Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
File: 1gTknpKDBavLjzLe8_78A-u83kQ.mft (raw, json)
Hash identifier: Ng1fRn3VL+OxCtBHPefdIq/CDbuOibirHpgDMluUBGA=
Subject key identifier: 96:42:BF:30:AB:DB:02:74:D4:84:E0:CC:EE:94:A8:52:EB:5E:41:1A
Authority key identifier: D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
Certificate issuer: /CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Certificate serial: 019D26CCE36C799D6E945A4C1766CF66F5C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
Manifest number: 1819
Signing time: Wed 25 Mar 2026 21:00:54 +0000
Manifest this update: Wed 25 Mar 2026 21:00:54 +0000
Manifest next update: Thu 26 Mar 2026 21:00:54 +0000
Files and hashes: 1: 1gTknpKDBavLjzLe8_78A-u83kQ.crl (hash: fcp72TryvmrDN4hqcg2rnAjEqFz1nJt2AGA+lpyZ64s=)
2: O3NHX1xusGOC_jwAncPD2CBztNE.roa (hash: tIvb5cVDrsiT8uq8kfesqrbk5rRYub73yqvQwpeTOXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:e3:6c:79:9d:6e:94:5a:4c:17:66:cf:66:f5:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Validity
Not Before: Mar 25 21:00:54 2026 GMT
Not After : Mar 26 21:00:54 2026 GMT
Subject: CN=9642bf30abdb0274d484e0ccee94a852eb5e411a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1b:b8:d5:21:4f:21:e3:23:4e:9d:4f:5a:63:
6e:e1:30:36:e7:b3:22:54:52:64:b7:61:a4:b7:6c:
ad:b6:04:a6:f0:df:c9:ae:e7:f5:43:81:16:a8:06:
2f:e3:6c:7d:44:64:9b:10:88:d1:ac:46:33:22:de:
31:77:26:5b:32:ca:81:ad:9e:92:29:99:d7:78:9a:
02:ad:85:fb:6f:d3:89:c8:99:51:de:9e:ca:2d:a0:
2d:94:30:db:dd:11:ec:4e:af:44:7a:db:41:13:cc:
56:6a:e3:15:5f:64:c7:4d:24:5d:30:7b:4c:55:b4:
0b:b4:0c:1d:dc:90:62:c7:6d:9c:66:09:1f:01:02:
4f:28:ba:85:5f:ed:c9:25:05:55:4e:94:0f:af:e6:
80:5b:00:e8:c6:4f:96:39:db:02:c5:11:39:56:6e:
2b:be:24:07:52:99:7c:12:b8:9f:d5:e0:f7:d2:42:
ad:d3:bc:3c:76:c2:be:08:ea:7c:37:57:a1:0b:70:
bc:bd:b8:e2:c8:88:f6:69:93:0e:17:5c:5f:f5:2c:
33:25:9f:6b:71:68:2d:e2:e8:49:cd:fe:69:a2:88:
14:97:c0:70:fd:fe:b8:34:e5:cd:14:a7:6c:92:d1:
eb:b7:42:a7:21:d9:ff:a4:3c:57:17:81:3e:da:ea:
03:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:42:BF:30:AB:DB:02:74:D4:84:E0:CC:EE:94:A8:52:EB:5E:41:1A
X509v3 Authority Key Identifier:
keyid:D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:03:e9:b2:2e:cd:93:8d:b1:d1:94:30:69:83:87:7d:8a:56:
14:c1:65:84:ed:00:26:54:8a:53:8e:2f:d8:7c:8b:70:46:92:
f2:a2:35:a8:c3:4d:dd:19:7e:53:3b:9d:d8:50:33:9d:75:f6:
8a:4e:8a:cf:3c:b1:62:bd:d8:50:a6:12:bc:f8:73:2b:b3:e7:
f7:2f:23:55:a2:35:3d:b0:74:11:82:d3:e4:93:83:d9:a8:a6:
d4:82:37:87:c3:42:fb:49:aa:cb:34:e6:87:bf:ef:bd:43:85:
18:4c:92:7e:2c:9c:52:6a:ba:1a:0c:8b:2a:ae:4a:9d:93:56:
20:bd:1f:9b:62:e0:0f:52:25:51:4a:d0:40:91:50:06:14:2f:
2a:7f:6a:5c:58:85:6e:d4:f2:97:29:6a:fd:ee:ea:e8:4e:75:
13:cc:5d:b0:bf:33:4d:63:c4:64:65:6c:8d:e4:a8:64:ed:91:
9f:38:0e:55:2c:82:af:e4:aa:ce:a6:e2:f3:3f:b2:6b:84:c9:
09:e8:d2:66:19:74:29:ef:cc:72:46:bd:3d:74:aa:46:c7:e8:
d6:8a:2e:f7:f8:91:da:cb:06:f3:1f:e3:37:de:42:c5:20:32:
84:4e:7b:43:aa:43:c3:2d:37:b7:02:02:d3:2f:a8:b9:0e:c7:
88:b2:b9:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:37 2026 by rpki-client