:01:f0:71:51:6a:b0:6b:6d:1f:60:93:60:8f:a5:c4:31:
1c:38:2a:bd:ae:66:b9:37:d2:8e:f6:aa:76:dc:db:cc:47:06:
d2:35:2a:92:b5:37:21:66:67:c0:8e:98:91:3a:ae:2d:0b:0b:
94:f6:bb:d9:71:ed:aa:77:69:ab:c5:0c:14:e9:29:3d:fe:fa:
3e:b2:31:26:7f:4f:41:17:17:e8:23:ca:f7:1a:a0:7b:7f:69:
2c:3a:39:65:86:25:23:da:d8:16:98:94:b8:d4:44:1b:a5:cd:
da:18:78:85:51:03:59:06:e6:38:a4:88:3d:e6:38:b9:a7:4c:
0c:0e:fd:cb:29:f4:da:ae:48:26:3b:ec:76:80:cd:1b:b5:e2:
69:bb:75:16:35:10:24:84:01:0a:44:1d:b6:f7:67:00:a4:b7:
2b:0f:14:a9:82:f2:d9:73:c0:41:33:31:00:8a:91:c9:4a:ca:
be:70:ae:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZy4uSmdV5TeyHbKF5a+HnKRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyYWQzZGM0MGFjZDE4NTJmYzc0YWNkZDM3ZDhmMDdiYmIw
MjVkMTgwHhcNMjYwMzA0MTIwMTA4WhcNMjYwMzA1MTIwMTA4WjAzMTEwLwYDVQQD
EygwMjY2ZmIzNzkzNDA0YWExMTU5N2MzZDBlZDM0YTcwODk5OTJmNjA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1c04psaVeBnDxb5G4PBztJkaUBy1
zDqdJ06w13qFDxAJyOY20riBaHtVO7eHMOhU0vYdtjubbsmo0QgP5t9+Mz+8NMme
aklAq9/C2b9U8vssz7ZJ7CWTCoR6x9uNvInlqSFs0tVJOOLWx02QJHpGzLmxuOYH
gqQmx0THOU/c5gc4dDTjrngcNkhQ2f74J45vEiAQhLcaZsCkaymafUX8MWE6Ulh2
6B9glAYJwYAJYzixZexyNYxa6LsXBlGTwfP8g9weJP/WMRD9NnMFkK70Ey7NU79N
stla9ni0CKBrkJZqzpxtPAGKiyIeX88s+V7MMwy7q7isV2g352kca/ZxFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAJm+zeTQEqhFZfD0O00pwiZkvYFMB8GA1UdIwQY
MBaAFIKtPcQKzRhS/HSs3TfY8Hu7Al0YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8yMTdiNzMtMDU2Mi00NzZlLThkODMt
ODQ5YzVjODhkYmZjLzEvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi8yMTdiNzMtMDU2Mi00NzZlLThkODMtODQ5YzVjODhkYmZj
LzEvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAphniFf+p
wtXZJFB0bNbWwfGw00It3uEXBt++6nHvaV3OIUWeoCPjiJ9i0Zrr/8ueosdYgM3G
mLHxCmNjf6wycQ+S8fYqyqgzt6AB8HFRarBrbR9gk2CPpcQxHDgqva5muTfSjvaq
dtzbzEcG0jUqkrU3IWZnwI6YkTquLQsLlPa72XHtqndpq8UMFOkpPf76PrIxJn9P
QRcX6CPK9xqge39pLDo5ZYYlI9rYFpiUuNREG6XN2hh4hVEDWQbmOKSIPeY4uadM
DA79yyn02q5IJjvsdoDNG7Xiabt1FjUQJIQBCkQdtvdnAKS3Kw8UqYLy2XPAQTMx
AIqRyUrKvnCu5w==
-----END CERTIFICATE-----
Generated at Wed Mar 4 22:21:24 2026 by rpki-client