Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
File: Gk0JI-wQZndgrYguavmhVpnAXvg.mft (raw, json)
Hash identifier: vDWVuj2WBVnE9Y8zI317Vu2mfnhCbL8zuxiFu2z6jGQ=
Subject key identifier: 78:B0:42:F7:36:F1:91:E2:6A:0F:10:D8:F5:D5:33:75:84:FA:A4:30
Authority key identifier: 1A:4D:09:23:EC:10:66:77:60:AD:88:2E:6A:F9:A1:56:99:C0:5E:F8
Certificate issuer: /CN=1a4d0923ec10667760ad882e6af9a15699c05ef8
Certificate serial: 019D999931831E6B7B4CD2E7094179E1C8A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
Manifest number: 1158
Signing time: Fri 17 Apr 2026 04:00:46 +0000
Manifest this update: Fri 17 Apr 2026 04:00:46 +0000
Manifest next update: Sat 18 Apr 2026 04:00:46 +0000
Files and hashes: 1: ENz0VTcEnPSXBE5Znpjw7lUaAwA.roa (hash: DP27/a5o1Ym+vesDLFqV0Tua4ny+ds0/pH34jhmErS8=)
2: Gk0JI-wQZndgrYguavmhVpnAXvg.crl (hash: w3QwH6bLPHB4X3C8HhVHYz3eo6ZCbHVHB/wTij0a2i8=)
3: Y-eJmA6TDVKIS1tuOw2dm1_Jqdc.roa (hash: KqQ8TKxBYl3JumzrSj+0qt5zeDJPsxKpAnGsc38qwpE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:31:83:1e:6b:7b:4c:d2:e7:09:41:79:e1:c8:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4d0923ec10667760ad882e6af9a15699c05ef8
Validity
Not Before: Apr 17 04:00:46 2026 GMT
Not After : Apr 18 04:00:46 2026 GMT
Subject: CN=78b042f736f191e26a0f10d8f5d5337584faa430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ce:56:69:f3:56:bd:b1:9e:1f:25:b5:7e:78:
8b:a0:42:cb:52:45:6d:1a:8d:c7:a2:f4:2d:48:2c:
8e:5b:18:36:0e:93:45:fb:b0:ef:bd:ec:e8:28:3d:
2c:c3:bd:8b:cc:41:0c:78:d8:b9:a0:4a:d7:a7:90:
53:16:9c:60:2e:34:13:ef:bd:3d:70:27:98:fb:4e:
04:ac:b9:96:46:1e:44:0e:de:d7:10:5b:48:91:eb:
4d:ed:0b:e7:e8:8c:19:7f:e6:db:93:0d:ff:5b:06:
a5:56:c8:62:2c:6f:a8:4f:a6:f5:30:2d:26:ef:82:
20:d4:60:17:15:11:7f:cd:26:ba:b6:3b:d8:10:a2:
75:8e:28:9a:52:d8:b2:6c:e4:fa:64:61:87:58:ba:
e3:98:ed:0e:2b:4e:0c:c6:0a:df:52:6c:94:ff:7b:
9c:2d:f3:0a:5a:88:70:10:7c:d8:51:b1:0a:de:1b:
b9:f3:71:47:f7:39:43:b3:ad:7c:69:26:2b:f0:e5:
23:7a:95:0c:7a:bd:54:95:74:67:35:e3:2a:34:9d:
e9:8a:1c:fa:38:1b:ab:ca:e4:34:d0:e0:f9:35:4b:
01:66:c5:d1:f0:20:c6:7b:f9:1e:cf:ec:de:96:ae:
99:20:48:61:b6:ea:90:59:fe:0d:0c:71:53:57:8e:
fe:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B0:42:F7:36:F1:91:E2:6A:0F:10:D8:F5:D5:33:75:84:FA:A4:30
X509v3 Authority Key Identifier:
keyid:1A:4D:09:23:EC:10:66:77:60:AD:88:2E:6A:F9:A1:56:99:C0:5E:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:7d:c6:12:44:76:c7:68:86:08:08:8d:2f:06:43:fe:51:d8:
a8:96:72:ab:8c:75:75:20:44:65:53:bd:13:fa:e8:90:a9:96:
71:80:81:32:d4:83:21:9b:46:64:1c:8c:a8:ab:7f:08:6a:db:
39:ac:e0:4a:f8:77:d6:1d:67:c8:59:f2:0e:b7:65:19:0d:40:
48:d0:02:6b:68:1c:4e:a1:d0:e1:7f:23:0f:4a:e6:69:7c:81:
b2:d5:64:ac:46:75:6c:17:ec:2f:4d:5a:46:9d:70:1a:c7:0c:
09:27:31:72:c8:9e:aa:09:85:4c:8d:0d:dc:4f:bc:c8:79:a4:
2a:b3:aa:04:86:22:23:46:89:8e:d5:de:f6:a3:08:15:04:92:
0d:6d:36:55:33:a2:30:25:3b:42:77:73:b1:4f:a1:03:56:4f:
5e:21:46:3a:42:0d:93:aa:15:bb:53:56:08:a1:cc:83:30:dd:
d9:dd:da:79:3e:fe:5f:75:4d:b6:61:40:77:ea:ef:c9:7b:f8:
d6:1e:a0:c9:21:c4:d1:f5:7b:8c:45:6d:f3:fe:b6:60:eb:f8:
a9:ab:bc:8c:65:6e:5a:d6:8a:c5:ce:48:2d:90:b2:b4:f4:9e:
e9:9d:26:7e:99:83:f7:22:1c:8a:ca:4c:ec:ad:62:1d:fb:39:
2e:39:1d:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:33:23 2026 by rpki-client