Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
File: gNZ6hECc7boCLusDW9itYg1oPqc.mft (raw, json)
Hash identifier: 77iWKUNy3c+SLNE4MkLmilsPDbcymNa2ef6wLADOw2A=
Subject key identifier: B0:7A:15:65:53:EE:14:37:5E:40:86:8C:84:76:3C:94:D4:A5:47:1E
Authority key identifier: 80:D6:7A:84:40:9C:ED:BA:02:2E:EB:03:5B:D8:AD:62:0D:68:3E:A7
Certificate issuer: /CN=80d67a84409cedba022eeb035bd8ad620d683ea7
Certificate serial: 019D9818658ECBF3AC30D145C0E36C3D65E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
Manifest number: 1856
Signing time: Thu 16 Apr 2026 21:00:28 +0000
Manifest this update: Thu 16 Apr 2026 21:00:28 +0000
Manifest next update: Fri 17 Apr 2026 21:00:28 +0000
Files and hashes: 1: _Yb7IW78SKZuD4V1IkJEZwe6uu8.roa (hash: 14e7sG8qVox+8SMefeXpeF7AFL8AbwbjJc3kCO+AHdc=)
2: gNZ6hECc7boCLusDW9itYg1oPqc.crl (hash: 4oS6lt5gMiuacPcYdUmEhvs5/8gbTvOuv2B123dEUbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:65:8e:cb:f3:ac:30:d1:45:c0:e3:6c:3d:65:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80d67a84409cedba022eeb035bd8ad620d683ea7
Validity
Not Before: Apr 16 21:00:28 2026 GMT
Not After : Apr 17 21:00:28 2026 GMT
Subject: CN=b07a156553ee14375e40868c84763c94d4a5471e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ac:23:eb:d7:84:c6:ed:bb:f3:32:f3:58:af:
fe:85:13:c6:84:ec:84:75:7d:e6:0b:15:cf:52:e4:
18:f2:97:02:81:5f:2c:63:f5:8d:ec:a3:b3:db:40:
23:fc:e1:94:a3:c6:c2:bf:b2:33:a0:f9:e8:ea:a4:
f4:2e:ae:0f:0b:03:d4:90:64:a6:a6:4e:9c:49:13:
13:85:07:41:17:fc:8e:2e:5b:49:ea:9f:56:14:69:
82:55:02:10:26:3a:44:55:49:1b:5a:ab:07:ea:52:
6a:63:61:68:ab:ef:71:10:d0:53:b8:4f:66:b5:a3:
68:7c:d2:6f:bc:44:3b:65:53:9d:34:00:62:1e:13:
7e:0c:0a:7b:f5:21:d7:8f:05:a7:a1:22:0a:71:5b:
41:3a:26:d3:ba:9c:07:16:8d:f2:26:a5:78:02:7e:
47:06:64:12:e2:8d:4f:6f:05:27:c6:83:9e:f2:4c:
b5:67:1e:2e:df:17:16:ed:d9:b4:ae:47:18:41:94:
36:65:2a:ab:b4:ff:69:f1:76:10:fb:7a:82:7e:92:
5f:90:bd:df:44:c7:a4:94:fa:4b:d5:8f:0b:35:d3:
6b:c9:54:1a:6c:9e:f6:d6:bc:98:2e:61:f6:ec:af:
25:56:df:41:4b:6f:0c:46:df:aa:70:c7:8b:f4:aa:
dd:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:7A:15:65:53:EE:14:37:5E:40:86:8C:84:76:3C:94:D4:A5:47:1E
X509v3 Authority Key Identifier:
keyid:80:D6:7A:84:40:9C:ED:BA:02:2E:EB:03:5B:D8:AD:62:0D:68:3E:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:52:12:71:e7:d6:11:f3:35:5e:61:a4:2e:9d:99:06:e8:f7:
01:5c:6f:d5:96:4f:2e:7a:23:3e:84:1a:3b:a7:88:97:de:9c:
01:67:d5:d7:05:9e:ce:58:ba:97:11:7e:b8:e4:0e:64:30:87:
c9:76:15:9c:c9:8a:8a:08:c0:8d:0d:84:bb:db:0f:da:8f:8a:
06:bf:82:75:74:88:d4:7a:fd:17:38:3d:32:7f:e2:9d:78:78:
67:60:07:c9:2b:e6:58:cd:2d:fe:88:17:c7:a3:f9:3b:5b:cd:
aa:e3:b1:e1:e2:a7:2f:72:5a:27:11:e9:fa:c7:d2:b4:f0:2d:
03:0b:38:7b:f7:a6:bd:02:a8:da:c9:58:76:72:78:cd:93:ff:
17:91:04:65:65:28:fe:05:88:93:cd:95:97:a0:f7:7b:c3:d7:
b9:06:b6:08:8a:be:7f:93:6a:af:a0:ba:5e:eb:24:09:7d:c7:
c2:8b:41:d4:b9:35:e3:c4:0d:38:08:16:db:84:d7:df:c6:9d:
cd:e1:8e:e7:6d:91:11:17:08:23:80:f8:17:37:f2:11:40:2b:
29:07:22:04:d9:b2:2f:96:24:73:a6:47:9b:31:af:91:83:6f:
77:a7:ac:2e:93:11:68:9c:6c:62:d7:f8:1a:29:bd:37:ae:aa:
5b:4f:0b:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:43:06 2026 by rpki-client