Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: BfmSxS2fvZWUo2rN9SgRt8n/HxZXolyfJ4fX/EmWlO4=
Subject key identifier: E2:2A:3D:CB:FD:F5:D0:49:50:40:0C:4A:3B:CB:FF:30:81:7E:CD:34
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 019D2C2AD025D82144FF189469E8A422D1C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 06E1
Signing time: Thu 26 Mar 2026 22:01:36 +0000
Manifest this update: Thu 26 Mar 2026 22:01:36 +0000
Manifest next update: Fri 27 Mar 2026 22:01:36 +0000
Files and hashes: 1: TADovInnVhImIAMNLhy833dYeyU.roa (hash: f/dalF6vRD8VNn9XqvAc5SALl8hYeWv1uoN4z7iWDuo=)
2: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: 4PScPS8bqRpvBZgaTTYRUgwNSjhyEkpwF6PNiJvXdF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 22:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:2a:d0:25:d8:21:44:ff:18:94:69:e8:a4:22:d1:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Mar 26 22:01:36 2026 GMT
Not After : Mar 27 22:01:36 2026 GMT
Subject: CN=e22a3dcbfdf5d04950400c4a3bcbff30817ecd34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:0b:3d:92:28:d3:9d:3f:4a:8c:22:8c:f2:36:
cf:70:39:1b:3b:39:cc:cb:2c:08:31:5b:e5:be:26:
a2:72:33:fa:64:d7:5e:a8:7c:7a:2f:d1:62:77:78:
f0:2d:6d:87:2a:1d:ad:03:09:5c:7e:55:28:d8:12:
cd:b7:58:05:77:8c:6c:97:b3:d9:73:10:59:9a:a5:
c0:ea:ba:55:92:02:31:4a:70:f1:4a:cb:15:2f:d5:
bb:eb:33:57:83:eb:bc:a7:f0:a5:c3:98:c2:9d:ca:
17:e9:46:ac:77:28:9c:39:04:ad:8b:3f:fe:de:c2:
f7:fd:b6:98:c3:53:5b:3a:7d:7e:21:a4:5a:21:e7:
8a:da:47:cd:aa:4d:4e:a0:e5:c3:46:e0:29:6c:f2:
bf:f6:4f:da:30:32:16:31:f3:60:c8:a8:db:6c:0a:
bb:72:62:aa:82:81:d3:1c:47:07:08:e8:1e:11:d0:
70:38:33:c8:cd:8e:94:e5:8e:19:6e:60:46:93:36:
94:c0:9c:d4:9d:8f:a3:0e:19:cf:c0:18:63:7d:4e:
fd:81:16:1b:6c:56:10:8c:eb:87:86:93:4c:13:25:
ff:24:b4:df:8f:c8:81:ff:4b:e2:f8:06:4a:0b:37:
24:6b:0a:2c:da:54:fe:97:70:78:ad:05:85:9f:90:
17:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:2A:3D:CB:FD:F5:D0:49:50:40:0C:4A:3B:CB:FF:30:81:7E:CD:34
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:93:a3:0a:eb:b0:ed:45:57:0b:f9:d7:2c:f9:3d:ed:45:6d:
b6:9f:49:a3:f8:a3:d3:cc:38:bf:46:b0:45:b5:b6:86:47:b6:
6e:8e:a5:f0:bf:b3:74:93:ae:a7:57:92:5a:0e:b3:b7:72:07:
e5:b1:67:1f:f8:0a:79:bd:8b:75:10:98:de:3a:bb:66:7b:ab:
94:ba:c2:f5:34:f0:af:27:79:73:89:dc:29:35:a5:52:08:3f:
c1:bf:ba:18:c4:a5:fb:90:75:bf:99:86:66:33:36:bb:d5:d8:
fa:ab:8c:fa:50:b9:d6:73:b0:0e:20:cb:00:48:5b:c4:ed:eb:
25:ce:6e:d5:af:7e:18:60:53:7a:ef:9b:fa:6d:ea:33:6b:c5:
c2:bc:ac:c6:5d:7b:e3:60:ba:04:7f:67:be:0a:d6:58:32:52:
1e:b3:72:5a:23:51:27:de:97:ec:a6:42:e0:c9:c6:e9:1d:f5:
bf:c4:8e:60:cf:90:c1:15:a3:71:e6:ef:51:f0:16:8b:49:7b:
d4:7c:f0:c8:23:e2:38:10:1b:c8:20:65:7a:fa:27:ba:85:91:
ab:9a:9f:96:e5:b9:77:f4:2f:21:6a:27:07:6b:b0:25:f0:24:
d1:7a:55:87:cc:ff:b7:10:20:8c:5e:8d:12:68:ca:a8:90:40:
48:63:1f:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 06:43:59 2026 by rpki-client