Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
File: gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft (raw, json)
Hash identifier: mfsloLzfGA2G6R9X4d1fbT+ilfkcvFNUjCMMiLL1fUA=
Subject key identifier: 6A:82:38:AB:A7:0E:0E:B9:9E:3D:64:25:61:4C:F0:04:42:2F:45:12
Authority key identifier: 80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15
Certificate issuer: /CN=80c028ad0e60d7ea8914b13c3a53d8f089160315
Certificate serial: 019D382DE94420982DC1ACE256792915B063
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
Manifest number: 0FA0
Signing time: Sun 29 Mar 2026 06:00:26 +0000
Manifest this update: Sun 29 Mar 2026 06:00:26 +0000
Manifest next update: Mon 30 Mar 2026 06:00:26 +0000
Files and hashes: 1: BP2iTGyVFjoJIRdw7NDIH2tQQA8.roa (hash: P0fFfmYNK2It6Tl9zJcGnv6bBKn+rvutapJMqLPRBXA=)
2: gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl (hash: NPySXvSF8bvfTwTeyKWkUu17MWB8nKsIj8u9EUqMKxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:e9:44:20:98:2d:c1:ac:e2:56:79:29:15:b0:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80c028ad0e60d7ea8914b13c3a53d8f089160315
Validity
Not Before: Mar 29 06:00:26 2026 GMT
Not After : Mar 30 06:00:26 2026 GMT
Subject: CN=6a8238aba70e0eb99e3d6425614cf004422f4512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:14:43:47:9f:e6:d8:59:7f:2e:e7:da:1f:92:
c9:38:b2:91:02:07:7c:9b:0b:01:a6:ed:50:8e:da:
60:01:08:b5:76:e1:28:49:ef:b1:02:cf:3d:67:e2:
a8:95:62:36:52:82:d3:a3:0a:21:3f:92:b5:91:7f:
57:15:9f:2c:0f:7e:bb:c4:db:3e:01:a2:26:66:5f:
bc:bf:c9:50:0d:f9:a0:1e:bb:d9:7e:52:b0:6b:5a:
80:ed:ec:66:28:20:22:c7:c9:b6:e0:cd:cd:70:86:
ee:f8:9e:d4:47:6b:2c:d1:8f:90:87:73:75:59:30:
b6:3b:de:10:03:a7:ea:61:85:d3:52:21:f1:89:33:
05:d3:e7:13:77:24:f0:02:80:40:84:f5:d2:8e:21:
2b:61:a4:fa:bb:7a:b8:e1:57:58:01:d9:ba:07:03:
1b:13:fe:aa:1a:13:0a:76:67:bd:7f:c1:45:82:b5:
ca:ae:4e:be:5c:e5:75:a5:df:94:ac:8c:0c:7a:18:
54:82:db:93:c1:37:f0:9e:0f:1b:34:52:5b:2b:d1:
e8:a1:e6:bc:d7:a4:cf:57:1e:e9:29:9a:98:ea:05:
fa:81:f0:da:24:45:80:08:71:8e:6c:0b:53:e4:d5:
43:7b:ca:a0:cf:47:bf:ae:d4:7f:dc:fa:89:43:b0:
17:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:82:38:AB:A7:0E:0E:B9:9E:3D:64:25:61:4C:F0:04:42:2F:45:12
X509v3 Authority Key Identifier:
keyid:80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:4d:24:42:42:7f:6a:c5:94:a6:c7:da:1a:fa:29:15:dc:a0:
d5:8f:56:6c:8d:d3:d3:e3:36:92:ae:78:7b:43:ca:92:a6:67:
0d:dc:59:d9:86:02:1d:19:4d:5f:c0:a5:b4:76:77:67:cb:70:
9c:ba:89:48:e0:1b:e4:13:d4:8e:7a:db:72:c1:68:c7:83:94:
e1:2b:f4:bc:31:e5:ba:48:c2:02:fb:f3:33:81:41:f4:76:b4:
0f:6a:7e:46:9b:ea:32:b9:ec:41:ab:c6:93:3c:0b:e3:89:a6:
a7:e4:71:76:e6:78:01:96:72:e6:56:38:0d:ba:0f:77:76:dd:
bf:12:8c:c4:13:51:b9:b2:99:f8:ee:ef:ed:bc:1c:60:49:fc:
6c:d7:60:5d:b7:ee:d5:52:57:99:3c:27:cc:8c:4d:45:60:a9:
5e:4c:e8:1b:35:9c:eb:db:f7:da:f2:8f:5c:9e:8c:ff:72:38:
4d:96:12:b4:bf:ca:02:ed:f9:4e:76:64:76:1f:a0:24:09:ef:
04:d7:69:3c:dd:3e:5e:3b:2b:58:8f:6c:87:76:9d:f0:06:d6:
17:bc:40:e6:26:68:c5:e8:45:3d:c2:81:36:e2:77:6f:ff:39:
b7:bb:a4:f6:0f:ed:ca:e6:6a:04:05:64:99:8f:da:83:7b:fd:
89:4a:7d:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:50 2026 by rpki-client