Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
File: gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft (raw, json)
Hash identifier: bamM0QZW6ipNtp8YI498bOqlYxSWouTIVQetqLZyoEw=
Subject key identifier: 27:E3:D8:32:B5:66:9C:20:48:9B:09:70:ED:2D:CF:30:29:E3:55:40
Authority key identifier: 80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
Certificate issuer: /CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Certificate serial: 019CAE35466F716C897B1B88EAEE75C7D9C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
Manifest number: 1850
Signing time: Mon 02 Mar 2026 11:00:52 +0000
Manifest this update: Mon 02 Mar 2026 11:00:52 +0000
Manifest next update: Tue 03 Mar 2026 11:00:52 +0000
Files and hashes: 1: 6YPsOlRZXzuXQifr40HsQHwppWA.roa (hash: 9XfpJtIAsjA2wiVUM5ZPG8hWeFlnclvOECDaYGybS4o=)
2: azo6oNDfWvxjhbTnCLvYx7uGQEg.roa (hash: LHMP4JoVnCkP5xgr60RpByWPQJHL/KBW7CXT+FDaByU=)
3: gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl (hash: YuKz9K/Fa04l/5cTYcf/BBikn+ROICOdt8eF6yt7UTo=)
4: xXiMv43g5gZyliPARvzZ7xyyW2k.roa (hash: lpdFA5yCXN5/FwIwDvBqyIeXJAPjPFSrUa0qNDgv7fQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:46:6f:71:6c:89:7b:1b:88:ea:ee:75:c7:d9:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Validity
Not Before: Mar 2 11:00:52 2026 GMT
Not After : Mar 3 11:00:52 2026 GMT
Subject: CN=27e3d832b5669c20489b0970ed2dcf3029e35540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f2:f5:11:ee:f6:fb:3c:92:42:7f:d2:6f:fb:
60:92:7b:7e:75:8c:b1:ca:d3:5e:57:5d:c4:45:96:
73:ec:bf:09:20:46:c5:7e:05:cb:19:c4:c1:2d:7d:
0e:f4:cb:1e:db:e8:41:5d:c3:01:49:e6:53:1e:f4:
af:ff:f9:5a:17:89:41:0a:14:c7:3e:79:ac:3e:9b:
7c:9d:49:fc:7e:3a:83:69:eb:45:db:9c:b8:12:7e:
61:3f:76:8d:96:c1:22:72:83:8b:ef:f1:70:ab:cf:
cf:fc:82:d1:9b:60:6d:a8:41:9d:d4:8d:8c:ca:02:
5c:ce:b8:22:84:6e:14:49:33:59:46:fc:d0:cd:fb:
b8:91:58:41:32:0c:93:ec:0c:d8:8d:52:36:e3:4e:
bc:70:2a:ac:dd:10:77:ac:94:26:7c:87:21:e2:83:
00:87:6c:b8:a2:32:a3:23:38:ef:31:3e:fe:50:b0:
e8:b3:f6:3c:a1:b7:f6:e3:20:30:c9:46:e5:80:f3:
a5:76:e2:ec:50:52:85:ec:4e:91:57:2e:26:50:40:
26:d7:02:b1:b1:75:09:cd:88:6a:df:57:2b:82:a1:
ee:f3:0b:6a:ac:58:8c:0e:99:da:50:a5:28:e6:e6:
a0:2f:fb:24:d3:0e:44:75:76:18:a1:e7:a8:c9:b1:
69:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E3:D8:32:B5:66:9C:20:48:9B:09:70:ED:2D:CF:30:29:E3:55:40
X509v3 Authority Key Identifier:
keyid:80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:c9:30:96:97:9c:a4:61:02:ef:3d:9a:d4:96:21:a5:1c:40:
07:66:78:48:82:c6:07:41:11:d4:92:76:91:5e:f2:04:25:5c:
f3:7e:a9:37:e8:76:01:a1:e2:6d:62:e8:46:82:8e:ea:b8:e2:
bb:c6:8d:50:1b:69:15:39:75:7c:49:6a:60:1a:d1:dc:2b:1e:
26:43:7f:ce:b9:89:94:09:d5:82:80:5d:a5:7d:81:f6:a2:41:
19:3d:f7:f4:85:0a:41:e7:d3:31:ca:fc:cc:df:18:4b:e8:39:
41:57:33:7e:73:cd:3b:4f:b1:d0:95:ce:97:79:23:fa:89:9a:
62:fd:96:4f:1d:34:82:41:71:10:a6:b6:fc:ff:57:86:27:31:
9e:d2:62:3e:94:df:15:76:b8:12:00:64:c3:90:26:ef:e2:fa:
a0:1c:f6:59:d3:62:c4:1f:94:ee:1c:10:d6:eb:82:e9:5e:50:
7e:2b:94:3e:f0:57:2b:4f:2a:b1:3e:ef:ef:21:ec:30:c2:8b:
f0:48:6e:4d:2d:e8:9a:9e:fc:34:09:a6:d9:ed:dd:87:f5:a8:
da:7a:57:6c:d6:2a:b5:fb:a0:7b:cb:24:ff:b7:b7:10:47:e1:
ac:0f:7e:3e:f0:e0:0d:bd:b2:33:5f:0b:06:a2:44:61:29:98:
aa:d8:a8:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:53:45 2026 by rpki-client