Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.mft
File: gnMxRuPp1uEVRjF_dSGeogLF-S0.mft (raw, json)
Hash identifier: B+qz9o9bOrzNeamoK0gdXRCUbABSaN9/K5Ggr8b7b1U=
Subject key identifier: C6:42:4C:71:88:53:F3:65:E8:98:30:E2:90:ED:CB:54:00:E7:F9:36
Authority key identifier: 82:73:31:46:E3:E9:D6:E1:15:46:31:7F:75:21:9E:A2:02:C5:F9:2D
Certificate issuer: /CN=82733146e3e9d6e11546317f75219ea202c5f92d
Certificate serial: 019D38D3A9FD6B2A4108760D1958666729A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMxRuPp1uEVRjF_dSGeogLF-S0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.mft
Manifest number: 083B
Signing time: Sun 29 Mar 2026 09:01:28 +0000
Manifest this update: Sun 29 Mar 2026 09:01:28 +0000
Manifest next update: Mon 30 Mar 2026 09:01:28 +0000
Files and hashes: 1: QKjiIqM0UbknWM_0hZSPOOQrhbE.roa (hash: Ym8+l1LE5PwdsL5Z1gyeamQjMBjG/nU2Uc7hHjtf64w=)
2: gnMxRuPp1uEVRjF_dSGeogLF-S0.crl (hash: gK0ZDVq9ja569ASOu2zyYdI7Uw9AC+t1AFF+TIXSUc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gnMxRuPp1uEVRjF_dSGeogLF-S0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:a9:fd:6b:2a:41:08:76:0d:19:58:66:67:29:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82733146e3e9d6e11546317f75219ea202c5f92d
Validity
Not Before: Mar 29 09:01:28 2026 GMT
Not After : Mar 30 09:01:28 2026 GMT
Subject: CN=c6424c718853f365e89830e290edcb5400e7f936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:63:9e:c5:aa:47:76:56:e9:bf:b7:bf:56:e3:
e8:fe:45:fe:bf:6c:4a:41:aa:2b:7d:36:b7:e5:98:
e9:4b:d2:cb:65:cb:1f:23:4c:3f:62:bc:0f:f0:5b:
e3:bf:6b:87:f2:e7:83:a5:54:9f:37:10:2b:25:3f:
3b:7f:c9:f0:47:33:e1:15:5f:95:06:57:8b:e7:31:
23:c6:52:f5:f5:af:d1:c9:5f:e2:1c:34:0e:f6:41:
de:70:1b:1b:30:66:8d:59:49:ca:96:8e:c7:6f:ac:
01:aa:c1:b2:a5:49:41:a6:0c:bc:cb:5e:f8:5a:89:
f2:e2:1b:d7:51:3e:74:84:ad:c2:77:b7:5a:7a:ce:
bc:d8:33:97:b7:66:3a:a7:97:b5:49:46:2a:9a:25:
2c:98:4a:ef:39:95:be:a4:4d:b6:ba:dd:9e:2e:56:
b2:af:2e:b5:6c:72:f5:07:87:4b:86:d7:01:0c:9b:
86:94:04:ce:9c:af:40:7d:ff:13:00:ea:52:03:85:
a7:07:db:cb:a5:60:e2:ca:62:ff:50:1b:bf:95:a6:
f8:8c:ee:8d:5e:e3:54:37:de:0f:21:9f:45:a5:6a:
25:33:9b:bc:c8:e4:05:aa:a6:47:c8:0d:74:31:f0:
cf:e7:ad:cd:c3:91:ec:cd:ec:36:83:14:87:9b:70:
5e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:42:4C:71:88:53:F3:65:E8:98:30:E2:90:ED:CB:54:00:E7:F9:36
X509v3 Authority Key Identifier:
keyid:82:73:31:46:E3:E9:D6:E1:15:46:31:7F:75:21:9E:A2:02:C5:F9:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMxRuPp1uEVRjF_dSGeogLF-S0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:b3:02:54:c7:e7:28:cb:d7:13:9b:e9:08:54:af:63:31:3d:
