Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/aa80fc-0d4a-4a97-ab81-09bb596e8454/1/gGM2o7hr9zon3dkGZn6tp1tHxJk.mft
File: gGM2o7hr9zon3dkGZn6tp1tHxJk.mft (raw, json)
Hash identifier: nye2WJH8H53l36A8AuaxiyTO4dlyKSmpBLJzzQejDI0=
Subject key identifier: D9:BE:28:3D:14:44:18:3A:06:5E:06:34:EC:79:97:88:84:38:B2:D3
Authority key identifier: 80:63:36:A3:B8:6B:F7:3A:27:DD:D9:06:66:7E:AD:A7:5B:47:C4:99
Certificate issuer: /CN=806336a3b86bf73a27ddd906667eada75b47c499
Certificate serial: 019CAC474597873A9B1F62F36B8DA6E17E16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gGM2o7hr9zon3dkGZn6tp1tHxJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/aa80fc-0d4a-4a97-ab81-09bb596e8454/1/gGM2o7hr9zon3dkGZn6tp1tHxJk.mft
Manifest number: 0DE3
Signing time: Mon 02 Mar 2026 02:01:17 +0000
Manifest this update: Mon 02 Mar 2026 02:01:17 +0000
Manifest next update: Tue 03 Mar 2026 02:01:17 +0000
Files and hashes: 1: gGM2o7hr9zon3dkGZn6tp1tHxJk.crl (hash: 2U2GQd+ieUM/1mbXCH7yzRHfBPVD2StLT/jKJ7s+CV0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/aa80fc-0d4a-4a97-ab81-09bb596e8454/1/gGM2o7hr9zon3dkGZn6tp1tHxJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/aa80fc-0d4a-4a97-ab81-09bb596e8454/1/gGM2o7hr9zon3dkGZn6tp1tHxJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/gGM2o7hr9zon3dkGZn6tp1tHxJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:45:97:87:3a:9b:1f:62:f3:6b:8d:a6:e1:7e:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=806336a3b86bf73a27ddd906667eada75b47c499
Validity
Not Before: Mar 2 02:01:17 2026 GMT
Not After : Mar 3 02:01:17 2026 GMT
Subject: CN=d9be283d1444183a065e0634ec7997888438b2d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f1:64:94:6c:d9:9e:2f:e7:f5:4e:5c:0e:8a:
dc:e8:71:3f:c7:55:82:eb:27:c3:88:2c:14:14:25:
17:d5:bd:9f:b3:5a:77:3d:a7:c7:ca:8a:f8:db:4c:
36:cd:d8:f8:64:0f:b2:f4:d3:12:01:6b:9b:53:25:
ab:f6:02:29:a3:b8:a5:ef:08:4d:69:a8:dd:48:fb:
aa:15:5c:96:36:8c:6b:16:c0:64:d6:b6:00:72:e1:
2a:2f:3a:ef:c0:b5:bf:9b:59:9a:3d:42:ed:7d:dd:
a4:b2:69:be:3f:a9:70:13:2c:93:08:4b:00:ef:89:
d1:6d:82:3e:bd:13:4e:55:44:62:b5:65:d9:62:07:
90:b1:fd:bb:79:5e:ca:9a:76:23:0a:07:ab:c9:4b:
57:5e:f3:31:ab:58:d3:0c:a7:03:44:6c:6b:a1:f2:
b9:11:4c:76:1b:d1:16:af:cd:c3:8a:6e:0c:0a:90:
a4:93:c2:83:54:e3:73:2b:82:8f:40:60:2c:5d:06:
8f:e1:57:f2:1e:d8:62:79:31:c0:a4:9a:c5:42:91:
75:59:a8:57:a8:79:40:e4:c9:fa:b1:83:b9:4f:99:
26:9e:0f:f8:70:9c:c3:9c:e2:fc:15:e4:fe:c9:5c:
c3:58:a1:9c:7e:aa:8d:8c:f6:80:0d:b8:e5:79:d7:
47:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:BE:28:3D:14:44:18:3A:06:5E:06:34:EC:79:97:88:84:38:B2:D3
X509v3 Authority Key Identifier:
keyid:80:63:36:A3:B8:6B:F7:3A:27:DD:D9:06:66:7E:AD:A7:5B:47:C4:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gGM2o7hr9zon3dkGZn6tp1tHxJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/aa80fc-0d4a-4a97-ab81-09bb596e8454/1/gGM2o7hr9zon3dkGZn6tp1tHxJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/aa80fc-0d4a-4a97-ab81-09bb596e8454/1/gGM2o7hr9zon3dkGZn6tp1tHxJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:5e:f1:82:4f:6b:d1:5e:55:a1:11:19:f6:1a:ce:09:f1:b8:
c8:0a:64:5c:bd:0b:51:22:fd:0d:81:e4:93:17:7a:80:4e:56:
d1:8b:39:13:ef:64:e8:e8:67:1a:56:15:ff:ab:7c:13:09:4a:
31:3b:22:ef:47:97:d7:08:84:d9:89:49:63:fb:40:35:58:7e:
cb:41:e1:06:fb:c8:62:89:8b:27:97:10:8a:a5:d3:7f:97:17:
30:ed:d8:16:ed:cb:3e:73:41:1e:42:0e:52:d6:f5:e3:2d:08:
95:f1:06:2f:4b:be:7f:e8:1d:96:06:6d:90:93:bc:02:d6:d2:
04:38:f1:c1:d0:67:cc:e0:d2:7a:ee:a3:f7:24:14:cd:ca:fa:
f9:55:40:39:2d:5d:03:89:4a:7c:b5:8a:47:22:71:ae:8c:0d:
90:2f:e7:bc:3c:57:5b:22:4f:b3:b8:8c:3b:f3:ab:1a:5e:42:
44:d6:b9:4f:2d:0a:a6:2c:02:4f:6d:48:25:37:ac:b0:d9:3c:
49:84:71:05:0d:4d:35:04:1c:6b:fd:03:e4:1b:ee:87:68:e7:
a5:cf:af:d4:75:4d:5e:1d:6f:02:bf:75:fc:11:a9:8f:e3:d8:
82:03:16:15:28:a1:05:7f:dc:ba:4b:ec:2b:c0:0f:14:83:58:
e7:05:6e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:41:10 2026 by rpki-client