Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.mft
File: gwn4FzfW8X58GtWISa_3HFAGTwQ.mft (raw, json)
Hash identifier: njkfh+eHASgT7B9ZMO2lIB1Os+HqiamWxeBcs/BwbWI=
Subject key identifier: 15:FA:F2:8B:CD:40:4E:79:CB:62:35:15:C3:BE:3A:91:56:C3:B8:85
Authority key identifier: 83:09:F8:17:37:D6:F1:7E:7C:1A:D5:88:49:AF:F7:1C:50:06:4F:04
Certificate issuer: /CN=8309f81737d6f17e7c1ad58849aff71c50064f04
Certificate serial: 019D2A0500E72EAE9AEB169FECE42901E6B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.mft
Manifest number: 166F
Signing time: Thu 26 Mar 2026 12:01:04 +0000
Manifest this update: Thu 26 Mar 2026 12:01:04 +0000
Manifest next update: Fri 27 Mar 2026 12:01:04 +0000
Files and hashes: 1: b5oUI_QaX4CIrD9gVfpSglG-l0g.roa (hash: yb9qoXzX3+CuYySvgkHy2fr0k4HAjW35z3hNaIhuEm8=)
2: gwn4FzfW8X58GtWISa_3HFAGTwQ.crl (hash: VwXTHzftAVOrYhYaYuhmGr0B7HxyMt9BVnUP++n8sro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:05:00:e7:2e:ae:9a:eb:16:9f:ec:e4:29:01:e6:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8309f81737d6f17e7c1ad58849aff71c50064f04
Validity
Not Before: Mar 26 12:01:04 2026 GMT
Not After : Mar 27 12:01:04 2026 GMT
Subject: CN=15faf28bcd404e79cb623515c3be3a9156c3b885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c8:23:69:4b:e7:07:8e:6b:73:6e:06:a3:68:
78:c0:9a:df:46:d2:3f:8d:2a:d4:1b:a0:93:d4:ce:
c6:d5:0f:17:76:4b:fb:07:d0:87:5f:3c:58:c3:15:
a5:c8:05:52:b4:00:cb:c2:b0:11:41:81:82:51:cf:
49:3f:81:48:4e:3e:fb:90:34:69:94:57:ab:e9:e8:
6f:ae:ba:d5:35:87:63:9d:66:a1:30:16:b8:68:ea:
db:66:e6:28:b6:3e:87:00:34:19:0c:91:ab:72:cc:
ed:bd:cb:1a:41:ce:58:d8:e7:13:50:48:37:df:fa:
9b:2e:5a:b7:77:f8:67:ff:90:11:39:05:8f:2d:a4:
ac:96:92:1b:bd:c4:cd:2e:0a:52:c2:43:e7:c2:05:
dd:ae:f8:03:a0:40:a3:39:47:92:48:64:c3:1a:38:
7d:b5:db:d8:27:36:c0:ed:88:9f:d2:e2:8e:89:eb:
2d:d0:e7:17:2a:37:a8:fc:be:09:da:93:4e:10:bd:
ef:48:2c:4c:fb:40:18:aa:12:1f:94:d3:93:af:17:
42:1c:89:b7:54:5e:f8:6d:7c:8a:90:9c:93:e1:60:
fb:1f:dd:ad:1a:2c:b1:10:bf:aa:a1:0c:2d:b6:79:
d0:28:ae:89:73:79:4b:28:52:bc:7c:86:bc:3c:9d:
54:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:FA:F2:8B:CD:40:4E:79:CB:62:35:15:C3:BE:3A:91:56:C3:B8:85
X509v3 Authority Key Identifier:
keyid:83:09:F8:17:37:D6:F1:7E:7C:1A:D5:88:49:AF:F7:1C:50:06:4F:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:56:c7:97:e8:d0:77:2e:91:52:aa:cd:f5:3d:b4:98:c4:96:
1a:18:14:0d:e1:a1:a6:ea:8b:e6:fc:f2:e3:a9:d8:e6:d3:54:
73:72:7d:50:81:cb:76:40:8d:60:fe:41:85:8e:61:c0:6d:0e:
89:f0:d5:31:8a:12:e3:58:8f:34:61:33:d4:1a:71:b0:76:74:
c2:74:c0:54:db:4c:6d:9e:51:17:16:22:37:52:a3:c0:84:bc:
ff:76:2d:80:2c:bd:d2:99:ee:69:15:a3:33:1a:29:b3:4c:e5:
bd:bc:61:dc:13:4e:34:71:55:ee:c8:2d:54:0d:22:52:38:9f:
d5:01:77:7a:1a:25:ec:72:82:2e:2d:79:c6:d7:20:89:64:8f:
55:cf:93:0b:c6:23:e0:56:ba:ea:c9:24:38:96:cc:ab:28:10:
4d:78:46:0e:48:52:e3:57:6f:a6:56:53:4c:e1:60:88:2b:8d:
72:2a:31:d4:0b:bf:45:e6:9a:c9:48:0c:3b:b4:7d:d3:c6:5d:
03:0f:0e:73:1f:45:cf:04:ee:b3:69:f0:2c:7d:e1:c5:49:69:
3d:d6:e4:26:66:93:6a:32:ba:ef:fa:45:1e:8f:7e:40:08:c4:
1a:7d:b4:b5:ec:c6:a3:64:eb:81:62:f7:30:93:6c:d7:0c:a3:
ff:b4:14:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:24:08 2026 by rpki-client