Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
File: GeBhVfweN2UrK3nJpTbS5hRNBPc.mft (raw, json)
Hash identifier: 6vb/6qHbEhp24gEQv3sgDK/+9xEGi5bvitBpufqKTfo=
Subject key identifier: 3B:7A:31:08:47:FA:87:09:80:87:A3:46:89:6B:60:8A:D0:26:F7:E6
Authority key identifier: 19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
Certificate issuer: /CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Certificate serial: 019E1C0FC8AD840392FD75701360D0633FAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
Manifest number: 1172
Signing time: Tue 12 May 2026 12:00:56 +0000
Manifest this update: Tue 12 May 2026 12:00:56 +0000
Manifest next update: Wed 13 May 2026 12:00:56 +0000
Files and hashes: 1: GeBhVfweN2UrK3nJpTbS5hRNBPc.crl (hash: mACjrR6bNl9RTX/MiGGB9SsQV/NmsiILHUTQS5UAb4M=)
2: HeGk-IHyFVfngqTZrq64SEROS-g.asa (hash: iPeK08TTc0azSBNIXksSX2K6e4Xwya8gagulAlcBjp0=)
3: zLsfLFOJpnTtg3F4KVVDlPfhrD4.roa (hash: lvwGobToDcZgHYg/+bZlkIQ8ZdF7bln38m78tCC4O58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:0f:c8:ad:84:03:92:fd:75:70:13:60:d0:63:3f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Validity
Not Before: May 12 12:00:56 2026 GMT
Not After : May 13 12:00:56 2026 GMT
Subject: CN=3b7a310847fa87098087a346896b608ad026f7e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:38:a6:ec:57:89:80:99:10:cc:86:83:e6:b2:
e8:2c:94:20:8f:0e:4e:99:ff:95:4c:6b:76:6b:e3:
8b:f6:75:06:e3:61:4f:06:a7:6b:c7:c3:5e:c1:10:
68:78:3c:a3:07:c3:0a:f3:0f:ff:21:ae:9c:da:d6:
2b:ed:5e:23:5a:6c:03:39:ba:8c:37:2e:8a:06:4b:
1f:be:33:41:30:48:cb:82:a9:72:d1:e3:9c:e7:1c:
07:ce:58:9e:1a:aa:80:f3:0f:cf:eb:a8:a7:6b:22:
ca:74:6a:8a:e0:80:81:55:eb:3a:20:bb:e9:69:97:
41:ad:51:e4:b0:29:d9:9f:70:7c:ac:29:e6:b6:12:
9e:e4:de:c5:b8:1a:9d:c7:69:6d:33:f8:b6:6f:94:
50:5c:4c:3a:56:1d:63:70:0c:19:0c:4c:bb:3b:36:
52:fb:69:b1:9a:1b:00:4e:1f:ad:78:fa:8b:22:f1:
35:a9:5e:98:a7:37:00:48:89:f5:67:c8:49:7f:0f:
63:ef:88:79:2b:e7:53:12:47:27:fa:b8:09:16:55:
6c:bc:11:31:e4:2c:3f:80:45:cc:7b:ed:20:08:4a:
de:32:4f:e6:75:8c:2b:3e:af:9d:85:49:2a:7b:e2:
ba:d2:38:2b:f8:fb:a9:41:50:ee:ab:90:ae:41:7c:
13:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:7A:31:08:47:FA:87:09:80:87:A3:46:89:6B:60:8A:D0:26:F7:E6
X509v3 Authority Key Identifier:
keyid:19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:a8:aa:c9:8e:c0:59:ea:77:3d:d2:16:92:97:4a:63:d1:6f:
f4:2f:c9:23:c4:39:54:b5:e2:48:98:26:ee:c3:8d:7b:30:30:
15:09:bd:b3:b0:bd:73:ef:d0:32:80:8c:64:ef:a5:09:86:f8:
8f:d3:a1:17:4d:53:a2:29:85:24:07:68:cb:d7:47:1d:93:50:
02:2e:15:06:97:70:92:1f:81:53:c0:67:12:14:ee:d6:d7:4a:
91:c1:3b:e0:9d:9e:b1:e1:0d:71:0d:9e:6e:b2:87:6f:a3:05:
9c:3a:90:7b:6b:5d:2c:58:d2:cf:d0:6f:ca:58:65:8f:66:ab:
31:fc:16:c7:a4:ee:e0:4e:bc:50:3a:47:07:69:7c:56:58:eb:
9c:1c:af:df:85:17:dd:8a:c9:4e:b1:2d:7c:48:7f:59:77:9c:
75:07:7a:77:74:74:3f:2a:c4:69:e3:c4:1c:c5:41:1a:05:43:
65:f2:5d:73:44:77:62:52:f4:32:9a:88:11:9a:f7:73:d8:14:
83:f6:02:6d:8c:df:12:a8:a4:85:5b:47:cf:22:f7:6a:69:7d:
5b:56:f4:47:df:23:b2:d3:57:66:d0:73:65:e2:e2:5c:ab:50:
fa:b5:a2:ad:8f:be:cb:08:ec:fe:d2:3d:d5:d5:a9:d5:94:4a:
6c:90:19:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:27:30 2026 by rpki-client