Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
File: gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft (raw, json)
Hash identifier: HQ/rB5EWBH2QvFPgdCKmzirxxjJq/hCnbpxMbBgqC6g=
Subject key identifier: AE:9B:B4:26:E9:D9:7D:63:3A:52:B4:96:12:AD:5A:09:A6:F0:D5:67
Authority key identifier: 81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5
Certificate issuer: /CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
Certificate serial: 019CAD595FE04803D5FEFCBA3774DAE34D4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
Manifest number: 11B5
Signing time: Mon 02 Mar 2026 07:00:41 +0000
Manifest this update: Mon 02 Mar 2026 07:00:41 +0000
Manifest next update: Tue 03 Mar 2026 07:00:41 +0000
Files and hashes: 1: gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl (hash: kQsbqlh6A1FC0EiVV+tSo0bDlnMTuZvU5+khk2fydZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:5f:e0:48:03:d5:fe:fc:ba:37:74:da:e3:4d:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
Validity
Not Before: Mar 2 07:00:41 2026 GMT
Not After : Mar 3 07:00:41 2026 GMT
Subject: CN=ae9bb426e9d97d633a52b49612ad5a09a6f0d567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:9c:78:fd:b3:7e:27:e9:da:41:6b:46:18:f5:
88:3c:bd:99:81:7c:92:99:76:df:15:b8:96:79:c1:
33:fd:2a:43:9c:39:bc:0c:60:a8:6a:ca:71:a3:bc:
0f:40:1a:74:01:7d:52:5a:29:ef:10:b3:a9:7f:a2:
e5:aa:7c:b8:b6:3f:0f:2c:06:36:25:14:b9:f6:a3:
02:a6:e6:b0:dc:44:77:f8:f9:06:30:31:20:75:35:
28:6b:c9:7a:02:4e:fe:90:cd:a8:1d:c8:34:9f:01:
5a:28:f7:7d:38:52:49:a0:bd:21:cf:0d:41:0c:81:
38:97:e9:f9:97:1c:e1:fd:c0:3d:51:a2:7b:4f:bd:
cd:7e:5b:4e:77:93:a6:4d:30:6c:6d:d4:a9:a4:3e:
48:ad:2c:aa:d2:d4:2a:e6:46:ed:01:75:6e:f2:70:
10:8f:35:64:26:47:7c:82:47:fd:61:d8:8d:4e:e7:
1b:8c:ae:06:d2:de:2e:26:2c:98:05:3a:78:7e:82:
d0:99:7b:00:61:e7:b4:7e:66:7e:68:a6:72:c6:76:
e9:60:ab:ba:c6:45:89:fc:3a:e3:9d:83:c7:8c:3b:
f1:68:c4:ac:ad:9c:be:6e:20:fe:9c:da:15:fa:fa:
e9:f6:70:04:aa:12:d8:b0:d8:5c:cb:22:4b:dd:25:
34:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:9B:B4:26:E9:D9:7D:63:3A:52:B4:96:12:AD:5A:09:A6:F0:D5:67
X509v3 Authority Key Identifier:
keyid:81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:31:06:7e:17:7e:b4:8e:9e:f4:ec:7c:4d:e2:a2:18:2f:71:
4e:54:6a:de:d5:70:ff:cb:dd:e1:4a:1d:3f:ef:5a:5f:8b:74:
8e:5b:68:5a:f0:18:d1:9e:4a:b7:b5:61:5e:db:c0:93:ac:ce:
ba:dc:75:a9:61:cf:42:75:04:9f:7c:54:98:41:d1:a6:7d:fb:
59:65:5b:3f:3d:ae:5a:28:45:a7:ad:16:ec:ff:54:df:8b:fe:
c4:7f:02:a2:71:8c:1d:54:3f:04:8a:15:dd:9d:96:0b:ac:ec:
fe:6b:36:37:00:01:e3:5b:63:83:84:c2:9d:d0:b4:f8:4f:f2:
35:f1:ea:aa:8d:92:5f:63:d6:80:70:d0:2c:a2:3c:09:fb:9b:
5a:29:ac:65:a6:f5:5b:9b:5b:45:b4:16:3b:d7:aa:c4:8b:2a:
5f:66:20:16:56:25:89:a6:ae:cd:4d:cb:d7:29:49:6c:50:e2:
8c:c1:91:bd:2a:d3:92:02:15:bf:9b:f4:da:fc:ab:8a:63:9a:
72:48:96:83:18:06:31:c1:8b:9b:16:fe:c5:51:f1:87:5e:49:
ea:83:00:6c:ac:25:ab:6c:a2:d0:0e:ce:d9:a0:c3:fd:c9:4b:
73:02:da:4b:7b:52:0f:b4:43:8e:0b:d2:f1:29:19:4b:ea:8c:
c2:72:19:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:59:32 2026 by rpki-client