Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
File: gSBe85sNP11y-h2XHUGR4Lomhr8.mft (raw, json)
Hash identifier: Qs6zyDPrm5XCMTYRvM1qa/6MqVXxdyiPjCIqhKjfoEU=
Subject key identifier: E2:C2:FF:10:6A:6E:58:5F:BD:AE:22:81:3B:36:72:C5:6D:DA:23:F6
Authority key identifier: 81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
Certificate issuer: /CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Certificate serial: 019EC0369C6EDB6349C5C73C6244588BF462
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
Manifest number: 1040
Signing time: Sat 13 Jun 2026 09:01:04 +0000
Manifest this update: Sat 13 Jun 2026 09:01:04 +0000
Manifest next update: Sun 14 Jun 2026 09:01:04 +0000
Files and hashes: 1: M16NJT8ocHcFhdxLajdl5OmYfWg.roa (hash: OCbF5Tgm3E71OlvzY1cYnxinuqaWID2lU/O06sRIcAE=)
2: gSBe85sNP11y-h2XHUGR4Lomhr8.crl (hash: dbNwVJojXhHz748QQ93gUdp/rCsjd+c4vquKBfAi0CQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:36:9c:6e:db:63:49:c5:c7:3c:62:44:58:8b:f4:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Validity
Not Before: Jun 13 09:01:04 2026 GMT
Not After : Jun 14 09:01:04 2026 GMT
Subject: CN=e2c2ff106a6e585fbdae22813b3672c56dda23f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1e:76:e4:f7:9a:04:bd:c5:76:e8:41:1a:93:
2f:74:83:5c:dc:db:ab:00:e9:f6:87:d2:77:45:51:
61:00:fe:63:cd:b6:71:88:cb:ff:29:57:6b:84:2f:
0a:04:8d:35:c1:3c:23:18:bd:14:7d:59:de:71:73:
16:12:54:53:7a:e4:19:62:03:4c:15:c6:f8:2f:0e:
d0:bc:cc:04:d9:93:97:da:0e:9a:e5:1c:b4:17:18:
bd:e7:7d:50:eb:77:fa:f4:e5:6f:25:c4:ff:89:c1:
bd:dd:86:ca:93:6c:38:2b:18:c8:53:8f:3f:37:6f:
03:b0:fa:9e:83:17:a7:43:df:84:9a:9e:ad:bb:b5:
07:e5:51:a2:50:a2:09:6f:10:16:39:a9:16:33:19:
47:3d:65:cc:08:bf:52:03:60:0a:24:40:70:23:f9:
dc:77:05:4a:88:24:7e:d4:8c:ca:52:34:ab:2b:5c:
22:dc:fe:a5:86:f1:b2:20:91:4c:ef:41:4a:68:ac:
51:16:8f:b4:ba:6e:ec:47:7f:3a:b0:d1:9b:02:4e:
8f:6c:f5:86:82:d4:13:02:cc:07:68:5d:b1:7c:31:
d1:30:40:f9:4d:c8:8c:a2:23:d2:74:d2:97:68:ee:
8b:54:94:6a:d4:78:d0:5d:df:be:f9:ab:63:3e:24:
58:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C2:FF:10:6A:6E:58:5F:BD:AE:22:81:3B:36:72:C5:6D:DA:23:F6
X509v3 Authority Key Identifier:
keyid:81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:f3:7d:db:c9:1e:51:9a:b6:58:ed:0d:35:90:9c:ab:ca:d5:
be:19:12:c4:ee:da:49:1a:e0:df:e9:b1:48:5d:00:15:74:20:
2e:cb:55:8b:99:4b:a9:71:a0:c5:0e:d2:33:fd:b5:1f:aa:94:
20:ce:84:b0:d1:70:f3:79:9f:c3:17:f0:39:a4:8b:15:a9:de:
c6:ed:30:9d:e0:0b:90:b7:97:3d:18:8a:97:26:8e:b0:9e:e9:
6c:eb:39:dd:39:af:a7:e6:88:53:f7:cf:97:1a:d7:ea:ac:16:
cf:84:39:c4:c1:20:c8:74:df:d6:cf:cb:6c:4e:f5:ec:db:99:
48:7f:ad:f7:a6:b9:16:0d:48:e1:92:65:a9:56:7f:a4:a6:f5:
cd:ed:40:f0:eb:3f:7d:59:b6:12:99:33:68:af:7e:22:f3:2b:
41:ee:93:ba:bd:cb:04:ee:c5:2e:f9:b8:2d:13:8f:3b:b2:89:
6f:86:ef:ce:4c:76:6e:bb:08:ce:bc:62:5b:8f:39:9e:fd:70:
79:3a:2b:4d:c7:be:a7:ce:63:b3:47:e3:36:c8:fd:16:c4:fe:
91:81:e7:6d:c4:09:31:90:d7:4c:20:39:e8:b9:08:0e:27:d5:
7e:44:a1:1c:63:20:cc:d3:42:0a:84:68:5d:28:be:f6:26:8c:
fa:5c:73:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:55:14 2026 by rpki-client