Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
File: gSdW6ySj41K9bonR9aoISIlhpnQ.mft (raw, json)
Hash identifier: aUZ68znrfzhgBPN9+Nk2sBpZGVue/jTx6A6kjqOXv0E=
Subject key identifier: D3:86:22:D4:2E:FD:34:F8:E5:59:09:4A:D0:F0:71:A8:80:04:DF:1C
Authority key identifier: 81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
Certificate issuer: /CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Certificate serial: 019D9AE2C8EDA022E7F4BE8F1B2D1074B70C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
Manifest number: 0BD9
Signing time: Fri 17 Apr 2026 10:00:46 +0000
Manifest this update: Fri 17 Apr 2026 10:00:46 +0000
Manifest next update: Sat 18 Apr 2026 10:00:46 +0000
Files and hashes: 1: gSdW6ySj41K9bonR9aoISIlhpnQ.crl (hash: sTW+QooK5YbJunpCAb7NL7eTsWbiW5om0W+YO3DcGqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:c8:ed:a0:22:e7:f4:be:8f:1b:2d:10:74:b7:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Validity
Not Before: Apr 17 10:00:46 2026 GMT
Not After : Apr 18 10:00:46 2026 GMT
Subject: CN=d38622d42efd34f8e559094ad0f071a88004df1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e0:82:43:39:35:50:ec:ad:fa:f4:cc:93:91:
92:75:c2:13:c7:e9:a3:7c:6b:2c:18:86:44:fc:56:
83:02:e9:1a:c5:58:cb:11:21:60:ca:6a:25:3d:e1:
19:bf:77:46:86:7c:ff:bc:3e:2c:0a:b0:94:3d:80:
a1:40:90:bc:ee:d3:04:76:23:81:5b:47:c8:24:0a:
44:e3:a1:a1:bf:7b:9e:f4:f1:40:b9:ae:a6:c1:42:
df:39:a8:5c:e4:83:2c:07:f9:11:9a:22:89:0c:4d:
65:18:a2:ce:ec:72:ef:77:e1:80:3e:3c:08:70:c7:
4f:4b:22:8c:56:a1:59:d6:7f:6d:42:af:0d:37:d4:
3b:ca:22:19:32:38:e0:09:f3:a8:91:79:93:47:ef:
92:7c:38:39:de:2a:cd:a1:59:85:0f:3b:d5:f9:5f:
5e:32:12:c4:67:69:eb:ff:60:fa:b4:1d:0b:8d:16:
86:bb:71:11:25:9f:9f:ab:54:17:a6:47:15:00:7d:
ef:b0:5e:de:8f:a5:2b:4c:db:37:1a:71:8a:7f:97:
dd:24:ea:11:2e:21:43:9f:61:68:a3:98:ec:f8:11:
c0:f9:d7:f7:a6:22:ae:68:e4:e9:8b:1b:6a:7b:ab:
e5:91:3d:b4:ff:49:12:cc:2a:6b:11:c5:08:30:fd:
7e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:86:22:D4:2E:FD:34:F8:E5:59:09:4A:D0:F0:71:A8:80:04:DF:1C
X509v3 Authority Key Identifier:
keyid:81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:75:df:a8:36:d1:36:e8:35:c0:ae:4d:39:5b:b5:e9:1e:a8:
c4:01:40:39:ae:1e:42:1e:1d:3f:ab:c3:2e:4d:47:7a:79:c8:
33:3a:c9:d0:63:d5:fb:27:24:55:8e:75:f0:d9:49:48:c7:7a:
cb:9e:84:3b:72:33:4b:47:01:2a:6b:0c:36:57:ce:91:e3:65:
26:9a:eb:ce:15:76:76:4f:28:7d:ef:28:ee:b7:83:0d:85:ea:
4f:a4:79:fd:0f:1c:9e:92:dc:8e:e9:5c:a0:dd:77:d5:1e:95:
79:c1:5b:f5:44:82:a5:54:5a:bf:bf:e2:e1:31:78:e7:d4:bf:
82:a8:b4:1f:a1:8a:8d:f9:d4:ef:c3:f9:bf:e6:aa:3b:fb:f8:
c9:89:2b:94:2f:dc:88:cf:5c:15:a4:df:31:e7:c0:73:08:29:
b0:16:4a:f7:f4:5e:60:98:a0:d0:0a:1d:10:96:ea:9e:0e:89:
83:15:76:2a:00:e4:a9:24:31:57:8c:a9:d8:e5:ab:45:0a:5f:
c0:2c:4d:e3:3b:b2:b2:83:f0:2e:aa:b1:11:0a:3c:96:c5:03:
c4:60:e3:92:d3:1e:1e:64:a8:db:3d:1e:4c:14:43:dc:33:5b:
08:7a:19:11:e1:66:76:97:5d:c9:f8:a6:19:88:ec:2c:4f:da:
bc:32:ae:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:53:08 2026 by rpki-client