Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: qZqb4j8ZHvMs07GR1L1YOFEpNT0h9RRwYHxa9piIsvU=
Subject key identifier: 9D:20:70:38:1C:CB:53:67:89:CE:EB:4B:FF:B8:EC:1A:B0:F9:4C:45
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 019CAEA3870042276BB0FE09431CC217A099
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 06A0
Signing time: Mon 02 Mar 2026 13:01:18 +0000
Manifest this update: Mon 02 Mar 2026 13:01:18 +0000
Manifest next update: Tue 03 Mar 2026 13:01:18 +0000
Files and hashes: 1: TADovInnVhImIAMNLhy833dYeyU.roa (hash: f/dalF6vRD8VNn9XqvAc5SALl8hYeWv1uoN4z7iWDuo=)
2: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: pq2oYxW1t1SDj0V6ej4FypY46CnE/v1ZjCLAaLFSNIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a3:87:00:42:27:6b:b0:fe:09:43:1c:c2:17:a0:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Mar 2 13:01:18 2026 GMT
Not After : Mar 3 13:01:18 2026 GMT
Subject: CN=9d2070381ccb536789ceeb4bffb8ec1ab0f94c45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b7:38:40:00:1b:f6:15:03:64:00:37:2e:1d:
76:79:ad:3f:e7:3a:1e:29:e8:ba:36:3e:04:3d:a9:
68:44:83:0e:27:b1:64:54:e1:73:4e:ef:03:f7:40:
e2:78:b6:43:d2:1c:e0:35:ca:4d:b3:97:1a:5b:1d:
94:09:eb:51:7a:c4:0d:1c:61:5c:9f:c1:76:06:43:
b3:77:36:6f:8c:d0:70:0c:43:02:ef:68:27:3f:3a:
84:18:d8:c9:72:07:eb:d3:6b:d2:a7:73:46:a8:4c:
67:e1:ce:aa:5b:b0:b7:74:61:71:f8:12:b1:38:c3:
29:e9:16:4d:cc:bf:73:c3:ba:2b:2c:99:66:00:ce:
97:73:0b:5a:aa:ca:78:4f:8e:47:7d:53:94:f0:f6:
9d:fb:74:2a:75:e6:d6:ff:fc:3d:54:60:4e:49:a4:
e7:3b:4c:83:01:a4:14:c0:b1:21:34:49:1a:5e:dc:
3c:98:ae:a6:af:13:86:a3:dd:3b:7d:0a:1a:ae:b4:
f7:63:e6:a2:73:a8:3c:1b:1e:24:11:99:21:c2:f9:
1f:71:77:87:3f:51:ab:d4:a8:ce:79:fe:29:77:0a:
aa:0e:2a:44:ab:4b:6a:ed:d6:31:6d:42:de:c9:dc:
91:28:93:dc:38:19:03:6f:0b:3c:cd:1c:e2:17:cc:
67:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:20:70:38:1C:CB:53:67:89:CE:EB:4B:FF:B8:EC:1A:B0:F9:4C:45
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:c5:da:a7:c1:88:34:bc:7d:0a:8c:f3:1e:f8:6d:a7:53:dc:
31:b9:0a:90:11:1e:60:8a:9a:eb:f4:8b:aa:61:90:21:23:9c:
98:39:97:38:d0:00:db:27:d5:1a:5b:0c:fd:24:e4:bb:63:31:
e1:20:01:20:10:46:d4:31:b0:06:74:23:34:9a:3f:76:e4:2f:
7d:61:3b:75:c6:ed:c5:0d:f7:44:eb:a4:80:43:ab:0d:fd:c2:
bb:a8:b2:79:77:52:73:e0:5d:42:2f:1a:ed:e5:30:b7:10:ab:
81:e3:05:9b:46:a6:bb:5e:2f:97:01:f3:00:98:ee:cf:ba:8b:
8e:76:1e:dd:01:af:47:c0:b6:47:d0:fd:8e:22:ed:34:d9:6c:
8e:d5:10:50:77:6b:a6:83:c1:4d:74:00:ce:2d:06:b7:c1:72:
2a:e6:4b:00:79:b1:7d:eb:00:b9:73:8b:ea:a7:19:4b:5c:d5:
c1:99:f7:c4:5b:b8:01:7b:cb:f2:9e:d7:39:36:0b:ea:14:b6:
c3:c6:c8:78:73:d9:95:fb:8b:cd:72:92:d9:00:d3:06:66:fb:
2e:a3:c4:08:04:22:39:1b:8d:b7:6b:bb:38:77:ee:01:7e:b8:
60:33:6e:3c:65:d2:a1:6d:32:c1:03:2a:b1:34:1b:e5:21:15:
04:c7:9a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:02:11 2026 by rpki-client