Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
File: geTmB1l46pR2tkHOAIx4erKOXRM.mft (raw, json)
Hash identifier: eaW1D3lSZUUJPeqCEhvn554U3/Y8LO2bEzJ31gpvBJM=
Subject key identifier: 82:5D:2D:CC:5C:2C:52:27:8A:B1:58:BE:2D:2F:0B:E4:D6:23:C6:0B
Authority key identifier: 81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
Certificate issuer: /CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Certificate serial: 019D2816E8AB4AC932BD700C1C31F2E94349
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
Manifest number: 1886
Signing time: Thu 26 Mar 2026 03:01:23 +0000
Manifest this update: Thu 26 Mar 2026 03:01:23 +0000
Manifest next update: Fri 27 Mar 2026 03:01:23 +0000
Files and hashes: 1: geTmB1l46pR2tkHOAIx4erKOXRM.crl (hash: TEmzg2fG7lRF4FZSiauce+2C21lXDYhL/+TcqXDcddk=)
2: pTTs0nVlMn5tHpy7oYuUSfXDe4g.roa (hash: xSZGhc6azC4w2f74UgWS1yPxNx1RtAZpsoy3M6zVKGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:e8:ab:4a:c9:32:bd:70:0c:1c:31:f2:e9:43:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Validity
Not Before: Mar 26 03:01:23 2026 GMT
Not After : Mar 27 03:01:23 2026 GMT
Subject: CN=825d2dcc5c2c52278ab158be2d2f0be4d623c60b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:17:7a:33:3c:3e:8b:4a:02:3a:b5:ad:29:1d:
1c:62:a0:07:4c:0d:21:12:bf:44:dd:e9:92:b6:07:
93:3d:5c:97:a5:08:ce:df:26:35:77:d3:d5:53:b7:
86:bc:c6:f0:39:2e:cd:af:ef:7f:39:32:02:fe:15:
31:f4:d1:ee:f1:37:01:69:7f:84:35:e4:7c:23:9b:
44:fe:d9:1a:ea:15:86:6b:d9:e9:20:bc:70:13:e1:
71:21:58:e4:23:b0:60:b9:67:48:15:eb:99:3a:8f:
2a:90:7b:b3:24:6f:85:85:98:50:46:4a:9c:6c:22:
91:11:5b:0a:47:bb:d2:c0:79:83:2d:8b:85:0c:74:
bd:9b:96:7a:69:c0:40:3d:73:78:0a:aa:9a:a9:09:
86:2e:20:58:95:c6:b5:d2:98:61:27:b3:8f:ae:2f:
46:4d:73:28:fe:6c:9f:f5:57:5c:3e:86:09:e7:be:
06:fd:75:38:65:ae:31:9a:06:87:61:57:d6:a2:54:
35:db:fd:81:e8:17:3e:fc:32:3d:d1:56:f2:da:54:
18:77:6d:7b:bb:c2:cf:5d:8d:94:44:aa:3a:21:b2:
24:eb:95:1b:1f:a4:c5:91:78:0d:ad:ee:ba:11:eb:
a9:13:fb:50:9c:f7:57:b3:0c:96:a2:0f:a7:5c:ec:
24:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:5D:2D:CC:5C:2C:52:27:8A:B1:58:BE:2D:2F:0B:E4:D6:23:C6:0B
X509v3 Authority Key Identifier:
keyid:81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:14:6b:f7:21:d2:08:92:5e:e3:de:b1:b6:85:f1:df:1f:9f:
1c:5a:20:39:ce:97:f6:cb:5f:a9:4f:e8:bc:22:34:33:22:72:
56:c8:3f:e1:71:d4:fa:64:ef:5e:88:0f:2b:6e:94:d4:da:e9:
b3:c8:46:2b:1a:92:d2:e6:18:d3:1e:fc:f1:b1:e7:6e:e6:38:
56:bd:6b:19:9c:60:ae:94:9c:e6:e4:66:5f:9c:f0:a7:6a:93:
c8:09:61:3f:5f:d6:6c:5d:2e:c7:30:e3:2e:09:2e:5f:3c:6e:
df:05:f3:a2:e0:7b:72:50:5c:18:cd:f5:31:94:34:a2:9c:76:
e4:54:68:a9:04:bc:34:40:dc:04:19:53:cd:aa:5b:b1:25:3b:
e1:81:34:5f:e4:a4:53:ef:44:de:9d:fd:27:fe:85:92:00:81:
45:f0:a8:e9:58:02:c2:eb:74:9b:eb:f5:9f:22:a0:1b:84:d1:
04:56:54:a5:ed:b4:10:cd:5f:bc:59:43:d5:0c:66:eb:13:3e:
ea:fe:95:dc:51:b1:ea:6a:e2:4d:e7:75:b6:60:56:2f:3d:9d:
8d:50:00:a9:5a:9b:bb:25:fc:c1:5d:29:54:c8:ed:6d:bd:cf:
b2:bb:5a:23:e2:16:6f:f2:d9:dd:03:29:f2:3e:11:a5:c3:c4:
d9:f9:0f:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:58:30 2026 by rpki-client