Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
File: ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft (raw, json)
Hash identifier: /rUYipEK+psJ3G4nTLKUoGzN4r6g6MZ+cg3yMkhOk+A=
Subject key identifier: 07:EC:FC:E1:64:95:34:34:6D:75:71:6F:B7:E0:6D:9D:03:BE:29:8D
Authority key identifier: 82:14:DC:48:B3:E9:19:E5:5C:E8:18:4D:3A:96:90:D1:49:25:BC:BD
Certificate issuer: /CN=8214dc48b3e919e55ce8184d3a9690d14925bcbd
Certificate serial: 019D28F2DD40E4345CA52BAC7509D00B9129
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
Manifest number: 0A6D
Signing time: Thu 26 Mar 2026 07:01:38 +0000
Manifest this update: Thu 26 Mar 2026 07:01:38 +0000
Manifest next update: Fri 27 Mar 2026 07:01:38 +0000
Files and hashes: 1: ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl (hash: DKxK8qPgh5LfZZffOPH4T6tyyDKNeUtzaV2H38G6Mms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:dd:40:e4:34:5c:a5:2b:ac:75:09:d0:0b:91:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8214dc48b3e919e55ce8184d3a9690d14925bcbd
Validity
Not Before: Mar 26 07:01:38 2026 GMT
Not After : Mar 27 07:01:38 2026 GMT
Subject: CN=07ecfce1649534346d75716fb7e06d9d03be298d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0f:db:e3:7a:fb:6c:41:94:aa:9a:15:f8:c2:
28:2a:2f:fd:48:7c:e1:46:0f:f8:a2:54:cd:e6:07:
e0:52:ec:4d:8d:98:62:d1:d9:c8:0a:b6:7f:19:17:
d8:34:cc:32:af:31:61:c1:8d:08:21:41:09:8d:e3:
be:dd:3f:01:ba:46:c2:a5:f2:84:51:e9:4c:46:46:
44:70:5a:ec:51:c2:78:19:29:c6:61:9f:8f:a5:44:
fb:44:0c:72:c0:21:64:89:51:6c:cb:25:c5:95:2f:
d5:76:21:e6:a8:9d:ad:36:40:ff:5b:2c:28:53:48:
c5:ac:97:c0:f7:a7:87:de:14:45:ed:2c:94:ed:f6:
b7:7f:25:57:41:4b:0c:38:19:c9:eb:82:7e:f9:26:
25:10:f9:cd:ed:66:fc:a1:8a:b3:7e:55:21:56:03:
a7:ba:56:23:5c:b9:5b:4b:13:0b:9d:88:f2:40:38:
a3:af:a5:00:c5:36:75:af:40:3e:75:cf:6d:8f:56:
c3:b2:e4:aa:d2:6f:99:f7:e7:68:09:86:86:c0:94:
46:71:02:19:cc:5f:33:35:82:5e:5a:9c:27:e8:83:
4f:00:6b:2b:1d:c0:6e:25:df:26:bb:1d:fd:05:75:
7d:43:8f:0a:3a:85:d7:95:4e:d1:34:2a:26:42:ef:
34:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EC:FC:E1:64:95:34:34:6D:75:71:6F:B7:E0:6D:9D:03:BE:29:8D
X509v3 Authority Key Identifier:
keyid:82:14:DC:48:B3:E9:19:E5:5C:E8:18:4D:3A:96:90:D1:49:25:BC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:01:7b:37:78:a1:e2:f2:2a:41:40:73:c5:f9:4c:88:74:d5:
56:e2:b0:1e:bb:73:24:37:ab:62:a2:5d:4c:47:6c:4e:e1:46:
f4:70:dd:06:57:2b:b9:de:6f:09:6d:5a:78:15:cc:4a:d7:d3:
63:78:06:4e:e8:16:c6:36:31:7a:fe:cd:6e:95:93:f7:d3:11:
fd:4e:34:11:60:a4:d2:64:e6:12:4c:d8:ea:1c:b2:59:ad:3f:
8e:66:94:be:85:f9:3c:ad:1e:82:08:21:3c:14:e9:10:1e:b3:
e3:f0:36:a7:bb:be:fb:d9:39:cd:b4:71:ba:9d:12:7b:af:a2:
28:ed:22:3e:4f:68:47:a6:97:6c:fc:23:e1:8e:5b:dc:6d:0f:
ca:1b:1e:b4:a7:84:1d:62:b0:f5:b5:fa:c2:5f:6a:42:e4:b9:
a8:10:4c:ae:76:d8:63:91:3c:4a:97:c9:67:bb:11:4d:74:90:
84:d7:16:fe:8f:32:8a:c4:c0:60:32:ba:d8:5f:ee:e2:86:76:
89:b8:62:26:ff:38:0d:d5:28:9d:15:e7:ca:f8:24:68:cd:d4:
c3:48:da:66:62:c3:9f:8d:55:31:1c:21:39:ed:a0:3e:ad:b0:
4b:12:84:8e:ae:cf:a9:11:ea:ff:60:ab:49:b3:7b:b8:5f:20:
c8:6b:b9:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:16:37 2026 by rpki-client