Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
File: GeBhVfweN2UrK3nJpTbS5hRNBPc.mft (raw, json)
Hash identifier: MfZ4k7a7uMpBMPNBKSvrLPHLrSTTpBiuiXYJN1ovNZE=
Subject key identifier: 73:A1:3B:4C:07:53:AE:20:B0:A6:F0:3D:D7:02:2D:0F:79:6D:5B:67
Authority key identifier: 19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
Certificate issuer: /CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Certificate serial: 019D24DF0AC4B7929870CA1430595E0D2E4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
Manifest number: 10F2
Signing time: Wed 25 Mar 2026 12:01:30 +0000
Manifest this update: Wed 25 Mar 2026 12:01:30 +0000
Manifest next update: Thu 26 Mar 2026 12:01:30 +0000
Files and hashes: 1: GeBhVfweN2UrK3nJpTbS5hRNBPc.crl (hash: GN/GCJEHOmOm0r1wvqsDvKAV+yR6b3vUMMGN2hwYNgI=)
2: HeGk-IHyFVfngqTZrq64SEROS-g.asa (hash: iPeK08TTc0azSBNIXksSX2K6e4Xwya8gagulAlcBjp0=)
3: zLsfLFOJpnTtg3F4KVVDlPfhrD4.roa (hash: lvwGobToDcZgHYg/+bZlkIQ8ZdF7bln38m78tCC4O58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 12:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:df:0a:c4:b7:92:98:70:ca:14:30:59:5e:0d:2e:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Validity
Not Before: Mar 25 12:01:30 2026 GMT
Not After : Mar 26 12:01:30 2026 GMT
Subject: CN=73a13b4c0753ae20b0a6f03dd7022d0f796d5b67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:09:3b:b7:ce:a9:da:97:57:fb:d9:ce:6d:e6:
ba:87:0f:b0:cb:b7:6b:16:78:4f:28:ec:9c:0f:0d:
f2:9b:32:52:c6:f1:19:e9:40:04:ba:21:04:2a:ca:
05:42:dd:dd:67:2e:4b:03:e0:0c:88:9b:43:b2:60:
95:6b:70:0d:01:9f:de:79:73:c8:09:c8:fd:1e:7a:
25:08:8c:33:4f:76:48:1d:95:f8:75:08:3d:3a:47:
ea:00:3b:9f:ba:0b:e7:1a:14:e0:8c:3c:78:e4:0c:
b7:33:73:ba:19:96:54:c2:e0:c9:3e:8c:72:ee:af:
72:1a:57:11:b7:85:cf:24:70:17:3c:7d:1c:09:88:
dc:2a:0f:68:8d:e4:0a:26:f7:1b:3f:fb:ea:5c:2d:
b4:23:69:01:e8:b7:4f:17:0b:c7:fa:40:d6:58:f5:
4f:3a:14:83:49:0a:0e:5e:3d:21:42:23:33:dc:04:
58:c3:be:d9:4f:70:7c:23:09:31:79:bf:f5:53:9a:
57:d6:96:66:07:88:4b:79:9e:b3:7b:32:33:37:84:
b0:ab:89:42:f6:30:7c:09:90:71:3e:b2:78:81:17:
4b:04:f3:cb:4d:ad:70:6c:a7:85:1c:8b:65:5c:76:
a9:18:c8:9a:d5:65:16:0c:90:6e:33:dc:73:e8:c9:
ac:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A1:3B:4C:07:53:AE:20:B0:A6:F0:3D:D7:02:2D:0F:79:6D:5B:67
X509v3 Authority Key Identifier:
