Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
File: gSBe85sNP11y-h2XHUGR4Lomhr8.mft (raw, json)
Hash identifier: 15EfUkVILGCgThACUfQ9ZCM6w9srz/yR6FdqWE/tCuA=
Subject key identifier: 8C:05:66:16:AF:B6:BF:DC:01:A5:FD:8D:63:AF:1C:B3:9B:CF:E7:92
Authority key identifier: 81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
Certificate issuer: /CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Certificate serial: 019CAB3453B7EC445B4FD4EC74495CEC54A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
Manifest number: 0F2C
Signing time: Sun 01 Mar 2026 21:00:59 +0000
Manifest this update: Sun 01 Mar 2026 21:00:59 +0000
Manifest next update: Mon 02 Mar 2026 21:00:59 +0000
Files and hashes: 1: M16NJT8ocHcFhdxLajdl5OmYfWg.roa (hash: OCbF5Tgm3E71OlvzY1cYnxinuqaWID2lU/O06sRIcAE=)
2: gSBe85sNP11y-h2XHUGR4Lomhr8.crl (hash: WpjhxmkPnDSyjIk/b1aAx9HsbKLlFtZsdYgPGeJ2H4A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:53:b7:ec:44:5b:4f:d4:ec:74:49:5c:ec:54:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Validity
Not Before: Mar 1 21:00:59 2026 GMT
Not After : Mar 2 21:00:59 2026 GMT
Subject: CN=8c056616afb6bfdc01a5fd8d63af1cb39bcfe792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0d:01:30:a2:2b:7f:02:fc:47:4e:ab:4b:4a:
fb:6d:cc:8a:32:2f:89:1e:de:ba:91:14:04:d2:96:
9e:0b:7e:9a:91:5d:3a:be:06:70:52:98:a4:65:06:
c8:ce:63:62:bf:a3:7c:67:f0:0f:0a:89:a6:42:c8:
db:53:51:e6:83:ca:f5:10:3a:00:70:f9:31:f4:1d:
39:b4:a6:95:ef:72:65:cf:a4:3b:6f:0d:bf:a9:a1:
be:c7:b5:4f:ae:01:35:66:26:2e:d4:83:1f:ad:c5:
e6:1b:09:23:84:95:31:59:79:f5:a4:cb:08:91:29:
74:66:13:04:d6:99:41:70:79:e3:f8:af:6b:65:41:
56:91:bb:6d:f6:f0:76:8e:e3:b6:c5:a4:27:09:ba:
5f:6d:d7:47:46:4d:c6:28:88:86:29:50:f6:cf:0f:
88:7c:0a:b9:21:31:db:e1:2b:7a:40:07:33:5e:29:
0e:1a:ac:68:af:9a:32:09:53:5e:c8:3a:65:3d:fc:
d6:eb:b4:ee:dc:ba:fe:39:22:f9:cd:19:1e:76:b1:
42:55:3c:f7:2a:b3:ab:53:9d:00:c8:b7:ff:4d:11:
6d:c0:cd:10:43:a5:66:60:d7:0f:d9:5f:58:6b:ed:
2d:8e:b9:eb:a9:c3:aa:b9:51:0b:4c:15:58:7b:ae:
22:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:05:66:16:AF:B6:BF:DC:01:A5:FD:8D:63:AF:1C:B3:9B:CF:E7:92
X509v3 Authority Key Identifier:
keyid:81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:b3:41:37:4f:3b:b7:26:42:5c:78:73:7e:3a:4f:52:db:3b:
31:9e:2d:23:61:6e:11:ed:3d:96:ed:b6:b3:4e:5f:cf:7b:1d:
5a:96:2c:4b:6e:12:0f:97:7d:b9:2d:3c:81:22:34:94:b0:3b:
e7:5d:99:1e:22:e5:e9:60:37:91:79:eb:e3:6a:64:10:aa:6d:
fe:2b:b5:48:8b:1a:a3:cb:ba:80:e6:b9:e2:be:cc:56:68:c3:
58:44:ff:4e:c6:33:01:dc:b8:2e:fc:42:9a:21:0a:b3:0a:22:
73:d2:01:f7:d9:af:66:12:62:8b:c3:b5:27:8d:54:36:42:14:
d2:a5:98:c9:4b:57:0a:11:4e:4f:23:a7:c6:98:31:52:f3:ea:
df:d4:6b:77:9f:ee:76:aa:d0:17:cf:93:87:94:26:c0:5a:67:
4e:6c:ac:11:b7:3e:02:b0:32:5c:b8:4e:46:d6:fb:14:a2:38:
86:16:cf:dd:c6:c3:88:1f:57:fe:20:6a:7f:43:82:40:68:5e:
09:3f:4b:05:e6:a6:2b:a0:e9:05:5f:af:57:31:36:7c:90:f9:
c5:a3:f1:fa:de:d6:ae:a1:20:eb:ea:42:ee:a7:14:7c:2d:3f:
e1:da:7e:ba:fb:13:48:0a:b4:6a:a7:94:b3:00:33:cc:10:42:
26:61:59:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:43:24 2026 by rpki-client