Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.mft
File: gwI7OXBbNFqG7_PxTvax5NtFk54.mft (raw, json)
Hash identifier: HQoqtPwAKWfnTPbjBy/ALn+FKBLIz106a643C/evw/U=
Subject key identifier: 3D:8A:93:D1:6E:3A:25:5B:D6:8C:73:43:DD:28:12:92:87:BB:D5:46
Authority key identifier: 83:02:3B:39:70:5B:34:5A:86:EF:F3:F1:4E:F6:B1:E4:DB:45:93:9E
Certificate issuer: /CN=83023b39705b345a86eff3f14ef6b1e4db45939e
Certificate serial: 019D2BBBCD1BEBE3533D5DA4A2EF2221AE7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwI7OXBbNFqG7_PxTvax5NtFk54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.mft
Manifest number: 1120
Signing time: Thu 26 Mar 2026 20:00:21 +0000
Manifest this update: Thu 26 Mar 2026 20:00:21 +0000
Manifest next update: Fri 27 Mar 2026 20:00:21 +0000
Files and hashes: 1: RR2Qpipy3CGQZUMFDoxapCCswEU.roa (hash: gIn0IJGSqUa3PXsu1U1OGftRLBAw7A/4NhM17NLvsb4=)
2: gwI7OXBbNFqG7_PxTvax5NtFk54.crl (hash: Jy7DWWqXqRtiM1lhh90nmgF+RGp+rVoSQQI8C5WmAlY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.mft
rsync://rpki.ripe.net/repository/DEFAULT/gwI7OXBbNFqG7_PxTvax5NtFk54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:bb:cd:1b:eb:e3:53:3d:5d:a4:a2:ef:22:21:ae:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83023b39705b345a86eff3f14ef6b1e4db45939e
Validity
Not Before: Mar 26 20:00:21 2026 GMT
Not After : Mar 27 20:00:21 2026 GMT
Subject: CN=3d8a93d16e3a255bd68c7343dd28129287bbd546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:27:1c:55:03:45:a0:c3:b3:9f:0e:fc:8b:fe:
a0:3a:a8:4e:eb:96:73:ae:9d:e3:31:d5:03:b3:77:
66:53:bd:05:68:22:00:92:4a:69:6d:f4:ca:2b:3d:
c3:68:c9:83:74:cd:2c:ab:aa:cb:9b:25:f3:84:d0:
3b:d8:e7:3b:5f:ee:f5:63:8d:dc:00:8f:74:d8:66:
fb:cb:b1:ba:9d:d1:c0:10:b3:7e:3d:ea:b5:aa:4a:
28:d7:6d:04:66:da:b1:88:fb:ab:10:42:b4:2a:e3:
88:d0:e6:61:ca:23:d6:50:92:ff:f8:97:e2:c1:61:
df:8a:c2:91:b5:59:ca:7d:7e:16:f2:b3:9e:20:41:
87:22:30:a2:1a:04:0a:b4:b1:e4:3e:b3:81:19:d2:
e3:0b:f0:13:37:8e:b3:7e:92:3a:6c:5e:7f:74:a3:
cc:37:79:c2:f8:6b:fc:2a:74:77:d5:58:bf:49:62:
67:c0:e3:91:ed:a0:b6:1c:0b:14:25:69:06:07:56:
5a:6f:79:b5:1f:8b:ed:ad:da:8b:20:a1:e9:6e:b9:
40:7d:e7:bc:25:f9:02:b6:cb:33:86:f6:cc:d4:07:
68:91:62:ff:ab:5e:13:1e:8e:d5:93:f5:39:9c:bf:
6e:fc:c9:f8:96:9f:1f:bd:e1:72:99:42:42:16:5d:
b4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:8A:93:D1:6E:3A:25:5B:D6:8C:73:43:DD:28:12:92:87:BB:D5:46
X509v3 Authority Key Identifier:
keyid:83:02:3B:39:70:5B:34:5A:86:EF:F3:F1:4E:F6:B1:E4:DB:45:93:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwI7OXBbNFqG7_PxTvax5NtFk54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:2e:0a:86:fc:6c:25:9f:c2:a3:0a:32:98:ea:4f:35:f1:e4:
e8:8b:8f:26:72:4e:c5:0a:99:00:ba:36:43:4b:b0:d4:23:3a:
cb:9b:14:29:83:1a:93:33:1c:c5:23:e1:64:d1:06:d8:52:ca:
07:5d:94:9e:e8:c5:ba:93:68:4e:03:a5:29:45:da:1a:1e:28:
a7:f4:ad:d9:3f:b9:03:0e:d2:8f:dc:bd:1f:f5:b6:fc:f0:42:
fc:b6:96:b5:5c:89:8c:72:9f:e7:ab:ae:24:18:69:db:c3:9e:
85:28:7e:2d:5b:66:29:fa:e9:09:f5:6b:fa:ca:c8:f6:9c:d5:
57:2e:33:e9:6f:f8:bd:7f:2f:5f:a6:eb:42:b5:90:79:8f:54:
68:7a:c9:ef:02:29:2a:67:9d:75:6f:6a:7f:0e:ac:3f:99:37:
7a:f1:3c:3c:df:e6:5a:77:2b:0b:17:44:84:95:93:84:45:f6:
0d:0d:2a:5b:31:74:32:ed:8f:03:7b:56:81:84:01:9f:8c:1f:
54:40:1d:49:a2:3f:0a:a5:08:04:4c:0e:d4:d6:4c:af:9d:61:
33:f4:52:f2:fb:a4:55:e2:e2:fb:47:71:a8:4f:c1:e9:92:2a:
cd:2b:88:43:cb:57:ad:1e:48:15:47:1e:3a:e8:c0:8d:ff:2a:
1d:04:c2:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 01:02:28 2026 by rpki-client