Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: 6vFNj+L+ahTtjNHi1wx/QGw2lhFIR/2eFJEP6ahE+oU=
Subject key identifier: F5:1B:B9:4C:DB:7C:06:E7:26:A4:1C:39:9D:CC:F0:16:1B:78:B7:C4
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 019D9C2CD1F7D624C835F5366E03E281BA6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 071B
Signing time: Fri 17 Apr 2026 16:01:16 +0000
Manifest this update: Fri 17 Apr 2026 16:01:16 +0000
Manifest next update: Sat 18 Apr 2026 16:01:16 +0000
Files and hashes: 1: TADovInnVhImIAMNLhy833dYeyU.roa (hash: f/dalF6vRD8VNn9XqvAc5SALl8hYeWv1uoN4z7iWDuo=)
2: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: 2+93sW8dH6qj2+5GnE2NUP+Lf5w3XGopn9G96UcTHgs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:d1:f7:d6:24:c8:35:f5:36:6e:03:e2:81:ba:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Apr 17 16:01:16 2026 GMT
Not After : Apr 18 16:01:16 2026 GMT
Subject: CN=f51bb94cdb7c06e726a41c399dccf0161b78b7c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:be:69:d6:c9:60:b0:2b:c7:84:e1:55:11:bc:
ba:e4:77:06:04:9d:72:28:7c:3d:c3:ae:03:5f:ee:
e3:18:93:fe:2a:df:27:c7:6f:f5:90:90:87:ab:bb:
06:fe:fe:b0:02:34:a3:8b:48:6a:e3:2c:e8:0c:e4:
67:17:a8:a5:99:eb:84:63:af:5a:bf:59:8b:51:2c:
6d:8f:d9:98:9d:9c:bd:28:5e:ec:40:be:7e:96:17:
d8:63:a3:b9:cd:3a:83:ef:7a:87:50:8c:5d:35:1a:
10:b5:d8:63:b3:eb:c8:27:39:94:68:a3:cc:33:64:
c1:7c:33:e3:2d:5b:d6:3c:5e:13:18:9c:b8:43:df:
d6:4e:60:eb:1d:82:a4:ce:0b:ca:c5:ab:98:9f:e8:
98:a2:be:f9:72:cf:4c:52:7a:06:13:fa:a8:d7:24:
ef:77:d0:4d:db:1f:e0:09:2b:be:63:20:84:59:9e:
5a:4b:f6:8a:83:9b:35:2d:ce:e6:40:03:c0:41:e1:
a4:d4:97:80:c0:01:ad:c1:f2:0a:53:1f:0f:69:0c:
1d:e9:b5:8f:cd:c5:f5:34:89:91:76:1c:a7:fd:35:
81:98:40:af:9d:31:45:f3:5d:0e:88:96:35:b8:5e:
59:74:67:7e:1f:57:1e:43:17:8e:13:b6:4c:8a:af:
5d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:1B:B9:4C:DB:7C:06:E7:26:A4:1C:39:9D:CC:F0:16:1B:78:B7:C4
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:d8:e8:3b:6e:65:58:a6:d2:40:d8:15:c1:85:01:94:19:2e:
88:31:de:5f:5d:ad:14:07:e0:0c:5b:28:d8:06:63:a8:fd:c1:
63:dc:10:7f:3e:5c:3a:9c:de:02:39:22:4d:55:82:7b:1b:2b:
67:d4:b0:b3:d0:0e:9b:04:20:9f:d4:3f:5d:83:fd:03:0a:41:
d4:b4:30:c8:e6:34:f7:13:64:14:7f:f8:df:b6:95:8e:ab:91:
82:14:cb:0f:44:c4:57:bd:6f:74:63:3f:e7:c4:6f:b2:3a:17:
29:5c:57:5a:5e:2a:36:a8:33:c6:5b:49:18:df:ff:5b:b3:09:
9c:8e:33:13:32:60:15:16:fd:50:47:1d:50:b5:33:02:c7:64:
a9:23:85:52:24:e0:24:a4:09:e0:93:5b:f7:0e:4b:51:85:de:
31:bb:11:ff:84:0c:96:aa:2e:58:da:b1:a0:2b:f3:28:42:e7:
aa:2b:b2:bf:1f:04:e5:65:dc:89:a7:e9:c7:87:a2:9e:b2:fb:
81:60:76:74:87:86:cf:fe:e8:a1:f9:40:a1:bf:d2:76:f6:19:
04:1f:d4:48:a9:05:63:35:af:18:c3:76:2d:70:05:1f:3e:63:
8f:e0:a7:65:97:d5:86:1f:fe:7b:af:1c:8a:ff:34:7e:7a:b8:
57:28:70:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:06:23 2026 by rpki-client