Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: nere3swJXDYfnTRG3E8Okr9j0C+DG/21fDYMUKlGpyg=
Subject key identifier: 33:07:5E:15:5A:B6:DC:69:CB:98:33:82:14:45:A1:D5:3F:99:CB:13
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 019EDCC1675AB87A29737F1A38CF4276090C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 07C1
Signing time: Thu 18 Jun 2026 22:02:02 +0000
Manifest this update: Thu 18 Jun 2026 22:02:02 +0000
Manifest next update: Fri 19 Jun 2026 22:02:02 +0000
Files and hashes: 1: TADovInnVhImIAMNLhy833dYeyU.roa (hash: f/dalF6vRD8VNn9XqvAc5SALl8hYeWv1uoN4z7iWDuo=)
2: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: y1eMVl4U+3/RoIkwZyHtNUqBavdDsthyWsnRFAfEYzc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Jun 2026 20:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:dc:c1:67:5a:b8:7a:29:73:7f:1a:38:cf:42:76:09:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Jun 18 22:02:02 2026 GMT
Not After : Jun 19 22:02:02 2026 GMT
Subject: CN=33075e155ab6dc69cb9833821445a1d53f99cb13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bb:4c:a5:29:54:6d:80:5d:5e:eb:3a:bd:fb:
ae:87:c3:27:95:85:83:c5:ef:dc:f0:9a:bd:e3:b3:
5b:c2:56:46:d5:08:44:52:e2:cd:1d:45:f1:f9:db:
ab:ce:07:27:dc:6f:1a:e9:ee:05:54:fb:ce:79:2b:
bf:d7:9a:1b:c0:b3:ca:65:63:84:cd:fb:05:84:a2:
ae:9a:ba:6c:3a:a5:91:37:0f:6e:bc:1c:b5:0f:c8:
f6:96:c3:04:13:21:85:a5:3c:ca:9f:c1:9c:d0:1b:
83:96:d9:bd:34:ff:7f:02:b8:08:5f:d3:9e:47:dc:
7e:97:6a:92:30:1b:84:7e:07:9a:17:52:2f:67:71:
37:df:e0:71:4a:6d:15:3e:36:f3:18:60:ca:f4:23:
ae:67:39:9e:79:3f:d8:21:cb:8e:ab:ec:82:40:96:
36:ab:96:35:40:94:40:b8:02:6d:95:f5:78:c5:a9:
06:b2:c3:33:78:1c:93:ee:f9:b0:68:ee:c4:9a:df:
99:db:bd:fb:84:e1:b1:d5:35:97:7b:df:ac:c9:a5:
56:96:f4:73:7e:39:1a:e9:0d:00:94:3f:2a:04:79:
9b:21:09:ca:13:2a:63:54:6d:db:09:12:33:e7:a8:
b1:d7:08:2d:d8:e3:94:e6:6a:cf:c2:93:a6:65:ad:
5e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:07:5E:15:5A:B6:DC:69:CB:98:33:82:14:45:A1:D5:3F:99:CB:13
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:16:82:5d:1d:b6:fc:ae:d6:14:7b:12:6d:38:4e:0f:69:93:
e0:d2:03:7d:e4:02:c1:9a:90:6b:51:30:2a:3b:76:65:02:b2:
44:94:70:df:9a:d9:6a:28:79:1a:86:84:6e:10:1d:a8:34:d6:
4a:6c:5e:48:dd:84:42:c5:45:e3:01:7b:ca:85:ff:11:db:ef:
a4:8e:98:6c:57:7a:0f:f7:16:07:a2:05:27:4a:eb:d4:d1:04:
f6:da:4d:f3:c1:c4:59:19:8d:3f:d5:3f:a9:23:d5:d1:89:10:
6d:5c:59:5e:f1:83:8d:4a:53:78:5a:6f:cf:e7:8d:6a:fd:90:
ab:a7:d9:c2:88:65:2d:d4:f9:85:e4:05:8f:b6:bc:d3:1c:29:
4f:3d:2a:01:07:c7:df:83:73:57:bd:1d:3f:8c:45:70:4c:57:
39:39:93:b0:e5:d5:7a:68:6a:51:a7:44:00:fa:09:4e:cb:c8:
11:db:0d:c8:a5:09:94:82:c6:f6:92:a2:20:33:27:93:ed:39:
c8:13:33:80:cf:3f:0a:30:97:87:24:2e:47:8f:29:0b:5f:67:
78:08:8f:c6:9a:82:ca:18:5f:a9:51:ae:9d:5b:95:d9:c7:0a:
07:f6:22:d2:99:c5:87:54:b4:71:0b:d9:e4:2b:54:85:d6:a2:
9d:98:4a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 19 03:51:06 2026 by rpki-client