Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
File: GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft (raw, json)
Hash identifier: cbKv9qhx0GrwtYQst9rj1HPxIPRHTftOWsehKI5T+P8=
Subject key identifier: 52:0C:72:A5:32:A8:34:16:6D:C0:06:E4:C1:71:D6:EF:8E:92:CB:14
Authority key identifier: 18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9
Certificate issuer: /CN=18886007da1730b0770d8604db73d12fd264f3f9
Certificate serial: 019DA48AC7D6E9B4BC56AB3373EB5AF32685
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
Manifest number: 09A2
Signing time: Sun 19 Apr 2026 07:00:51 +0000
Manifest this update: Sun 19 Apr 2026 07:00:51 +0000
Manifest next update: Mon 20 Apr 2026 07:00:51 +0000
Files and hashes: 1: 4P44xY1khmyEZiMfEP9IIqI31cw.roa (hash: HoHEIC8qQ5DdoCy6PGfE4N47m5oNmY1p21zVZ0NZdNM=)
2: GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl (hash: RauUD/ssghLA7A+WSwVbNKueU6NfNWxRIpPIEwgMWDw=)
3: StgAPdXsLWXdyjwd0NgXnOpHgDM.roa (hash: CqI61wUJN0vtPYYBH79k6FeQKUdhcEdxzCN0wPzCxIY=)
4: XtW69XYWfcYs9FhfW77svXCHmQk.roa (hash: +2PiuVV/xd9FID0vQ4PS/1nWqfCBv4fOx6GV++A7pIo=)
5: xTvnABmzNdQ7rQ9kUoYbhsXZGao.roa (hash: epVzxBSblNKuTBQkW5kiwP+e9xI7OzToQE+spC6i0y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8a:c7:d6:e9:b4:bc:56:ab:33:73:eb:5a:f3:26:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18886007da1730b0770d8604db73d12fd264f3f9
Validity
Not Before: Apr 19 07:00:51 2026 GMT
Not After : Apr 20 07:00:51 2026 GMT
Subject: CN=520c72a532a834166dc006e4c171d6ef8e92cb14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f8:f5:1c:0c:37:65:2c:ed:cb:85:1d:c6:3e:
d7:05:6e:bd:74:5f:97:df:cb:cc:b0:40:bf:41:2a:
17:c5:9b:4d:9d:88:34:93:1f:3c:83:2d:f6:3e:f8:
e7:a2:01:c8:93:ec:bc:7f:f0:57:17:84:40:f8:d3:
8f:a9:c6:c9:c3:8b:b3:1b:df:76:2a:75:fb:1a:a2:
2d:dc:e7:09:ce:0f:70:0d:fe:60:4a:c7:a0:36:27:
5e:49:72:72:38:d9:2d:fa:2b:c9:27:32:d2:35:df:
bf:2a:37:30:54:45:9e:c6:3d:82:38:f1:6f:8c:19:
82:41:f0:61:dc:a2:35:cc:d5:ef:a6:aa:8e:cd:23:
3b:de:bd:52:d8:62:a5:ec:fc:d1:c1:89:a5:38:b2:
00:b4:48:b1:16:b0:76:b7:ce:01:74:e8:2c:b7:05:
07:37:9e:97:d9:77:2b:c6:41:a0:10:a2:31:45:a2:
66:9d:03:79:6c:22:41:bc:ce:cc:13:4c:77:ff:38:
f2:24:5b:01:06:b4:d0:e7:3d:95:9c:41:ab:2a:10:
f4:cd:e2:52:39:94:c3:49:12:49:6c:cd:03:63:bb:
1c:d3:ee:17:36:3f:99:17:40:b4:5e:57:77:1c:d8:
d3:b9:6b:cd:72:70:b5:d8:f2:3f:c3:a4:74:cf:73:
2d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0C:72:A5:32:A8:34:16:6D:C0:06:E4:C1:71:D6:EF:8E:92:CB:14
X509v3 Authority Key Identifier:
keyid:18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:63:b9:20:5e:20:49:03:ff:d1:02:8e:82:78:d1:a7:2a:7c:
bd:94:7c:2c:68:e7:a8:6c:3d:bc:9e:64:5a:8a:fb:cb:36:0a:
c1:81:1c:d5:9f:27:dd:c7:5f:1c:60:df:1c:3c:e9:76:60:79:
63:03:45:7d:d7:64:98:e1:a5:3c:30:8d:ed:a7:34:65:56:32:
e9:73:ae:5d:ba:d6:f9:af:a2:d2:c7:9d:46:91:57:7b:c8:75:
2c:54:cf:e5:83:f9:3d:95:ac:e9:33:0d:c8:c9:5b:ea:0f:49:
91:91:9b:a2:22:22:bb:c3:d2:8e:a0:cd:7d:55:78:43:03:3d:
e1:e3:86:9f:30:e6:54:18:cd:ff:91:ea:d9:6c:27:0c:b0:0d:
3d:33:ab:1f:36:b6:fa:b2:b4:9e:46:19:66:f5:a0:0a:1a:db:
bd:fc:93:3e:d8:7e:48:9e:92:9e:86:0c:d4:37:96:27:12:0f:
9b:f1:1f:24:1a:1d:44:09:1c:31:cd:d0:c9:b6:51:3e:24:a4:
81:7f:51:74:2c:fb:6c:c6:a7:e4:ab:66:e0:3d:64:36:2d:65:
c6:79:26:6c:de:4f:d7:58:2e:b1:3b:8e:46:3c:fc:3a:29:77:
db:16:d4:50:65:e2:b9:1f:ad:28:5a:2a:8f:27:d5:fc:c4:36:
08:ed:00:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:32:07 2026 by rpki-client