Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
File: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft (raw, json)
Hash identifier: iP9rSNKBy6uYNmY2OJK2MqDJQZt/Zlb4tPjTt1+HNF0=
Subject key identifier: 5C:9B:86:E6:4A:C6:32:61:BE:D9:FD:9C:B1:ED:9F:EF:4E:16:BB:2D
Authority key identifier: 82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
Certificate issuer: /CN=827313247c486fe434833c09087a00a900301840
Certificate serial: 019D38D2E0E94FE1C824DD7DD78D2478DE4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 09:00:37 +0000
Manifest this update: Sun 29 Mar 2026 09:00:37 +0000
Manifest next update: Mon 30 Mar 2026 09:00:37 +0000
Files and hashes: 1: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl (hash: MeAMC68D1R+dOT8xaSyhNMY8I9CDuQIs2HgBjXE5tg8=)
2: tfKI27h4y6Yqd_bp6Jq3Mvuha5U.roa (hash: nvsIEu3C8vbMw8Dq30qS8gfgwYf/q4CpFRCeTjasyyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:e0:e9:4f:e1:c8:24:dd:7d:d7:8d:24:78:de:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827313247c486fe434833c09087a00a900301840
Validity
Not Before: Mar 29 09:00:37 2026 GMT
Not After : Mar 30 09:00:37 2026 GMT
Subject: CN=5c9b86e64ac63261bed9fd9cb1ed9fef4e16bb2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:5d:19:95:83:66:c7:07:a6:79:9f:c7:32:69:
0c:af:58:c8:d3:75:0e:b8:5c:5e:2e:2f:f0:66:67:
8d:40:0b:ef:40:eb:27:32:74:fb:83:be:f5:1a:87:
5f:fe:9b:bf:a1:05:60:e1:04:c5:92:b9:dd:a8:3e:
d8:94:78:4a:f4:e8:e7:a8:8b:94:7c:29:04:49:55:
5e:8e:5c:cc:d7:fb:68:b7:b2:78:a1:18:e7:bc:01:
6a:b0:0e:56:96:6d:24:b8:97:d8:64:65:b8:d7:e0:
f9:ce:8c:8a:f6:2d:f9:83:39:a3:72:75:db:44:c5:
40:d7:2d:30:ce:9a:4b:29:64:cb:69:23:52:83:81:
36:c9:6e:fe:7d:3f:1c:ad:87:3d:99:d4:bf:a5:78:
7f:ea:f9:44:c5:13:fb:4c:dd:68:1a:53:60:99:22:
65:5e:33:ef:53:19:b9:e9:d3:40:bc:6c:26:8c:2c:
84:b1:ce:82:07:18:55:7f:e9:7a:a7:73:8a:d5:1d:
88:e6:ab:d1:98:b3:e7:3d:b9:17:bc:03:00:3d:3e:
99:31:4b:76:b4:24:f2:e5:d4:1c:61:41:b2:1e:cf:
20:b2:a8:2b:d3:5c:03:cb:45:46:0e:02:b2:ce:5e:
81:b2:de:4e:ce:ed:44:ca:a2:bf:b3:56:67:6c:27:
1d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:9B:86:E6:4A:C6:32:61:BE:D9:FD:9C:B1:ED:9F:EF:4E:16:BB:2D
X509v3 Authority Key Identifier:
keyid:82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:58:de:50:ca:39:b2:88:26:24:c6:f5:c1:05:2b:dd:4b:71:
0e:b3:7b:9d:a1:07:3f:79:fd:13:a3:5a:33:40:9c:09:e0:bc:
8d:c3:c3:82:af:14:a6:47:a6:2f:5b:c8:12:d6:9f:19:87:ef:
d5:22:1b:44:9b:a5:0c:6e:a8:20:0a:7f:55:1a:d7:58:fe:54:
d5:5a:07:f2:4a:86:a7:3b:ed:6f:e9:3a:e3:67:38:fa:fc:34:
4a:36:4c:15:27:23:0c:12:32:2f:26:55:d0:0b:75:b5:91:c3:
ef:bb:1a:f9:dd:68:f9:62:37:8b:23:b1:5a:6d:ad:2f:7d:1c:
e5:f9:ab:80:c6:91:fa:e9:9f:1d:61:6f:e1:4d:63:be:4d:6c:
ee:f5:e8:84:8f:e4:4d:11:b0:c7:d1:1e:2d:36:b4:8e:83:51:
ee:e6:1f:db:3e:20:4d:10:d1:36:f7:86:7b:0d:b1:e3:8b:b8:
f2:a3:ce:5f:8e:8c:e6:17:1a:ac:76:e1:1a:e4:38:c1:b5:35:
55:e0:5a:9f:e1:39:b6:83:3e:47:4f:2b:fe:0a:90:b0:62:2d:
ad:e0:fc:90:c3:39:a8:0c:47:67:5c:1e:23:92:78:dd:3e:88:
8b:93:0d:e1:97:ab:2a:0d:db:49:f7:0e:f9:80:3b:05:8f:58:
18:c1:61:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:06 2026 by rpki-client