keyid:19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:43:f8:c3:40:da:a4:d8:3f:35:e9:64:26:e8:a7:a4:c1:bc:
68:3f:34:40:d4:f3:82:eb:60:c7:d2:b2:97:6c:5b:1c:92:f6:
d3:b1:87:f9:82:ac:b6:51:e0:0b:7a:43:e9:cd:73:f0:9f:2c:
d0:fd:0d:4c:6b:10:81:44:b9:38:7a:54:ff:03:bf:e4:c7:29:
50:32:19:d1:2e:fe:79:f9:27:ca:df:c6:a8:6f:55:d1:8a:bc:
01:ac:1d:c5:37:c8:a5:27:8e:87:d3:ba:f5:74:be:b1:9c:05:
95:f9:f4:71:f2:2f:ac:6b:57:fc:55:eb:31:01:4b:75:72:af:
06:53:60:2c:8c:8c:31:0f:89:1d:5b:ba:54:6c:70:6a:68:61:
8c:0d:22:f4:7f:32:c9:c8:a1:ee:23:05:82:ca:27:9b:53:54:
b4:98:c0:ab:9d:d7:d5:eb:2c:79:7d:85:ee:7c:fc:18:b5:89:
5e:87:cb:b5:d0:c4:2a:3e:da:b6:a4:71:44:09:d4:79:31:6c:
07:08:24:c2:52:c4:e6:e0:9e:f6:a2:08:de:6a:c6:33:a7:73:
90:d8:ec:54:52:0b:00:49:34:f4:41:6e:aa:6d:8f:d7:3c:4d:
7c:72:76:68:2c:5d:c2:7c:80:cf:f0:46:a0:81:e7:e6:36:bd:
77:17:70:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0k3wrEt5KYcMoUMFleDS5NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5ZTA2MTU1ZmMxZTM3NjUyYjJiNzljOWE1MzZkMmU2MTQ0
ZDA0ZjcwHhcNMjYwMzI1MTIwMTMwWhcNMjYwMzI2MTIwMTMwWjAzMTEwLwYDVQQD
Eyg3M2ExM2I0YzA3NTNhZTIwYjBhNmYwM2RkNzAyMmQwZjc5NmQ1YjY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgk7t86p2pdX+9nObea6hw+wy7dr
FnhPKOycDw3ymzJSxvEZ6UAEuiEEKsoFQt3dZy5LA+AMiJtDsmCVa3ANAZ/eeXPI
Ccj9HnolCIwzT3ZIHZX4dQg9OkfqADufugvnGhTgjDx45Ay3M3O6GZZUwuDJPoxy
7q9yGlcRt4XPJHAXPH0cCYjcKg9ojeQKJvcbP/vqXC20I2kB6LdPFwvH+kDWWPVP
OhSDSQoOXj0hQiMz3ARYw77ZT3B8Iwkxeb/1U5pX1pZmB4hLeZ6zezIzN4Swq4lC
9jB8CZBxPrJ4gRdLBPPLTa1wbKeFHItlXHapGMia1WUWDJBuM9xz6MmsNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHOhO0wHU64gsKbwPdcCLQ95bVtnMB8GA1UdIwQY
MBaAFBngYVX8HjdlKyt5yaU20uYUTQT3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9iYjg1ZDctN2NkZS00ZTFjLWI5ZGYt
NzllZWI2MzIxZWI3LzEvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9iYjg1ZDctN2NkZS00ZTFjLWI5ZGYtNzllZWI2MzIxZWI3
LzEvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASkP4w0Da
pNg/NelkJuinpMG8aD80QNTzgutgx9Kyl2xbHJL207GH+YKstlHgC3pD6c1z8J8s
0P0NTGsQgUS5OHpU/wO/5McpUDIZ0S7+efknyt/GqG9V0Yq8AawdxTfIpSeOh9O6
9XS+sZwFlfn0cfIvrGtX/FXrMQFLdXKvBlNgLIyMMQ+JHVu6VGxwamhhjA0i9H8y
ycih7iMFgsonm1NUtJjAq53X1esseX2F7nz8GLWJXofLtdDEKj7atqRxRAnUeTFs
BwgkwlLE5uCe9qII3mrGM6dzkNjsVFILAEk09EFuqm2P1zxNfHJ2aCxdwnyAz/BG
oIHn5ja9dxdwUQ==
-----END CERTIFICATE-----
Generated at Wed Mar 25 23:07:54 2026 by rpki-client