Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
File: gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft (raw, json)
Hash identifier: J+0RpLpuHEAuHFoYqiBV9USaSzcyX+skcvKtMGDYXHE=
Subject key identifier: A3:F0:BE:C1:6C:01:95:A8:2F:A6:98:C2:15:B1:40:6B:D0:DC:F1:3B
Authority key identifier: 81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9
Certificate issuer: /CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9
Certificate serial: 019E1ED9FEEF98C0956FD998D87C7AA9D46A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
Manifest number: 17D0
Signing time: Wed 13 May 2026 01:01:03 +0000
Manifest this update: Wed 13 May 2026 01:01:03 +0000
Manifest next update: Thu 14 May 2026 01:01:03 +0000
Files and hashes: 1: XDoOCkf5CnO9nMvxbGa0LtE_XQQ.roa (hash: ot+Sv1+Lvck9ZSiTraTVvrdyHCpJGwJQ0EVIO7hg38A=)
2: cByOIhT3fXuGDdydvIZc-IHUWjo.roa (hash: TQWADn0tRj6yl/idNH7Pd66wbvEQd0OEdUVpdFtspDs=)
3: gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl (hash: pYmtlguRkEUn5SEnWj/4+59LHaPgQ3NnxDkdb66c9nM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:d9:fe:ef:98:c0:95:6f:d9:98:d8:7c:7a:a9:d4:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9
Validity
Not Before: May 13 01:01:03 2026 GMT
Not After : May 14 01:01:03 2026 GMT
Subject: CN=a3f0bec16c0195a82fa698c215b1406bd0dcf13b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8f:39:23:1b:df:33:b8:fe:5a:05:30:4c:09:
fc:2a:03:30:0b:71:33:82:58:0b:46:52:3c:78:7a:
8a:26:99:73:0a:81:f2:ed:b4:42:43:3f:e5:83:15:
63:da:4a:d8:a6:9a:84:2f:89:d6:3b:17:cf:9a:75:
fe:2c:b3:26:ce:d6:92:c7:b4:d8:ae:a8:fd:f0:fe:
5c:8f:df:9b:4a:74:79:88:59:a9:d8:70:8b:fe:15:
32:f0:a4:b3:6e:28:47:7c:49:65:0e:44:e8:c8:55:
d0:2f:17:0a:51:3e:01:70:e1:64:3c:47:bf:95:90:
8e:45:58:85:f3:ae:ec:d5:6d:09:57:7e:7a:06:65:
9a:40:af:ca:dc:b8:a2:2f:19:18:42:c1:d5:37:a7:
69:7d:84:44:84:8c:b8:64:ad:02:6d:e1:fe:7a:6f:
c1:26:e3:4c:81:31:8c:ef:20:39:42:07:28:1f:99:
74:b0:0e:f2:16:39:1a:30:f8:aa:6f:ea:29:0c:df:
3d:30:bf:9e:d0:e0:45:ee:d7:b7:0f:a9:9e:1f:27:
98:ed:5c:29:7c:78:a4:5a:e2:e0:fa:3e:b2:8d:5a:
c8:76:cd:24:55:e6:68:71:08:12:c3:26:13:5d:6c:
dd:64:44:31:1d:1f:71:d4:c2:1e:80:d6:94:21:a2:
99:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:F0:BE:C1:6C:01:95:A8:2F:A6:98:C2:15:B1:40:6B:D0:DC:F1:3B
X509v3 Authority Key Identifier:
keyid:81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:44:fc:06:15:61:06:2f:1a:e2:a5:07:1c:ce:ea:2b:83:06:
8c:62:d4:16:d1:6e:b5:18:79:79:98:e5:ff:1c:ba:0e:48:86:
f1:70:8b:4a:8d:09:88:ed:ce:58:b7:2b:2d:dd:1e:49:d5:fa:
ab:c5:81:0f:c5:54:ed:d8:db:eb:df:01:24:5b:2a:c9:a4:ec:
52:e5:1b:d3:a9:a3:94:d4:00:23:0a:e2:f9:9c:a1:56:5e:82:
50:63:cc:b8:ec:15:6f:b3:73:40:b5:66:95:be:b9:4e:08:11:
6a:a6:a6:d8:00:9e:e4:6d:01:f6:d9:ba:f5:b4:64:42:40:34:
3c:46:01:92:6a:36:1b:06:0b:08:33:ac:0c:5f:e3:b2:74:84:
c9:5e:8b:1b:67:a8:fc:b6:17:54:21:f1:35:ef:7a:46:e9:34:
61:59:1e:59:3c:ba:64:90:3c:44:d2:f8:4a:f9:ba:52:8d:b6:
0f:da:b0:48:73:fc:4a:50:8a:4a:a2:86:01:30:aa:d8:da:6a:
06:2c:96:6a:d6:5c:5e:a3:d4:04:23:b6:53:b7:af:c9:34:2f:
00:db:af:a3:e0:48:5a:c3:4b:f6:ab:41:ab:64:48:58:d7:2b:
c5:41:7f:4d:5d:72:38:36:be:71:9d:56:c1:e0:74:86:12:9a:
cf:a4:f0:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:16:45 2026 by rpki-client