Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
File: GHpwT0heEd7avFYmTl2AwUh-CEI.mft (raw, json)
Hash identifier: KaieufHkJQKN5iI6szmDufezVh87Sf9Yg8fGt5227mU=
Subject key identifier: 54:B1:03:06:7D:F2:F4:78:D3:99:AA:F4:E4:77:7A:A2:77:4B:EA:9D
Authority key identifier: 18:7A:70:4F:48:5E:11:DE:DA:BC:56:26:4E:5D:80:C1:48:7E:08:42
Certificate issuer: /CN=187a704f485e11dedabc56264e5d80c1487e0842
Certificate serial: 019CAE359A3EB41CBFDD62EA4819435FF8DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
Manifest number: 0382
Signing time: Mon 02 Mar 2026 11:01:14 +0000
Manifest this update: Mon 02 Mar 2026 11:01:14 +0000
Manifest next update: Tue 03 Mar 2026 11:01:14 +0000
Files and hashes: 1: GHpwT0heEd7avFYmTl2AwUh-CEI.crl (hash: ej9UoVt91XtePRtInwAOruI8b2L4icu2boDWgpMJw0s=)
2: uevpehLgWf1goDveIaAf_RWmFqo.roa (hash: 6gDUveXYOEUjPreD5zKGNwaO5HHi1e9vD8LKnyRtvSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:9a:3e:b4:1c:bf:dd:62:ea:48:19:43:5f:f8:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=187a704f485e11dedabc56264e5d80c1487e0842
Validity
Not Before: Mar 2 11:01:14 2026 GMT
Not After : Mar 3 11:01:14 2026 GMT
Subject: CN=54b103067df2f478d399aaf4e4777aa2774bea9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3c:e7:ec:f8:e1:78:0a:5e:2d:7d:ce:b0:66:
f0:0c:f8:92:c0:b4:5e:38:64:6c:fb:2f:1f:96:f3:
40:81:01:92:8b:7c:d2:d2:88:9e:6b:4f:85:f1:b1:
83:ce:c9:9c:a6:3e:12:b2:47:37:e9:5b:3d:55:d2:
03:cd:44:a7:d3:58:cb:e8:4e:6c:ad:c1:1c:b6:bc:
ea:32:09:02:75:05:4b:c1:ac:ce:32:b2:81:84:51:
86:77:a9:bd:27:22:bb:b4:6a:40:18:73:52:0b:ca:
eb:9c:88:6d:c0:23:46:0a:cc:32:df:e7:19:8d:1f:
49:61:51:b3:3e:2a:e6:7b:5f:2d:3e:7a:6d:70:a0:
b6:f7:73:cb:c9:56:a4:b8:a0:7f:1b:d6:db:28:b2:
80:c4:24:eb:83:28:44:20:80:cd:75:69:c5:a6:07:
25:54:78:6b:4c:97:f3:73:bf:de:0f:54:cb:5e:9a:
4f:9a:e1:08:d4:77:3a:dc:3d:c8:b4:74:71:26:f0:
ac:af:e2:7a:5f:54:df:34:2b:3e:fa:c6:9a:c8:cb:
54:6e:a4:92:8d:89:ff:7c:29:85:20:b1:1d:bc:1e:
4d:aa:ca:6f:5f:45:19:6b:b9:b7:ed:10:73:ce:8a:
64:28:1a:ae:55:49:f7:82:41:8e:74:68:29:f8:46:
13:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B1:03:06:7D:F2:F4:78:D3:99:AA:F4:E4:77:7A:A2:77:4B:EA:9D
X509v3 Authority Key Identifier:
keyid:18:7A:70:4F:48:5E:11:DE:DA:BC:56:26:4E:5D:80:C1:48:7E:08:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:9a:27:ae:01:25:42:f6:8c:18:53:2f:ca:6d:90:45:b8:29:
0f:e1:1e:6a:b2:f4:1f:11:40:d4:64:2a:f9:0e:8c:b5:80:9c:
b3:25:d7:98:0f:53:8b:e7:4e:eb:a5:c3:fc:88:3b:af:db:6e:
bd:ea:45:d3:d7:86:50:41:4c:b1:ac:c3:66:59:cd:a3:e3:a9:
32:9e:11:56:76:1a:15:72:cf:89:e8:c8:f9:d2:32:14:fb:4e:
1e:b7:63:84:55:36:59:95:19:a3:7a:20:d8:4b:f6:d7:16:69:
3b:c6:f4:c8:6e:c2:4f:b0:6b:7a:d1:08:f9:ed:36:eb:9a:2f:
13:f7:39:be:cf:64:26:8b:72:30:4a:f3:1d:6e:05:fb:1f:e6:
04:9e:4c:09:e0:2d:b0:9b:ed:37:b5:01:9f:e5:06:5d:3b:c3:
31:53:08:93:21:f8:70:c0:40:e3:4e:78:71:3d:8c:72:e4:e3:
cf:97:d2:a9:05:bc:bb:6a:49:de:30:34:06:63:aa:b9:43:46:
60:6f:66:99:ba:3a:c8:8e:36:ad:e3:43:0f:16:64:29:f5:a2:
62:84:bb:38:a5:2d:5b:b2:28:1d:1b:98:d9:47:3e:68:ca:62:
8d:66:29:76:2f:1f:47:10:53:10:d9:67:e4:37:5d:24:18:3b:
ef:73:10:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:47:23 2026 by rpki-client