Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
File: ga5w39QwUnNv6F8A0phM43a3brM.mft (raw, json)
Hash identifier: 9EBW0kXCxlqDRSocfwwHqZfa7pp+k7Sqr7dGdVgEbB0=
Subject key identifier: 45:C6:5B:CD:9C:92:44:62:26:84:B6:D8:69:53:15:FA:8B:52:E0:3A
Authority key identifier: 81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
Certificate issuer: /CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Certificate serial: 019CAAC6941AB3C5571AC7C74C508A6A6F3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
Manifest number: 09A1
Signing time: Sun 01 Mar 2026 19:01:06 +0000
Manifest this update: Sun 01 Mar 2026 19:01:06 +0000
Manifest next update: Mon 02 Mar 2026 19:01:06 +0000
Files and hashes: 1: EvlHWqhQzmdjRG2k6tk-9HD_zOg.roa (hash: CaEBziMi2C6rN6WGf7O34W/+WtB1Ogao7r0fRD3u2XA=)
2: ga5w39QwUnNv6F8A0phM43a3brM.crl (hash: mQ3PCmlG5Lk7vGhyC1mz1KbUWTHYwJHwW7hTapUmjgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:94:1a:b3:c5:57:1a:c7:c7:4c:50:8a:6a:6f:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Validity
Not Before: Mar 1 19:01:06 2026 GMT
Not After : Mar 2 19:01:06 2026 GMT
Subject: CN=45c65bcd9c9244622684b6d8695315fa8b52e03a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:39:73:b3:7d:b5:90:e7:6b:19:ca:de:9d:6e:
cb:a8:70:89:f2:75:9e:f3:62:15:1c:3c:19:36:96:
4b:3b:b5:c3:4d:5d:20:2c:ec:98:1a:08:1a:a9:df:
e2:b4:67:9e:cf:a7:69:e4:8a:d9:e9:37:bf:e2:31:
51:38:6d:78:2f:a5:d6:7d:2a:f3:62:d6:8a:da:d5:
9b:33:7f:e3:d7:1c:ac:eb:fc:02:fc:07:e7:b9:8e:
2d:07:88:73:09:24:90:7c:f6:3b:80:3e:0a:9d:7b:
85:a3:a4:ea:a7:21:0c:73:31:5a:ab:65:8b:4b:29:
27:46:b9:6b:de:b9:25:56:3a:7a:c8:44:37:0c:2e:
10:ee:8e:16:bf:3c:4b:f6:62:2b:fa:d6:b6:14:53:
c9:33:3e:dc:38:6b:1b:3d:ba:1f:c4:03:10:a6:dd:
d8:5f:43:63:db:c6:21:02:7f:df:ac:23:f9:44:ad:
4f:94:13:0b:95:f0:95:1f:a6:fa:1d:3b:7d:07:aa:
ca:0a:95:8b:e5:fc:b2:fd:fa:4b:ed:c7:f4:37:59:
8f:6d:ed:ee:17:27:7b:30:03:9b:35:e6:cd:de:7a:
10:2b:f6:1a:07:72:51:73:75:39:1a:4c:cc:27:82:
4e:1b:73:94:ce:67:db:d6:a4:5a:ea:39:6e:fc:01:
f7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:C6:5B:CD:9C:92:44:62:26:84:B6:D8:69:53:15:FA:8B:52:E0:3A
X509v3 Authority Key Identifier:
keyid:81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:b1:b0:9a:ed:13:07:c1:29:42:96:df:3c:c9:bf:5b:97:53:
e0:9a:cd:f3:b6:fd:7c:5c:bb:97:18:8a:4a:dc:50:85:d3:65:
c7:4d:55:94:4a:0b:08:d0:1d:4d:7b:f6:62:4b:23:df:7d:c4:
48:cc:1b:98:ba:e9:50:e0:fa:50:24:8b:f4:20:fd:60:d6:fd:
62:a4:75:b5:bc:bf:7b:b2:79:af:3e:24:62:45:02:82:7a:7e:
e6:3c:7d:8d:82:e1:70:a4:28:b0:73:c7:f2:2e:45:b5:7b:91:
e4:a8:a9:69:fa:77:e4:cd:da:35:22:36:82:1b:e9:64:f6:9c:
1b:50:b4:6c:00:fe:b8:6a:55:03:dc:c4:52:dd:cb:97:e8:b8:
d7:6f:e0:21:30:15:36:4f:3c:9c:93:59:f1:31:d2:e1:1e:7a:
59:44:61:0b:0e:54:54:b5:33:1a:a4:fd:df:5b:c7:90:84:61:
ea:43:b3:a7:25:90:da:15:4f:f7:13:3e:88:0a:b2:55:42:6e:
45:d2:35:65:9d:3d:cd:0e:f7:42:c1:a1:ac:f6:0b:23:a0:47:
c7:9b:aa:4b:29:2f:89:b3:49:c7:f3:fb:12:5b:de:2c:c5:ce:
c0:d8:99:31:08:cc:52:11:b2:58:98:51:de:39:95:21:66:66:
a6:7a:8d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:03:51 2026 by rpki-client