Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/c122a7-5712-4bbd-b638-ac9a93171aa5/1/GHexnUhH_D9JWvk2xbGhkoyRJ0g.mft
File: GHexnUhH_D9JWvk2xbGhkoyRJ0g.mft (raw, json)
Hash identifier: kPnahJKwH/i/80f7zNkhZP0xsof7MCHNzTPQK2oLNqY=
Subject key identifier: 62:7C:67:CC:FF:AB:DE:28:04:E1:CD:39:32:0A:AF:68:1F:4F:28:F9
Authority key identifier: 18:77:B1:9D:48:47:FC:3F:49:5A:F9:36:C5:B1:A1:92:8C:91:27:48
Certificate issuer: /CN=1877b19d4847fc3f495af936c5b1a1928c912748
Certificate serial: 019D330890F21CAA11FFE6682EBBC3306FEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHexnUhH_D9JWvk2xbGhkoyRJ0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/c122a7-5712-4bbd-b638-ac9a93171aa5/1/GHexnUhH_D9JWvk2xbGhkoyRJ0g.mft
Manifest number: 1889
Signing time: Sat 28 Mar 2026 06:01:32 +0000
Manifest this update: Sat 28 Mar 2026 06:01:32 +0000
Manifest next update: Sun 29 Mar 2026 06:01:32 +0000
Files and hashes: 1: GHexnUhH_D9JWvk2xbGhkoyRJ0g.crl (hash: 6zXnoX1YJj378gRx1KLVzWd5Vww02inoEOzcp1NE2YY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/c122a7-5712-4bbd-b638-ac9a93171aa5/1/GHexnUhH_D9JWvk2xbGhkoyRJ0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/c122a7-5712-4bbd-b638-ac9a93171aa5/1/GHexnUhH_D9JWvk2xbGhkoyRJ0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/GHexnUhH_D9JWvk2xbGhkoyRJ0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:08:90:f2:1c:aa:11:ff:e6:68:2e:bb:c3:30:6f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1877b19d4847fc3f495af936c5b1a1928c912748
Validity
Not Before: Mar 28 06:01:32 2026 GMT
Not After : Mar 29 06:01:32 2026 GMT
Subject: CN=627c67ccffabde2804e1cd39320aaf681f4f28f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:96:60:21:74:25:38:3f:a5:18:3c:d7:ee:16:
bd:4c:db:d2:7d:44:60:e9:6a:da:87:c5:e6:20:a0:
61:86:f9:a0:c3:15:a1:aa:d7:92:52:5c:b4:73:d2:
91:23:9b:de:83:97:44:b7:a9:c1:3b:c2:22:1a:e6:
c9:6f:ee:9f:21:e8:4d:e7:49:b4:6d:94:ca:3e:93:
46:04:52:fa:8c:57:44:b2:84:21:00:49:66:5d:22:
b7:9f:cd:cd:64:30:95:b7:92:a9:45:ed:f2:6c:ab:
e2:23:4d:d9:1e:a1:e3:89:84:54:53:51:5c:87:d7:
19:bb:5a:e2:92:54:49:5e:b3:e5:68:96:95:fe:cd:
5f:af:1a:2d:ab:79:99:7e:a5:9b:4e:f7:07:ad:df:
f3:28:20:d3:b0:3a:28:11:7e:d5:cb:9b:61:be:58:
59:f0:5c:c8:09:d5:5b:83:81:f8:07:42:3f:dc:f6:
38:40:b6:a9:39:79:88:1f:ba:f4:45:32:8e:f1:b6:
a3:68:28:76:d8:54:f2:8c:22:ee:28:43:5c:e2:c7:
72:24:12:0c:9d:32:f4:85:71:cd:5a:0a:35:9b:33:
1e:26:19:6a:d7:9a:33:66:06:2f:75:9f:72:dc:e3:
9d:8b:a6:f3:83:04:22:0a:2e:6e:2b:c9:20:ae:90:
bc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:7C:67:CC:FF:AB:DE:28:04:E1:CD:39:32:0A:AF:68:1F:4F:28:F9
X509v3 Authority Key Identifier:
keyid:18:77:B1:9D:48:47:FC:3F:49:5A:F9:36:C5:B1:A1:92:8C:91:27:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHexnUhH_D9JWvk2xbGhkoyRJ0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/c122a7-5712-4bbd-b638-ac9a93171aa5/1/GHexnUhH_D9JWvk2xbGhkoyRJ0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/c122a7-5712-4bbd-b638-ac9a93171aa5/1/GHexnUhH_D9JWvk2xbGhkoyRJ0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:65:be:ad:d2:bc:1a:3c:d4:74:f9:f9:7a:97:ea:e5:7e:cb:
f6:c5:df:df:94:a8:65:34:32:f5:5b:c4:c8:02:bd:b8:48:1b:
42:6b:80:8b:c0:6b:27:4d:df:35:ec:8c:1a:f8:42:36:a1:20:
a5:06:fa:2e:24:b5:f7:31:58:7a:2a:f3:8c:fe:45:c4:34:e3:
cf:d6:5b:0f:92:af:31:d6:06:65:dd:f2:e4:b2:83:10:87:e2:
78:ad:8b:4a:55:31:c0:78:69:10:dd:ce:1c:8a:1d:5e:16:16:
fb:b0:e4:c6:15:00:50:77:90:7c:d1:8b:89:32:7c:76:f5:87:
60:15:fd:11:56:8e:67:cf:3a:6e:9f:55:ce:2f:18:9a:f2:75:
f7:41:a2:db:1e:07:8f:23:0f:41:82:2d:22:b8:89:db:cb:8e:
12:45:8b:ae:34:17:a0:33:71:5f:22:e7:cb:6f:47:cd:9e:30:
43:86:40:81:98:2d:61:ea:87:b8:1e:8d:16:87:d9:3f:15:a8:
c0:b0:a7:9f:dc:76:7c:ec:c1:60:97:4d:b0:14:ad:95:00:70:
32:bc:4d:9c:76:37:96:7b:74:fa:a4:8d:80:2f:75:be:56:7b:
aa:06:0d:7d:ee:2b:ef:2e:6b:f3:4b:8d:ea:25:5d:d9:36:23:
d3:cf:c7:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 12:17:39 2026 by rpki-client