Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
File: GHpwT0heEd7avFYmTl2AwUh-CEI.mft (raw, json)
Hash identifier: Cep8TzbGDFWDumHluTJVbHKla+XsDVg8PdDU7nJD2Iw=
Subject key identifier: A1:F8:12:6F:3C:A2:49:9D:E1:59:68:0A:33:47:E7:B8:45:7B:5A:C5
Authority key identifier: 18:7A:70:4F:48:5E:11:DE:DA:BC:56:26:4E:5D:80:C1:48:7E:08:42
Certificate issuer: /CN=187a704f485e11dedabc56264e5d80c1487e0842
Certificate serial: 019D9D7638CA4A7D6AA033AEADF00E438076
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
Manifest number: 0400
Signing time: Fri 17 Apr 2026 22:01:03 +0000
Manifest this update: Fri 17 Apr 2026 22:01:03 +0000
Manifest next update: Sat 18 Apr 2026 22:01:03 +0000
Files and hashes: 1: AEpkQkkfLG6rJm7NAyWlaxt2CMs.roa (hash: /9I8pIAZhjtu6FrEBop1PE7UbloCJoFogvxN2q8jOmU=)
2: GHpwT0heEd7avFYmTl2AwUh-CEI.crl (hash: O8aEfHDFORpS3OkiXd6CcppU9LI27OdxeKBjd6Nu6fk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:76:38:ca:4a:7d:6a:a0:33:ae:ad:f0:0e:43:80:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=187a704f485e11dedabc56264e5d80c1487e0842
Validity
Not Before: Apr 17 22:01:03 2026 GMT
Not After : Apr 18 22:01:03 2026 GMT
Subject: CN=a1f8126f3ca2499de159680a3347e7b8457b5ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:84:38:ba:e0:a4:d4:c8:d9:8a:3e:24:9c:f3:
0f:36:19:51:8d:12:9b:a2:e4:97:05:cd:64:89:3f:
70:74:ef:16:34:6d:96:7c:35:8c:93:a5:53:07:98:
91:31:d3:5d:31:d1:cf:55:1b:53:65:7b:10:ea:13:
fd:1f:f1:59:db:ba:6b:da:14:72:d9:73:84:5c:23:
ed:fa:02:36:ff:05:b0:fd:ab:46:57:db:3d:18:19:
bb:5b:8c:06:fe:ad:f7:a7:86:6e:dc:43:63:33:d6:
85:d2:8a:7e:d8:b7:51:f2:d8:b9:98:d3:52:f2:ea:
d1:aa:7d:07:7b:4f:03:12:16:4f:7f:e1:20:3b:24:
4e:ef:9f:5f:dd:2e:ca:3b:06:b4:c8:1a:ff:a5:03:
56:12:c5:2f:f0:ec:32:41:ea:2e:8c:b7:40:6a:64:
ca:0f:2a:a2:ab:14:07:48:f8:d8:ec:c4:27:94:11:
ae:cc:a4:da:02:85:a4:fd:10:a7:88:21:de:e4:39:
bf:eb:73:b1:b1:64:91:24:a6:7f:68:d6:56:14:ac:
69:66:ee:f4:7f:dc:25:dc:a9:e0:f3:44:fa:70:0f:
bd:ee:8e:91:40:ae:f8:c6:a8:66:c0:c6:a2:a6:65:
7b:52:db:6b:92:15:29:d4:71:3f:b4:7c:91:c2:a6:
d7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F8:12:6F:3C:A2:49:9D:E1:59:68:0A:33:47:E7:B8:45:7B:5A:C5
X509v3 Authority Key Identifier:
keyid:18:7A:70:4F:48:5E:11:DE:DA:BC:56:26:4E:5D:80:C1:48:7E:08:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:1e:13:cb:45:e6:1f:94:a5:20:8f:92:94:ee:13:1b:a9:ea:
e0:3e:18:48:c6:ca:ea:40:40:78:77:07:97:70:83:5f:79:c0:
56:a6:a2:7a:84:61:d5:d5:e7:b4:4c:a5:af:18:b5:12:f8:3b:
49:96:f7:a0:f7:fa:02:67:79:fa:14:1a:51:79:52:61:ec:84:
1e:aa:d5:c6:b0:de:bf:5e:6f:ac:cf:ed:c5:3e:6d:71:80:88:
71:06:9e:d8:58:42:bc:f1:15:cb:11:66:28:99:34:02:cb:98:
14:e4:70:c6:d1:63:7c:0b:d8:fb:9c:1e:b5:70:19:c7:c1:44:
e9:bf:c0:c5:43:32:58:b0:27:77:b3:93:e0:55:c5:4d:06:85:
7d:79:b8:18:e7:ab:2c:0a:53:3b:8d:95:85:66:88:ff:ce:6f:
e4:3d:37:18:82:02:94:ff:eb:1d:d3:cb:c5:5e:85:82:44:1b:
0b:d6:91:52:a1:98:08:1d:d3:18:48:16:da:32:6f:1d:08:c2:
67:8a:4d:57:0b:a4:94:57:bb:f8:47:6b:4b:f0:3f:5d:dc:77:
e7:f0:84:4e:55:40:32:fd:f5:9e:34:74:46:3b:aa:10:8c:10:
f3:43:e1:7f:23:7c:77:63:46:39:45:72:ca:45:eb:68:49:7c:
5f:4a:b4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 01:03:53 2026 by rpki-client