Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
File: GheAknBHDXwlZxEvtAqe9xJgBRY.mft (raw, json)
Hash identifier: 03OdUltK3T0Kaev7n+yU9kwXfm7wSZ3CJ/q9Pxi59/c=
Subject key identifier: 8C:7D:BD:34:40:B3:24:2A:81:F2:A6:D8:27:97:09:ED:2E:95:0A:FA
Authority key identifier: 1A:17:80:92:70:47:0D:7C:25:67:11:2F:B4:0A:9E:F7:12:60:05:16
Certificate issuer: /CN=1a17809270470d7c2567112fb40a9ef712600516
Certificate serial: 019D9FD25D9AE70AC9906A81AF650D1389A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GheAknBHDXwlZxEvtAqe9xJgBRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
Manifest number: 18C7
Signing time: Sat 18 Apr 2026 09:00:56 +0000
Manifest this update: Sat 18 Apr 2026 09:00:56 +0000
Manifest next update: Sun 19 Apr 2026 09:00:56 +0000
Files and hashes: 1: 0tBvzHKBM9CFXoUvWhZ8oAIxIYQ.roa (hash: u3BDMBzVoIVq/H0Z4B77BSL8kjz5TDlPAlMIn/QKiB8=)
2: GheAknBHDXwlZxEvtAqe9xJgBRY.crl (hash: 3duJCTGPAjGV/15ERP8lSut5AtzK7ShLh4383iukhCo=)
3: WwFDyIIKl_cpAKbzGQp9SH1Qcdg.asa (hash: 3OXyVYKmDgKcTOyHe2nt09Q+Uja/17d2idHKVXFslFk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/GheAknBHDXwlZxEvtAqe9xJgBRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 09:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9f:d2:5d:9a:e7:0a:c9:90:6a:81:af:65:0d:13:89:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a17809270470d7c2567112fb40a9ef712600516
Validity
Not Before: Apr 18 09:00:56 2026 GMT
Not After : Apr 19 09:00:56 2026 GMT
Subject: CN=8c7dbd3440b3242a81f2a6d8279709ed2e950afa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f8:7e:3b:2f:e0:1f:f4:e6:ef:95:7c:9c:f7:
fb:a0:45:be:71:ea:7b:17:7d:d5:90:cd:4b:27:b1:
42:58:e2:57:d9:55:08:12:40:33:08:73:70:e8:85:
43:85:98:26:3b:00:77:59:1a:85:67:eb:5c:14:91:
d2:1f:70:66:c3:fa:66:16:d0:cb:33:c0:0d:9d:e3:
69:8d:0a:03:68:d4:03:57:85:d8:f1:9b:48:68:77:
94:08:2d:e9:c9:2a:dc:ef:66:d2:4d:de:37:f9:29:
27:c2:2a:0f:55:1e:46:be:29:a9:ff:cf:18:58:1c:
35:35:b8:5b:d5:ab:59:33:89:e4:9e:51:60:b6:c4:
0f:8c:e6:60:d1:61:ba:0f:78:1d:25:55:aa:4e:2d:
3e:d9:0d:71:c4:0a:5d:80:21:d7:3a:47:b1:74:6f:
a1:88:ca:f9:91:64:e9:37:b9:57:3c:dd:55:cb:8f:
86:f3:45:ec:8f:09:bf:a9:4f:9b:4f:78:b3:5b:9f:
fb:93:5e:89:25:3c:c8:89:a5:d0:e6:81:ac:bd:f1:
b4:51:d5:1f:87:a2:88:cd:b0:e0:79:10:e5:c5:80:
89:e3:0a:58:66:2f:7e:12:56:55:92:ed:4a:5f:13:
3c:b1:97:93:2d:c0:4f:ca:ce:c8:26:9b:95:05:07:
2d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:7D:BD:34:40:B3:24:2A:81:F2:A6:D8:27:97:09:ED:2E:95:0A:FA
X509v3 Authority Key Identifier:
keyid:1A:17:80:92:70:47:0D:7C:25:67:11:2F:B4:0A:9E:F7:12:60:05:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GheAknBHDXwlZxEvtAqe9xJgBRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:87:f2:79:b9:d3:48:12:48:ac:d0:a5:96:a6:7a:96:2a:09:
13:b7:8f:3a:d1:fc:ee:c2:c9:72:95:96:af:89:d4:c4:2d:17:
8e:6d:4d:05:62:7a:72:09:22:93:24:c4:c9:f7:56:fe:33:08:
3d:c6:9d:d3:ad:13:3b:ba:05:6a:5a:32:2e:49:b0:63:89:44:
3c:37:cb:a4:77:88:74:2b:5d:e0:5c:f9:54:b1:1d:af:cc:af:
ad:ee:35:bb:fa:39:6b:56:8c:2e:b4:38:ac:b7:dc:ce:54:00:
68:ae:56:dd:31:58:39:11:de:30:02:43:a9:cc:f9:9d:f4:2a:
5f:a6:f3:c8:13:c5:8e:0a:af:c5:77:83:73:2b:49:61:77:01:
e8:58:06:10:c2:61:8d:34:9d:08:ae:06:47:cf:1b:d1:03:81:
ab:25:e6:3f:b8:da:d2:c7:67:70:8c:ac:ab:87:fd:e1:b8:db:
1b:5a:e0:e3:92:bc:a7:82:46:8e:b9:ce:30:78:85:64:05:7f:
c2:7e:ec:a0:44:df:d4:04:a7:c8:ed:3e:30:1a:27:ff:af:4a:
93:88:11:88:ff:23:2a:ed:97:94:54:01:1c:95:bd:24:00:05:
f1:c4:72:d5:0e:4a:d2:c1:9b:6e:58:86:85:55:98:93:07:5b:
7c:03:5a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 14:15:11 2026 by rpki-client