Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
File: g-k154ofll0QiRUhXQ8Et2tzPlg.mft (raw, json)
Hash identifier: kjhkVrjT3gz4MbjBMEQAkZP0CSKTCkGaB0Kjjp3AMyo=
Subject key identifier: C8:BE:F9:A2:B2:3A:7F:49:47:64:B9:55:4A:41:65:E9:20:C8:B7:DB
Authority key identifier: 83:E9:35:E7:8A:1F:96:5D:10:89:15:21:5D:0F:04:B7:6B:73:3E:58
Certificate issuer: /CN=83e935e78a1f965d108915215d0f04b76b733e58
Certificate serial: 019D3865D289A812AF48448AD7F88F63D8F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 07:01:30 +0000
Manifest this update: Sun 29 Mar 2026 07:01:30 +0000
Manifest next update: Mon 30 Mar 2026 07:01:30 +0000
Files and hashes: 1: g-k154ofll0QiRUhXQ8Et2tzPlg.crl (hash: Iuu1QvUxL/t95hTyzjxph0hMMcR/gXi+yxpU4Q4vEV4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:d2:89:a8:12:af:48:44:8a:d7:f8:8f:63:d8:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83e935e78a1f965d108915215d0f04b76b733e58
Validity
Not Before: Mar 29 07:01:30 2026 GMT
Not After : Mar 30 07:01:30 2026 GMT
Subject: CN=c8bef9a2b23a7f494764b9554a4165e920c8b7db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:38:22:0b:22:c5:d6:51:a2:40:e2:b7:72:ea:
03:c3:70:66:51:36:96:4c:e6:1d:b7:18:9e:8d:99:
80:d3:b0:ca:b8:d6:e2:74:72:96:a0:5a:60:73:01:
79:5a:8b:66:a9:a9:c6:4c:62:3a:09:2d:fc:0d:31:
b2:3f:4b:78:26:68:4f:51:9a:09:4f:da:d0:5b:81:
18:ef:98:15:2d:90:bb:31:40:9d:67:19:94:44:1e:
f8:26:8b:29:f6:b5:72:f8:d0:66:57:3c:e1:b8:01:
95:63:99:cc:2d:89:83:d8:14:6b:95:80:80:4b:88:
1d:13:65:fb:2d:32:65:55:aa:1d:cb:35:98:91:80:
e7:dc:6b:45:de:93:9b:45:c3:98:38:b4:9d:30:5b:
44:d4:2c:8c:30:d3:1a:f3:ab:ab:22:32:46:a3:e1:
0c:7b:15:85:ec:5b:5b:d0:88:e5:bd:26:5e:e8:7a:
7f:36:eb:37:89:dc:3c:db:cb:d5:92:1b:6f:47:0d:
8e:36:07:b3:60:5e:c5:e9:4f:aa:8d:84:cd:c3:91:
b0:8c:61:44:02:67:79:ae:ec:42:a6:74:87:6c:85:
b1:9d:98:b4:f5:9a:d9:6d:62:16:b4:c7:df:bd:50:
8d:7f:0f:e5:04:23:fc:b6:ec:35:a6:89:05:1c:4a:
59:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:BE:F9:A2:B2:3A:7F:49:47:64:B9:55:4A:41:65:E9:20:C8:B7:DB
X509v3 Authority Key Identifier:
keyid:83:E9:35:E7:8A:1F:96:5D:10:89:15:21:5D:0F:04:B7:6B:73:3E:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:2f:6a:63:e8:11:b5:3d:2c:d8:01:27:d4:2f:f9:c1:ad:e8:
bc:06:ea:1f:8f:a1:69:82:9e:40:74:32:1e:a8:b7:e9:39:78:
94:53:e8:37:60:8f:79:5f:d0:e1:7b:65:dd:33:ef:42:26:42:
