Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
File: GeBhVfweN2UrK3nJpTbS5hRNBPc.mft (raw, json)
Hash identifier: Dl2NzHnpm9Rh9JMOU2MgCmL0PZEJxgFWYPa4SaU9IDQ=
Subject key identifier: C4:72:D4:CA:0E:F5:2C:EB:86:B7:FA:D1:8A:8D:D7:02:01:40:4C:F9
Authority key identifier: 19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
Certificate issuer: /CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Certificate serial: 019D26CD5A8C89B2E69D161599E4E369CF28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
Manifest number: 10F3
Signing time: Wed 25 Mar 2026 21:01:25 +0000
Manifest this update: Wed 25 Mar 2026 21:01:25 +0000
Manifest next update: Thu 26 Mar 2026 21:01:25 +0000
Files and hashes: 1: GeBhVfweN2UrK3nJpTbS5hRNBPc.crl (hash: b3J6tf5vHCny63ng3Tp43edi4UvXy6ad6+8I80AiVWE=)
2: HeGk-IHyFVfngqTZrq64SEROS-g.asa (hash: iPeK08TTc0azSBNIXksSX2K6e4Xwya8gagulAlcBjp0=)
3: zLsfLFOJpnTtg3F4KVVDlPfhrD4.roa (hash: lvwGobToDcZgHYg/+bZlkIQ8ZdF7bln38m78tCC4O58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:5a:8c:89:b2:e6:9d:16:15:99:e4:e3:69:cf:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Validity
Not Before: Mar 25 21:01:25 2026 GMT
Not After : Mar 26 21:01:25 2026 GMT
Subject: CN=c472d4ca0ef52ceb86b7fad18a8dd70201404cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e4:23:1a:10:44:dd:55:0a:91:9c:9c:cb:4a:
95:95:7c:c0:ea:45:aa:5a:62:80:d9:58:a0:df:51:
2e:d8:07:d4:22:7d:97:77:ba:cb:0d:1f:0e:63:d5:
75:86:ca:32:c3:4d:91:8f:25:41:eb:66:08:d6:33:
9a:e4:fc:30:88:aa:c6:8c:14:40:68:c8:49:5e:06:
a3:9d:d2:87:7d:a8:47:ac:f7:6a:e7:74:5f:8b:f6:
73:a5:25:7b:d2:f1:7b:a6:1d:5b:52:3d:26:d6:e7:
cd:9e:35:d0:ee:f2:eb:63:6b:43:34:40:fe:25:94:
51:d4:ca:a9:70:1f:16:07:73:41:d5:9d:8b:64:c7:
52:71:cb:8b:20:6a:9b:e6:ae:5f:19:5a:b0:4e:6f:
9f:7c:d9:29:c6:9a:49:1e:05:6a:7d:7a:f0:7b:1a:
f8:09:31:97:4a:81:5d:7c:93:db:e0:aa:4f:5a:56:
91:a8:f8:90:ea:f4:01:e9:47:75:cd:c4:97:f2:06:
63:af:e3:cf:00:70:39:a8:30:43:bf:e4:76:db:18:
ab:72:7d:b2:85:0e:22:cf:c6:e6:68:9e:4c:1c:ec:
fd:e6:a7:72:b6:f4:5a:66:91:c8:f7:db:46:6e:d0:
4d:c3:bc:9d:0f:8e:9f:92:5c:71:69:10:bd:c5:2a:
b2:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:72:D4:CA:0E:F5:2C:EB:86:B7:FA:D1:8A:8D:D7:02:01:40:4C:F9
X509v3 Authority Key Identifier:
keyid:19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:0b:9d:57:ea:a9:df:a3:0f:5e:e3:53:e2:48:79:c5:52:ab:
