Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
File: GheAknBHDXwlZxEvtAqe9xJgBRY.mft (raw, json)
Hash identifier: +V2BFeFKPU9myOkRHPn0f8fM20C4iZw+r27ahvw2uJo=
Subject key identifier: CA:7C:53:DC:46:59:FB:3D:04:E5:62:D8:A6:49:03:77:E0:DA:06:F7
Authority key identifier: 1A:17:80:92:70:47:0D:7C:25:67:11:2F:B4:0A:9E:F7:12:60:05:16
Certificate issuer: /CN=1a17809270470d7c2567112fb40a9ef712600516
Certificate serial: 019E9326C5E97128350A37E7DF5FFFAD87CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GheAknBHDXwlZxEvtAqe9xJgBRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
Manifest number: 1945
Signing time: Thu 04 Jun 2026 15:00:52 +0000
Manifest this update: Thu 04 Jun 2026 15:00:52 +0000
Manifest next update: Fri 05 Jun 2026 15:00:52 +0000
Files and hashes: 1: 0tBvzHKBM9CFXoUvWhZ8oAIxIYQ.roa (hash: u3BDMBzVoIVq/H0Z4B77BSL8kjz5TDlPAlMIn/QKiB8=)
2: GheAknBHDXwlZxEvtAqe9xJgBRY.crl (hash: LLkieUQ+Vtj5Y88Lm6hfVsjwngknfrPO7m7fZ2JirMM=)
3: WwFDyIIKl_cpAKbzGQp9SH1Qcdg.asa (hash: 3OXyVYKmDgKcTOyHe2nt09Q+Uja/17d2idHKVXFslFk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/GheAknBHDXwlZxEvtAqe9xJgBRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 15:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:93:26:c5:e9:71:28:35:0a:37:e7:df:5f:ff:ad:87:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a17809270470d7c2567112fb40a9ef712600516
Validity
Not Before: Jun 4 15:00:52 2026 GMT
Not After : Jun 5 15:00:52 2026 GMT
Subject: CN=ca7c53dc4659fb3d04e562d8a6490377e0da06f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:83:78:5c:86:1b:8f:ef:1f:40:d6:94:14:e0:
ee:5f:8e:0d:e8:af:0f:20:e8:53:e0:fd:9c:ec:7a:
5b:b1:db:99:4f:93:99:d9:93:03:dd:41:9b:1e:c7:
05:db:b2:3c:2f:c7:cb:8e:9d:c5:c8:04:2a:7c:43:
1e:81:18:37:46:83:f7:52:8f:a3:53:23:a5:75:6f:
5b:64:0c:bc:de:4b:bc:c2:1d:d7:64:ce:d2:89:88:
28:a5:68:f6:52:50:4d:d4:eb:20:f5:33:b5:b5:bc:
fb:c9:f1:d9:96:ac:8a:a2:6a:6f:fd:f4:1a:f1:ae:
9c:7d:f5:b9:f7:77:16:ff:82:e5:8f:3f:0b:b1:3f:
05:89:fc:04:03:83:59:7f:c8:42:60:28:47:01:4e:
0f:12:74:65:4a:f9:66:ce:19:34:b5:32:c7:dd:09:
1d:48:16:ff:f2:6b:71:87:af:d3:1e:5f:ed:49:d4:
99:c4:8b:f7:27:d5:84:69:7c:71:8e:2b:f6:36:bd:
11:8f:97:84:22:e0:fb:60:21:a3:b5:e1:25:da:f9:
98:25:f3:20:7c:5f:06:fc:56:5d:56:fa:17:e9:de:
09:a5:3c:6e:fa:0c:9d:44:d0:6a:79:b7:37:1a:47:
4b:1f:c7:af:dd:6c:d2:2a:a9:5e:05:bb:c5:0d:fd:
16:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7C:53:DC:46:59:FB:3D:04:E5:62:D8:A6:49:03:77:E0:DA:06:F7
X509v3 Authority Key Identifier:
