Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
File: G2uUO5o9_2loAVFr6EcbxFiFZug.mft (raw, json)
Hash identifier: JSZVrXD1UBXFvZNPLy/PckLpRG27AkLVlTnlbMI5oT0=
Subject key identifier: F8:47:FD:71:1F:5A:A2:76:28:59:DA:F4:DD:1D:BA:21:87:C1:5A:BE
Authority key identifier: 1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8
Certificate issuer: /CN=1b6b943b9a3dff696801516be8471bc4588566e8
Certificate serial: 019D273AAD2716B47911B11771511D90E890
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
Manifest number: 152B
Signing time: Wed 25 Mar 2026 23:00:49 +0000
Manifest this update: Wed 25 Mar 2026 23:00:49 +0000
Manifest next update: Thu 26 Mar 2026 23:00:49 +0000
Files and hashes: 1: CFO4FgEIRtMb5lyEJ7fTGNyKj1Q.roa (hash: 811rgV28E1K97XcQlVBf+c8AkF0NnU7urjPyYJW2uoM=)
2: G2uUO5o9_2loAVFr6EcbxFiFZug.crl (hash: t/+I5fCXT56Sg2EdZbp9hafj0wxBuF7kQIFTOLBFrtI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:ad:27:16:b4:79:11:b1:17:71:51:1d:90:e8:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b6b943b9a3dff696801516be8471bc4588566e8
Validity
Not Before: Mar 25 23:00:49 2026 GMT
Not After : Mar 26 23:00:49 2026 GMT
Subject: CN=f847fd711f5aa2762859daf4dd1dba2187c15abe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ae:d5:94:34:66:b0:85:26:8a:3f:c1:b4:5d:
98:c8:31:32:28:e5:bc:dc:2d:b0:ae:c1:3a:03:a2:
c8:b6:06:1e:35:f8:b2:26:24:cd:c6:9a:c6:45:5f:
8e:ab:8a:e5:0d:4b:4f:30:4f:95:23:1a:18:df:d8:
38:83:1a:02:17:f6:4f:f6:ca:f4:70:39:4d:e4:5b:
97:0b:40:2c:7d:42:dc:b4:04:f9:14:04:06:8b:f0:
14:b2:64:89:f9:15:95:10:4e:48:6c:e8:1d:83:7b:
ab:32:99:83:19:69:65:a7:e9:1f:16:a3:14:00:00:
22:07:33:64:a3:1f:6f:9e:69:3d:37:db:c1:7a:46:
0c:af:28:6f:43:80:44:d8:69:69:52:b1:eb:37:92:
6a:e1:80:a4:03:76:6a:13:2b:a1:ed:16:4c:ad:50:
ae:c3:73:20:9d:88:dc:bd:21:78:b4:8c:cc:99:0f:
7a:3e:c1:6d:49:66:0f:cd:d5:6d:d1:70:2a:3c:85:
cf:55:8e:49:f2:6c:98:ad:8b:d3:f0:06:b8:48:78:
16:87:de:34:63:20:59:b5:82:08:ab:5b:80:00:e0:
2b:3d:70:8a:b7:48:57:12:a3:4a:d4:a9:d7:6a:04:
7e:7a:19:b5:7f:2c:36:c1:8a:52:01:61:51:60:f3:
89:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:47:FD:71:1F:5A:A2:76:28:59:DA:F4:DD:1D:BA:21:87:C1:5A:BE
X509v3 Authority Key Identifier:
keyid:1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:0a:9a:87:08:81:94:a3:fa:33:eb:eb:44:03:71:e6:3f:60:
f9:0e:23:26:50:2d:d9:9b:6d:87:81:b5:b0:46:2d:d7:c7:e1:
a9:c5:27:2a:be:91:5c:5d:59:00:da:f1:44:52:ed:f4:3c:67:
af:3a:e6:08:6c:f0:c2:0a:36:7c:e8:79:08:ee:23:a4:49:45:
4a:95:fb:17:7c:41:17:e7:79:99:73:08:42:ef:70:5b:e3:2d:
61:0c:5b:44:fe:1c:dc:14:9a:bf:88:a5:4d:2a:30:d8:62:f4:
56:86:a5:3d:d8:08:00:e9:8d:62:58:84:5a:35:ce:88:4c:c2:
b5:aa:e0:cb:02:cf:40:df:b3:88:4b:6a:ec:4b:e5:8d:11:62:
09:38:b8:66:77:cb:8d:f1:11:37:d9:bb:2f:43:7e:9f:2c:2d:
8c:db:a6:de:34:83:a4:c9:bb:06:15:3c:38:12:26:ea:ca:c3:
b2:be:0f:28:5d:f7:91:75:e9:b1:0e:cc:ec:fb:a8:3f:28:9e:
66:53:87:da:ac:e2:1a:88:4b:90:f1:b8:ca:6e:31:82:1f:f3:
68:17:50:c9:a3:be:78:03:bc:b7:cd:c7:38:17:02:36:1b:7f:
76:03:31:08:e7:44:d2:c3:09:d0:12:2d:b4:2d:36:40:35:a3:
c8:99:cf:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:57:39 2026 by rpki-client