Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json)
Hash identifier: 7NMSvwPDvxVUlhg3t5kMZHkm972GyLaO0YvMHP7pJo4=
Subject key identifier: 99:43:05:35:57:06:0D:E5:8E:19:E6:68:0F:E2:85:56:F2:82:D0:0F
Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Certificate serial: 019D28BB833D14724DAB029F8B5C8C8BB36A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
Manifest number: 046F
Signing time: Thu 26 Mar 2026 06:01:10 +0000
Manifest this update: Thu 26 Mar 2026 06:01:10 +0000
Manifest next update: Fri 27 Mar 2026 06:01:10 +0000
Files and hashes: 1: RRfH67NRANb78QCHIsNktj2AM8M.roa (hash: Kvb0sz/yAiVAWW/vkTFZtCm8iDPULJVC9JDaAm74c0I=)
2: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: F09J+MmJOyb9TuJV+fM9GjoXRE321Z3eQaQxNoDxIH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:83:3d:14:72:4d:ab:02:9f:8b:5c:8c:8b:b3:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Validity
Not Before: Mar 26 06:01:10 2026 GMT
Not After : Mar 27 06:01:10 2026 GMT
Subject: CN=9943053557060de58e19e6680fe28556f282d00f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:eb:3b:34:b9:5b:a5:9b:2e:16:f1:95:a4:70:
43:94:48:ce:f0:aa:de:d8:83:f3:2d:52:10:6a:e7:
b5:4b:8c:b9:b8:5f:7e:ab:16:ee:76:ce:28:b5:3a:
bf:37:df:bd:11:3a:5d:7a:5a:4f:20:31:ea:5e:59:
58:74:72:1e:36:d9:8d:bf:8b:fb:fe:fc:e6:45:32:
20:34:93:97:4d:53:34:b6:c3:dc:a3:82:42:2e:39:
3d:b1:b7:e9:a8:c1:9d:9a:11:d9:f1:10:df:1e:da:
f2:8c:f1:36:2e:3e:5e:94:15:e0:33:1f:c3:13:45:
92:83:45:a8:ba:74:c3:18:d0:32:e9:76:97:d9:85:
4f:12:78:59:be:52:bb:d8:0c:60:42:03:fb:44:35:
e1:31:0c:5d:ae:d9:69:7d:53:e2:4b:33:8d:23:9c:
88:10:86:5e:78:0e:6c:bb:9b:4f:5b:09:34:b2:69:
8c:a0:2c:e6:dc:f0:0e:88:8c:aa:67:d1:d6:58:bf:
7c:3b:4e:dd:11:d4:be:49:70:ee:48:f1:74:4f:90:
f3:5d:71:d6:e6:be:40:1a:e6:65:c8:bf:96:a6:64:
e8:d3:ec:59:b0:bd:55:84:48:e0:6e:96:68:f9:73:
1d:85:53:9c:e6:54:e9:22:43:fa:7b:6f:20:39:7a:
7c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:43:05:35:57:06:0D:E5:8E:19:E6:68:0F:E2:85:56:F2:82:D0:0F
X509v3 Authority Key Identifier:
keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:a0:8a:6c:fa:ba:92:04:5e:e9:6d:12:49:ad:0a:f7:41:24:
43:97:67:27:21:91:73:c8:5f:d8:6f:31:d0:01:eb:57:5d:76:
ee:a6:64:62:ed:b1:89:c1:7c:41:70:97:8c:8a:76:06:93:42:
07:c4:8d:92:87:b0:31:f9:f9:76:ab:c6:06:15:28:40:03:b4:
97:a9:f4:54:95:58:ef:6c:73:e7:95:dd:e7:c2:bf:c7:08:e2:
f2:e6:00:de:a5:04:7f:f3:c3:7a:8f:b9:a2:cd:44:ac:b7:b8:
4b:d0:8a:ea:e7:e2:5e:35:42:ea:55:34:72:3a:82:75:92:c4:
5e:62:b0:0f:d1:55:06:6e:75:be:c6:db:1b:f3:c8:b9:a1:05:
d5:89:b8:36:e5:4b:1d:f4:57:70:3f:49:f1:f2:03:03:46:e1:
ea:4f:e2:dc:22:96:75:e5:56:5a:53:b9:9a:51:cd:15:47:57:
9b:94:f5:3a:cf:2f:e0:32:68:f2:df:f1:f0:71:d2:ec:72:c9:
61:da:59:54:3c:02:c2:6e:ab:b2:67:e6:60:72:af:be:84:14:
14:dc:2b:5f:9f:9d:67:cf:0d:d1:f7:ef:80:20:25:be:45:73:
67:7a:30:51:60:94:6e:ed:6d:85:88:58:20:ad:db:82:52:ed:
75:38:5a:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:20:14 2026 by rpki-client