Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
File: gh9un_H7vyH2QToTfnNn3YqMA1w.mft (raw, json)
Hash identifier: dkQ83umUggJTpGiLTZGHJJ9RXntuzXI8Ug3I5EvMc28=
Subject key identifier: 6B:2B:58:EA:88:34:D3:D4:5E:A5:E3:CC:40:C2:CB:3E:60:46:36:ED
Authority key identifier: 82:1F:6E:9F:F1:FB:BF:21:F6:41:3A:13:7E:73:67:DD:8A:8C:03:5C
Certificate issuer: /CN=821f6e9ff1fbbf21f6413a137e7367dd8a8c035c
Certificate serial: 019D375257F74AD5C2E0593BF1BD9B44075D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
Manifest number: 10D1
Signing time: Sun 29 Mar 2026 02:00:36 +0000
Manifest this update: Sun 29 Mar 2026 02:00:36 +0000
Manifest next update: Mon 30 Mar 2026 02:00:36 +0000
Files and hashes: 1: gh9un_H7vyH2QToTfnNn3YqMA1w.crl (hash: x2Q8VYcprkLQLvt7iZemBnGft0N9c7PLECAfWUIgHZU=)
2: lHeFeB5XmUgMTZd-xp7pg5O2hRk.roa (hash: yDjRb/PwiyZiL5zE1UM9tbqgd31//MiOL1EvDdOA92U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:57:f7:4a:d5:c2:e0:59:3b:f1:bd:9b:44:07:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821f6e9ff1fbbf21f6413a137e7367dd8a8c035c
Validity
Not Before: Mar 29 02:00:36 2026 GMT
Not After : Mar 30 02:00:36 2026 GMT
Subject: CN=6b2b58ea8834d3d45ea5e3cc40c2cb3e604636ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:12:c0:b4:1a:a9:c3:2b:af:c1:0e:3d:f0:97:
f4:2c:80:fb:1b:ad:06:42:2c:4b:90:16:56:61:7b:
28:e3:f5:55:55:d5:6f:44:d7:32:b0:ea:ba:f4:74:
8c:0a:14:1c:5c:5e:1b:b5:b7:05:e5:8e:2d:7b:e9:
da:df:65:6d:da:c7:62:8d:97:0d:27:ba:4c:d0:32:
a4:49:33:9a:b0:3f:a2:9f:73:81:0f:9c:94:52:66:
df:c7:49:02:79:3f:b0:fa:93:1e:f6:dd:5b:ff:59:
50:e4:b4:41:05:85:6d:9e:65:e7:b0:8a:26:0c:6c:
94:72:43:c1:47:1e:78:04:f4:ee:36:ce:22:75:8d:
96:b8:b8:ca:fa:78:2e:cf:62:a4:26:aa:ad:11:25:
d9:f7:2f:59:91:19:ec:7c:5b:2e:f5:d0:54:e1:40:
47:35:4f:87:fa:fb:51:95:b1:33:94:c3:7b:dc:14:
54:8c:78:56:11:c2:99:c1:58:a7:50:cb:46:73:39:
ad:12:c3:90:6a:bf:5c:84:9f:4b:e3:f2:09:fe:99:
77:e2:da:6b:01:63:81:c1:07:70:fb:b9:4d:14:d1:
8b:12:82:ac:9e:62:f4:9d:2d:55:51:95:52:ee:a1:
c2:a7:57:fd:e5:7e:f5:12:14:71:f5:e1:eb:7c:ec:
4e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:2B:58:EA:88:34:D3:D4:5E:A5:E3:CC:40:C2:CB:3E:60:46:36:ED
X509v3 Authority Key Identifier:
keyid:82:1F:6E:9F:F1:FB:BF:21:F6:41:3A:13:7E:73:67:DD:8A:8C:03:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:de:c2:bb:36:7f:38:b4:4f:d1:f1:13:51:35:a3:3e:ea:1f:
6f:3c:36:ef:bc:76:be:08:57:6c:cd:22:67:c2:ac:0d:58:3f:
9c:61:05:00:2e:c8:1c:40:8d:8c:43:c4:5a:f9:da:63:0c:89:
b9:cd:21:8e:10:9c:63:69:aa:35:36:7b:e9:50:33:dd:b2:94:
71:3a:68:84:fe:33:3f:dc:54:1a:29:b5:e3:e7:0f:d3:a2:e6:
f4:6d:07:da:ec:7e:e1:6d:80:15:7f:19:3c:24:39:c3:48:20:
9d:2e:40:06:34:c6:ee:75:fa:70:3b:31:78:97:db:6c:2f:19:
d4:b8:ca:8f:18:25:a3:65:23:7f:9a:87:16:d6:f0:7a:69:7c:
2a:50:df:b9:ee:ca:1b:9e:f4:f6:c6:2b:67:1c:93:10:d5:ff:
25:a6:03:e8:b6:e6:df:f3:8b:37:38:d9:e8:54:dd:fc:bc:de:
1c:86:e4:71:66:61:77:04:bc:5d:74:29:6f:08:a5:d3:4a:58:
28:51:fb:85:45:a5:dd:08:84:1d:d3:f9:12:42:84:41:c5:54:
06:8b:08:6d:54:4a:7a:0f:ee:e1:9c:08:27:6f:db:bc:e3:2f:
d6:b3:02:e7:9c:50:b0:0c:96:5f:f5:d6:47:30:48:5c:ca:65:
41:75:35:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:03 2026 by rpki-client