Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
File: gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft (raw, json)
Hash identifier: X3He1WU62am+l5ablC4UYoVZscBJCLTnql9Rg6EhJ0Y=
Subject key identifier: 93:ED:98:05:AA:4A:CF:84:A9:84:37:DF:45:3C:5E:B6:D3:AD:FA:75
Authority key identifier: 80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
Certificate issuer: /CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Certificate serial: 019EC1EE10D5D009AA434B8914BD90A40978
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
Manifest number: 1969
Signing time: Sat 13 Jun 2026 17:01:04 +0000
Manifest this update: Sat 13 Jun 2026 17:01:04 +0000
Manifest next update: Sun 14 Jun 2026 17:01:04 +0000
Files and hashes: 1: 0bqo0bUAXv_4CI9l73mqbhE8a2g.roa (hash: iEe2NrJePiOEkt4y1MNa7WFWziQ9517Q5QJMPLgLqF0=)
2: RT27iS5dmX-RpCR1NpzNSn8n2Uw.roa (hash: qBi2ogY38ZEBaQkYgKwRqyPlrZuDmr1aSjBSW1/pXdo=)
3: gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl (hash: fhjCS5Mw0v/BX+uHiw68D7ZjYwrf/u5dbrOgiLrvSAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:10:d5:d0:09:aa:43:4b:89:14:bd:90:a4:09:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Validity
Not Before: Jun 13 17:01:04 2026 GMT
Not After : Jun 14 17:01:04 2026 GMT
Subject: CN=93ed9805aa4acf84a98437df453c5eb6d3adfa75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:66:93:00:81:44:c2:27:fd:e7:31:58:2e:1d:
c1:ef:5b:86:d5:f3:4d:e2:a3:58:40:95:01:7f:6a:
e2:40:32:9e:cd:ed:8e:dc:68:d5:28:c0:00:15:1a:
1b:fe:f1:03:79:da:16:53:f6:76:f7:c4:2d:68:52:
30:0a:c6:7e:aa:c1:32:9b:e8:91:05:7f:b9:71:0a:
f1:e5:fb:ce:dd:90:8a:d9:dc:4f:71:3c:54:b2:d7:
92:86:a8:f4:6d:e7:ec:2f:f6:54:65:65:08:7c:4a:
4b:20:95:52:12:fe:85:f3:11:43:94:56:a2:26:b0:
52:10:a8:db:2b:2f:bd:42:41:5d:5d:c1:52:c5:68:
d3:e2:36:e5:de:5f:72:a8:38:b2:8d:df:ce:c2:40:
d6:da:d8:f1:8e:52:75:30:31:87:45:ea:12:2a:a2:
de:c6:29:17:d5:c6:7c:e3:a4:63:78:f0:f1:c4:8b:
e8:26:5f:4e:14:5f:36:b1:70:a0:5d:05:4d:c5:d2:
be:d9:29:09:43:5c:c4:54:80:08:ae:23:67:47:0f:
d1:b4:bb:53:3f:5e:df:62:68:5c:b2:d7:87:43:f1:
91:b1:4b:e2:07:c9:27:53:3a:3c:ec:ce:25:30:26:
2d:32:b7:3d:11:c8:df:1f:d8:4d:29:30:43:0c:6c:
1a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:ED:98:05:AA:4A:CF:84:A9:84:37:DF:45:3C:5E:B6:D3:AD:FA:75
X509v3 Authority Key Identifier:
keyid:80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:6f:c6:14:f2:d1:f7:3c:4b:07:65:b3:eb:f6:45:72:ed:b8:
29:e2:2c:2d:9c:f9:9b:24:e9:e6:af:4e:7a:ec:c3:15:8f:1d:
ca:1b:c5:db:b7:88:00:6a:bc:eb:20:85:b0:c0:9f:21:0c:74:
af:60:8c:4c:64:15:bb:22:72:55:58:e4:50:df:5c:64:73:ed:
4e:be:0f:26:f5:4e:43:8e:a8:3a:1b:40:a1:f6:b2:11:35:76:
75:e9:19:d7:8e:d5:ee:87:c1:1d:20:0c:9d:54:4a:59:71:8e:
ad:93:90:ef:88:d1:34:cf:90:f8:c8:3d:4f:8f:64:c0:33:98:
f2:3c:ba:f6:65:42:f8:29:12:5d:75:54:7e:a0:45:20:4a:7e:
95:20:f0:3b:bc:e6:36:b5:65:5d:d1:25:69:8f:53:d8:03:09:
46:59:e7:14:3d:50:4d:6a:f9:67:19:66:61:1d:ee:76:c2:ba:
70:7b:d3:5f:e7:fa:62:89:19:de:d9:df:c0:76:35:16:dd:1b:
73:02:18:06:f1:ee:7d:80:37:29:91:2f:c2:46:ce:dc:66:6d:
0f:98:3b:68:4b:b7:a2:7d:72:66:2d:d3:f2:e6:9e:22:b9:ad:
bc:dd:f4:aa:c8:b7:7a:ab:9b:97:36:8d:07:3d:63:d6:6c:76:
53:9e:c4:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:47:18 2026 by rpki-client