Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
File: 1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft (raw, json)
Hash identifier: D3lP251QdN7pLb1U1335lFiNhi7nXsSRHH0AcNyFczw=
Subject key identifier: 14:D9:D2:65:02:0E:3C:63:BE:2B:C2:6C:13:77:25:02:9C:DF:EE:01
Authority key identifier: D6:0C:E3:44:38:60:A7:F7:0D:43:35:07:76:90:9A:48:10:A4:86:21
Certificate issuer: /CN=d60ce3443860a7f70d43350776909a4810a48621
Certificate serial: 019D3866516EB530CE991E5BBD18D7326D6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
Manifest number: 0DD4
Signing time: Sun 29 Mar 2026 07:02:02 +0000
Manifest this update: Sun 29 Mar 2026 07:02:02 +0000
Manifest next update: Mon 30 Mar 2026 07:02:02 +0000
Files and hashes: 1: 1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl (hash: iUJ+LayBBOOUvFCFibpu/iDXjksQUqf+WgB/s2AvsOc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:51:6e:b5:30:ce:99:1e:5b:bd:18:d7:32:6d:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60ce3443860a7f70d43350776909a4810a48621
Validity
Not Before: Mar 29 07:02:02 2026 GMT
Not After : Mar 30 07:02:02 2026 GMT
Subject: CN=14d9d265020e3c63be2bc26c137725029cdfee01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:41:be:b8:d0:5b:7e:ba:17:20:3b:6b:14:0e:
bc:13:2e:d7:87:01:f3:c5:c2:73:b3:ef:c3:d1:27:
0a:1f:61:ff:44:5f:6f:c0:0b:9d:69:76:09:aa:e4:
a1:b0:13:56:cb:02:84:db:aa:14:ec:33:c8:b5:c5:
65:2a:4c:1d:3f:13:c1:a8:06:12:6d:f1:f5:a7:43:
c2:f4:d2:95:e6:71:fd:e2:c5:28:88:49:a3:bd:5e:
85:a6:3b:9c:5f:0b:7c:1e:89:e8:d6:66:45:5c:5e:
88:64:e4:f2:09:58:45:e0:2c:11:63:4c:73:34:86:
4f:6f:c9:6d:82:18:7e:2c:29:26:27:f1:29:4f:15:
1d:bd:a3:4e:0a:c4:2c:5e:3a:2c:0c:d1:cf:26:44:
a2:1c:7c:69:9e:83:5e:5d:d5:87:9e:b6:e1:ef:90:
c2:53:e0:8e:cf:f1:71:c3:ac:15:9a:6b:b6:d2:a8:
87:92:43:ef:bd:ec:9d:54:e3:4e:69:9d:e6:db:4c:
8f:ac:99:22:6e:dc:cc:71:ac:05:d7:c4:7e:e9:75:
d1:80:b8:48:9b:b0:44:81:b5:bf:89:35:c5:fe:5b:
42:45:47:cc:36:b6:03:30:88:ce:3e:85:3e:ff:da:
66:9b:90:ce:d9:cd:b1:9e:ae:26:0c:73:92:b3:cd:
62:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:D9:D2:65:02:0E:3C:63:BE:2B:C2:6C:13:77:25:02:9C:DF:EE:01
X509v3 Authority Key Identifier:
keyid:D6:0C:E3:44:38:60:A7:F7:0D:43:35:07:76:90:9A:48:10:A4:86:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gzjRDhgp_cNQzUHdpCaSBCkhiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0864c3-860b-41c0-9417-daffe52b9f0d/1/1gzjRDhgp_cNQzUHdpCaSBCkhiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:c5:c3:59:a6:95:05:41:0d:27:8d:dc:9b:fc:e1:b8:e9:91:
