Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft
File: grLg0A3Xcank1gu_S-UhFOp32wM.mft (raw, json)
Hash identifier: J9YGdAUxO+HrU/aXT+L06cqRoUyfIEWZCy9dTvHcenw=
Subject key identifier: A0:70:44:BB:B9:F5:19:A0:42:74:13:EF:2F:6E:17:61:18:61:3D:BC
Authority key identifier: 82:B2:E0:D0:0D:D7:71:A9:E4:D6:0B:BF:4B:E5:21:14:EA:77:DB:03
Certificate issuer: /CN=82b2e0d00dd771a9e4d60bbf4be52114ea77db03
Certificate serial: 019D37C1322E42E5CB0A95A1746BC32155B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft
Manifest number: 0E0B
Signing time: Sun 29 Mar 2026 04:01:41 +0000
Manifest this update: Sun 29 Mar 2026 04:01:41 +0000
Manifest next update: Mon 30 Mar 2026 04:01:41 +0000
Files and hashes: 1: grLg0A3Xcank1gu_S-UhFOp32wM.crl (hash: yt3o1fr8SGsGcVLP8PHPGjkEygKDtz1shltDqT+g9XU=)
2: sdh8pmOJsGStF0am0yT5pkIHwtc.roa (hash: xa/Kb953bRWnupDskAs22J1Rh+G0Xh3NKxVztnMScFI=)
3: yzKXO4jXIcQhvYNB-AXjR_e7tXo.roa (hash: HbKWlAXeMlwQXI/oWRqyG/+YEkJ30n/PudG/ZFxPjv0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft
rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:32:2e:42:e5:cb:0a:95:a1:74:6b:c3:21:55:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82b2e0d00dd771a9e4d60bbf4be52114ea77db03
Validity
Not Before: Mar 29 04:01:41 2026 GMT
Not After : Mar 30 04:01:41 2026 GMT
Subject: CN=a07044bbb9f519a0427413ef2f6e176118613dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c8:2c:5b:7d:22:ab:04:c3:d7:16:62:a7:f9:
ff:bc:14:83:01:e0:d5:a3:0e:a1:d6:a4:b2:61:fe:
d8:47:62:5d:27:a8:fc:41:47:d1:04:1f:3f:c4:63:
5d:0f:56:a1:7c:5e:b9:11:b3:31:6d:52:81:20:ac:
4b:b5:a9:a9:c7:bb:ac:2c:e7:32:3d:b7:05:26:11:
1f:e8:dc:dc:57:59:ec:00:54:9d:ef:50:13:6b:2f:
4a:39:ec:23:3c:ab:17:a7:6b:43:82:b8:f0:2f:0f:
17:a8:ad:9a:e1:58:03:f9:2a:5c:30:59:cb:db:42:
15:c8:21:4f:b3:e2:2d:2b:01:b7:65:e7:6c:cc:6e:
1c:46:f3:1b:c4:97:be:f7:08:b0:9b:43:1b:dc:67:
7b:9a:e4:6d:46:e6:dc:13:79:a9:a4:31:b4:e7:72:
27:1e:4a:80:46:e0:99:b1:27:eb:d3:31:e8:50:63:
4a:cf:9d:a0:9c:6e:5f:55:70:df:00:c1:ec:56:7d:
21:9b:b4:f6:65:76:50:73:cf:2b:58:8e:26:53:13:
ba:25:8c:a2:cd:cc:46:43:36:7e:70:73:84:7c:1f:
a0:4c:87:41:4b:02:8e:e6:90:fb:d6:30:70:59:8b:
ae:e9:d9:f8:93:fb:d2:99:01:18:2a:0a:f8:0a:3e:
8c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:70:44:BB:B9:F5:19:A0:42:74:13:EF:2F:6E:17:61:18:61:3D:BC
X509v3 Authority Key Identifier:
keyid:82:B2:E0:D0:0D:D7:71:A9:E4:D6:0B:BF:4B:E5:21:14:EA:77:DB:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:8c:c7:28:7f:c6:d3:2c:a1:c1:ed:27:91:b9:c7:51:41:3a:
29:d7:c0:18:f9:21:03:45:5c:34:06:4e:5c:33:fb:cb:33:45:
27:59:d0:12:d3:c8:54:cf:c9:2a:26:c5:c8:36:43:81:ab:a9:
3d:ea:d6:f4:d3:77:6b:59:d2:0f:cf:68:f1:35:94:a3:53:f9:
b0:ec:eb:70:14:d7:5b:66:e9:8a:3a:c7:95:ea:a6:f2:6c:9e:
48:96:60:97:cc:13:8b:0c:57:80:10:ec:6e:db:ca:29:27:47:
c0:27:85:dd:fd:81:fe:1b:4d:58:02:5e:be:60:0e:26:0a:c9:
88:b6:ea:21:95:d3:c4:13:cd:1c:0d:e2:96:db:15:a5:d0:a8:
fb:fa:28:f5:d8:f7:de:47:a4:46:a3:07:80:7f:a1:ae:fb:08:
bd:ff:16:92:21:42:96:c7:37:7c:2d:ce:4b:7e:73:6c:2e:7d:
2e:35:c2:56:6b:f6:28:6a:09:e0:bb:a9:0c:bc:bc:22:db:b2:
58:f5:55:7c:1d:a5:7f:1e:64:6f:39:3d:d7:58:80:a7:38:5e:
90:c6:67:bb:66:0b:1f:79:3d:7b:bd:63:86:55:52:b4:ee:35:
a3:29:66:e9:ce:45:b8:6b:fc:d9:e0:d6:d1:37:6b:c6:d3:1b:
23:36:ac:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:00:48 2026 by rpki-client