Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
File: GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft (raw, json)
Hash identifier: 1xUM4eGgHcUTq211jmoxIFXqufcALkO2rvAebxW18fc=
Subject key identifier: FD:56:4E:DC:B8:2A:2E:26:1D:74:2A:D4:F6:FC:78:FC:2A:62:7F:E9
Authority key identifier: 18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9
Certificate issuer: /CN=18886007da1730b0770d8604db73d12fd264f3f9
Certificate serial: 019CAB6AF5C0953B5501D9762644995FF030
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
Manifest number: 0921
Signing time: Sun 01 Mar 2026 22:00:39 +0000
Manifest this update: Sun 01 Mar 2026 22:00:39 +0000
Manifest next update: Mon 02 Mar 2026 22:00:39 +0000
Files and hashes: 1: 4P44xY1khmyEZiMfEP9IIqI31cw.roa (hash: HoHEIC8qQ5DdoCy6PGfE4N47m5oNmY1p21zVZ0NZdNM=)
2: GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl (hash: 60XOb3xDjYtkA6zJBTl+YFlOvbcSmLhztAINIM/jk9g=)
3: StgAPdXsLWXdyjwd0NgXnOpHgDM.roa (hash: CqI61wUJN0vtPYYBH79k6FeQKUdhcEdxzCN0wPzCxIY=)
4: XtW69XYWfcYs9FhfW77svXCHmQk.roa (hash: +2PiuVV/xd9FID0vQ4PS/1nWqfCBv4fOx6GV++A7pIo=)
5: xTvnABmzNdQ7rQ9kUoYbhsXZGao.roa (hash: epVzxBSblNKuTBQkW5kiwP+e9xI7OzToQE+spC6i0y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6a:f5:c0:95:3b:55:01:d9:76:26:44:99:5f:f0:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18886007da1730b0770d8604db73d12fd264f3f9
Validity
Not Before: Mar 1 22:00:39 2026 GMT
Not After : Mar 2 22:00:39 2026 GMT
Subject: CN=fd564edcb82a2e261d742ad4f6fc78fc2a627fe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d7:89:19:cd:fc:8a:82:d5:71:8c:f1:57:5b:
01:c5:4f:d4:69:b9:76:96:f1:db:26:72:6a:65:38:
b7:6b:f0:6b:59:82:38:27:1d:ef:9d:8d:3e:eb:bd:
f3:2b:b2:8f:9e:90:3d:99:3f:08:70:cd:34:1b:f1:
84:06:87:b7:92:66:15:d2:a0:ce:16:63:03:d6:ac:
0b:fc:bd:ae:69:b0:a8:0a:86:e3:67:cc:fb:82:15:
ab:e3:e0:e7:e0:ee:69:62:5f:b8:f3:7a:12:4a:5e:
54:eb:b0:46:ca:dc:e9:1a:fa:e6:26:7b:c7:09:21:
9d:7a:6e:c6:65:37:0d:d1:7d:ff:35:a4:76:21:a5:
0a:5c:b1:69:83:01:b7:f3:79:bd:58:81:f1:17:c1:
f8:51:5e:d1:c8:51:0b:35:60:13:b6:39:bf:fe:98:
11:45:72:5c:48:31:ae:81:89:43:e2:5c:69:b3:92:
c3:89:ab:c7:46:e5:d2:3e:65:71:36:4f:5f:26:2d:
e1:b9:f1:ba:f9:f8:9f:16:ac:8c:a2:86:05:c4:bf:
4d:92:8a:60:2e:4f:15:cb:a1:96:bc:5e:09:6d:95:
3b:c6:8d:d1:78:97:06:26:c8:3d:e7:c2:fc:2b:58:
47:fd:30:b6:59:3f:f8:c1:33:7e:66:40:52:90:d0:
c4:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:56:4E:DC:B8:2A:2E:26:1D:74:2A:D4:F6:FC:78:FC:2A:62:7F:E9
X509v3 Authority Key Identifier:
keyid:18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:c2:31:6f:9f:02:b9:91:38:2e:b4:82:43:a4:2a:b0:e9:3d:
60:bc:f1:77:86:45:f7:19:8d:b8:92:17:25:72:40:fd:39:50:
34:8b:84:27:8c:0f:08:d4:64:69:b7:0f:d4:ea:5b:f6:ac:2f:
95:b3:0b:64:39:4f:45:23:26:6b:3e:67:75:00:a1:46:b2:93:
22:b5:9f:a0:e9:e3:3b:46:d5:20:7b:b8:df:7e:e9:55:08:a7:
17:83:7f:59:20:d8:42:d6:f7:d4:8f:4d:fb:c0:35:ca:af:30:
3f:ac:a2:f1:32:f8:a3:b9:07:bd:a0:5c:21:c2:5b:7b:51:68:
1b:0c:8c:49:17:33:5d:a3:1d:cb:e6:6d:ec:7b:e9:b4:3f:01:
d6:7b:54:d4:16:d4:01:2e:e1:13:fa:44:21:69:67:63:eb:98:
0a:c0:01:d8:d3:92:38:97:d5:3e:d1:e7:92:56:1b:8c:ce:bc:
bc:69:d3:f0:d3:c7:5e:c9:14:63:51:eb:9d:0e:70:68:3a:72:
11:4a:f0:c5:67:20:4c:a6:80:ba:29:3e:d8:49:99:df:3b:05:
24:e7:9a:70:90:49:3c:63:de:c7:7a:c3:30:f9:91:46:6b:7f:
97:d4:65:73:06:2e:0a:27:68:99:9f:63:5a:69:be:dd:24:82:
35:6f:83:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:48:33 2026 by rpki-client