Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
File: gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft (raw, json)
Hash identifier: vkxIcsUan32aV2xH0OmTwHn0VEuSmqUlTpJU339C/lg=
Subject key identifier: 8A:42:57:B0:19:76:93:F7:A0:B1:02:1A:82:EE:2D:0D:BA:83:FA:FE
Authority key identifier: 81:66:03:83:85:B3:43:D5:5E:76:B7:28:EF:E2:3C:07:31:78:76:68
Certificate issuer: /CN=8166038385b343d55e76b728efe23c0731787668
Certificate serial: 019D284E54A752A83FA16BB0A736031581A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
Manifest number: 1188
Signing time: Thu 26 Mar 2026 04:01:55 +0000
Manifest this update: Thu 26 Mar 2026 04:01:55 +0000
Manifest next update: Fri 27 Mar 2026 04:01:55 +0000
Files and hashes: 1: 8YpwJkM4ApxJ79nY1Tn1a81nlqM.roa (hash: tcShowN5n/wg+sXuZ3o0xwGbFl1QoPNhkaf9D8szQoM=)
2: gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl (hash: wmaKvdU4d4e6TDnOP7dIvaBkaqjCp6vvU/69Q9Ildlk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:54:a7:52:a8:3f:a1:6b:b0:a7:36:03:15:81:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8166038385b343d55e76b728efe23c0731787668
Validity
Not Before: Mar 26 04:01:55 2026 GMT
Not After : Mar 27 04:01:55 2026 GMT
Subject: CN=8a4257b0197693f7a0b1021a82ee2d0dba83fafe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:54:98:02:0b:d8:3c:cd:a8:95:fc:02:85:53:
a2:ed:83:c6:1d:4c:70:7e:80:b0:79:03:59:e2:e4:
d6:44:c1:0b:0f:31:64:3d:90:4f:92:7c:51:9d:7d:
6e:e7:94:96:40:16:a7:a2:ea:e0:f4:06:09:bd:95:
e3:50:8c:db:c5:44:50:4f:bd:7c:cd:ca:54:96:f9:
28:11:1d:6d:d2:6b:a6:44:cf:aa:d6:fe:f2:3e:93:
a3:6c:ef:a2:49:c5:ec:f3:43:a7:d6:2c:dd:8b:03:
fe:4b:48:6e:b9:70:fb:4c:70:00:9e:dc:41:78:16:
5d:99:4f:de:17:f2:8e:72:f9:47:d8:a8:a3:d5:ab:
08:37:18:3d:5e:95:8b:56:13:c9:ba:e4:4b:6d:5d:
92:c4:a2:98:9e:da:05:ba:39:2a:9a:34:5a:48:10:
32:38:24:24:77:49:11:f6:87:d6:15:db:ae:61:69:
84:69:29:e0:2a:02:ca:8a:34:4f:dc:a0:40:47:5a:
b6:c2:fe:8a:86:5f:ce:10:d7:1f:5a:a6:6e:bf:88:
3f:6f:50:ac:3e:4e:6e:f5:00:88:9a:8a:b1:15:64:
e9:ec:15:ac:ee:37:4f:e6:7c:11:68:2d:e5:75:e1:
93:f9:0c:68:b5:a0:b9:9d:5d:d7:5a:50:e4:61:a1:
02:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:42:57:B0:19:76:93:F7:A0:B1:02:1A:82:EE:2D:0D:BA:83:FA:FE
X509v3 Authority Key Identifier:
keyid:81:66:03:83:85:B3:43:D5:5E:76:B7:28:EF:E2:3C:07:31:78:76:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:a8:6f:0b:bc:08:97:d7:81:5c:9d:0c:e2:ca:2a:0c:cc:03:
4a:4a:34:58:3d:9e:08:c6:42:60:8c:cb:b9:90:d3:78:d2:b4:
2e:16:2b:17:9f:2c:24:db:d2:46:0c:24:b2:7e:b5:9c:58:79:
21:e2:ca:d9:c3:ff:22:7b:34:24:c2:7f:6b:1f:82:e1:6d:b2:
58:a8:bc:f2:23:d6:cd:91:c3:9f:0d:f2:e1:f3:d3:fc:88:13:
ce:e6:eb:7e:28:70:58:64:40:87:3e:65:b8:19:43:50:89:aa:
4e:62:22:76:5b:3a:41:c2:ec:f8:e8:7d:23:3c:05:e3:a2:93:
39:7c:2a:63:a8:21:3b:0f:e0:e2:92:d1:9a:3e:3d:b1:30:14:
55:87:4f:00:e8:46:45:49:89:7b:de:b1:12:46:30:a8:93:24:
71:de:75:f4:b6:f6:d0:24:c0:dc:e4:ec:88:b6:85:46:3e:65:
7b:8b:99:76:4d:f2:d5:45:36:0a:ca:2d:f9:a7:a7:8c:23:4d:
2a:69:3b:05:35:97:0c:90:55:2c:b8:27:d0:c7:de:13:2d:23:
88:0d:9d:93:4d:a3:b6:fa:79:32:a0:4f:74:03:17:78:0c:22:
f1:49:80:b1:92:64:00:48:76:b4:8f:eb:87:76:f7:6f:98:f5:
84:cc:75:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:39:55 2026 by rpki-client