Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
File: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft (raw, json)
Hash identifier: oJX9A1vv1w1HtW7jaL3TuzTXrf/BK4ohvByoDiOs0jY=
Subject key identifier: D9:94:0A:59:A2:E0:BB:00:B9:2C:B6:91:7F:E1:C4:80:97:09:F0:FA
Authority key identifier: 82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
Certificate issuer: /CN=827313247c486fe434833c09087a00a900301840
Certificate serial: 019D9B50C3FC591AAFA8E63810D60E47EE29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
Manifest number: 18C0
Signing time: Fri 17 Apr 2026 12:00:54 +0000
Manifest this update: Fri 17 Apr 2026 12:00:54 +0000
Manifest next update: Sat 18 Apr 2026 12:00:54 +0000
Files and hashes: 1: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl (hash: oASfro7A1Fx1oyUEg8VcuVOpU8sn18V+RhEYzacOaIY=)
2: tfKI27h4y6Yqd_bp6Jq3Mvuha5U.roa (hash: nvsIEu3C8vbMw8Dq30qS8gfgwYf/q4CpFRCeTjasyyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:c3:fc:59:1a:af:a8:e6:38:10:d6:0e:47:ee:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827313247c486fe434833c09087a00a900301840
Validity
Not Before: Apr 17 12:00:54 2026 GMT
Not After : Apr 18 12:00:54 2026 GMT
Subject: CN=d9940a59a2e0bb00b92cb6917fe1c4809709f0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:ef:32:5d:df:e7:23:61:78:42:a6:fc:6a:1d:
e4:50:ae:24:97:1c:f8:46:45:94:76:8a:2c:0b:ab:
a1:bc:e1:d3:03:87:4c:90:f6:bf:c1:14:7e:c9:47:
c6:c7:db:6c:8c:d1:ba:10:9b:05:94:34:1b:28:63:
fe:de:f2:d7:58:e8:84:f9:50:6b:fd:ef:63:3a:c0:
20:a3:50:4c:00:df:9a:35:e4:e6:16:b8:29:1b:9d:
1f:0a:f0:94:fa:a1:5e:19:35:5e:91:cb:08:de:b7:
89:3c:68:61:1a:7c:a2:6e:c5:ed:9b:24:0b:54:5a:
fe:44:19:de:9e:70:45:42:39:7b:72:0e:de:e3:39:
8a:9c:e1:3e:7c:ca:bf:55:ac:ac:a8:7c:1e:d9:6a:
61:1a:80:d6:c1:2e:a6:07:6c:bc:c0:56:74:1d:f1:
b1:8e:3f:8f:51:79:0e:0b:d9:f0:fb:46:e7:73:71:
d2:ce:41:77:75:1d:ad:09:3b:b2:44:26:0a:c9:62:
a3:d5:06:51:a1:90:50:7a:49:60:8e:21:69:63:76:
9b:3e:40:91:c6:3e:34:6f:8c:d4:0e:02:c2:51:6e:
b2:ed:d7:6a:f2:28:c3:f3:37:75:3f:38:a5:68:45:
11:ec:4a:75:57:4f:ea:e0:27:4b:2f:b4:ca:f3:f4:
d2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:94:0A:59:A2:E0:BB:00:B9:2C:B6:91:7F:E1:C4:80:97:09:F0:FA
X509v3 Authority Key Identifier:
keyid:82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:d1:6a:e3:8d:6a:c8:1b:61:a4:03:af:cd:52:50:bd:11:5a:
33:09:3f:b1:67:18:6f:d0:b5:ed:73:34:88:a1:49:a2:a0:7b:
8f:bd:48:ff:d1:d2:a1:52:95:92:6e:f0:ca:8d:87:96:88:fa:
5b:55:d4:f5:28:6f:fa:79:c5:a5:d4:e5:3a:75:22:52:70:a2:
0d:e8:c1:b9:a1:77:06:35:87:fd:ed:b7:6e:df:a8:f8:05:ca:
45:86:4d:53:ad:10:7e:80:b0:b6:e2:63:79:9a:85:d1:2e:0f:
b1:c6:bb:c5:17:86:59:a0:b8:47:2b:62:23:70:ba:1e:ca:4f:
2a:83:d2:9e:d1:70:cf:0e:32:c2:ce:66:c8:a9:de:bc:ec:58:
d9:e4:57:c6:19:9d:bb:97:f8:91:09:fa:45:d3:67:87:08:db:
15:80:da:18:65:98:71:e4:64:73:de:bb:6c:d2:69:56:90:57:
19:70:55:8f:85:71:d0:f4:74:7c:e0:ca:46:09:e7:bd:8f:0f:
9e:7b:67:8e:2c:c6:83:7e:40:35:de:3b:57:1e:25:04:ea:6d:
e7:25:f1:d7:19:a8:9c:d8:1e:10:4f:0d:af:50:58:c6:ac:8e:
35:80:03:3a:84:04:5a:39:7e:37:66:58:79:75:1a:95:d1:33:
9f:1d:cc:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:16:31 2026 by rpki-client