Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
File: 1GL5scD2-pylMXZOJtOu0hG_7YE.mft (raw, json)
Hash identifier: mocm/fk8lFiqpkdcCWV623wJzbKxRNCmdPCibtsjWoI=
Subject key identifier: BE:5D:35:F6:A1:67:BE:29:11:7E:A9:07:11:8F:2E:9E:49:FA:DA:A9
Authority key identifier: D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
Certificate issuer: /CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Certificate serial: 019D2B175922467EE70EE522367718501DBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
Manifest number: 0EA7
Signing time: Thu 26 Mar 2026 17:00:43 +0000
Manifest this update: Thu 26 Mar 2026 17:00:43 +0000
Manifest next update: Fri 27 Mar 2026 17:00:43 +0000
Files and hashes: 1: 1GL5scD2-pylMXZOJtOu0hG_7YE.crl (hash: kpsq/H08MqckhKWFSDW6MYQ4B/X0OLhqKwhkVy+OJGY=)
2: j23BZZk_JCF_SfyfxVWcOAzB598.roa (hash: E3VUgy7wmstrKfM+/rHOKE3M1MtzxmFo74y/4C1q9hQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:17:59:22:46:7e:e7:0e:e5:22:36:77:18:50:1d:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Validity
Not Before: Mar 26 17:00:43 2026 GMT
Not After : Mar 27 17:00:43 2026 GMT
Subject: CN=be5d35f6a167be29117ea907118f2e9e49fadaa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3b:18:af:3e:07:34:c9:a9:ee:2a:a2:f9:88:
11:ba:25:cc:75:22:b1:d9:32:5b:3e:1b:f3:01:d0:
25:a2:d3:71:a2:49:f7:34:85:c9:f7:0b:61:f3:5e:
25:df:aa:1b:ad:bc:63:b9:25:3c:3f:59:f5:96:a4:
2e:fa:39:27:db:33:45:e5:02:d5:52:36:57:a9:5b:
d0:7f:42:4f:bc:5f:3b:2a:49:64:2f:55:8a:d8:bc:
b3:97:fc:b0:7a:79:e2:9c:34:5e:17:65:86:a0:67:
7e:23:c8:45:fb:84:df:b1:2e:05:00:33:54:9b:bc:
42:87:66:0d:ad:93:24:a6:ec:e8:3f:3c:94:85:89:
0c:51:92:19:fc:89:5a:b9:d0:40:5e:09:7d:ce:8f:
91:15:65:c3:f1:be:21:54:00:89:bc:f1:58:ee:70:
a9:9e:6b:68:1d:34:88:24:bd:65:ee:c1:de:00:af:
d1:40:5b:55:67:be:49:5c:2f:01:5b:c1:4c:a2:8b:
bb:ff:c7:f7:b0:af:4c:30:e6:de:06:da:b0:81:58:
37:e0:4b:6c:49:e9:92:d7:e5:4d:e3:47:c3:e8:cd:
e9:a9:f8:bb:2e:88:8f:77:50:72:97:35:2d:54:56:
35:5c:ab:98:23:f0:b4:61:ed:e3:2b:50:a8:86:44:
1b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5D:35:F6:A1:67:BE:29:11:7E:A9:07:11:8F:2E:9E:49:FA:DA:A9
X509v3 Authority Key Identifier:
keyid:D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:64:3f:63:bb:62:33:b1:d4:7a:1f:b9:e7:39:b5:e8:df:fc:
fd:ba:e2:94:a3:67:82:3a:4c:1c:66:20:34:4c:a6:50:fd:eb:
54:d0:da:cb:32:53:2f:22:5f:65:74:bc:b6:77:60:ca:3c:e3:
2d:68:50:12:78:f5:d4:93:50:11:d9:83:96:b3:91:d9:6b:9f:
73:c5:40:1b:f8:fc:28:c9:5d:43:ae:45:78:65:39:34:46:0a:
5c:bd:7f:52:20:e9:8a:fb:62:2f:6c:70:44:83:bf:96:90:ba:
49:86:97:2b:bf:90:91:dc:4a:79:c1:36:aa:63:ab:ee:fe:37:
da:b3:96:a8:b4:0e:ff:b8:23:c4:29:d1:80:7f:de:e4:b1:f0:
f6:9f:f5:4d:c1:79:bd:77:76:fd:17:60:71:3f:37:33:9f:4b:
c4:df:84:bd:a2:2b:10:7b:2a:9e:4c:d5:8b:48:20:d5:b9:e7:
1a:4d:cc:6d:da:dd:1f:b5:35:0e:91:5e:62:c9:dc:4c:fb:56:
9e:40:2b:8b:c1:30:f3:48:86:ee:46:28:f8:66:b8:4f:a9:be:
91:fa:04:86:cc:c6:52:7c:4c:ba:f8:33:c4:b6:8c:67:86:8a:
20:04:7e:51:e6:9f:a6:7d:f4:bc:fe:f8:41:80:43:1f:a1:9b:
ec:7b:ce:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:28:01 2026 by rpki-client