Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
File: gSdW6ySj41K9bonR9aoISIlhpnQ.mft (raw, json)
Hash identifier: gmeThzEi5tFE/Ifu7uoeis6T0aUFN51yYoj4hsIK4gc=
Subject key identifier: CE:4E:4C:CD:26:E3:4E:6D:A6:27:07:4B:B7:BD:8B:78:98:17:3D:AA
Authority key identifier: 81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
Certificate issuer: /CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Certificate serial: 019CAB6B6AA0D99DDACFFDAF3AA9FC8D5600
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
Manifest number: 0B5D
Signing time: Sun 01 Mar 2026 22:01:09 +0000
Manifest this update: Sun 01 Mar 2026 22:01:09 +0000
Manifest next update: Mon 02 Mar 2026 22:01:09 +0000
Files and hashes: 1: gSdW6ySj41K9bonR9aoISIlhpnQ.crl (hash: EIxsX0PlZERTOw3GPAJ9vt2JcZRf5nr4ql8/mE0zbI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:6a:a0:d9:9d:da:cf:fd:af:3a:a9:fc:8d:56:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Validity
Not Before: Mar 1 22:01:09 2026 GMT
Not After : Mar 2 22:01:09 2026 GMT
Subject: CN=ce4e4ccd26e34e6da627074bb7bd8b7898173daa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f4:b9:af:c8:1f:53:73:bd:3f:ca:08:73:48:
af:db:d6:53:eb:a5:98:da:8e:9e:63:41:9e:2b:26:
2a:9b:a8:87:21:57:46:38:0f:1f:e2:73:c0:f9:40:
4b:0e:90:38:ab:de:1f:c3:bd:cf:91:2a:49:33:79:
29:9f:8b:4b:34:d6:c4:3d:ac:bd:70:32:1a:ab:67:
a1:48:59:27:bf:b2:23:8e:52:97:f1:64:21:a8:49:
ea:66:e7:2a:1d:18:c4:9d:5a:44:17:06:0e:09:ca:
13:88:c4:3c:5b:1f:04:5e:49:cd:14:bf:ee:c4:55:
ad:0f:62:36:5c:97:4b:63:d5:be:0b:88:ec:91:0c:
57:bc:b3:7f:97:ef:ae:ab:0a:32:14:e0:be:3e:69:
f2:38:bb:f1:36:2f:9a:ba:a8:62:99:8e:e1:a4:47:
40:ec:a4:93:f0:99:df:50:d9:c4:6b:1e:19:03:c1:
fd:7a:a2:a2:fb:f6:d1:58:b0:01:3d:ce:1c:3d:90:
23:ef:81:d7:0b:7c:a9:15:03:c5:74:56:38:cd:03:
9c:d2:44:97:9f:71:79:86:57:8c:b3:0d:1b:63:52:
28:6d:05:ff:90:e5:4c:9b:9d:60:05:c6:c8:97:3e:
17:bc:c4:36:54:22:df:c7:9f:35:3b:37:6b:4a:2c:
d2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:4E:4C:CD:26:E3:4E:6D:A6:27:07:4B:B7:BD:8B:78:98:17:3D:AA
X509v3 Authority Key Identifier:
keyid:81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:fa:77:d9:ca:81:ff:85:7b:fe:78:77:72:44:f1:85:7b:f4:
d8:fd:cf:bc:75:43:9a:f8:6b:79:da:fa:85:d1:c6:c8:79:36:
01:90:2d:78:89:12:82:4d:5e:a5:2c:0f:ed:ce:23:95:ac:ae:
a7:8d:8b:19:8c:a1:cd:8c:28:3d:65:0f:56:4e:7f:0f:9c:cf:
03:e1:9c:25:d0:11:b4:9d:d1:32:cb:c7:2f:75:fc:f7:cf:3f:
8f:58:81:7f:c8:f1:22:07:74:ed:1d:9b:ce:63:c7:18:b1:37:
ab:92:00:17:55:98:1a:31:04:3f:65:ee:bc:03:2d:1d:62:39:
db:03:8e:63:46:a4:a0:4f:1d:81:69:7a:92:e9:07:7d:01:b5:
81:78:a1:87:7c:59:de:3e:1d:42:c0:4a:dd:21:38:10:c0:e9:
37:e7:a6:cf:4a:4a:5a:1b:d1:9b:63:59:6d:68:9d:de:0c:ce:
f7:b6:0a:27:77:c6:d6:11:ff:43:75:b3:79:a3:98:b9:83:80:
46:c3:f0:1d:a1:c8:86:5a:14:fc:e8:36:be:29:fe:58:31:1b:
35:25:29:e6:9c:3b:1b:aa:45:0c:d8:bd:f2:6b:8d:a1:4c:d6:
09:59:20:2d:08:cf:31:61:12:f3:36:0e:ee:ae:73:7f:fd:ed:
4e:ca:1a:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:19:51 2026 by rpki-client