Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
File: gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft (raw, json)
Hash identifier: 3tC7S0RGq/1LopHE6pjS5IQl9L7ZUAHjj1mQP3cGUuI=
Subject key identifier: D7:60:2D:F9:E5:50:B7:32:4A:86:2F:24:BA:2D:3D:D2:60:2A:DD:1C
Authority key identifier: 81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9
Certificate issuer: /CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9
Certificate serial: 019D2AA9A14004D40AE655ED7006E9D81146
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
Manifest number: 1751
Signing time: Thu 26 Mar 2026 15:00:53 +0000
Manifest this update: Thu 26 Mar 2026 15:00:53 +0000
Manifest next update: Fri 27 Mar 2026 15:00:53 +0000
Files and hashes: 1: RY6d2War7s_bXguR2iy9IN9YcRc.roa (hash: 5KpHenlSj0FRQpLdtAUp1FNTXJS4qFPZ/fpqZIMZBCA=)
2: cByOIhT3fXuGDdydvIZc-IHUWjo.roa (hash: TQWADn0tRj6yl/idNH7Pd66wbvEQd0OEdUVpdFtspDs=)
3: gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl (hash: kYgqb0VUDUXkNebkghiiiLv7WxPHQbkHk9xF3NK1DPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:a1:40:04:d4:0a:e6:55:ed:70:06:e9:d8:11:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9
Validity
Not Before: Mar 26 15:00:53 2026 GMT
Not After : Mar 27 15:00:53 2026 GMT
Subject: CN=d7602df9e550b7324a862f24ba2d3dd2602add1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7f:cc:5a:27:9a:40:91:b5:e2:67:07:cb:c0:
c0:7b:b7:76:b3:3c:97:8d:d9:8a:cd:46:b4:d3:39:
0d:ac:fe:6c:36:b9:51:c2:a5:7b:3b:13:d0:6b:9f:
d1:03:82:3b:02:64:79:44:d6:b6:db:ed:cd:b9:4d:
55:3d:1f:7c:4a:85:6e:6d:68:a4:c6:d7:8a:57:58:
9a:69:28:1c:1a:91:1a:b5:5e:71:13:55:f3:56:bd:
cf:b8:89:ab:05:83:ac:ae:92:0b:90:78:d4:e5:84:
ec:4b:ab:00:24:37:ab:87:8b:a5:08:83:be:fc:30:
ce:f9:94:10:bd:3c:02:1a:0b:6f:1d:6c:49:68:2a:
96:f8:b8:b2:19:a3:72:0f:3b:62:6d:0e:6a:7a:6c:
0b:f2:75:26:28:23:8a:9e:67:78:fa:7b:1b:c3:08:
ae:b0:5c:21:a9:a0:7f:81:a3:e2:f2:8b:90:33:0d:
02:d1:95:30:24:bd:dd:37:0c:52:ca:31:6f:6b:47:
b3:50:1f:0c:c8:6a:1d:6a:f5:18:8d:c2:bc:2c:05:
9a:1e:f9:f3:dd:99:5f:8d:98:65:e1:6a:54:d4:16:
20:a3:e1:0d:27:cb:ad:a4:fa:ab:c9:e3:ad:cf:67:
19:45:98:4c:4b:85:6c:e9:50:57:49:28:59:ed:7b:
51:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:60:2D:F9:E5:50:B7:32:4A:86:2F:24:BA:2D:3D:D2:60:2A:DD:1C
X509v3 Authority Key Identifier:
keyid:81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:2f:37:2f:6a:80:3b:6b:1a:70:8a:9f:d5:7f:2f:00:a4:07:
6a:37:d4:13:fd:eb:fc:70:72:a8:15:e5:1a:f0:2f:db:03:2e:
a3:23:6b:13:dc:da:03:b0:b0:6d:af:46:36:97:73:ba:1f:bd:
82:1f:b0:ed:c6:3c:92:54:d7:84:a6:d4:78:c1:b2:40:16:ee:
af:40:21:2f:a3:0f:ad:e9:c8:3a:55:7a:99:fe:9b:34:f6:5f:
86:ee:b1:b6:8a:d4:ce:5b:75:a3:a0:cd:21:e1:47:f5:2e:c3:
6c:20:49:25:ea:26:e7:57:2f:fb:ac:08:e9:28:88:21:4f:77:
87:92:b7:17:41:96:b1:54:9c:dd:ac:9d:30:74:31:ab:75:3a:
e8:35:0b:2a:07:94:ae:53:01:83:c0:2a:00:1b:99:27:36:0b:
ae:a7:9e:3f:4e:e1:0b:34:22:83:4e:bc:4d:72:e2:9f:a4:e4:
06:cb:eb:1b:64:d8:75:c1:8b:9d:52:cd:ee:f4:28:d5:e7:e7:
98:2d:22:e3:60:1f:48:17:79:55:ad:91:cf:6a:05:fd:67:3c:
f9:70:0a:8e:f2:1b:4d:f4:e4:08:19:36:c8:0c:20:a2:cd:77:
02:60:2c:5e:0b:69:66:1d:1c:f8:0e:ae:47:28:df:35:a1:37:
a8:8b:1c:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:27:57 2026 by rpki-client