Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
File: Gk0JI-wQZndgrYguavmhVpnAXvg.mft (raw, json)
Hash identifier: IUNPE1AeE9XeJhDIpjR4ykju4jeyiu7zuQveWpche9I=
Subject key identifier: D6:0F:0C:03:B8:F5:7B:B8:A4:5F:CB:CF:75:F1:91:34:C0:42:8D:11
Authority key identifier: 1A:4D:09:23:EC:10:66:77:60:AD:88:2E:6A:F9:A1:56:99:C0:5E:F8
Certificate issuer: /CN=1a4d0923ec10667760ad882e6af9a15699c05ef8
Certificate serial: 019EBF23C7DC7B450EA63DB723109D106ECE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
Manifest number: 11F0
Signing time: Sat 13 Jun 2026 04:00:53 +0000
Manifest this update: Sat 13 Jun 2026 04:00:53 +0000
Manifest next update: Sun 14 Jun 2026 04:00:53 +0000
Files and hashes: 1: ENz0VTcEnPSXBE5Znpjw7lUaAwA.roa (hash: DP27/a5o1Ym+vesDLFqV0Tua4ny+ds0/pH34jhmErS8=)
2: Gk0JI-wQZndgrYguavmhVpnAXvg.crl (hash: B/zoP57Js9rrVssA7Vx2+7lkqUHAA+1OPNSIk8cbES4=)
3: Y-eJmA6TDVKIS1tuOw2dm1_Jqdc.roa (hash: KqQ8TKxBYl3JumzrSj+0qt5zeDJPsxKpAnGsc38qwpE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:c7:dc:7b:45:0e:a6:3d:b7:23:10:9d:10:6e:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4d0923ec10667760ad882e6af9a15699c05ef8
Validity
Not Before: Jun 13 04:00:53 2026 GMT
Not After : Jun 14 04:00:53 2026 GMT
Subject: CN=d60f0c03b8f57bb8a45fcbcf75f19134c0428d11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4c:34:82:35:e3:55:6b:b4:15:6c:97:f6:b6:
15:ee:ba:eb:2a:cb:63:31:e4:e6:b6:5a:43:d3:ee:
af:a0:b7:cb:88:23:29:38:05:7a:d1:69:8f:92:cd:
cf:c7:76:a5:3b:1c:a0:a1:97:4e:fc:3d:40:8c:81:
b5:72:5f:36:ca:7e:b5:24:8c:19:ff:1f:93:55:42:
f1:e6:69:61:6f:2f:b7:0a:5e:15:20:c4:93:12:18:
b3:c5:e9:39:30:c0:57:e8:e1:09:d0:0b:31:ba:e8:
3e:f2:ec:81:e4:7e:1c:de:a1:ed:16:28:c7:3c:6a:
68:13:5d:c4:5b:17:cd:7c:be:ae:04:fa:48:eb:6c:
73:a4:43:67:3d:d9:9b:6e:1e:92:17:6c:c7:85:a6:
e1:9c:09:6b:fe:52:83:69:93:b7:bd:2a:1a:3d:bb:
e9:ee:9f:9a:db:f9:39:d6:c5:13:cd:45:89:50:33:
c5:ad:6a:c1:5c:b2:60:90:74:f1:47:ca:e2:2e:e1:
c8:dc:60:bc:fb:45:0e:8b:df:4d:56:99:b0:68:de:
b3:a4:73:00:91:00:20:3c:f2:94:21:d2:58:45:d7:
51:1c:a6:67:cd:54:27:c4:a5:b5:44:e0:d7:57:79:
92:ca:c5:39:35:ee:b2:73:f2:f1:45:85:66:0f:e7:
da:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:0F:0C:03:B8:F5:7B:B8:A4:5F:CB:CF:75:F1:91:34:C0:42:8D:11
X509v3 Authority Key Identifier:
keyid:1A:4D:09:23:EC:10:66:77:60:AD:88:2E:6A:F9:A1:56:99:C0:5E:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:6d:7b:a3:32:77:a1:5c:00:8a:a5:c2:18:75:7c:7c:98:81:
4b:55:87:b4:73:07:4f:fd:06:20:0f:a2:dc:3d:f6:54:cc:5a:
75:f1:6d:83:79:1c:58:cd:19:42:32:19:03:b9:48:86:f9:5d:
7f:02:39:f0:05:e2:56:bf:9f:41:04:ba:68:a1:7d:78:14:1e:
98:f3:b7:c4:6f:17:c7:3d:37:8b:e3:cc:fb:4e:22:e5:23:d4:
cd:3c:12:00:39:5f:2b:f9:ca:4d:ba:a9:80:3e:6a:80:35:ef:
ef:68:53:bb:56:ae:ad:d6:1a:48:81:a8:38:b1:a6:54:d4:2e:
26:94:90:4d:10:f7:86:1f:c7:35:98:d3:77:77:af:9e:6a:08:
78:f3:f0:c6:fe:23:52:26:90:08:05:8c:71:1d:cb:86:80:5d:
5c:1d:8a:e6:94:fb:bc:86:8c:4a:f0:c4:47:49:2a:75:12:05:
75:7f:ae:17:5b:1a:34:d0:66:fd:29:41:37:4c:2d:2e:26:6b:
26:e3:11:c4:9e:ef:62:ed:37:30:52:f5:df:9a:ec:64:bf:30:
2b:42:33:11:0e:c7:72:d7:16:05:93:31:79:43:cb:1a:bf:dc:
fa:cc:93:85:5c:8e:91:80:8f:15:0a:33:3f:bc:ae:ab:e2:95:
4a:58:52:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:33:36 2026 by rpki-client