Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
File: ga5w39QwUnNv6F8A0phM43a3brM.mft (raw, json)
Hash identifier: 7teNaKLifQJhQg1yQgILxmWvpAkES8xzYBLS/bEY7LU=
Subject key identifier: 95:77:61:FB:88:8D:3B:71:78:DB:62:79:EA:56:B6:56:CB:65:EF:41
Authority key identifier: 81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
Certificate issuer: /CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Certificate serial: 019D985065C44CB9F3AE636E152313FCF9FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
Manifest number: 0A1C
Signing time: Thu 16 Apr 2026 22:01:38 +0000
Manifest this update: Thu 16 Apr 2026 22:01:38 +0000
Manifest next update: Fri 17 Apr 2026 22:01:38 +0000
Files and hashes: 1: EvlHWqhQzmdjRG2k6tk-9HD_zOg.roa (hash: CaEBziMi2C6rN6WGf7O34W/+WtB1Ogao7r0fRD3u2XA=)
2: ga5w39QwUnNv6F8A0phM43a3brM.crl (hash: jQK+rUn4WUP+sNO/vo/agRnMk4TRTX16oj0DKBLq8ZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:65:c4:4c:b9:f3:ae:63:6e:15:23:13:fc:f9:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Validity
Not Before: Apr 16 22:01:38 2026 GMT
Not After : Apr 17 22:01:38 2026 GMT
Subject: CN=957761fb888d3b7178db6279ea56b656cb65ef41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c0:67:29:68:d5:02:8c:c6:f1:c5:a3:a0:70:
43:db:c9:c8:ff:21:c8:11:66:8d:fa:0b:57:41:2c:
bd:8c:f3:1f:c5:d3:22:97:fd:5d:46:1a:d2:e2:83:
2f:19:bc:53:92:2a:4f:80:e7:29:a5:97:e9:1d:2c:
ac:08:0e:99:dc:2c:75:d7:39:5e:03:32:16:86:5e:
6f:db:85:31:fd:a4:c0:16:5c:22:79:73:64:a6:8f:
43:53:92:78:43:76:8f:59:0c:e2:55:b3:cf:42:c6:
12:01:50:2b:02:4a:b1:bb:e8:e7:a6:bb:2d:97:03:
c6:fe:65:ec:39:ff:ed:26:05:b1:87:f1:31:79:f0:
eb:1d:f3:f2:37:ba:4e:bf:80:da:99:41:c1:e2:fa:
7e:d4:97:0a:6c:bf:4b:c1:46:f8:b0:43:67:f9:88:
b1:50:c4:3a:3b:4d:13:86:d7:f2:a2:70:52:c6:a3:
8b:c4:15:8d:33:9a:94:02:db:a2:f4:fb:28:e1:20:
30:a5:d1:5c:ca:91:a1:b2:64:b2:71:1d:2b:3c:02:
4a:75:92:92:23:59:e0:bc:fc:9a:76:4e:63:b1:28:
f9:83:a7:08:77:87:11:23:e0:ee:94:b2:4b:7b:2f:
c8:ca:ad:1f:fe:2b:c7:60:ce:41:30:0c:35:fe:ef:
8a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:77:61:FB:88:8D:3B:71:78:DB:62:79:EA:56:B6:56:CB:65:EF:41
X509v3 Authority Key Identifier:
keyid:81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:72:fc:db:b6:49:22:c9:1d:bd:88:5c:e6:1a:59:bc:84:b9:
12:ae:46:43:4d:ad:9d:1f:6c:ef:12:2c:e9:f0:9c:42:7b:0d:
89:94:23:59:95:1a:f7:cc:2e:c1:3e:fa:04:f1:7f:6c:c7:92:
af:55:6e:f0:ef:08:4c:d3:6f:4e:a9:62:a5:32:bd:18:66:7d:
66:ff:bd:15:19:2f:3e:73:7d:f4:e1:30:30:5b:9b:34:06:31:
17:cd:b1:29:5e:3e:ab:79:4b:10:ad:c4:ac:e9:cf:49:20:46:
d2:6d:80:06:10:a1:77:06:2d:da:72:3f:98:8b:c9:fa:8e:c4:
5c:32:ac:9e:f2:c6:66:ba:42:8d:e9:70:89:5f:69:a7:4a:a7:
d3:a2:f4:f1:a8:0f:7a:f1:21:37:10:01:6e:81:e9:44:1f:bf:
c9:ff:13:ef:46:b3:48:6c:80:2e:21:d4:c0:c4:f8:22:71:4a:
56:a6:2d:cd:21:a9:73:0d:3d:c5:4d:90:c3:d7:e7:94:95:f4:
13:f8:35:cd:d4:38:8b:88:9a:a0:cf:95:80:19:d3:b0:22:a3:
25:7b:d7:cb:05:9e:32:0c:bc:9e:f5:af:a6:f8:33:b1:29:ac:
2a:3a:58:a4:b9:94:d7:db:e0:91:05:fa:20:68:ca:fb:af:58:
2f:58:5a:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:42:40 2026 by rpki-client