Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
File: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft (raw, json)
Hash identifier: Fu/yQOJWg0N8+42GuQVXL1Tux6mUEHLZ736fa2GWvcE=
Subject key identifier: 48:7F:3B:65:4E:FC:95:FD:C3:12:C3:85:D2:36:B9:E1:DE:D7:3D:FD
Authority key identifier: 82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
Certificate issuer: /CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Certificate serial: 019D9C2CE580B5CFFA6E37875E162BB900F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
Manifest number: 134A
Signing time: Fri 17 Apr 2026 16:01:21 +0000
Manifest this update: Fri 17 Apr 2026 16:01:21 +0000
Manifest next update: Sat 18 Apr 2026 16:01:21 +0000
Files and hashes: 1: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl (hash: EGNCTA1HfA2zLwC8twUCmA8+emNt002Cl1MvZJS035o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:e5:80:b5:cf:fa:6e:37:87:5e:16:2b:b9:00:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Validity
Not Before: Apr 17 16:01:21 2026 GMT
Not After : Apr 18 16:01:21 2026 GMT
Subject: CN=487f3b654efc95fdc312c385d236b9e1ded73dfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:51:5b:24:fa:32:0b:4d:56:e5:92:f1:6a:89:
61:c3:04:85:f3:67:8b:d0:8b:76:64:39:e1:cd:0a:
8f:d0:70:51:92:27:f4:6e:ed:08:a6:3e:a2:df:ef:
59:50:fa:82:bc:e4:5b:eb:2c:f8:b6:b8:17:98:4c:
54:79:88:9d:ab:26:16:ce:22:4a:0f:95:7c:63:b9:
34:0f:95:0d:65:f9:6a:8e:34:35:c8:21:40:de:4f:
aa:c4:5d:c2:63:a7:6d:2d:03:b9:b5:ac:5f:88:de:
52:c8:ba:ec:fa:ff:22:59:6c:c5:7d:bd:6d:e8:08:
d0:bc:ff:09:34:0f:a6:65:03:ae:1e:b4:be:7c:03:
60:13:c8:8f:81:25:8d:46:e0:3f:10:b7:f5:20:04:
1e:8e:b4:95:15:76:67:be:87:c2:e9:91:a8:48:e5:
9c:05:ac:29:15:44:a7:79:ab:71:fe:3f:78:ca:cb:
f5:43:17:e3:50:02:0e:cc:b4:1f:48:ac:7a:6f:ff:
af:f0:f2:30:28:1c:8b:8d:f3:0f:90:27:f3:ad:b6:
95:c1:70:12:b4:f9:82:74:21:26:2f:02:1a:f7:4d:
c9:01:a3:96:00:e9:49:ca:a1:da:64:c4:2a:7a:1c:
91:14:46:65:f7:75:4a:0d:68:15:28:40:35:5a:86:
e9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:7F:3B:65:4E:FC:95:FD:C3:12:C3:85:D2:36:B9:E1:DE:D7:3D:FD
X509v3 Authority Key Identifier:
keyid:82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:41:69:9f:c3:f6:70:26:46:b8:2b:84:b5:d4:2e:d1:2f:96:
62:d0:63:34:80:2c:8e:20:3c:6b:b8:ce:5f:19:46:45:c2:d0:
7a:13:1d:08:94:e8:ed:38:e9:c0:0c:43:57:6e:80:f4:1c:01:
10:ab:de:bb:0a:ed:ee:95:93:a5:dd:ff:ed:a5:c5:16:a3:6b:
c5:ba:ae:5c:bb:7c:fb:d7:20:29:19:36:59:bf:40:0b:53:70:
ed:05:1b:4f:06:e0:cb:79:12:eb:22:e6:c3:0d:87:d4:09:e4:
e9:30:c0:f2:4e:11:9e:0e:ea:cc:43:d9:3f:6d:ee:0f:4c:9d:
c5:3a:1e:8c:73:d0:44:81:2a:9f:41:3a:ef:15:c4:2b:86:d1:
36:cd:bc:69:39:45:59:e5:c1:9d:33:76:c1:39:7c:f7:70:9f:
e9:37:a5:14:cd:b0:49:67:1f:ab:e7:31:8f:37:b5:cd:c5:74:
6b:de:e3:8a:80:11:a4:58:c6:19:81:c1:7b:d0:47:2f:f8:27:
f8:7b:03:cf:47:68:ef:79:c7:74:00:34:a3:45:1d:77:c5:4b:
a7:e2:24:29:22:76:9c:be:12:6f:1c:b4:e2:3a:6b:88:91:f3:
0e:ad:f7:be:ee:65:d3:cd:04:9a:b5:fb:cf:72:49:c0:e2:1d:
4d:d3:2f:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:47:39 2026 by rpki-client