Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
File: gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft (raw, json)
Hash identifier: XTNN/GcGJhsU3IRrqjSFK5QMiC9qDayAJEnWzuDGhX8=
Subject key identifier: 34:89:A2:37:05:81:13:E7:61:8B:15:66:8B:34:34:6D:32:EA:D1:E3
Authority key identifier: 80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
Certificate issuer: /CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Certificate serial: 019D9BF55E6CB5C134901A2B4C5B593B466F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
Manifest number: 18CE
Signing time: Fri 17 Apr 2026 15:00:42 +0000
Manifest this update: Fri 17 Apr 2026 15:00:42 +0000
Manifest next update: Sat 18 Apr 2026 15:00:42 +0000
Files and hashes: 1: Vsdmkmln10BiNEuLpWL8g2ijOQY.roa (hash: K20X211w556xHOeU3InnMg8U45i9ouCLxtCagR86/1M=)
2: gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl (hash: /hWjQ2JhwgCdwzTWOc1ODfQt7kjYytH2+6o5CWXPMWA=)
3: wKFjWYTMPtrlK-c49_r01lazux4.roa (hash: AjjqYm+l9OOwd9NCFpN4Uf4cEvsbCyWIxuOKPKNz6YQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:5e:6c:b5:c1:34:90:1a:2b:4c:5b:59:3b:46:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Validity
Not Before: Apr 17 15:00:42 2026 GMT
Not After : Apr 18 15:00:42 2026 GMT
Subject: CN=3489a237058113e7618b15668b34346d32ead1e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:00:90:36:58:99:71:78:52:ec:6d:cc:8a:4a:
b5:de:25:00:75:91:68:1a:c7:14:b6:9d:9c:f2:0a:
e2:12:e1:59:ec:9c:ef:a4:73:b8:bb:51:d3:28:28:
37:2b:d2:1c:9b:48:d8:87:16:be:4e:d7:61:e0:82:
76:c6:16:43:ac:7d:e8:43:72:4c:d9:c9:44:a7:c9:
e7:9c:46:c4:65:21:d3:f8:75:8f:b4:1d:79:fc:2d:
68:cf:02:6d:1e:6b:b1:81:98:6c:1c:8a:8a:5c:d8:
88:be:58:ac:fe:26:17:86:e5:1e:22:e1:07:24:e8:
9e:0b:32:ab:71:ec:83:49:8d:cb:f8:83:bc:c5:4b:
de:f5:1e:f0:5e:2e:35:76:3b:56:87:ae:13:68:f2:
a8:8b:d0:16:42:7d:52:62:60:a7:85:17:16:94:36:
0d:aa:a9:ee:a2:31:f4:bd:03:03:46:37:bf:b8:98:
e8:48:e0:52:e4:30:c3:3e:73:98:39:ef:f1:8b:17:
16:82:e8:ee:17:5e:d7:d6:b9:70:f8:97:27:48:54:
3c:78:ef:3c:16:6b:52:3a:ab:16:24:e6:ef:19:fc:
c3:d0:30:91:c0:21:27:0a:ce:80:cd:b5:72:ce:ab:
9a:eb:b2:87:15:2d:15:29:b0:7a:b5:7a:d4:a2:a5:
46:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:89:A2:37:05:81:13:E7:61:8B:15:66:8B:34:34:6D:32:EA:D1:E3
X509v3 Authority Key Identifier:
keyid:80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:22:4f:2a:43:dd:f2:84:7f:c7:0a:a4:6f:7e:9f:2a:e7:83:
93:b2:59:3d:5d:73:15:1a:65:d7:5d:5f:d4:0f:a6:f2:7a:ef:
a0:e8:d4:e4:50:5a:c2:d3:c0:e5:fa:f9:ac:bf:cd:3f:7d:ce:
50:8c:5b:c4:82:1f:a7:32:d9:d9:a7:35:ef:a5:63:22:d4:98:
7a:99:d0:62:82:aa:04:db:da:cc:5d:4d:68:98:94:b0:0a:3b:
c2:24:7c:02:e8:3b:a9:63:53:7b:fc:39:2d:4e:d1:6c:0b:82:
29:97:23:3d:de:32:bc:2b:f4:89:53:07:2f:22:7c:8c:d1:ab:
2c:4d:af:de:99:06:30:3b:e1:80:8c:e5:d8:e1:3b:57:6e:78:
2c:36:ce:66:a7:c5:66:56:c4:45:42:7f:61:e6:8a:3d:28:87:
31:3a:c4:9f:98:e2:d3:3f:6d:ae:b3:3c:48:95:1f:08:ca:83:
23:52:04:13:23:0d:64:5b:a1:4a:2c:a8:92:4c:51:c0:59:aa:
ea:ec:46:d4:01:eb:85:5e:6a:32:61:ec:29:31:b3:ed:cb:e0:
3d:14:5e:90:fe:b7:6e:c2:bc:f7:ec:be:08:3a:8e:ea:d9:ad:
f3:08:21:91:a6:c1:4b:73:d3:ca:76:7b:d2:a3:4b:90:67:65:
8d:a1:b4:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:44:19 2026 by rpki-client