Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json)
Hash identifier: ccnjFDw+dtMWwPSvQBUu1R0NQMigRkB2R/SbNbTNF3o=
Subject key identifier: 1B:52:03:56:1A:C4:A6:36:F7:9B:E7:A7:DF:09:D0:22:1A:BB:07:72
Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Certificate serial: 019E1DFE775BD95FF5DAB20125A573D06FE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
Manifest number: 04EE
Signing time: Tue 12 May 2026 21:01:16 +0000
Manifest this update: Tue 12 May 2026 21:01:16 +0000
Manifest next update: Wed 13 May 2026 21:01:16 +0000
Files and hashes: 1: RRfH67NRANb78QCHIsNktj2AM8M.roa (hash: Kvb0sz/yAiVAWW/vkTFZtCm8iDPULJVC9JDaAm74c0I=)
2: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: KA4TEdlbmkk2Fcq1IkS92weCO8lnlr9deRFiNXBkAXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:77:5b:d9:5f:f5:da:b2:01:25:a5:73:d0:6f:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Validity
Not Before: May 12 21:01:16 2026 GMT
Not After : May 13 21:01:16 2026 GMT
Subject: CN=1b5203561ac4a636f79be7a7df09d0221abb0772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a4:a4:15:9f:62:cc:55:43:7f:38:87:a0:65:
89:3f:45:a7:26:fa:e1:d6:00:3f:c1:60:72:6c:96:
a5:66:84:b1:52:ab:78:ee:d0:bd:93:08:3f:a2:96:
de:ee:3f:40:aa:97:a3:d7:92:00:be:41:77:b5:68:
e2:a4:bb:69:9b:75:ed:b8:03:91:01:da:d2:a1:ff:
5c:68:71:ea:1e:36:60:b3:e4:0a:fe:55:e6:86:21:
0d:ac:3e:55:9d:ac:b2:c2:29:a4:b8:ec:4f:ed:aa:
34:73:cf:32:e4:92:d1:57:bc:de:41:84:9d:00:ab:
7d:52:12:bd:f2:89:ef:a6:08:8a:99:53:34:d4:27:
76:c0:29:52:f7:d7:91:39:21:32:43:a1:b4:a1:e5:
8e:02:9c:e4:ed:4e:55:73:6b:d1:f1:b6:e0:8f:03:
9c:a0:94:c0:e3:10:81:df:55:61:b6:16:1b:2c:09:
a7:ed:4c:65:a6:1b:81:2f:54:6e:d0:2c:04:a6:41:
eb:2f:8f:6a:a1:b0:54:c3:6c:b0:09:59:51:f1:5c:
e3:fa:21:22:50:7c:6b:85:c4:52:73:07:5b:2c:59:
67:ff:07:ed:53:89:2b:46:a1:46:31:76:f3:1f:da:
8e:ad:80:e3:0b:59:04:87:3d:43:80:79:6c:ea:03:
5f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:52:03:56:1A:C4:A6:36:F7:9B:E7:A7:DF:09:D0:22:1A:BB:07:72
X509v3 Authority Key Identifier:
keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:f0:cc:f0:49:f7:3a:78:aa:2d:c4:b3:d4:c0:83:1b:93:19:
2b:2f:82:df:75:bc:c8:b0:3e:f1:ba:50:0d:13:f3:79:9e:4e:
d0:04:9e:03:9e:ec:f2:7b:21:c9:84:f5:0e:19:ba:5a:48:cc:
b1:1b:e2:99:fe:cc:d7:e2:6c:8a:dc:ec:ab:b5:fc:93:68:55:
35:22:2b:35:0a:6c:24:10:b9:6b:09:9c:a3:a5:05:96:36:b0:
5b:66:0f:86:9d:bc:56:2d:01:32:23:52:62:6f:ff:a5:4c:72:
e9:66:6a:a3:5f:4b:08:fe:e9:48:1b:6a:5b:2c:9d:27:9a:4b:
31:82:f8:86:1a:97:a5:7c:32:37:d3:0e:e1:7c:20:d2:be:d5:
f9:df:cd:4d:a5:3f:3d:77:79:82:cc:17:b8:4e:74:84:a0:ef:
e2:a4:9e:18:bc:96:13:2a:6d:a2:3f:ad:22:cb:fc:1d:ec:b2:
77:73:9b:36:14:3f:07:1a:71:41:fe:f1:0e:a5:7a:f0:b1:a0:
70:9a:cc:e1:c8:54:01:85:dc:6b:61:be:4e:6e:48:65:a6:b5:
23:0f:f6:7b:e6:77:fb:87:15:c6:4e:31:6b:8c:ba:ce:df:7b:
5f:b9:1c:21:7b:92:ff:d8:e8:2e:0a:ca:85:54:99:38:8d:5a:
e4:06:8b:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:10:38 2026 by rpki-client