99:f7:3d:b3:4e:49:11:ae:74:f3:f9:d7:83:21:69:21:fa:83:
a8:a6:ec:b9:6c:f9:2d:51:6d:23:a9:96:f3:72:b4:3d:8c:82:
65:a5:5e:c8:94:51:a2:c5:88:81:f9:7a:66:3c:f9:40:02:00:
11:aa:0d:7a:a6:81:31:0d:2b:37:24:a8:00:5c:18:f7:6b:59:
a9:68:89:dc:32:55:90:18:ed:0c:4c:77:88:56:e1:c6:39:fc:
be:4d:36:03:24:5e:99:62:31:8e:17:e4:98:b3:be:93:67:b8:
df:c3:17:17:61:a0:1a:33:00:0c:b2:a6:52:53:05:e2:f0:94:
09:a3:af:c8:68:c1:23:90:a9:51:8e:0b:42:e6:6a:dd:ba:88:
90:0d:80:8b:6c:81:9b:8c:77:a4:e0:92:7f:df:ac:af:54:31:
7f:db:9e:97:3d:78:3b:a2:76:cb:0e:a5:08:01:b8:4e:64:ab:
34:8b:b4:b2:3b:e1:17:2f:39:a7:0b:5b:39:e8:a1:05:27:f9:
dc:eb:0a:db:a1:e3:f3:06:16:4d:53:71:c4:c1:ea:0b:a7:d2:
58:61:82:6e:c1:47:00:4d:0f:12:55:ea:65:cd:35:ac:71:d2:
95:21:c5:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mzVqMibLmnRYVmeTjac8oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5ZTA2MTU1ZmMxZTM3NjUyYjJiNzljOWE1MzZkMmU2MTQ0
ZDA0ZjcwHhcNMjYwMzI1MjEwMTI1WhcNMjYwMzI2MjEwMTI1WjAzMTEwLwYDVQQD
EyhjNDcyZDRjYTBlZjUyY2ViODZiN2ZhZDE4YThkZDcwMjAxNDA0Y2Y5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1+QjGhBE3VUKkZycy0qVlXzA6kWq
WmKA2Vig31Eu2AfUIn2Xd7rLDR8OY9V1hsoyw02RjyVB62YI1jOa5PwwiKrGjBRA
aMhJXgajndKHfahHrPdq53Rfi/ZzpSV70vF7ph1bUj0m1ufNnjXQ7vLrY2tDNED+
JZRR1MqpcB8WB3NB1Z2LZMdSccuLIGqb5q5fGVqwTm+ffNkpxppJHgVqfXrwexr4
CTGXSoFdfJPb4KpPWlaRqPiQ6vQB6Ud1zcSX8gZjr+PPAHA5qDBDv+R22xircn2y
hQ4iz8bmaJ5MHOz95qdytvRaZpHI99tGbtBNw7ydD46fklxxaRC9xSqysQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMRy1MoO9Szrhrf60YqN1wIBQEz5MB8GA1UdIwQY
MBaAFBngYVX8HjdlKyt5yaU20uYUTQT3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9iYjg1ZDctN2NkZS00ZTFjLWI5ZGYt
NzllZWI2MzIxZWI3LzEvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9iYjg1ZDctN2NkZS00ZTFjLWI5ZGYtNzllZWI2MzIxZWI3
LzEvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhwudV+qp
36MPXuNT4kh5xVKrmfc9s05JEa508/nXgyFpIfqDqKbsuWz5LVFtI6mW83K0PYyC
ZaVeyJRRosWIgfl6Zjz5QAIAEaoNeqaBMQ0rNySoAFwY92tZqWiJ3DJVkBjtDEx3
iFbhxjn8vk02AyRemWIxjhfkmLO+k2e438MXF2GgGjMADLKmUlMF4vCUCaOvyGjB
I5CpUY4LQuZq3bqIkA2Ai2yBm4x3pOCSf9+sr1Qxf9uelz14O6J2yw6lCAG4TmSr
NIu0sjvhFy85pwtbOeihBSf53OsK26Hj8wYWTVNxxMHqC6fSWGGCbsFHAE0PElXq
Zc01rHHSlSHFYg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:00:57 2026 by rpki-client