Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
File: gNZ6hECc7boCLusDW9itYg1oPqc.mft (raw, json)
Hash identifier: EtrA/iVZ+0fngqRI5AmElEzai9BylKLjHZVxh65H6hU=
Subject key identifier: 65:72:92:A9:73:6D:89:B9:C5:28:2C:AF:A5:4C:04:7A:7A:8F:B5:02
Authority key identifier: 80:D6:7A:84:40:9C:ED:BA:02:2E:EB:03:5B:D8:AD:62:0D:68:3E:A7
Certificate issuer: /CN=80d67a84409cedba022eeb035bd8ad620d683ea7
Certificate serial: 019CAA90089F232C0305E3FDA921A4752384
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
Manifest number: 17DB
Signing time: Sun 01 Mar 2026 18:01:31 +0000
Manifest this update: Sun 01 Mar 2026 18:01:31 +0000
Manifest next update: Mon 02 Mar 2026 18:01:31 +0000
Files and hashes: 1: _Yb7IW78SKZuD4V1IkJEZwe6uu8.roa (hash: 14e7sG8qVox+8SMefeXpeF7AFL8AbwbjJc3kCO+AHdc=)
2: gNZ6hECc7boCLusDW9itYg1oPqc.crl (hash: /HEECfJ8dKZXnEn2AdsPiBgxHHCRTEYU2yQKUd24uHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:90:08:9f:23:2c:03:05:e3:fd:a9:21:a4:75:23:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80d67a84409cedba022eeb035bd8ad620d683ea7
Validity
Not Before: Mar 1 18:01:31 2026 GMT
Not After : Mar 2 18:01:31 2026 GMT
Subject: CN=657292a9736d89b9c5282cafa54c047a7a8fb502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0d:7b:7f:e5:56:4c:ab:80:b2:1a:4a:6c:8e:
13:10:cc:e2:64:99:b0:71:c6:b6:1e:34:07:e9:15:
be:05:27:76:2c:c5:ea:50:0f:e8:1a:bf:4a:79:1b:
24:22:0b:c0:eb:32:b2:62:87:5a:25:0b:bf:07:b8:
51:08:b1:72:1b:2e:49:a0:46:47:45:23:d1:47:7c:
ca:bd:e3:1e:0d:a0:b8:66:b6:90:d3:89:1a:06:67:
19:12:1f:2d:db:5b:6d:2f:77:51:ac:ca:a6:23:ba:
e0:8d:dd:df:5e:91:c7:ba:ca:f1:2d:6b:9d:4a:62:
7e:c0:b8:37:92:c4:13:9b:04:05:d4:2a:e2:00:04:
f0:74:c0:a8:59:6f:0e:3b:fe:8b:f4:9f:71:7a:4f:
a6:83:7a:e2:60:1a:fd:94:74:b8:5d:a6:3b:44:6b:
2d:bb:15:e4:38:11:e9:2e:32:33:aa:3b:57:9f:6c:
12:38:29:8a:24:de:b5:51:01:cf:c6:37:7d:a4:a9:
1d:05:79:31:e4:cb:6c:37:d6:2b:f4:b5:eb:d7:6d:
b3:73:eb:d3:11:c2:91:f2:05:45:06:a1:0c:de:bf:
8f:f2:96:0b:ff:3b:7d:56:80:2c:1e:ed:55:d9:d9:
c1:b4:09:0b:3a:29:2b:48:56:3c:54:59:36:08:8c:
12:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:72:92:A9:73:6D:89:B9:C5:28:2C:AF:A5:4C:04:7A:7A:8F:B5:02
X509v3 Authority Key Identifier:
keyid:80:D6:7A:84:40:9C:ED:BA:02:2E:EB:03:5B:D8:AD:62:0D:68:3E:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:ee:2e:49:3a:a2:9c:e3:aa:8c:3b:ea:07:1a:f3:9d:d1:da:
32:e9:ce:fc:6f:6a:4e:77:47:5c:18:24:af:92:ef:c6:f6:5c:
92:8b:2a:f8:88:80:3f:c7:fd:dd:0e:e1:cb:67:fe:33:f9:60:
d3:68:d5:ce:77:13:eb:ab:92:fb:94:1c:8a:e7:24:9d:83:13:
2e:54:a3:53:99:2f:5e:82:20:ec:bf:97:82:b2:7e:07:e0:91:
ca:88:a0:57:b7:9c:6d:67:d9:0e:9f:7c:16:1d:00:0d:2c:82:
15:ea:ad:fd:85:cf:dd:db:d5:47:5f:98:22:fe:d6:16:80:13:
a6:7a:69:5f:14:be:ec:3f:04:ae:f9:4d:0f:39:03:7f:b6:17:
f1:34:42:29:9d:b1:65:23:df:d8:94:7f:9f:36:1b:03:b5:cd:
21:25:be:aa:81:0b:8c:ea:4b:ca:7c:68:83:41:9c:de:54:e7:
c2:b9:f4:c2:bb:4e:91:fe:db:e2:f0:7a:13:1a:2d:15:58:1e:
eb:6a:6c:a6:1c:6d:40:af:a4:90:7f:5b:02:b6:56:ba:00:73:
30:25:a4:43:89:5a:a9:91:11:10:71:5d:20:32:b2:ab:f6:fd:
a6:c5:38:b7:b4:f4:96:7b:5f:a6:3c:cd:ed:01:f5:13:39:91:
67:ea:6c:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:47:46 2026 by rpki-client