Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft
File: gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft (raw, json)
Hash identifier: w2M/DMOUA1tSavqoR3KnH8gMI0bkQcDpuCJBSKi4c3Q=
Subject key identifier: FA:28:4D:F0:68:6C:C8:AE:84:F9:E0:14:A3:A5:D2:A7:F5:31:47:A1
Authority key identifier: 83:3A:0B:55:94:33:9A:EF:E8:B5:58:E3:72:92:90:B4:2B:B1:A9:74
Certificate issuer: /CN=833a0b5594339aefe8b558e3729290b42bb1a974
Certificate serial: 019D2C987E3201E5EAF44354E3F0B0E497F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzoLVZQzmu_otVjjcpKQtCuxqXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft
Manifest number: 1202
Signing time: Fri 27 Mar 2026 00:01:24 +0000
Manifest this update: Fri 27 Mar 2026 00:01:24 +0000
Manifest next update: Sat 28 Mar 2026 00:01:24 +0000
Files and hashes: 1: OJQiev2wZVG1ocXpX4-0xyIDLu8.roa (hash: P2/t8LDWw8ZhLGGXRvorDGL2cHxIBux66GV2OQKjLoE=)
2: gzoLVZQzmu_otVjjcpKQtCuxqXQ.crl (hash: FvnoCi5WXTwdiTGD3FHPzO5bsQ2wLj5HemVYsk8GdNM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzoLVZQzmu_otVjjcpKQtCuxqXQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 20:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:98:7e:32:01:e5:ea:f4:43:54:e3:f0:b0:e4:97:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833a0b5594339aefe8b558e3729290b42bb1a974
Validity
Not Before: Mar 27 00:01:24 2026 GMT
Not After : Mar 28 00:01:24 2026 GMT
Subject: CN=fa284df0686cc8ae84f9e014a3a5d2a7f53147a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e0:57:bb:73:89:26:1d:02:90:3e:15:b2:a7:
20:51:aa:8f:8d:19:25:1e:95:76:80:e1:97:97:64:
52:4a:39:cc:72:9a:25:24:b4:86:cc:d4:31:02:cc:
f8:61:97:3a:e5:17:44:f4:70:c1:95:a3:bb:a5:92:
02:58:5d:9b:98:a9:d8:ee:e4:4a:3f:d8:a5:44:18:
76:50:17:a3:b0:01:06:fd:f8:13:01:0c:81:2e:eb:
9c:67:52:f0:1a:75:ef:ca:33:f6:15:e1:65:28:96:
83:8a:d3:39:d3:53:7b:5f:c0:f6:ba:cd:7f:c9:b1:
8b:30:d4:a9:59:29:2f:af:d1:34:f4:fa:17:fa:ec:
11:4c:86:8e:c3:84:2d:7f:84:05:3a:d1:5a:9b:16:
c7:22:40:30:33:4a:5a:13:98:8c:25:e9:11:6e:8c:
2c:5e:04:9a:a4:cd:c2:41:1c:ce:ad:3f:2b:c6:a1:
47:aa:6d:32:9a:35:01:a1:9f:b3:4e:60:b1:7e:44:
b8:1f:01:b9:22:d0:56:42:da:8a:da:84:7d:19:6a:
86:d5:a5:bc:be:78:2f:27:70:3b:f9:af:ca:96:29:
ec:8b:20:55:55:e0:13:4a:87:05:2d:cd:1c:e9:ee:
2f:eb:b0:53:e7:64:cc:85:f0:39:fe:65:a8:e4:26:
41:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:28:4D:F0:68:6C:C8:AE:84:F9:E0:14:A3:A5:D2:A7:F5:31:47:A1
X509v3 Authority Key Identifier:
keyid:83:3A:0B:55:94:33:9A:EF:E8:B5:58:E3:72:92:90:B4:2B:B1:A9:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzoLVZQzmu_otVjjcpKQtCuxqXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:b7:ca:c5:fe:c4:ee:34:9f:02:07:58:40:c6:2d:89:d2:b7:
05:02:ca:bb:2d:13:8f:a3:d5:b7:a2:d2:df:a9:f4:2e:4d:d8:
1b:b2:f4:87:6f:82:78:f7:01:9a:d9:fc:11:2f:9e:f6:e5:e8:
4e:29:3c:13:ad:67:00:a6:6a:16:50:46:09:f6:a9:99:da:5f:
77:43:10:15:fb:8d:da:d7:7b:a3:57:25:c5:3b:b8:e4:13:cc:
12:8c:df:a8:3d:b7:32:f1:6d:48:c0:fa:c5:55:59:98:c0:5b:
b4:36:d7:a1:e2:7a:72:04:d4:96:58:b2:5c:6b:d9:aa:bb:84:
da:d9:20:fc:55:99:39:86:fa:c1:5b:8a:28:57:88:7e:a9:7c:
10:cf:b9:b4:8c:9b:15:ea:cd:77:ee:56:23:b6:83:0a:9a:0f:
78:70:94:8d:c0:2d:8b:c9:c5:67:c4:77:96:da:1f:a5:64:6b:
70:cc:78:d9:eb:f5:50:2f:e3:f8:0c:2b:f5:99:32:ef:b5:3b:
00:3e:d8:32:50:16:d5:8b:86:8e:b7:6c:81:cc:77:ae:bc:f1:
4f:72:3c:e5:d0:ab:a4:fe:ef:06:ad:1c:fc:67:6b:c4:16:7a:
9d:ab:fc:ba:4e:17:80:85:9e:bb:9a:f3:ef:ed:55:05:fd:fe:
3a:99:d2:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 05:24:21 2026 by rpki-client