06:26:37:f3:9d:b9:85:d5:ce:21:ae:c8:26:99:a6:37:32:b1:
f6:ed:0d:a2:23:bd:78:8f:3e:c3:57:64:b2:70:b8:c4:eb:ac:
98:67:ea:76:82:41:3b:a7:3f:b1:30:c8:11:0d:71:54:59:49:
05:59:a3:50:d8:80:cb:2f:91:f4:64:16:6a:95:66:33:68:c4:
91:5e:02:44:13:65:c6:13:1d:b8:f8:80:c8:f0:f0:0e:f4:c9:
45:61:e1:b3:58:76:3a:ee:79:77:58:96:95:1d:f4:0b:76:94:
11:7b:14:3c:88:be:a9:0d:6e:ae:1f:dd:32:91:d1:90:04:51:
fd:8c:26:a5:a9:34:86:43:8a:02:0e:56:2e:1c:b4:db:59:8b:
88:3d:88:43:71:b4:4a:8f:26:da:ea:b0:0c:bc:94:f1:a0:a9:
61:80:96:3b:cd:54:30:60:21:8e:76:41:d0:9b:06:d3:bd:13:
70:a7:59:d5:62:84:47:7f:9a:48:1a:a5:9f:19:3d:20:30:b3:
84:a5:a7:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZdKJqBKvSESK1/iPY9jyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzZTkzNWU3OGExZjk2NWQxMDg5MTUyMTVkMGYwNGI3NmI3
MzNlNTgwHhcNMjYwMzI5MDcwMTMwWhcNMjYwMzMwMDcwMTMwWjAzMTEwLwYDVQQD
EyhjOGJlZjlhMmIyM2E3ZjQ5NDc2NGI5NTU0YTQxNjVlOTIwYzhiN2RiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyDgiCyLF1lGiQOK3cuoDw3BmUTaW
TOYdtxiejZmA07DKuNbidHKWoFpgcwF5WotmqanGTGI6CS38DTGyP0t4JmhPUZoJ
T9rQW4EY75gVLZC7MUCdZxmURB74Josp9rVy+NBmVzzhuAGVY5nMLYmD2BRrlYCA
S4gdE2X7LTJlVaodyzWYkYDn3GtF3pObRcOYOLSdMFtE1CyMMNMa86urIjJGo+EM
exWF7Ftb0IjlvSZe6Hp/Nus3idw828vVkhtvRw2ONgezYF7F6U+qjYTNw5GwjGFE
Amd5ruxCpnSHbIWxnZi09ZrZbWIWtMffvVCNfw/lBCP8tuw1pokFHEpZTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMi++aKyOn9JR2S5VUpBZekgyLfbMB8GA1UdIwQY
MBaAFIPpNeeKH5ZdEIkVIV0PBLdrcz5YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZy1rMTU0b2ZsbDBRaVJVaFhROEV0MnR6UGxnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9hNDIzYzctZmE3ZC00OWY4LWE2ZjMt
MGE2N2YwMGZkZWRlLzEvZy1rMTU0b2ZsbDBRaVJVaFhROEV0MnR6UGxnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS9hNDIzYzctZmE3ZC00OWY4LWE2ZjMtMGE2N2YwMGZkZWRl
LzEvZy1rMTU0b2ZsbDBRaVJVaFhROEV0MnR6UGxnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiC9qY+gR
tT0s2AEn1C/5wa3ovAbqH4+haYKeQHQyHqi36Tl4lFPoN2CPeV/Q4Xtl3TPvQiZC
BiY38525hdXOIa7IJpmmNzKx9u0NoiO9eI8+w1dksnC4xOusmGfqdoJBO6c/sTDI
EQ1xVFlJBVmjUNiAyy+R9GQWapVmM2jEkV4CRBNlxhMduPiAyPDwDvTJRWHhs1h2
Ou55d1iWlR30C3aUEXsUPIi+qQ1urh/dMpHRkARR/Ywmpak0hkOKAg5WLhy021mL
iD2IQ3G0So8m2uqwDLyU8aCpYYCWO81UMGAhjnZB0JsG070TcKdZ1WKER3+aSBql
nxk9IDCzhKWnAg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:04:26 2026 by rpki-client