Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: PqcYrt6NqaB8P0/dzxv/qXYrYb6snBRghgztUs8tBts=
Subject key identifier: 85:8D:3A:D0:D6:18:C4:8B:9B:5E:54:72:F0:60:45:F7:7D:9C:56:7B
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 019DDDD5BF5EB1FB8C7D383E19A3A5C3092F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 073D
Signing time: Thu 30 Apr 2026 10:01:05 +0000
Manifest this update: Thu 30 Apr 2026 10:01:05 +0000
Manifest next update: Fri 01 May 2026 10:01:05 +0000
Files and hashes: 1: TADovInnVhImIAMNLhy833dYeyU.roa (hash: f/dalF6vRD8VNn9XqvAc5SALl8hYeWv1uoN4z7iWDuo=)
2: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: AIGPyCxaCMSmf0MTHpXajM5T9dZl2larkAU1cyuMEfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:dd:d5:bf:5e:b1:fb:8c:7d:38:3e:19:a3:a5:c3:09:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Apr 30 10:01:05 2026 GMT
Not After : May 1 10:01:05 2026 GMT
Subject: CN=858d3ad0d618c48b9b5e5472f06045f77d9c567b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a4:7e:c7:ad:74:02:3e:bb:7a:4b:30:82:e3:
6b:78:f2:8a:16:2e:b5:67:28:07:e2:7c:92:59:5f:
50:ef:01:9a:d7:7c:a6:ca:f5:ec:a8:00:f6:29:ca:
b0:1e:60:b9:51:20:e9:b4:e8:cd:11:33:0f:92:a6:
1c:1e:11:55:39:31:6b:2a:6e:67:7d:ad:8b:3a:a4:
fb:a6:34:6a:a1:a8:5b:11:1a:f1:4b:28:92:b5:78:
cc:c4:d9:70:1c:d2:0d:37:2c:96:5d:99:6b:94:ee:
e9:b8:7d:cb:8a:f4:87:2b:88:fc:0b:2d:89:f7:fa:
32:79:10:9c:bf:dd:eb:bb:dc:a7:f3:dd:7c:e9:24:
97:06:a8:cd:d1:c5:d3:db:8d:39:c6:94:be:ba:b9:
1d:45:18:66:db:fe:42:e1:a1:85:5d:05:e3:a8:54:
4f:11:a0:8a:d8:12:b1:e1:a4:98:f5:1a:74:85:e2:
b9:c9:da:25:c1:fb:e1:fe:d8:10:e3:2e:67:98:63:
50:8c:ba:54:7e:e2:2e:43:c2:3b:13:5b:9d:cd:94:
ea:7a:99:21:ef:18:84:4b:66:97:08:88:34:2c:b6:
64:8a:42:9a:41:9a:da:25:ac:05:0f:c9:06:3a:0b:
9c:a6:6b:19:8d:14:5f:4a:2e:51:ab:ba:f6:41:15:
6a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:8D:3A:D0:D6:18:C4:8B:9B:5E:54:72:F0:60:45:F7:7D:9C:56:7B
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:ac:35:a0:06:91:db:37:26:f8:08:57:5f:f2:f5:be:d6:2b:
95:fc:a4:ff:45:21:96:a0:79:c6:6c:76:f1:66:4f:5a:b9:9a:
d5:4b:f5:bb:c5:42:72:2b:53:cc:39:83:de:52:97:85:4a:08:
8a:18:89:30:ff:32:0e:43:4f:f6:13:76:e8:f2:53:08:fa:5b:
b9:3b:03:d0:58:a2:78:f9:f3:94:54:a4:ee:07:7d:40:6d:34:
c8:bd:b0:a3:d1:98:e9:11:ff:ba:3a:16:0b:f2:88:34:26:6a:
b3:23:2e:b4:30:ed:20:7f:99:d8:ce:e3:4b:1b:32:60:df:d3:
cd:07:95:fc:49:a4:1a:af:f5:ba:9d:4e:0f:4a:f1:32:28:b0:
c1:01:e6:f8:da:68:9a:07:83:93:76:17:67:6a:db:0c:89:31:
a1:af:fc:2c:1b:66:b9:34:51:79:ba:ff:e8:ac:80:0c:70:39:
dc:ef:b7:87:3c:ee:5b:14:49:37:df:d6:12:7e:8d:44:b9:fb:
23:9e:cb:fe:45:8d:93:38:71:a6:c3:6f:20:e4:b1:80:c9:01:
dd:c1:66:ea:42:46:60:fc:37:04:f3:af:f4:75:10:bf:26:f2:
00:57:9a:c0:e5:ae:90:7e:8d:e2:48:2f:5b:46:c5:f8:01:45:
37:14:0a:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 30 13:48:48 2026 by rpki-client