f7:5d:eb:57:26:e1:de:f0:5b:66:20:af:02:24:6a:e6:d3:5c:
14:d6:9b:47:c4:8d:ec:2c:e9:25:8e:bf:20:98:22:75:ab:e8:
9c:44:26:42:fe:00:47:f4:2b:81:5b:80:41:8a:c5:a3:38:f3:
52:48:ec:14:b0:8e:32:3b:5f:aa:b8:a8:1f:52:bf:40:a3:2c:
01:86:35:49:f5:d2:ca:f6:e3:26:dd:2f:07:9c:b1:64:7a:21:
fb:14:72:16:4e:60:94:fb:53:ef:39:b2:f7:29:49:b6:1c:19:
22:a4:a1:24:ca:45:7d:50:45:7d:11:ce:2f:5f:fd:b0:0e:27:
48:91:f2:6d:57:5c:82:69:e0:7b:8e:51:07:fe:5a:19:d8:e2:
2c:7c:6f:b7:02:ce:3e:0f:40:6f:1e:d4:2e:84:72:e8:b0:b1:
a3:05:bf:14:14:fe:d9:6d:08:3b:4a:49:56:a7:bd:44:63:01:
57:9f:63:d1:fb:d3:5f:d8:a4:9e:a5:26:b3:7f:cf:6f:48:b4:
0c:c7:87:d0:fd:e4:a1:dd:52:0b:15:18:28:27:ca:28:fd:ac:
59:2a:97:64:38:30:31:9f:9d:48:4e:12:87:1d:d8:55:d7:48:
bd:cc:62:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0406n9aypBCHYNGVhmZymmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyNzMzMTQ2ZTNlOWQ2ZTExNTQ2MzE3Zjc1MjE5ZWEyMDJj
NWY5MmQwHhcNMjYwMzI5MDkwMTI4WhcNMjYwMzMwMDkwMTI4WjAzMTEwLwYDVQQD
EyhjNjQyNGM3MTg4NTNmMzY1ZTg5ODMwZTI5MGVkY2I1NDAwZTdmOTM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGOexapHdlbpv7e/VuPo/kX+v2xK
QaorfTa35ZjpS9LLZcsfI0w/YrwP8Fvjv2uH8ueDpVSfNxArJT87f8nwRzPhFV+V
BleL5zEjxlL19a/RyV/iHDQO9kHecBsbMGaNWUnKlo7Hb6wBqsGypUlBpgy8y174
Wony4hvXUT50hK3Cd7daes682DOXt2Y6p5e1SUYqmiUsmErvOZW+pE22ut2eLlay
ry61bHL1B4dLhtcBDJuGlATOnK9Aff8TAOpSA4WnB9vLpWDiymL/UBu/lab4jO6N
XuNUN94PIZ9FpWolM5u8yOQFqqZHyA10MfDP563Nw5Hszew2gxSHm3BeXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMZCTHGIU/Nl6Jgw4pDty1QA5/k2MB8GA1UdIwQY
MBaAFIJzMUbj6dbhFUYxf3UhnqICxfktMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ25NeFJ1UHAxdUVWUmpGX2RTR2VvZ0xGLVMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS80ZDVlMTYtNWU2NS00ZWQ4LWJiZTMt
YmFjYjAyODUzOGRjLzEvZ25NeFJ1UHAxdUVWUmpGX2RTR2VvZ0xGLVMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS80ZDVlMTYtNWU2NS00ZWQ4LWJiZTMtYmFjYjAyODUzOGRj
LzEvZ25NeFJ1UHAxdUVWUmpGX2RTR2VvZ0xGLVMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhbMCVMfn
KMvXE5vpCFSvYzE9913rVybh3vBbZiCvAiRq5tNcFNabR8SN7CzpJY6/IJgidavo
nEQmQv4AR/QrgVuAQYrFozjzUkjsFLCOMjtfqrioH1K/QKMsAYY1SfXSyvbjJt0v
B5yxZHoh+xRyFk5glPtT7zmy9ylJthwZIqShJMpFfVBFfRHOL1/9sA4nSJHybVdc
gmnge45RB/5aGdjiLHxvtwLOPg9Abx7ULoRy6LCxowW/FBT+2W0IO0pJVqe9RGMB
V59j0fvTX9iknqUms3/Pb0i0DMeH0P3kod1SCxUYKCfKKP2sWSqXZDgwMZ+dSE4S
hx3YVddIvcxinQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:37 2026 by rpki-client