Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.mft
File: GiR0zlteIgufQxr8hq9OwUD18Ww.mft (raw, json)
Hash identifier: O9UwjwdRUGzbIs+P4/w+F/RVjEABJvG/MKciEDbMVh0=
Subject key identifier: F7:35:45:41:5B:A9:C6:5A:1A:AD:CA:8E:56:1C:4C:C7:D9:55:CB:89
Authority key identifier: 1A:24:74:CE:5B:5E:22:0B:9F:43:1A:FC:86:AF:4E:C1:40:F5:F1:6C
Certificate issuer: /CN=1a2474ce5b5e220b9f431afc86af4ec140f5f16c
Certificate serial: 019CAB33FB5915FDAA158CE01E9482FDE825
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GiR0zlteIgufQxr8hq9OwUD18Ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.mft
Manifest number: 0D23
Signing time: Sun 01 Mar 2026 21:00:36 +0000
Manifest this update: Sun 01 Mar 2026 21:00:36 +0000
Manifest next update: Mon 02 Mar 2026 21:00:36 +0000
Files and hashes: 1: GiR0zlteIgufQxr8hq9OwUD18Ww.crl (hash: DXY32NSKY7ZBD96ghSVZAOFKrtY6Dh73mQMCyNNcwMM=)
2: SkKZfC38ghmrpySCpGvRpFixxKU.roa (hash: o3RJWOBJfQjmbxei+seF+/aOYTLshRFp1ICoacA0zAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.mft
rsync://rpki.ripe.net/repository/DEFAULT/GiR0zlteIgufQxr8hq9OwUD18Ww.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:33:fb:59:15:fd:aa:15:8c:e0:1e:94:82:fd:e8:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a2474ce5b5e220b9f431afc86af4ec140f5f16c
Validity
Not Before: Mar 1 21:00:36 2026 GMT
Not After : Mar 2 21:00:36 2026 GMT
Subject: CN=f73545415ba9c65a1aadca8e561c4cc7d955cb89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:77:16:a8:98:27:18:20:db:d9:83:7c:d4:d1:
c8:d2:f8:c5:82:5d:33:5d:40:ec:0a:cb:55:8f:07:
90:e5:54:8c:ac:43:62:02:0a:19:fa:d7:85:b0:8c:
eb:44:61:fd:d6:8f:72:11:48:6d:f6:9d:70:f1:0c:
c3:41:9e:67:d2:dc:9f:6d:fa:1e:8c:27:38:df:30:
63:bc:94:f4:4e:6e:18:ca:e4:5b:aa:17:5a:6f:16:
21:48:b5:52:a6:ad:04:da:2e:d1:e9:9a:01:63:be:
02:32:6e:ae:94:e6:5d:68:14:b1:91:c5:70:5d:37:
8b:a9:cc:b1:a0:44:2c:31:f2:7c:37:bd:d1:fe:c5:
3b:ed:18:41:55:c3:8b:32:af:9f:e0:5c:ea:7a:7f:
83:48:82:15:b5:6c:c8:db:9c:96:6f:bf:a5:f4:bd:
63:ee:6a:b1:0e:04:51:73:10:8b:e9:8c:fa:80:b0:
ac:f2:4d:0d:c8:f3:6e:e9:a4:63:18:3a:56:d9:a2:
69:46:15:9f:97:3e:c3:d8:ec:f9:46:8f:f9:1a:40:
54:81:9b:bf:8e:1e:d9:40:0a:13:fa:ea:42:59:3f:
33:4e:5a:fe:f9:63:45:08:ee:ea:a0:75:92:3f:86:
8e:7d:d0:da:8f:5a:5b:0d:d5:10:40:35:73:44:86:
bb:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:35:45:41:5B:A9:C6:5A:1A:AD:CA:8E:56:1C:4C:C7:D9:55:CB:89
X509v3 Authority Key Identifier:
keyid:1A:24:74:CE:5B:5E:22:0B:9F:43:1A:FC:86:AF:4E:C1:40:F5:F1:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GiR0zlteIgufQxr8hq9OwUD18Ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:a5:2c:b2:1d:6f:eb:39:fd:d5:92:a2:40:54:4c:2b:36:e9:
57:5f:08:bb:c0:26:d8:7c:56:09:26:71:ec:1f:5c:2c:b3:7e:
ff:4d:dc:2c:6b:64:1f:56:e9:16:02:f4:78:63:4e:97:16:11:
13:4a:23:0d:6c:76:68:b0:49:79:6b:4a:2f:34:88:e5:0b:c0:
29:a1:fe:d6:05:40:ce:5d:e4:cf:be:d7:12:3f:d0:4e:d6:7d:
42:31:ec:cd:f4:9a:80:fd:25:cb:d8:f7:7d:5c:bc:7d:18:47:
2e:84:07:da:29:dd:32:dd:cf:87:50:b7:53:f5:2c:e6:d9:91:
35:ab:03:1d:37:be:56:1f:2a:76:14:d0:fc:28:40:10:4c:22:
18:53:03:53:62:78:6f:43:fc:dd:54:15:86:6d:f4:4d:ff:05:
e9:87:33:ff:6b:de:e8:bd:88:bf:f0:ae:4b:21:f5:b1:b9:31:
38:a5:25:70:eb:1a:80:8b:0d:5d:95:33:1d:79:b3:9b:42:d4:
ef:1e:b1:12:9b:9c:12:b0:25:e5:46:2f:d7:81:3f:bf:ea:1e:
9e:37:c3:f4:7e:f6:31:2d:a9:d5:ff:9b:f7:fa:63:13:dd:82:
59:65:d3:f6:77:be:08:b4:c2:9e:d8:2f:f1:ae:c4:ba:96:c0:
81:e8:52:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:22:13 2026 by rpki-client