Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
File: ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft (raw, json)
Hash identifier: +GE/elItS+JJaRh+l9jf2ebOZUvXhDP5rEV8t9so9cU=
Subject key identifier: 1E:7C:57:1C:91:CB:C1:9E:EC:C9:28:12:6E:DD:23:69:06:8E:B0:7C
Authority key identifier: 82:14:DC:48:B3:E9:19:E5:5C:E8:18:4D:3A:96:90:D1:49:25:BC:BD
Certificate issuer: /CN=8214dc48b3e919e55ce8184d3a9690d14925bcbd
Certificate serial: 019D3865ACC6CF72AB25DCA36D66CB282B11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
Manifest number: 0A75
Signing time: Sun 29 Mar 2026 07:01:20 +0000
Manifest this update: Sun 29 Mar 2026 07:01:20 +0000
Manifest next update: Mon 30 Mar 2026 07:01:20 +0000
Files and hashes: 1: ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl (hash: wAAoUX310on11gKvB7Y0AmfT951ZBliv/N8x0IrAKjY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:ac:c6:cf:72:ab:25:dc:a3:6d:66:cb:28:2b:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8214dc48b3e919e55ce8184d3a9690d14925bcbd
Validity
Not Before: Mar 29 07:01:20 2026 GMT
Not After : Mar 30 07:01:20 2026 GMT
Subject: CN=1e7c571c91cbc19eecc928126edd2369068eb07c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:cf:1b:f6:98:4c:ed:92:8b:cc:61:42:ac:9b:
b3:8c:e9:dc:84:a2:3c:26:5e:01:84:b8:a5:84:01:
f2:c3:70:ee:2a:03:17:8c:8a:9a:0a:dd:61:c8:dc:
4e:c9:90:22:5a:3b:65:c9:bd:b2:59:3d:42:19:27:
a0:ec:24:7b:a9:e0:12:03:60:89:70:69:3f:93:b1:
42:a4:60:14:08:58:b0:ec:38:92:0b:2d:14:26:9b:
a7:6c:92:ac:f3:fe:67:a4:c2:a5:57:04:09:3f:2e:
91:a7:0e:37:85:b6:9e:eb:e8:04:bc:16:d0:eb:dd:
14:11:14:2b:09:9c:3e:4f:c5:15:1b:58:38:fd:b7:
8f:9c:98:7c:56:f3:38:8b:b9:38:16:94:e1:20:25:
aa:b4:a0:46:d9:7f:9e:29:39:5a:5d:1f:05:39:6e:
1d:0c:a0:3d:4f:e1:1e:39:0c:5b:f7:92:62:d9:a7:
28:43:39:f8:2b:81:09:9c:dc:a2:44:31:b6:b3:cc:
d1:43:cf:b5:28:32:81:72:f4:56:36:5e:ef:03:4a:
88:d4:bd:ce:ae:6b:d4:6f:25:fc:e3:93:66:8a:3a:
8f:df:65:73:b8:98:f5:17:a9:60:13:2e:5e:6f:09:
4b:f0:d7:d0:92:75:db:7b:77:37:08:9c:45:a9:85:
52:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:7C:57:1C:91:CB:C1:9E:EC:C9:28:12:6E:DD:23:69:06:8E:B0:7C
X509v3 Authority Key Identifier:
keyid:82:14:DC:48:B3:E9:19:E5:5C:E8:18:4D:3A:96:90:D1:49:25:BC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:87:30:eb:64:83:1c:cd:e4:99:54:9e:80:77:39:de:b9:cb:
51:03:91:fd:97:e5:65:fa:c9:2c:0a:8b:7b:5e:7c:58:00:ae:
21:bd:13:a4:b1:a1:9a:bf:b1:40:cf:7f:f2:6c:de:8f:e0:9a:
01:ba:89:09:c2:29:3b:6b:f7:f8:79:40:79:db:eb:f1:52:5a:
de:7a:f1:85:44:37:21:ff:da:ed:48:fc:44:ad:ed:8c:3e:77:
99:ed:ab:d9:e8:26:d9:57:79:44:98:69:c1:1c:4e:c2:86:7b:
d6:98:7e:de:27:d3:0a:40:d7:f8:ff:7c:8b:10:56:f9:c7:f9:
48:bc:e1:d6:70:ae:7a:ad:06:34:d7:cc:42:61:52:53:10:27:
c7:a7:e6:b7:1d:f9:c1:89:2f:88:a5:0a:32:2d:03:e8:5e:9b:
6b:20:7d:e3:92:a1:f8:10:36:09:c3:d1:50:2f:ea:82:fb:d8:
59:be:2d:52:50:59:37:bc:70:bc:0d:72:4b:07:f3:fe:fd:d2:
00:ef:bd:f8:ff:63:99:87:ac:a0:ec:36:8b:8f:b1:da:e1:6f:
ea:d2:30:08:3c:8b:aa:09:25:cc:c3:86:35:15:bf:f7:1a:4f:
f2:6f:df:e0:dc:80:87:56:9a:0a:e5:ad:99:19:68:49:e4:7f:
79:39:47:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:25:52 2026 by rpki-client