Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
File: 1GL5scD2-pylMXZOJtOu0hG_7YE.mft (raw, json)
Hash identifier: ktdjGw3ZS3emFYYK9VVUuwyGCa6aEJO3I25YBJPz16g=
Subject key identifier: 11:C2:3A:84:B1:3D:9E:F6:03:83:71:ED:AE:02:8A:BF:52:0D:01:0A
Authority key identifier: D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
Certificate issuer: /CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Certificate serial: 019F178BE0DEA7BBB08725BE5D9F3CF43B81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
Manifest number: 0FA6
Signing time: Tue 30 Jun 2026 08:01:10 +0000
Manifest this update: Tue 30 Jun 2026 08:01:10 +0000
Manifest next update: Wed 01 Jul 2026 08:01:10 +0000
Files and hashes: 1: 1GL5scD2-pylMXZOJtOu0hG_7YE.crl (hash: RSMgOknOUEFG2wZijVpMxOteTO1vsouQ4t6fg3qTEiI=)
2: j23BZZk_JCF_SfyfxVWcOAzB598.roa (hash: E3VUgy7wmstrKfM+/rHOKE3M1MtzxmFo74y/4C1q9hQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 08:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:8b:e0:de:a7:bb:b0:87:25:be:5d:9f:3c:f4:3b:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Validity
Not Before: Jun 30 08:01:10 2026 GMT
Not After : Jul 1 08:01:10 2026 GMT
Subject: CN=11c23a84b13d9ef6038371edae028abf520d010a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d6:d8:d9:33:ad:aa:3e:ae:70:3e:15:a5:59:
9a:54:e6:ac:2d:2e:de:e1:e1:39:8e:6c:4e:28:b9:
5a:e3:b4:d3:4a:f4:7a:2d:5a:b2:f6:6c:f5:fe:47:
08:08:18:9b:fb:89:57:fd:ba:37:43:a1:40:45:7b:
a6:2a:d1:6b:21:6a:fa:f3:1c:a7:9d:40:a0:43:d3:
0c:db:eb:59:a6:f6:f8:45:60:ee:0f:0b:b7:d2:de:
77:c5:81:07:c8:ec:de:9e:0e:7f:09:98:d8:b1:27:
7f:b7:0c:74:50:7f:94:a6:e3:7b:1c:12:b0:94:1c:
f5:83:fc:8e:d8:08:20:0d:60:a9:8c:90:04:a3:f6:
72:56:a7:d8:61:07:41:27:f0:32:65:18:33:a6:51:
72:6a:36:51:55:f5:72:89:66:94:bd:81:35:dc:c7:
d4:30:09:15:83:da:3d:d0:fa:3e:0d:56:b8:8a:35:
50:1f:60:2a:7b:c3:0f:aa:08:11:a6:81:a8:ad:6c:
be:92:0e:25:98:e8:20:a5:b9:2c:22:ae:37:42:17:
1a:cf:27:ee:e6:44:c3:94:a4:d9:bb:7a:5c:b6:d6:
c3:89:bc:38:d0:ff:5f:31:9f:04:15:73:f5:1a:ba:
1d:2c:93:9a:b7:37:38:35:fb:45:3e:7f:64:66:9d:
16:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:C2:3A:84:B1:3D:9E:F6:03:83:71:ED:AE:02:8A:BF:52:0D:01:0A
X509v3 Authority Key Identifier:
keyid:D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:00:3b:d0:6a:1e:96:ce:1d:19:d0:47:40:88:7e:0d:c1:25:
0d:87:c1:77:0b:c8:7c:43:54:f9:59:02:c8:1e:a3:4c:ca:a7:
97:29:c4:9e:f3:63:3d:dc:f8:85:8e:1b:62:2d:4f:1b:19:48:
b1:5a:31:e2:42:fe:28:0a:c2:6a:62:b3:69:d8:b9:fd:7e:9c:
35:31:19:07:94:14:7c:fd:41:00:f9:5b:16:76:a2:ed:63:29:
b3:16:61:70:cd:85:5b:9e:9f:04:98:02:aa:0c:4c:80:9d:95:
98:f3:f0:97:b4:22:0a:8c:52:f7:a6:85:40:d4:c2:c7:fe:45:
39:3b:27:01:32:44:c8:93:e4:a8:dc:db:16:db:32:cb:63:25:
c2:ea:3b:be:cd:ea:78:0a:bb:35:88:44:25:62:13:4b:16:95:
fd:15:5c:67:4d:bc:5f:54:62:a9:8d:1f:bc:4b:4b:66:d8:ef:
67:ca:47:25:41:72:84:a7:14:d1:f6:d5:ef:9c:b6:3f:b7:d7:
3c:63:f2:29:2a:03:20:07:94:d9:2e:dd:0c:c1:91:7e:39:96:
2c:fb:03:90:84:58:4d:77:1a:14:37:b4:d4:4a:a1:35:4e:a5:
6f:1c:8c:3c:a7:e5:8c:16:41:9b:e4:1b:fe:cf:89:49:a5:b4:
70:4a:1b:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:05 2026 by rpki-client