keyid:1A:17:80:92:70:47:0D:7C:25:67:11:2F:B4:0A:9E:F7:12:60:05:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GheAknBHDXwlZxEvtAqe9xJgBRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:ad:56:82:43:89:37:98:9c:55:ae:fd:7d:44:e5:7c:2b:e1:
54:e2:ab:94:92:f5:85:ab:4b:a7:2d:65:e8:f6:73:bc:4f:3b:
22:2a:4b:f1:e8:1a:28:51:a3:c3:f8:dc:36:56:63:ed:88:74:
f5:f4:7e:39:56:ed:9c:e4:48:6b:93:ca:3d:61:12:3b:84:31:
b5:af:45:f8:b5:ff:9f:e4:5f:af:e9:98:24:58:db:26:fd:70:
34:21:c6:8b:74:bf:c4:fa:06:82:59:41:ec:f4:8c:2f:e7:d6:
64:95:ce:78:93:d9:1e:f8:c5:a4:9c:76:6f:6e:a8:13:f5:5d:
e2:9f:c6:ad:09:2b:ee:e5:f8:59:93:df:16:f4:ce:fc:b6:cc:
a8:dd:e4:15:6e:00:60:ee:f6:df:bc:47:87:72:41:31:37:7b:
be:cd:c6:44:5a:c0:22:b7:2e:67:bb:0d:43:a5:cf:c7:05:6f:
25:08:08:5d:99:da:1d:3b:c6:b4:5d:47:3a:99:4a:ad:eb:42:
3e:4b:73:6e:18:e4:ca:bd:9a:a9:9c:67:ff:c3:49:47:67:95:
4d:29:91:eb:96:44:2d:c5:3b:eb:99:e3:0f:12:e8:d1:2b:f4:
40:f1:aa:2f:c7:9f:78:de:e4:b0:d9:71:f3:1c:d6:22:aa:91:
c9:58:5e:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6TJsXpcSg1Cjfn31//rYfOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhMTc4MDkyNzA0NzBkN2MyNTY3MTEyZmI0MGE5ZWY3MTI2
MDA1MTYwHhcNMjYwNjA0MTUwMDUyWhcNMjYwNjA1MTUwMDUyWjAzMTEwLwYDVQQD
EyhjYTdjNTNkYzQ2NTlmYjNkMDRlNTYyZDhhNjQ5MDM3N2UwZGEwNmY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIN4XIYbj+8fQNaUFODuX44N6K8P
IOhT4P2c7HpbsduZT5OZ2ZMD3UGbHscF27I8L8fLjp3FyAQqfEMegRg3RoP3Uo+j
UyOldW9bZAy83ku8wh3XZM7SiYgopWj2UlBN1Osg9TO1tbz7yfHZlqyKompv/fQa
8a6cffW593cW/4Lljz8LsT8FifwEA4NZf8hCYChHAU4PEnRlSvlmzhk0tTLH3Qkd
SBb/8mtxh6/THl/tSdSZxIv3J9WEaXxxjiv2Nr0Rj5eEIuD7YCGjteEl2vmYJfMg
fF8G/FZdVvoX6d4JpTxu+gydRNBqebc3GkdLH8ev3WzSKqleBbvFDf0WhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMp8U9xGWfs9BOVi2KZJA3fg2gb3MB8GA1UdIwQY
MBaAFBoXgJJwRw18JWcRL7QKnvcSYAUWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2hlQWtuQkhEWHdsWnhFdnRBcWU5eEpnQlJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9mNDc3MTAtNGEyMy00YmRjLTk1NDEt
OGFmYTc0ZDg3NjlmLzEvR2hlQWtuQkhEWHdsWnhFdnRBcWU5eEpnQlJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9mNDc3MTAtNGEyMy00YmRjLTk1NDEtOGFmYTc0ZDg3Njlm
LzEvR2hlQWtuQkhEWHdsWnhFdnRBcWU5eEpnQlJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVa1WgkOJ
N5icVa79fUTlfCvhVOKrlJL1hatLpy1l6PZzvE87IipL8egaKFGjw/jcNlZj7Yh0
9fR+OVbtnORIa5PKPWESO4Qxta9F+LX/n+Rfr+mYJFjbJv1wNCHGi3S/xPoGgllB
7PSML+fWZJXOeJPZHvjFpJx2b26oE/Vd4p/GrQkr7uX4WZPfFvTO/LbMqN3kFW4A
YO7237xHh3JBMTd7vs3GRFrAIrcuZ7sNQ6XPxwVvJQgIXZnaHTvGtF1HOplKretC
Pktzbhjkyr2aqZxn/8NJR2eVTSmR65ZELcU765njDxLo0Sv0QPGqL8efeN7ksNlx
8xzWIqqRyVheog==
-----END CERTIFICATE-----
Generated at Fri Jun 5 00:02:38 2026 by rpki-client