Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: 87zuZyWHI15X97fhWkCBZKGtfLnssA/Rkblp17qTGtE=
Subject key identifier: F6:2F:BD:D2:20:27:9B:B6:20:C4:8C:F8:3E:D5:0E:1D:DA:A0:09:61
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 019CF23B36B726EC827A7F0E3BF2D427F951
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 06C3
Signing time: Sun 15 Mar 2026 16:01:32 +0000
Manifest this update: Sun 15 Mar 2026 16:01:32 +0000
Manifest next update: Mon 16 Mar 2026 16:01:32 +0000
Files and hashes: 1: TADovInnVhImIAMNLhy833dYeyU.roa (hash: f/dalF6vRD8VNn9XqvAc5SALl8hYeWv1uoN4z7iWDuo=)
2: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: qr+8pF5cKJoHKAqlcIJc1tqqT2Wt25WZkUKTRGCx0ns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Mar 2026 16:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f2:3b:36:b7:26:ec:82:7a:7f:0e:3b:f2:d4:27:f9:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Mar 15 16:01:32 2026 GMT
Not After : Mar 16 16:01:32 2026 GMT
Subject: CN=f62fbdd220279bb620c48cf83ed50e1ddaa00961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d6:92:4f:a7:5d:2b:9e:b2:16:20:5c:ca:9b:
e3:a3:62:27:df:d7:3c:f3:1a:a3:bf:a4:d0:d8:ac:
4d:8d:ab:c9:24:6a:64:4c:c5:db:64:d2:c8:f6:99:
1d:26:c1:3c:a8:11:db:74:9d:71:09:c9:f5:f6:d7:
5b:81:b4:30:ac:c9:28:3f:66:8f:29:c2:f7:ca:c2:
b3:67:3c:0e:11:e0:45:0a:e2:b8:67:dc:97:58:35:
6d:22:c1:03:21:9a:cb:f3:0e:15:3e:a5:2e:f0:c8:
3e:f2:78:73:44:e9:83:35:a6:6e:50:c0:39:e2:3e:
69:c6:48:00:77:23:e7:ae:4f:b2:48:a0:76:0a:6e:
ff:22:f1:79:a2:08:76:34:88:14:ef:e6:11:25:88:
0d:32:13:0f:c3:96:1f:7a:b4:c1:41:24:23:2f:52:
de:88:fc:dc:7f:50:c0:30:85:cb:89:3a:da:44:9f:
c8:31:db:ea:3e:d1:a5:74:57:91:88:59:c7:f3:c9:
6c:6a:95:43:62:7d:4f:d4:b1:96:8e:68:d3:6e:06:
d1:7f:6a:7b:f8:2e:a7:f0:df:99:d3:cd:15:48:b5:
8c:e5:05:8e:66:7f:1c:49:ff:2f:50:88:63:29:58:
26:0f:b3:62:4b:0e:97:52:ce:6f:e3:02:92:51:1f:
25:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:2F:BD:D2:20:27:9B:B6:20:C4:8C:F8:3E:D5:0E:1D:DA:A0:09:61
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:57:be:ce:ad:e3:25:88:d3:04:66:d1:df:cf:fe:d7:b8:47:
dc:48:19:f5:cb:0c:f7:b1:9b:c1:ed:79:d2:94:9c:13:70:8a:
22:c0:7b:1d:2f:25:66:41:f7:aa:0c:b5:1d:d2:c9:63:09:7d:
0b:92:73:e7:e3:b8:2f:3c:03:c4:88:40:3c:17:7b:7e:61:d8:
1a:7c:9f:cf:2d:47:5d:48:62:b2:36:c9:a1:73:a4:70:a6:ee:
c6:7a:53:51:4c:bc:df:c4:43:c9:4a:d0:97:a6:66:76:74:e0:
8e:7f:8b:11:52:b3:aa:3d:ec:ba:3c:4e:c8:4f:94:44:d1:7f:
75:1c:ac:a7:ac:66:56:2f:19:b5:16:84:22:2e:1a:64:83:7f:
fc:4b:26:94:7a:46:00:ed:e6:ab:cb:82:81:1d:d3:67:4e:ba:
db:e1:04:d0:72:f8:60:55:58:05:fb:b9:07:c8:02:b0:ab:1a:
a4:05:11:16:8f:f0:e1:d8:fc:49:4b:f0:9e:c6:64:1b:53:e0:
88:5d:f9:0d:48:ba:9b:c0:38:ef:31:1c:3f:9c:4a:e2:2f:18:
70:f3:0d:ec:84:5c:4e:bb:2c:ed:1d:69:fc:a7:e5:69:f2:f1:
e3:53:e9:46:92:04:2c:fb:b0:d6:91:2a:11:bd:b6:b3:68:37:
20:14:55:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 16 01:59:29 2026 by rpki-client