Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
File: GtTMzv5VxeIjqbMgW5OKPRyehtU.mft (raw, json)
Hash identifier: LY5dGqoTRzIYhCqe50otffV6PfzZwPpTTZGxVyZcKao=
Subject key identifier: E5:69:B2:8B:85:E5:30:23:DB:F7:90:CB:D5:E0:A7:C0:DF:B9:D8:28
Authority key identifier: 1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
Certificate issuer: /CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Certificate serial: 019D382EA10D24FA17FFA6E2EF62A8DBBD5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
Manifest number: 1570
Signing time: Sun 29 Mar 2026 06:01:13 +0000
Manifest this update: Sun 29 Mar 2026 06:01:13 +0000
Manifest next update: Mon 30 Mar 2026 06:01:13 +0000
Files and hashes: 1: GtTMzv5VxeIjqbMgW5OKPRyehtU.crl (hash: WpIf78qR5Q/cL4xTVpQu4a+SsHI++N9+C++nOaL41Xw=)
2: k7oeIV7HgF0MdSr9wY7QH1nk1Po.roa (hash: H0UiWZoHXbQKY5PjSSEja9oJ63puQn0Ebtq8jzm98zU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:a1:0d:24:fa:17:ff:a6:e2:ef:62:a8:db:bd:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Validity
Not Before: Mar 29 06:01:13 2026 GMT
Not After : Mar 30 06:01:13 2026 GMT
Subject: CN=e569b28b85e53023dbf790cbd5e0a7c0dfb9d828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:46:12:10:29:a6:3c:18:c4:3a:2a:87:4a:7e:
7b:14:02:8e:9f:74:b5:91:d6:93:d7:07:6c:59:07:
cd:91:ba:87:38:24:10:d5:53:25:a5:51:be:01:2d:
23:b8:00:e4:28:39:37:a2:4b:a9:dd:5a:ec:c2:24:
24:17:4c:f1:c6:de:c1:12:dd:df:0a:60:49:dc:c3:
92:88:aa:1f:75:ce:ab:ed:73:85:d4:1e:d6:83:5d:
bc:5e:21:d2:99:3b:63:15:b6:59:de:80:cc:d8:8c:
7a:21:6a:e6:d6:ce:5d:92:6b:5c:0a:0a:b6:62:59:
65:b2:10:d8:d0:04:d2:79:e6:f9:34:8b:e0:48:43:
7f:48:d4:d1:3e:93:27:31:38:2c:19:6c:41:8b:9d:
68:8b:30:9a:fc:c1:9e:b9:3e:14:0d:bd:b5:16:ba:
8a:8d:2e:84:f6:af:11:b4:07:ab:c4:f0:83:0b:07:
20:bb:96:5e:6e:af:bd:8e:4e:9c:da:d5:91:c9:87:
41:d6:d8:c7:72:e4:69:4a:43:db:86:f1:36:92:14:
95:7a:03:72:83:07:83:96:3c:cd:d0:69:1e:68:2e:
45:43:05:bb:ce:7c:d2:38:28:71:18:e8:60:5f:99:
f7:7c:57:e1:bf:75:1e:ab:8e:7a:16:a5:c8:7f:5c:
fc:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:69:B2:8B:85:E5:30:23:DB:F7:90:CB:D5:E0:A7:C0:DF:B9:D8:28
X509v3 Authority Key Identifier:
keyid:1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:c8:d3:27:db:b3:51:5d:c1:cf:72:8b:87:0a:57:a6:ea:a7:
94:cd:ad:8d:10:85:9f:5a:84:f3:eb:60:d8:35:7d:0f:a8:c0:
98:f8:76:47:3f:36:3c:d7:4c:38:0c:83:f9:b5:c7:87:5d:e9:
08:c5:29:92:a5:b3:c9:85:26:b0:5b:72:24:41:f7:9b:63:7a:
61:bd:f7:a2:9c:2a:3f:42:7f:f7:ab:c5:17:4f:47:57:13:42:
dc:e1:05:a4:fb:4e:5d:73:b2:0d:6e:09:a8:37:3f:c1:3c:b8:
3a:27:d5:d1:16:eb:97:c3:86:e1:b7:83:45:7e:2e:cc:ed:52:
76:24:90:ad:89:76:f5:76:ab:b2:b6:84:fe:84:f5:63:bb:ae:
dd:61:65:38:3c:83:9a:6a:29:16:10:b4:91:87:ae:fd:ae:68:
86:61:01:88:34:64:32:64:a3:a3:9e:23:01:b0:ec:11:8f:87:
dc:90:a4:dd:25:f2:fb:e7:f6:89:01:9c:4f:be:01:20:2e:c1:
8e:e7:41:da:26:e4:d0:f0:6b:8f:98:19:28:6f:10:68:1e:46:
00:79:b4:3c:84:54:6a:4d:75:a6:5e:cf:52:78:06:2f:6a:94:
de:f8:ce:3a:88:c9:f0:d8:09:20:2f:ce:a0:39:34:8b:91:17:
c4:54:4f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:20 2026 by rpki-client