Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.mft
File: g2elJH2fTpT3vVcc8T01q0iwHSQ.mft (raw, json)
Hash identifier: areHkGbBdGLtQ2/p20evUy2nPlflwyzcnhel/732Oco=
Subject key identifier: 24:F0:19:80:7E:A8:B3:CA:AB:48:6B:D1:50:D3:59:EB:5C:96:D2:32
Authority key identifier: 83:67:A5:24:7D:9F:4E:94:F7:BD:57:1C:F1:3D:35:AB:48:B0:1D:24
Certificate issuer: /CN=8367a5247d9f4e94f7bd571cf13d35ab48b01d24
Certificate serial: 019D992B4EE3EC50EDE14E92AC9526EF0998
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2elJH2fTpT3vVcc8T01q0iwHSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.mft
Manifest number: 0852
Signing time: Fri 17 Apr 2026 02:00:45 +0000
Manifest this update: Fri 17 Apr 2026 02:00:45 +0000
Manifest next update: Sat 18 Apr 2026 02:00:45 +0000
Files and hashes: 1: LoYQyBr4YJ5ITZr2_fcC3dmO_KA.asa (hash: zpgidiPNOSMW/wwxutmy+pYEFABRXk9mKUJiu/1ReKw=)
2: g2elJH2fTpT3vVcc8T01q0iwHSQ.crl (hash: DDe6QWA/i+BckiAAwQFx5MkMvyYYwp8MjMPtDok9ocw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/g2elJH2fTpT3vVcc8T01q0iwHSQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:4e:e3:ec:50:ed:e1:4e:92:ac:95:26:ef:09:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8367a5247d9f4e94f7bd571cf13d35ab48b01d24
Validity
Not Before: Apr 17 02:00:45 2026 GMT
Not After : Apr 18 02:00:45 2026 GMT
Subject: CN=24f019807ea8b3caab486bd150d359eb5c96d232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:cf:ec:41:3c:84:cf:fe:97:de:87:1a:dd:90:
36:8d:2e:1e:3c:17:cc:de:df:5a:f8:e3:7f:9d:e4:
ee:ee:ff:ed:7e:ef:dc:d4:2a:67:37:30:6c:5b:e1:
d6:e9:57:f2:66:d4:73:27:f0:0d:f5:b8:08:86:c7:
6d:4b:51:f9:1f:bc:a3:be:df:6d:85:b7:d4:c4:6c:
5a:7f:83:57:df:e2:e4:02:5c:82:aa:6d:a1:bc:1a:
c2:28:af:ba:4d:ad:31:4f:1f:8c:df:c3:08:90:ac:
af:09:4b:26:75:82:5d:9d:e5:db:90:9a:a5:eb:82:
fb:f3:b6:2a:07:a9:3e:8f:9c:56:a7:79:48:b5:2f:
69:ea:2b:2d:5d:fe:17:1c:b5:62:ff:ab:71:7a:75:
fc:9b:c9:9a:1a:84:3d:8e:1c:9b:7d:b6:ff:e4:de:
7f:36:59:36:1a:f9:a2:61:5e:c8:97:76:36:f6:43:
86:56:a5:60:8e:51:c6:6c:bc:62:0c:08:a3:cd:83:
08:7c:0f:4c:5d:b0:94:4f:dd:66:db:9f:ac:e9:12:
02:99:d2:27:4c:eb:48:74:6b:6e:99:c2:10:e2:21:
c9:ea:5b:ea:06:58:88:f9:76:0b:18:a6:d2:9f:c0:
81:b9:c4:e9:97:c1:f9:59:7c:87:c0:dd:f7:dd:f5:
05:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F0:19:80:7E:A8:B3:CA:AB:48:6B:D1:50:D3:59:EB:5C:96:D2:32
X509v3 Authority Key Identifier:
keyid:83:67:A5:24:7D:9F:4E:94:F7:BD:57:1C:F1:3D:35:AB:48:B0:1D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2elJH2fTpT3vVcc8T01q0iwHSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:25:a9:75:50:a4:d1:f1:4f:54:a5:5c:40:af:58:26:3f:5f:
43:a7:53:a7:dc:c3:ad:3b:75:ff:ea:37:e8:b7:84:b3:4f:26:
2d:e9:41:71:01:4b:c1:2f:36:88:04:89:1c:97:ea:b3:12:96:
1d:7d:d4:2e:32:f0:48:d1:a8:0d:5a:4a:5a:7e:6c:ae:37:63:
62:f0:5b:75:28:52:11:d0:78:3a:f8:b6:26:61:39:96:08:af:
e8:76:f8:58:d2:fa:23:15:7b:b3:d6:fc:cf:40:9c:78:62:e7:
ef:06:d5:15:92:1d:6f:27:ad:1f:72:a0:b6:df:ac:d0:8a:2f:
44:f0:13:91:10:15:b2:65:39:80:66:8e:66:05:a4:74:ac:87:
54:dc:d9:40:86:fe:ee:e3:1a:7e:7e:ab:4c:91:9c:72:9c:8c:
14:8c:f3:4d:61:dd:3e:42:32:39:2f:8b:a8:29:0b:7c:ef:20:
07:4d:3a:a0:30:3f:4c:a9:d6:7b:6a:18:14:66:ad:e3:56:98:
a3:9c:76:ee:02:fc:be:4a:1f:78:b9:ec:25:99:c4:ab:19:7f:
1c:d0:8a:e3:b7:79:db:dd:cf:54:80:19:be:38:b7:40:9d:94:
ef:96:8d:8a:7d:ce:e6:05:44:63:1d:34:97:5c:e8:da:3b:b3:
a6:1c:23:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:10:44 2026 by rpki-client