Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
File: gBbMsax3x8AqTt5gbfH375c6C_k.mft (raw, json)
Hash identifier: 6sRQByO5fMiC478M1PM4sx+A4Uyz0rbHQurbzuHywlE=
Subject key identifier: 85:72:12:9C:F1:E8:4E:D9:CA:2C:3A:56:4D:B3:07:C8:39:E9:02:C3
Authority key identifier: 80:16:CC:B1:AC:77:C7:C0:2A:4E:DE:60:6D:F1:F7:EF:97:3A:0B:F9
Certificate issuer: /CN=8016ccb1ac77c7c02a4ede606df1f7ef973a0bf9
Certificate serial: 019CAAC6AB0F605C853F3EBD1DCA8DC36B4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
Manifest number: 12F3
Signing time: Sun 01 Mar 2026 19:01:12 +0000
Manifest this update: Sun 01 Mar 2026 19:01:12 +0000
Manifest next update: Mon 02 Mar 2026 19:01:12 +0000
Files and hashes: 1: IOinLaLyJtRz6jnC6Xf3uO3dQyk.roa (hash: WrbsU2ay1yqb6dXswy4M2OA4fKF6n6NbHM9kyKcjgco=)
2: gBbMsax3x8AqTt5gbfH375c6C_k.crl (hash: P203wvLrtABRFZRZn/99GmMe6EAQbwj/C5+FHvIHE7c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:ab:0f:60:5c:85:3f:3e:bd:1d:ca:8d:c3:6b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8016ccb1ac77c7c02a4ede606df1f7ef973a0bf9
Validity
Not Before: Mar 1 19:01:12 2026 GMT
Not After : Mar 2 19:01:12 2026 GMT
Subject: CN=8572129cf1e84ed9ca2c3a564db307c839e902c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:29:6a:cb:47:89:d4:0e:e2:36:e9:a2:5e:88:
d2:88:ce:0a:e9:fd:95:d2:85:fa:62:a8:6f:56:32:
f4:12:90:bd:d9:db:86:51:0e:b8:08:26:fb:f9:b1:
c6:b8:77:b8:1f:8d:c9:4c:ab:67:9d:42:e8:02:19:
85:34:d7:5d:d9:22:bc:d4:94:db:f4:9d:c1:5b:ba:
48:63:f1:15:37:b0:bd:0c:dc:a9:db:6c:54:e8:af:
7d:c8:39:6e:f4:a3:82:1c:a4:6c:15:4b:e6:1d:81:
c8:ea:b2:71:c5:4a:b8:a8:55:c5:84:b0:aa:40:92:
b3:e4:d3:9a:9e:1e:ef:70:e9:1e:64:8c:59:ca:2b:
07:50:cb:7d:19:40:a8:ab:c6:1e:59:73:96:7a:17:
a8:97:1f:aa:2c:67:96:fa:fc:37:04:6b:94:46:5a:
01:3b:f3:38:64:2b:b8:50:69:1d:33:55:a1:fe:5a:
0b:c4:96:2b:d4:dc:71:5c:30:1c:76:38:8f:5b:e9:
ce:0a:54:30:e8:83:e4:c6:da:96:99:6d:f4:1b:73:
d0:0c:d6:2b:e6:b6:13:91:bb:fe:26:ef:c0:67:ee:
d0:36:68:df:1f:50:1d:0d:53:3d:d6:b1:e1:9e:4c:
7e:a8:0f:b2:6c:50:ea:8b:36:04:be:54:de:3a:00:
a4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:72:12:9C:F1:E8:4E:D9:CA:2C:3A:56:4D:B3:07:C8:39:E9:02:C3
X509v3 Authority Key Identifier:
keyid:80:16:CC:B1:AC:77:C7:C0:2A:4E:DE:60:6D:F1:F7:EF:97:3A:0B:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:0d:8b:4d:55:fe:6f:e2:d6:9e:a6:bc:c7:d5:5a:86:0d:f3:
e1:7a:e0:2d:79:c7:35:f7:5a:16:ac:61:c1:c9:01:e4:30:7e:
42:f0:df:e7:ea:5a:2c:6c:e2:fa:6c:55:55:84:88:57:d2:cb:
c4:be:7f:b7:b4:b9:78:cf:fa:e3:97:a2:31:3c:5e:19:c9:56:
b4:09:04:a4:59:24:d5:73:c2:ba:fe:2e:4b:ab:f9:d5:d1:e6:
a1:96:06:76:8d:ea:35:25:62:c3:78:e4:3b:0d:c9:ce:cd:17:
69:cb:6b:af:5f:bc:69:ab:9f:f9:ac:bc:dc:ce:5e:42:89:6a:
e2:81:d7:64:77:13:f8:c1:6a:8c:77:da:85:0e:ab:5e:6a:bb:
34:c3:b4:c1:e8:7d:bc:75:b9:ea:0b:1e:7c:d1:d7:7d:65:71:
e8:bc:2b:2a:1a:f9:7a:be:31:02:db:af:b5:27:40:30:5d:aa:
e0:c8:26:eb:13:2a:17:58:d0:52:b0:ed:2a:94:85:54:8b:b3:
ba:14:49:1f:d1:ad:81:64:dc:9c:ad:24:17:ee:63:eb:2c:b5:
92:9d:b8:d5:ba:53:93:a5:18:b8:e3:d1:cc:c3:3a:e3:13:7c:
b8:d0:39:11:26:e1:94:a4:35:b0:90:76:58:d9:d7:64:83:2c:
46:a8:c6:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:44:31 2026 by rpki-client