Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
File: GQAdVXoGmNrXfEs-3fKn02tyqwA.mft (raw, json)
Hash identifier: 0gfJsWN51nWK1JT5ZEeu2tS/KEtkpxhF2vMCu3gndA4=
Subject key identifier: A4:50:F1:1B:CF:12:83:4E:6F:67:DF:D4:53:9A:C6:9F:B5:09:E5:23
Authority key identifier: 19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00
Certificate issuer: /CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00
Certificate serial: 019D382E3DD6FFDCEBD887576CBFD9FA3323
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
Manifest number: 07D0
Signing time: Sun 29 Mar 2026 06:00:47 +0000
Manifest this update: Sun 29 Mar 2026 06:00:47 +0000
Manifest next update: Mon 30 Mar 2026 06:00:47 +0000
Files and hashes: 1: FblgizDhqR052b7Rb7HxWYg2JDU.roa (hash: ukjre2pKx9ZsNQN9DOZTFUoYV7Iqwog22EFIjKbpS9Y=)
2: GQAdVXoGmNrXfEs-3fKn02tyqwA.crl (hash: JhYZFiaeEaGRWpzamEcbhRc/QH8J0mBVsTa7nlC97bk=)
3: N64gyRV3fyLEotYnOGpZXANVQTY.roa (hash: usaMJ60NvDnxkMJGfw4/sj/B9kuu+SgaBjkVvUD8MA4=)
4: ZhZfvojxtl0-1Vh8VOJ7rtKsO9U.roa (hash: rjeMgEmIzmO/qtzh5+aQsiRfqkpS/wbdwFYJRmTLpUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:3d:d6:ff:dc:eb:d8:87:57:6c:bf:d9:fa:33:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00
Validity
Not Before: Mar 29 06:00:47 2026 GMT
Not After : Mar 30 06:00:47 2026 GMT
Subject: CN=a450f11bcf12834e6f67dfd4539ac69fb509e523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f9:63:bc:f7:8f:9b:f7:29:25:8f:38:7b:0c:
e3:f8:1a:95:72:19:56:13:8b:2f:f7:51:96:c8:47:
3b:75:56:f0:5d:1b:fc:3b:9c:7c:83:96:1c:2d:20:
c5:3d:2e:53:25:16:68:e5:d8:b8:6b:f4:7f:bb:5c:
3b:1f:ab:07:d4:dc:bb:79:84:a9:5c:f7:cc:77:e5:
35:2f:ae:61:2d:af:34:c3:3a:1f:5a:91:65:2e:76:
ba:2e:1a:2e:7b:1b:02:cc:c3:fb:8d:8f:d4:44:03:
9b:64:70:15:77:e1:7e:82:ab:15:7c:c7:e9:04:2b:
a6:f0:2f:af:5e:43:63:87:4b:a1:8f:21:99:2c:7f:
91:09:34:57:c8:39:ae:b2:c0:c3:aa:e6:ae:d7:10:
20:06:a7:91:c6:1a:43:15:ac:ad:c5:58:5d:10:4a:
db:bd:f1:e1:75:8f:7f:f4:60:af:69:22:91:7d:3b:
a8:6d:ba:99:e3:7d:9c:16:0b:10:89:f6:2f:37:4b:
18:65:ec:cc:72:d7:92:ff:3a:4b:ca:c1:37:42:17:
c9:23:9b:da:ae:8a:bb:ad:20:3c:17:cb:8b:ed:a2:
17:3f:75:25:1b:1d:f3:d4:53:24:f8:1d:2e:25:5b:
5a:73:df:64:83:af:8f:2c:36:4c:11:b7:50:1e:e0:
14:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:50:F1:1B:CF:12:83:4E:6F:67:DF:D4:53:9A:C6:9F:B5:09:E5:23
X509v3 Authority Key Identifier:
keyid:19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:4e:ff:76:ec:d1:25:6e:db:70:12:cc:38:1d:a8:ca:a8:ea:
ca:a6:0e:19:e5:00:b1:c5:78:41:7a:f1:d2:b5:23:74:2c:49:
7f:5e:59:b9:f9:29:4c:0a:94:e4:54:07:fe:4b:16:b3:b4:17:
6b:1b:74:e5:64:4a:3d:1d:c2:21:56:68:7f:65:b2:7e:bf:e5:
c0:52:2f:0a:da:29:a9:e3:c9:cf:e1:53:24:71:99:b8:18:d2:
61:fb:f6:86:97:83:83:42:29:d0:cf:1b:6e:43:2d:08:4d:de:
e2:4f:a4:51:5f:31:e0:c6:f2:8d:e6:0e:10:c9:57:3a:a5:cf:
8b:0c:6b:d4:f8:06:13:31:a9:48:c8:14:94:c6:08:25:7a:dc:
06:65:2b:05:94:1e:c1:6c:b2:97:6a:24:c6:36:ed:5a:d0:b8:
1d:1c:d8:1e:31:87:a5:56:03:28:e3:8d:84:54:e8:13:5d:31:
b3:27:63:5c:2a:3a:7c:4b:a5:af:78:80:e8:91:4d:1c:4b:42:
71:a1:31:be:f7:6d:d5:cb:6a:e2:48:06:97:92:35:d1:77:d4:
01:7f:14:70:13:77:32:cf:71:06:c6:dd:4a:11:cb:3a:47:31:
61:dd:a7:ae:7e:a3:20:d4:e6:dd:f5:e6:22:06:e9:7c:b3:ec:
4a:b6:33:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:07:38 2026 by rpki-client