Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
File: gSBe85sNP11y-h2XHUGR4Lomhr8.mft (raw, json)
Hash identifier: 4e0IuTe1hnt6n2Ej0w3I8uHFoWVRV6xi3MKmDC2saSE=
Subject key identifier: 84:DA:4F:DA:F9:B2:FF:1E:97:3C:1D:7A:53:3A:F7:D5:9A:00:24:44
Authority key identifier: 81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
Certificate issuer: /CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Certificate serial: 019D98BDF1DC0F68EF81E63922656EB7B903
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
Manifest number: 0FA7
Signing time: Fri 17 Apr 2026 00:01:18 +0000
Manifest this update: Fri 17 Apr 2026 00:01:18 +0000
Manifest next update: Sat 18 Apr 2026 00:01:18 +0000
Files and hashes: 1: M16NJT8ocHcFhdxLajdl5OmYfWg.roa (hash: OCbF5Tgm3E71OlvzY1cYnxinuqaWID2lU/O06sRIcAE=)
2: gSBe85sNP11y-h2XHUGR4Lomhr8.crl (hash: a2QMFVdFCUxniD7dQy+ChIE7ONXYhP8NVr65b90ZiXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:f1:dc:0f:68:ef:81:e6:39:22:65:6e:b7:b9:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Validity
Not Before: Apr 17 00:01:18 2026 GMT
Not After : Apr 18 00:01:18 2026 GMT
Subject: CN=84da4fdaf9b2ff1e973c1d7a533af7d59a002444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e8:9b:57:44:82:89:df:d0:50:fc:60:4e:50:
95:fa:55:a5:84:eb:e2:a4:b2:53:6e:33:8d:95:94:
e8:a0:7c:b0:83:ff:fb:99:e4:9d:8c:ca:f5:c1:ca:
3f:75:7c:66:71:f6:d5:b4:1b:ba:a7:62:f6:0c:47:
f9:b3:31:b0:70:03:a4:a9:1c:d3:f1:f5:4b:b2:4a:
e9:17:fe:dc:d4:fa:49:a4:2f:a2:11:d6:ed:79:93:
35:b0:c5:75:fd:1e:3b:4c:3a:fe:85:a4:87:6f:17:
4b:cc:06:c0:89:d4:bd:7d:40:15:57:a0:92:ef:91:
0b:2f:85:76:71:1e:fc:5f:11:63:86:1a:84:62:6f:
c5:31:0c:91:e1:13:21:85:09:33:be:d9:cb:28:e2:
98:3b:78:04:2e:fa:c1:68:bd:d4:fe:bc:d7:1e:66:
29:6c:b0:25:68:22:5f:a6:d0:09:4a:eb:67:64:c0:
82:7e:63:a7:da:15:33:5b:9f:77:48:21:e8:d9:e6:
58:05:93:8a:47:22:f9:e0:cb:0f:4e:c8:df:31:64:
f5:e8:13:65:8c:21:08:53:71:97:28:8c:ef:33:96:
90:ca:e6:2b:de:40:08:cf:cb:90:25:db:66:49:57:
53:04:5e:33:0f:a2:28:e5:5f:0d:5f:bf:32:3a:7e:
fa:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:DA:4F:DA:F9:B2:FF:1E:97:3C:1D:7A:53:3A:F7:D5:9A:00:24:44
X509v3 Authority Key Identifier:
keyid:81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:82:2a:d0:95:74:1a:81:8a:5e:47:2a:41:2c:97:71:5c:51:
4c:5f:c5:25:a1:a0:b4:6f:1b:95:5d:21:b3:f0:3d:c0:83:61:
a0:3d:48:f0:ad:99:dd:05:4f:89:4d:d5:36:e9:bc:c8:88:b8:
ba:c4:1d:82:74:7c:e0:53:4d:a2:ab:92:36:a7:29:a2:e4:72:
50:bf:0c:f5:15:4e:69:62:e1:b5:d3:ff:29:41:b5:b5:ef:3b:
79:28:ef:02:dc:c8:1a:d1:cd:5b:6d:11:e5:3c:7a:e7:0c:e5:
cb:f7:1d:22:65:25:f6:ce:47:0f:27:64:16:c9:7c:81:6f:2e:
1e:3a:f4:58:d5:d4:f2:b9:48:f6:37:f4:03:6a:ff:88:66:4b:
20:f3:fc:de:8b:90:41:01:6a:9e:05:30:38:0a:0c:1a:14:59:
07:cc:07:2f:dc:3e:33:71:d2:e8:5b:7d:e0:22:27:cc:15:cd:
88:2a:ea:f0:fd:ce:b0:2c:05:a5:f0:dd:c7:99:e3:05:a2:08:
30:f4:75:8b:c9:2f:2d:83:1d:2a:77:b4:31:5c:94:6b:20:0c:
75:48:af:b9:3b:86:c0:5c:8d:c1:fd:a3:9d:60:56:7a:50:59:
1b:4a:52:7e:f3:5a:83:5f:74:0e:e4:78:d7:c7:cb:d3:1a:a4:
17:e8:fb:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:52:43 2026 by rpki-client