Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
File: gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft (raw, json)
Hash identifier: WvCCIMGBti5dvmzNJVO6yHooer0f+SCCfJRTTSDxX0U=
Subject key identifier: 27:D7:B9:6C:BB:AB:40:4C:97:34:23:02:E9:D1:26:DD:73:0A:26:5D
Authority key identifier: 81:66:03:83:85:B3:43:D5:5E:76:B7:28:EF:E2:3C:07:31:78:76:68
Certificate issuer: /CN=8166038385b343d55e76b728efe23c0731787668
Certificate serial: 019E216D62556D9A13C3BC750DBCFC4F0FD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
Manifest number: 1209
Signing time: Wed 13 May 2026 13:01:17 +0000
Manifest this update: Wed 13 May 2026 13:01:17 +0000
Manifest next update: Thu 14 May 2026 13:01:17 +0000
Files and hashes: 1: 8YpwJkM4ApxJ79nY1Tn1a81nlqM.roa (hash: tcShowN5n/wg+sXuZ3o0xwGbFl1QoPNhkaf9D8szQoM=)
2: gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl (hash: 0aKa1TGpMfkgJMd5X8pO6pqHisdw+mKyMbIP2GuDdN8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:6d:62:55:6d:9a:13:c3:bc:75:0d:bc:fc:4f:0f:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8166038385b343d55e76b728efe23c0731787668
Validity
Not Before: May 13 13:01:17 2026 GMT
Not After : May 14 13:01:17 2026 GMT
Subject: CN=27d7b96cbbab404c97342302e9d126dd730a265d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ca:fb:fd:af:1f:30:74:a5:cf:f0:be:24:1c:
a9:d7:e3:10:ca:ef:33:44:c9:05:32:77:b0:35:26:
44:95:0e:9e:6b:99:be:d1:56:af:ea:b4:92:ca:6e:
90:d6:70:e7:32:f0:78:7a:6f:38:45:59:df:98:71:
ef:27:cb:cb:3e:c8:a3:4f:f1:8a:e2:69:6d:9d:93:
93:4f:03:51:26:1a:c2:40:b6:0c:8c:37:f6:03:b9:
40:6a:bb:07:48:86:d6:04:d4:5e:56:ca:3e:4c:b6:
94:d9:9b:16:98:34:30:3c:f8:7f:f3:4b:83:ca:2d:
5f:a3:c1:93:4e:37:46:1e:e9:8c:64:21:10:28:7c:
bd:c4:36:7d:0f:c4:4a:78:3e:fb:5b:7c:bb:d9:6f:
23:31:a0:4b:76:b2:d8:91:84:18:78:a6:06:21:d7:
a2:42:8b:0c:0c:76:2d:07:ee:29:e3:84:3d:65:b0:
8f:9b:9a:65:32:82:4a:d1:ae:c3:f6:52:c2:8e:f1:
ae:36:ca:ff:a5:89:53:a7:1b:88:99:32:4e:cd:79:
b5:4a:ad:9f:07:d8:69:75:bb:a7:eb:9d:fd:7b:71:
30:85:d9:0a:74:67:1e:33:e9:78:f7:89:99:6c:11:
b2:bf:6d:ef:08:5d:5a:13:2f:eb:e1:c6:ec:2b:d4:
ef:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:D7:B9:6C:BB:AB:40:4C:97:34:23:02:E9:D1:26:DD:73:0A:26:5D
X509v3 Authority Key Identifier:
keyid:81:66:03:83:85:B3:43:D5:5E:76:B7:28:EF:E2:3C:07:31:78:76:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:a2:3a:52:7a:fc:a8:60:03:2a:7b:b2:59:22:68:60:94:46:
ce:3c:05:d8:23:0c:22:36:8e:60:bb:e1:f2:bf:7f:e4:09:9d:
39:6d:78:05:02:df:47:da:ed:08:dc:65:45:a2:81:74:49:b5:
36:e9:a0:86:10:bd:3e:c1:86:26:21:8b:6e:85:4c:78:f5:80:
47:69:c6:a7:23:75:a9:3d:eb:d0:86:fb:f2:d6:1a:2a:b3:95:
84:12:60:a6:f2:5c:6e:48:cc:52:3b:19:5e:d2:a9:73:c9:46:
74:3a:6b:c9:5e:4d:28:7b:04:9a:32:67:ee:66:c8:00:23:55:
48:16:14:f6:fa:40:d7:24:fa:02:3b:d3:e6:70:85:71:8b:aa:
26:b4:4e:4a:cc:ae:79:d0:ab:fe:fe:ce:c7:12:b1:54:63:51:
68:94:a8:9c:12:73:69:7d:f4:4f:2f:3d:79:54:e6:ae:aa:ac:
f0:07:7c:6d:c5:09:72:33:93:1a:fe:6e:8b:3f:a8:68:39:d9:
3c:f3:57:1f:a5:30:83:3b:27:d7:c4:b5:41:58:20:0b:35:29:
40:8e:7a:fb:e3:cb:9a:9f:01:1d:1f:1c:af:f6:09:19:fc:fa:
4a:91:3f:fa:4c:26:09:6a:0c:6d:83:d7:94:fb:bc:7b:70:89:
78:4c:3b:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:12:58 2026 by rpki-client