
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
File: GtTMzv5VxeIjqbMgW5OKPRyehtU.mft (raw, json)
Hash identifier: uJiwqdLpU2OooOpRqvQ8oPo10segFWLze5KzDEde0Fk=
Subject key identifier: 73:00:2F:34:B0:4C:7C:69:42:FB:C5:54:65:31:66:33:D0:E2:4B:44
Authority key identifier: 1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
Certificate issuer: /CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Certificate serial: 019F287FDC14DC0657F925E4E990A2652FA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
Manifest number: 1671
Signing time: Fri 03 Jul 2026 15:01:35 +0000
Manifest this update: Fri 03 Jul 2026 15:01:35 +0000
Manifest next update: Sat 04 Jul 2026 15:01:35 +0000
Files and hashes: 1: GtTMzv5VxeIjqbMgW5OKPRyehtU.crl (hash: Qe7t9q8bFBErcptqZZIdvlFeTXeFvwOg54Y7jbUSfEM=)
2: k7oeIV7HgF0MdSr9wY7QH1nk1Po.roa (hash: H0UiWZoHXbQKY5PjSSEja9oJ63puQn0Ebtq8jzm98zU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 Jul 2026 15:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:28:7f:dc:14:dc:06:57:f9:25:e4:e9:90:a2:65:2f:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Validity
Not Before: Jul 3 15:01:35 2026 GMT
Not After : Jul 4 15:01:35 2026 GMT
Subject: CN=73002f34b04c7c6942fbc55465316633d0e24b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:90:f1:42:86:e6:16:89:50:01:a9:92:1e:fa:
9f:2c:57:66:8c:11:1c:90:e2:8d:b1:1c:da:de:c9:
0a:42:09:a6:4e:a8:e8:59:3e:ea:b1:c3:db:67:66:
83:1c:6c:97:98:c6:1b:0d:4e:4d:eb:a9:a8:e3:0c:
ba:38:64:38:f3:b4:82:fe:35:6b:2a:65:66:41:a0:
e1:68:c0:3f:eb:9b:cd:65:21:05:e7:15:89:d1:41:
0f:6f:4f:6c:df:28:0a:c9:8a:a7:8b:87:9b:0b:e2:
ef:1b:35:c5:0b:72:77:5d:0a:de:60:e0:29:2c:81:
3e:55:55:34:58:74:18:4a:d0:69:4f:de:0a:fa:d2:
53:ec:ca:64:1f:a2:62:c3:55:25:40:ad:ff:fb:87:
87:fc:56:12:30:18:db:56:99:fb:13:2c:26:60:63:
82:18:04:8e:1c:8d:b1:ab:6e:23:c3:79:e2:99:3e:
76:e5:c6:8e:b7:50:4e:06:45:38:4c:88:fa:f0:df:
c9:9a:b6:35:07:be:2d:5d:b0:04:b6:5f:0f:08:87:
7e:49:c0:1d:e1:ac:18:68:70:81:49:db:63:2b:d0:
ca:a1:fe:d0:85:e7:98:b5:46:6d:75:1d:88:49:e8:
c4:e4:2c:af:b4:45:9a:b0:58:6a:1c:b2:9d:e2:53:
e1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:00:2F:34:B0:4C:7C:69:42:FB:C5:54:65:31:66:33:D0:E2:4B:44
X509v3 Authority Key Identifier:
keyid:1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:67:23:ec:a1:89:c8:66:5b:c4:cd:94:2a:d4:54:8b:b3:c9:
04:57:c9:48:89:80:17:8b:14:c9:9b:b8:35:6a:80:61:ea:84:
de:f5:03:29:1e:a8:29:92:e5:47:9c:e4:3d:ec:ed:a6:92:d8:
f7:37:07:a6:48:4e:c0:90:f4:f6:bd:ab:9b:39:a1:cb:19:62:
40:7c:eb:73:be:74:05:5d:51:b0:93:cb:7f:67:6c:bc:67:08:
26:57:39:fb:e6:fd:20:28:26:17:a5:cc:69:33:f3:b3:46:79:
52:28:1f:73:a9:42:7c:db:05:49:fb:69:e6:bd:46:9b:13:78:
53:a8:f3:f0:70:b8:10:c2:3c:9b:ba:d3:f1:3d:a1:81:7a:57:
e1:59:26:db:38:91:f4:09:2f:d1:98:39:c2:03:8d:55:1a:87:
dd:26:92:a5:a5:2f:57:e2:5c:dd:ea:eb:0f:22:97:c1:bf:4f:
b0:5d:dc:75:86:9a:5b:de:bc:42:ae:e4:1d:f1:2b:ae:c0:84:
9c:3e:3d:b6:7d:9b:96:ab:83:7a:ab:96:54:82:26:34:ca:f6:
00:4e:2f:25:46:bb:21:26:91:c0:bd:0b:be:5c:9c:5f:3e:e1:
95:8f:c8:15:9d:12:e1:34:33:16:08:33:3c:ab:33:6a:7b:ef:
3c:3a:9d:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8of9wU3AZX+SXk6ZCiZS+lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhZDRjY2NlZmU1NWM1ZTIyM2E5YjMyMDViOTM4YTNkMWM5
ZTg2ZDUwHhcNMjYwNzAzMTUwMTM1WhcNMjYwNzA0MTUwMTM1WjAzMTEwLwYDVQQD
Eyg3MzAwMmYzNGIwNGM3YzY5NDJmYmM1NTQ2NTMxNjYzM2QwZTI0YjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZDxQobmFolQAamSHvqfLFdmjBEc
kOKNsRza3skKQgmmTqjoWT7qscPbZ2aDHGyXmMYbDU5N66mo4wy6OGQ487SC/jVr
KmVmQaDhaMA/65vNZSEF5xWJ0UEPb09s3ygKyYqni4ebC+LvGzXFC3J3XQreYOAp
LIE+VVU0WHQYStBpT94K+tJT7MpkH6Jiw1UlQK3/+4eH/FYSMBjbVpn7EywmYGOC
GASOHI2xq24jw3nimT525caOt1BOBkU4TIj68N/JmrY1B74tXbAEtl8PCId+ScAd
4awYaHCBSdtjK9DKof7QheeYtUZtdR2ISejE5CyvtEWasFhqHLKd4lPhewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHMALzSwTHxpQvvFVGUxZjPQ4ktEMB8GA1UdIwQY
MBaAFBrUzM7+VcXiI6mzIFuTij0cnobVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3RUTXp2NVZ4ZUlqcWJNZ1c1T0tQUnllaHRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9kMjM4NzAtNzRjNy00YTg0LTkwZWMt
YzMyMDM2NzUwZTM2LzEvR3RUTXp2NVZ4ZUlqcWJNZ1c1T0tQUnllaHRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi9kMjM4NzAtNzRjNy00YTg0LTkwZWMtYzMyMDM2NzUwZTM2
LzEvR3RUTXp2NVZ4ZUlqcWJNZ1c1T0tQUnllaHRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABmcj7KGJ
yGZbxM2UKtRUi7PJBFfJSImAF4sUyZu4NWqAYeqE3vUDKR6oKZLlR5zkPeztppLY
9zcHpkhOwJD09r2rmzmhyxliQHzrc750BV1RsJPLf2dsvGcIJlc5++b9ICgmF6XM
aTPzs0Z5Uigfc6lCfNsFSftp5r1GmxN4U6jz8HC4EMI8m7rT8T2hgXpX4Vkm2ziR
9Akv0Zg5wgONVRqH3SaSpaUvV+Jc3errDyKXwb9PsF3cdYaaW968Qq7kHfErrsCE
nD49tn2blquDequWVIImNMr2AE4vJUa7ISaRwL0LvlycXz7hlY/IFZ0S4TQzFggz
PKszanvvPDqdBg==
-----END CERTIFICATE-----
Generated at Fri Jul 3 21:47:03 2026 by rpki-client