09:7d:76:57:cf:04:94:7b:9c:82:d1:26:8d:e3:77:2f:ed:f9:
f6:ee:01:48:ac:f4:60:04:0d:63:58:dd:52:e4:62:32:8b:a3:
b3:32:b2:ca:e7:bd:12:3e:9b:90:3c:ad:1c:5c:a5:98:f4:6f:
25:25:05:10:92:8c:c0:c7:40:42:f2:b7:d4:8b:67:79:3a:34:
a3:89:63:68:e9:60:f0:d0:2d:81:78:8d:09:6b:9c:89:86:ef:
9b:1f:ac:d5:74:2f:ca:2b:44:d1:eb:51:af:17:f2:2a:a6:2a:
29:7b:a1:c4:ee:5b:28:1e:f3:45:70:d9:a2:d0:c6:cb:c9:12:
f4:60:92:ab:44:07:0c:38:39:1e:98:4c:42:85:d5:2f:0f:dc:
de:89:c9:20:5b:e3:3e:91:07:dd:2b:01:7b:23:d2:2d:1a:d8:
84:aa:6e:b9:58:cd:16:ae:4f:51:43:96:aa:57:29:3a:23:a5:
85:7d:96:b6:dc:ac:19:74:de:e3:3e:27:9b:46:57:89:34:3c:
60:3b:9f:ad:46:b1:d2:08:29:c0:18:17:b9:3a:4e:4e:42:d3:
4b:20:9f:45:cf:e7:6e:31:c2:b6:5c:01:3f:f2:32:59:e7:a7:
f4:45:86:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZlFutTDOmR5bvRjXMm1vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2MGNlMzQ0Mzg2MGE3ZjcwZDQzMzUwNzc2OTA5YTQ4MTBh
NDg2MjEwHhcNMjYwMzI5MDcwMjAyWhcNMjYwMzMwMDcwMjAyWjAzMTEwLwYDVQQD
EygxNGQ5ZDI2NTAyMGUzYzYzYmUyYmMyNmMxMzc3MjUwMjljZGZlZTAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzkG+uNBbfroXIDtrFA68Ey7XhwHz
xcJzs+/D0ScKH2H/RF9vwAudaXYJquShsBNWywKE26oU7DPItcVlKkwdPxPBqAYS
bfH1p0PC9NKV5nH94sUoiEmjvV6FpjucXwt8Hono1mZFXF6IZOTyCVhF4CwRY0xz
NIZPb8ltghh+LCkmJ/EpTxUdvaNOCsQsXjosDNHPJkSiHHxpnoNeXdWHnrbh75DC
U+COz/Fxw6wVmmu20qiHkkPvveydVONOaZ3m20yPrJkibtzMcawF18R+6XXRgLhI
m7BEgbW/iTXF/ltCRUfMNrYDMIjOPoU+/9pmm5DO2c2xnq4mDHOSs81ieQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBTZ0mUCDjxjvivCbBN3JQKc3+4BMB8GA1UdIwQY
MBaAFNYM40Q4YKf3DUM1B3aQmkgQpIYhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWd6alJEaGdwX2NOUXpVSGRwQ2FTQkNraGlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy8wODY0YzMtODYwYi00MWMwLTk0MTct
ZGFmZmU1MmI5ZjBkLzEvMWd6alJEaGdwX2NOUXpVSGRwQ2FTQkNraGlFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy8wODY0YzMtODYwYi00MWMwLTk0MTctZGFmZmU1MmI5ZjBk
LzEvMWd6alJEaGdwX2NOUXpVSGRwQ2FTQkNraGlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWMXDWaaV
BUENJ43cm/zhuOmRCX12V88ElHucgtEmjeN3L+359u4BSKz0YAQNY1jdUuRiMouj
szKyyue9Ej6bkDytHFylmPRvJSUFEJKMwMdAQvK31ItneTo0o4ljaOlg8NAtgXiN
CWuciYbvmx+s1XQvyitE0etRrxfyKqYqKXuhxO5bKB7zRXDZotDGy8kS9GCSq0QH
DDg5HphMQoXVLw/c3onJIFvjPpEH3SsBeyPSLRrYhKpuuVjNFq5PUUOWqlcpOiOl
hX2WttysGXTe4z4nm0ZXiTQ8YDufrUax0ggpwBgXuTpOTkLTSyCfRc/nbjHCtlwB
P/IyWeen9EWGGg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:47:25 2026 by rpki-client