Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
File: GheAknBHDXwlZxEvtAqe9xJgBRY.mft (raw, json)
Hash identifier: DUos72l8lJH1xhZ3oRF+xm/0nuriRDSuxM6qGsggurU=
Subject key identifier: 7A:27:9C:60:7B:0C:B8:F3:78:02:8D:72:9B:32:0B:C2:6A:97:0B:6F
Authority key identifier: 1A:17:80:92:70:47:0D:7C:25:67:11:2F:B4:0A:9E:F7:12:60:05:16
Certificate issuer: /CN=1a17809270470d7c2567112fb40a9ef712600516
Certificate serial: 019CB6259DBA75F1A228D5A00D98F34896EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GheAknBHDXwlZxEvtAqe9xJgBRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
Manifest number: 184E
Signing time: Wed 04 Mar 2026 00:00:44 +0000
Manifest this update: Wed 04 Mar 2026 00:00:44 +0000
Manifest next update: Thu 05 Mar 2026 00:00:44 +0000
Files and hashes: 1: 0tBvzHKBM9CFXoUvWhZ8oAIxIYQ.roa (hash: u3BDMBzVoIVq/H0Z4B77BSL8kjz5TDlPAlMIn/QKiB8=)
2: GheAknBHDXwlZxEvtAqe9xJgBRY.crl (hash: 64bE0pY+hHsSJxIutYukfnK92RAmMbeExY89Mdmi9pg=)
3: WwFDyIIKl_cpAKbzGQp9SH1Qcdg.asa (hash: 3OXyVYKmDgKcTOyHe2nt09Q+Uja/17d2idHKVXFslFk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/GheAknBHDXwlZxEvtAqe9xJgBRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Mar 2026 22:42:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b6:25:9d:ba:75:f1:a2:28:d5:a0:0d:98:f3:48:96:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a17809270470d7c2567112fb40a9ef712600516
Validity
Not Before: Mar 4 00:00:44 2026 GMT
Not After : Mar 5 00:00:44 2026 GMT
Subject: CN=7a279c607b0cb8f378028d729b320bc26a970b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:95:b4:44:2d:e6:b0:7d:31:a4:7e:c3:3d:54:
54:b5:77:66:48:1a:a3:fd:fd:df:7f:44:f3:6d:b9:
a0:ea:a3:20:d5:a5:f2:42:96:2b:0d:67:37:17:9c:
e0:39:9b:14:8e:92:b7:9a:de:e5:12:f0:62:a5:08:
b7:01:a7:51:72:c4:07:86:48:c2:3e:6d:46:bc:fc:
2f:4f:2c:7c:b1:9a:c1:01:08:ef:8c:26:e4:74:4e:
52:2d:79:40:32:df:cf:80:8a:8b:37:96:ed:10:6e:
5c:c2:33:c3:0b:50:02:53:fe:99:db:97:c2:39:52:
ef:ec:0f:9a:9c:3c:5d:2a:b7:04:25:c5:1e:69:71:
1b:5e:d2:5a:53:5d:ab:5b:28:10:17:18:51:52:96:
41:a3:ee:76:79:46:83:6d:85:52:8f:dc:8d:80:bc:
53:4e:17:da:07:cb:e7:14:a4:66:46:85:c0:e0:00:
6c:52:7b:a6:cb:18:be:ed:78:71:7e:d8:50:2d:f8:
31:5e:6d:51:7c:42:3a:bf:c8:b9:62:5f:88:45:ea:
c6:2a:1e:f4:cb:01:b7:ce:e0:50:63:63:4a:91:01:
73:5b:32:e2:e7:84:8b:ad:34:62:58:df:b2:2a:9a:
c4:af:98:2d:ca:1b:2e:29:01:c0:28:cf:7d:ef:e3:
b9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:27:9C:60:7B:0C:B8:F3:78:02:8D:72:9B:32:0B:C2:6A:97:0B:6F
X509v3 Authority Key Identifier:
keyid:1A:17:80:92:70:47:0D:7C:25:67:11:2F:B4:0A:9E:F7:12:60:05:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GheAknBHDXwlZxEvtAqe9xJgBRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:97:d1:e4:d3:1e:ff:9f:01:ec:cb:a6:bf:5d:e6:87:40:d6:
6a:da:59:3b:f4:86:0a:27:ab:ec:c1:d8:be:70:d6:89:17:ce:
50:c1:3a:e0:c3:eb:91:92:0e:22:9e:59:72:72:35:e5:b3:3e:
da:dd:a9:6a:29:cf:b1:6a:f7:cb:8a:3f:eb:00:68:8b:29:f5:
ed:94:12:b6:9a:8e:d3:a5:88:05:0d:30:cf:7d:5d:1a:1e:db:
f8:a2:a4:9d:14:ee:cf:68:88:93:c9:9f:33:83:9d:ac:59:72:
98:82:e0:85:67:68:71:2e:5c:a5:a2:09:31:7a:bf:47:fa:32:
5f:35:de:22:27:75:a2:83:77:66:73:ca:58:50:50:00:20:66:
97:51:b9:c7:79:34:4e:95:b3:7b:79:de:54:e4:3f:06:10:6c:
a3:30:35:93:be:74:11:19:1c:a7:7c:c9:74:48:d1:aa:04:8a:
9b:b9:ff:a5:33:1f:5c:c9:c7:f2:b9:20:9b:c6:0b:21:e3:b1:
4f:4c:94:93:c0:53:d4:3d:62:81:ee:11:f2:0e:4a:e1:a3:ce:
d9:92:6d:d5:6d:3a:ee:83:9e:48:db:ed:11:2b:7a:f9:08:42:
b2:e4:99:bb:ba:d9:b5:bc:49:62:b9:05:53:d9:bc:8c:81:50:
aa:e7:9e:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 4 05:55:01 2026 by rpki-client