Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
File: 1GL5scD2-pylMXZOJtOu0hG_7YE.mft (raw, json)
Hash identifier: PFm8xJgbwUhdTtEFabSv/wVwBkov5uNqQ6kKG3j97Cw=
Subject key identifier: 3A:56:DC:81:4C:46:EC:72:68:79:AA:CF:B6:BD:7D:D3:B5:A8:15:22
Authority key identifier: D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
Certificate issuer: /CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Certificate serial: 019D389BCC32ED9E7BCE9122F95C03B898C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
Manifest number: 0EAE
Signing time: Sun 29 Mar 2026 08:00:27 +0000
Manifest this update: Sun 29 Mar 2026 08:00:27 +0000
Manifest next update: Mon 30 Mar 2026 08:00:27 +0000
Files and hashes: 1: 1GL5scD2-pylMXZOJtOu0hG_7YE.crl (hash: NvwzR5ZahuMo3NQ3kVecjeQVPaqPkji8OcwGafCuHSc=)
2: j23BZZk_JCF_SfyfxVWcOAzB598.roa (hash: E3VUgy7wmstrKfM+/rHOKE3M1MtzxmFo74y/4C1q9hQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:cc:32:ed:9e:7b:ce:91:22:f9:5c:03:b8:98:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Validity
Not Before: Mar 29 08:00:27 2026 GMT
Not After : Mar 30 08:00:27 2026 GMT
Subject: CN=3a56dc814c46ec726879aacfb6bd7dd3b5a81522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:27:3c:30:c9:54:6c:39:28:83:7f:0b:ac:76:
0d:30:9e:4d:98:52:8c:b1:cb:cb:20:39:6f:62:b4:
f8:11:f6:5f:4c:c0:9d:e8:7b:71:c8:57:fe:93:be:
3d:fe:ce:55:33:4e:bd:4b:88:60:8c:d2:7d:48:8b:
93:b8:c7:ea:20:3d:ba:f6:41:b5:05:dc:28:5b:47:
37:1f:27:1c:e6:8d:88:4a:44:65:14:4b:e3:b2:06:
0d:b5:22:df:b5:ac:75:36:13:fd:d8:6b:0a:6c:cc:
ff:84:5b:a7:db:b3:4d:28:5e:81:f7:8b:31:96:70:
cd:74:84:91:18:4f:c9:ae:9b:af:88:d6:e3:a9:bd:
7e:b5:c4:0c:e0:20:34:87:1d:51:76:a8:99:38:7a:
78:09:c2:ab:dc:4f:51:05:8a:29:ef:9a:d1:91:f7:
a9:09:79:54:19:4f:cd:3a:74:e4:0b:61:d7:03:99:
27:ff:13:f2:10:1f:6f:f9:cb:a2:89:7c:44:53:8e:
fc:ad:08:5c:69:02:74:b1:fe:d3:82:0b:77:2b:03:
43:af:8a:12:f5:62:65:a9:6b:43:cc:e7:d6:5d:d8:
60:0d:2d:bc:0f:cb:0f:67:e4:74:f1:79:bd:6d:ea:
b7:43:94:1f:93:31:ac:35:11:50:53:b2:af:1b:c6:
e7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:56:DC:81:4C:46:EC:72:68:79:AA:CF:B6:BD:7D:D3:B5:A8:15:22
X509v3 Authority Key Identifier:
keyid:D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:62:85:64:7a:99:5d:53:bf:c7:a9:4b:46:79:20:f1:46:29:
24:36:2f:34:64:4a:b3:d5:c5:b2:16:7c:04:a7:41:50:e3:80:
f8:f9:db:fb:33:d9:e7:07:74:2f:38:a6:f2:e2:f5:54:91:71:
88:5b:8d:87:33:f1:e6:5a:9e:c4:7e:38:1c:b4:49:04:06:f5:
71:a5:80:24:9e:7a:98:1d:e1:18:6d:f7:32:06:33:92:c2:0d:
ae:34:ef:0b:62:73:cb:86:1b:a3:9a:0d:c1:07:ae:7a:cf:3e:
61:1b:7e:83:99:41:52:62:46:f0:fb:ad:29:eb:b7:03:5f:a0:
50:5f:5c:f8:89:0b:a0:ea:7c:49:2f:96:2a:70:48:dd:8f:53:
b8:63:b6:e1:c7:55:fb:ae:d8:c5:dc:37:7c:75:fd:c1:59:a8:
d9:de:0c:b8:65:55:1f:f7:41:b5:04:a8:8c:f6:6f:ef:f3:34:
02:59:2a:b8:48:b5:e8:3c:c3:79:12:cd:61:9b:16:62:1f:b7:
e7:41:04:fc:d2:df:4a:4f:ce:a5:4c:b9:6e:03:83:bd:16:57:
33:f1:39:0e:ce:ec:5d:f9:b2:fe:2e:d8:2a:e7:21:57:67:ab:
48:26:1d:1f:9d:c6:5f:a5:25:58:ee:72:7b:23:ab:6e:d5:2e:
3f:8c:55:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:00:48 2026 by rpki-client