Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
File: gaaIASwSJngYX8634QN_Dh7ReGE.mft (raw, json)
Hash identifier: fxBtdszfzCIxdHeNJv5a5xVkeIih5z9XYX3WEoALfyI=
Subject key identifier: 47:8B:76:D8:39:66:3F:4F:EB:EA:3E:01:02:48:E4:87:7A:55:19:6F
Authority key identifier: 81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61
Certificate issuer: /CN=81a688012c122678185fceb7e1037f0e1ed17861
Certificate serial: 019D39AEC98890B88A7FEF91EC81B0F27CD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
Manifest number: 0F76
Signing time: Sun 29 Mar 2026 13:00:49 +0000
Manifest this update: Sun 29 Mar 2026 13:00:49 +0000
Manifest next update: Mon 30 Mar 2026 13:00:49 +0000
Files and hashes: 1: 5GkzwsX2SAkCt9B6c4atkjd4rkM.roa (hash: 8XwwTszWSwQ0ODWiARrL0mvIBAeBsaR0WFrNoJhXWyY=)
2: gaaIASwSJngYX8634QN_Dh7ReGE.crl (hash: N+QuGR2QYr0FtuXG4QnJb2UM1X+GJZwpBoI4/DJi68E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:c9:88:90:b8:8a:7f:ef:91:ec:81:b0:f2:7c:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a688012c122678185fceb7e1037f0e1ed17861
Validity
Not Before: Mar 29 13:00:49 2026 GMT
Not After : Mar 30 13:00:49 2026 GMT
Subject: CN=478b76d839663f4febea3e010248e4877a55196f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:93:1e:a8:66:01:0c:f2:6d:57:09:5b:9b:cb:
6e:df:bd:f0:70:7d:1c:3f:7e:58:a0:aa:38:ab:5e:
1c:4a:d5:43:a6:c2:c2:01:ee:68:2f:08:36:78:81:
bf:09:c6:34:d2:50:11:12:4f:42:9b:3d:a1:f6:dc:
ab:9b:48:18:ad:10:a5:45:c2:9d:05:ab:12:03:6c:
49:c3:38:69:61:fe:ac:de:7b:96:32:e0:c4:dc:d8:
28:9f:e9:3a:ee:b1:18:45:ee:2f:48:41:35:06:08:
ec:ae:99:3d:26:c9:09:5d:0a:3b:a5:58:09:f3:5d:
33:2a:a6:88:7a:2d:a5:d6:16:3f:10:1c:2d:4b:c1:
ab:46:fb:bf:f2:e7:69:72:33:16:b9:70:84:3c:a1:
b4:58:18:be:cd:0f:01:e2:b2:df:6f:74:4c:0d:b8:
aa:d0:1e:43:11:de:55:89:fc:57:fc:ae:20:41:6f:
30:f9:53:dd:d2:e5:99:f1:8f:ff:02:5d:40:da:98:
41:9c:39:b2:64:1e:e6:b3:78:71:a9:27:f8:9a:d8:
ac:c5:ee:00:1f:a7:6c:39:c3:07:de:01:32:a0:8b:
ad:bb:8c:50:38:d7:f7:ee:76:30:7b:6f:4a:73:b1:
97:bf:0e:90:b2:65:14:28:11:3e:f8:c0:35:fa:c1:
96:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:8B:76:D8:39:66:3F:4F:EB:EA:3E:01:02:48:E4:87:7A:55:19:6F
X509v3 Authority Key Identifier:
keyid:81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:0c:b6:ad:c2:dc:68:f9:44:94:c8:a9:5f:2a:86:22:c8:b9:
e0:db:13:48:e1:3d:02:c0:d0:1a:15:93:bc:3f:b4:8e:b9:af:
87:cc:10:e9:cd:d2:02:12:5e:6c:b6:3b:78:a5:bb:55:b8:42:
d7:60:3b:e1:f9:ca:33:1c:2d:73:6e:64:52:47:35:5e:1c:fa:
ae:8e:e7:9b:f1:e9:08:e3:49:e0:92:63:15:82:00:ba:a5:bb:
bc:63:e7:3a:c0:64:db:4d:56:52:7f:6c:31:82:a7:71:d2:3e:
60:93:63:e5:94:88:44:1a:2f:ca:bb:66:e3:4e:74:7b:ec:4d:
cc:4e:a1:9d:53:b2:07:f2:fe:47:46:f4:c2:58:c1:92:60:e8:
a5:03:bf:22:67:45:f1:53:5a:66:e4:b3:19:be:b7:8f:30:4d:
f5:78:ea:f1:30:d0:cf:8c:8b:bd:45:8a:4f:73:df:f3:a6:d4:
cc:cf:6d:a7:0c:0a:cc:cb:a1:ed:0b:73:40:1a:9f:29:b5:2f:
85:ef:85:3f:53:bf:8f:2f:50:f6:58:10:f2:66:f9:54:79:c6:
31:05:0d:f5:42:44:fd:81:f7:d4:04:d7:e5:73:78:21:8f:c3:
78:e2:19:a8:50:d6:ad:51:29:2d:1f:65:73:fe:92:77:64:bd:
41:8c:ad:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:58:50 2026 by rpki-client