Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
File: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft (raw, json)
Hash identifier: sy2SES0A7kGT5JmFA5ArSbjSGAEFKfHa8xRuZCLHdwM=
Subject key identifier: 02:4F:28:79:A5:F2:5B:1A:EA:F5:23:20:0A:53:D0:FE:07:14:CE:0D
Authority key identifier: 82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
Certificate issuer: /CN=827313247c486fe434833c09087a00a900301840
Certificate serial: 019CADC800224DE3FC395DE1C3045A4A1709
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
Manifest number: 1845
Signing time: Mon 02 Mar 2026 09:01:31 +0000
Manifest this update: Mon 02 Mar 2026 09:01:31 +0000
Manifest next update: Tue 03 Mar 2026 09:01:31 +0000
Files and hashes: 1: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl (hash: NgBVeXa7CYoHHS3wY3C87zajks3EVEkZVt2No+w12Qk=)
2: tfKI27h4y6Yqd_bp6Jq3Mvuha5U.roa (hash: nvsIEu3C8vbMw8Dq30qS8gfgwYf/q4CpFRCeTjasyyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c8:00:22:4d:e3:fc:39:5d:e1:c3:04:5a:4a:17:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827313247c486fe434833c09087a00a900301840
Validity
Not Before: Mar 2 09:01:31 2026 GMT
Not After : Mar 3 09:01:31 2026 GMT
Subject: CN=024f2879a5f25b1aeaf523200a53d0fe0714ce0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0e:21:c1:1d:58:77:24:e4:89:09:2c:ed:e7:
5e:db:a3:a5:e9:05:5e:1b:9a:c9:f5:f2:31:15:17:
0f:02:06:cf:98:45:4f:64:c7:f9:c6:87:09:30:0e:
43:b5:6a:d2:97:e4:06:01:77:85:1c:4d:f0:22:24:
21:e7:00:04:9b:c4:65:75:c5:ea:e3:d9:e0:dc:0c:
bd:c7:fd:d9:bf:6f:6c:a3:7d:2f:c6:49:64:69:4b:
db:47:8f:c1:03:2a:74:32:80:c8:b9:e2:ce:44:fe:
98:8f:58:70:1e:d2:e5:d4:99:90:e2:4d:99:d3:c2:
e7:14:29:d0:f0:9d:2a:af:2b:03:ff:56:03:87:05:
98:7d:12:ee:e3:e2:7c:ef:f6:f2:61:75:24:16:82:
f4:d6:16:90:92:ca:ed:0c:28:ec:8a:df:d9:81:69:
f7:81:8d:e3:18:a2:70:43:cd:1f:b6:5f:59:52:ce:
be:75:ed:e5:3e:77:e9:a8:00:45:20:88:5d:08:28:
5b:96:f0:e9:5f:91:be:c2:62:cb:76:35:c5:31:31:
17:e1:6e:7e:c5:b2:53:89:87:13:ac:84:94:9f:a2:
5f:33:66:17:af:8b:b4:a9:09:41:8e:02:a2:53:e6:
89:31:3e:62:5a:9d:37:d0:56:87:97:9d:0c:0e:62:
5d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:4F:28:79:A5:F2:5B:1A:EA:F5:23:20:0A:53:D0:FE:07:14:CE:0D
X509v3 Authority Key Identifier:
keyid:82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:91:6a:da:ae:06:d3:f2:07:20:cc:96:e2:d3:58:15:5c:37:
06:6d:6e:04:81:d4:6f:93:12:9b:15:b0:d7:aa:28:c0:72:9d:
96:82:7d:78:e6:da:06:59:86:d5:eb:40:da:41:bf:05:9b:07:
77:1b:1b:90:1a:bf:4d:68:e8:47:55:88:c1:4f:09:ec:fb:52:
2e:bd:d6:f3:91:8b:95:60:f4:3e:32:16:4d:b8:df:cf:a9:33:
29:a9:6b:63:d4:67:76:99:38:ea:7d:b9:bb:ff:dc:30:2d:8d:
7f:84:ec:31:d4:1e:db:20:69:20:f1:58:ec:83:89:9f:33:93:
7c:5d:61:db:82:49:57:8d:8b:59:27:eb:89:9f:6e:14:0d:c7:
8d:15:30:2d:89:37:3d:7f:b9:4f:41:da:29:74:ea:4e:32:bc:
7a:c6:9a:78:25:4f:32:31:f8:4d:87:9f:5e:bb:38:28:d7:56:
97:be:fd:02:3f:f4:94:f2:c0:ff:59:5c:9e:69:cb:b4:35:b6:
2b:f5:fa:98:b3:cb:ca:6f:fd:00:1d:71:f3:32:b8:e4:35:18:
0f:26:64:b5:e0:b0:d0:8c:1d:a6:81:3d:9b:39:c3:f7:b3:10:
41:e0:a4:78:31:b4:5c:02:6e:9a:04:df:d9:46:e0:3f:24:9f:
c3:27:43:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:55:09 2026 by rpki-client