Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
File: geTmB1l46pR2tkHOAIx4erKOXRM.mft (raw, json)
Hash identifier: a2bbE4kLTHeJk8vSMURhvqUpMV1YWlMAudRRy6r02iA=
Subject key identifier: 08:F3:BA:DE:D7:6D:AF:E5:CA:3B:F6:2C:E3:56:91:9D:D0:4E:8F:5E
Authority key identifier: 81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
Certificate issuer: /CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Certificate serial: 019E1F47CCB7966DCC87BE309999ADA8915E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
Manifest number: 1906
Signing time: Wed 13 May 2026 03:00:59 +0000
Manifest this update: Wed 13 May 2026 03:00:59 +0000
Manifest next update: Thu 14 May 2026 03:00:59 +0000
Files and hashes: 1: geTmB1l46pR2tkHOAIx4erKOXRM.crl (hash: iZK/dQ7SNu3IpmEJSeXBQWOKqKGPr2SlbjU0icvuefg=)
2: pTTs0nVlMn5tHpy7oYuUSfXDe4g.roa (hash: xSZGhc6azC4w2f74UgWS1yPxNx1RtAZpsoy3M6zVKGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:cc:b7:96:6d:cc:87:be:30:99:99:ad:a8:91:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Validity
Not Before: May 13 03:00:59 2026 GMT
Not After : May 14 03:00:59 2026 GMT
Subject: CN=08f3baded76dafe5ca3bf62ce356919dd04e8f5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6a:47:db:18:35:6d:ed:cc:95:39:8a:54:9e:
e4:dd:ee:38:16:ce:c0:2d:e8:31:82:50:fb:75:24:
3a:62:31:02:f6:6c:61:33:63:05:38:e6:e4:86:0a:
bd:4e:e1:8d:9f:68:73:0f:f4:16:84:8e:c1:51:d9:
21:1c:91:09:35:0b:87:43:2f:bc:94:08:0f:75:6b:
38:2e:9c:a7:03:eb:ef:78:4f:59:d5:74:35:72:7c:
12:d8:d8:bb:a5:3e:c3:a4:d5:d6:4b:e4:2c:18:e4:
c5:12:f8:f8:43:d6:ca:82:3e:a3:20:79:dd:ee:2a:
39:5a:60:13:33:01:ea:3d:09:66:b8:3b:85:41:4b:
6b:25:9c:e1:c5:4d:2b:64:7c:03:2c:c7:1c:1f:ed:
83:13:65:f9:87:1d:9e:2c:19:fb:02:ef:ec:fb:2c:
33:c9:ab:26:ca:40:dd:f5:cf:81:48:f2:5a:8e:5e:
c7:4f:a1:1d:f9:75:71:7b:8e:dd:29:a9:ec:31:b4:
77:65:18:c0:e3:06:c2:42:74:64:68:e0:19:89:8c:
26:a7:c4:e6:99:8a:5d:5c:df:4c:33:80:7c:2a:45:
85:ef:17:28:c1:41:0f:bd:66:53:d3:f0:26:33:21:
4b:80:e8:39:cd:39:a9:1c:ca:d4:0e:97:1a:26:43:
c4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:F3:BA:DE:D7:6D:AF:E5:CA:3B:F6:2C:E3:56:91:9D:D0:4E:8F:5E
X509v3 Authority Key Identifier:
keyid:81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:fd:d0:f3:9d:52:90:e5:6f:62:d8:82:4a:8c:0b:6d:40:cc:
f7:3e:6e:e9:31:dd:28:d4:4c:88:b1:31:7b:f4:f6:9c:64:66:
ee:7e:e4:2a:d8:fb:7d:40:9b:0e:61:03:68:ee:d1:db:10:b6:
05:c1:63:79:6a:51:b0:10:d8:0f:0c:82:fb:d4:ee:c1:0e:3e:
98:7a:e0:39:19:e3:06:ff:14:8b:c8:ad:ee:11:62:78:c4:26:
56:eb:39:82:cb:e7:bb:05:96:be:3f:ae:ce:94:8f:c2:2a:4b:
30:85:3a:9f:a4:d5:eb:ae:07:c3:0c:0f:5c:93:3d:09:50:49:
4d:4b:57:dd:90:b4:a1:30:6b:bc:3e:6f:7b:54:c2:94:10:f2:
88:20:ef:dd:35:a9:cd:76:a3:3c:d6:8a:f5:d9:ed:ba:c4:76:
08:b7:90:16:f2:5b:da:d7:c6:b5:70:ce:72:ce:a8:3a:73:9b:
99:ba:07:25:e8:4a:9a:57:65:87:cc:b3:67:01:4a:cd:cc:77:
e1:8a:80:5a:57:c1:3a:ee:6a:ac:7e:e2:51:04:ae:7e:e4:66:
25:da:2e:4a:85:1c:ea:31:a4:8e:6f:57:c5:98:30:0f:1a:9a:
5c:c2:35:3f:50:86:09:82:cc:51:01:b7:da:b1:04:f6:1a:48:
19:c8:bf:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:19:07 2026 by rpki-client