Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
File: gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft (raw, json)
Hash identifier: 1sx2+b0RcETbcfgSDjjjEP5P5LEMsMkBeTfGh5xuO4Y=
Subject key identifier: 69:B2:E3:5E:88:84:5A:B7:B7:00:8C:91:20:D9:28:14:45:FC:30:A1
Authority key identifier: 83:23:F4:9D:6C:C6:50:CD:6D:65:48:23:48:E1:D6:D0:B8:FD:7E:AA
Certificate issuer: /CN=8323f49d6cc650cd6d65482348e1d6d0b8fd7eaa
Certificate serial: 019DCE6350142D60B81CDBD034C2B84BD5DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
Manifest number: 18DD
Signing time: Mon 27 Apr 2026 10:01:48 +0000
Manifest this update: Mon 27 Apr 2026 10:01:48 +0000
Manifest next update: Tue 28 Apr 2026 10:01:48 +0000
Files and hashes: 1: GFlr8uF2r8cVqmDJ2JXiNxwY91k.roa (hash: gwpmNBpGA7FAOM9cF2rmHJiCr7Axf/GeGVR5kW5sxyc=)
2: eR1kJt3AkvnRh9nnXa_66NaaHYY.roa (hash: vhKP6Uu//ijg9IWe7RT8txZCBV20sw0GmYZPsJN+rXk=)
3: gyP0nWzGUM1tZUgjSOHW0Lj9fqo.crl (hash: Y/M/LVD9ugVIfGZRPBKYN1ugrq3kYilsEma2KzEe890=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 10:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:63:50:14:2d:60:b8:1c:db:d0:34:c2:b8:4b:d5:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8323f49d6cc650cd6d65482348e1d6d0b8fd7eaa
Validity
Not Before: Apr 27 10:01:48 2026 GMT
Not After : Apr 28 10:01:48 2026 GMT
Subject: CN=69b2e35e88845ab7b7008c9120d9281445fc30a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f1:29:ef:d0:4e:57:b8:31:54:90:02:24:c9:
6d:8d:2e:ad:0e:13:d7:3e:bf:f2:06:0f:b5:26:db:
52:3a:4c:af:82:71:41:00:82:9f:f5:51:29:71:32:
cf:b5:0a:ef:d2:9a:4f:21:45:bb:4c:e6:04:f7:24:
c1:1a:76:29:fe:34:d7:76:4f:68:85:b5:8a:8f:7d:
6a:58:e8:e5:02:cb:ea:f1:f4:dd:a3:57:ba:4e:1e:
72:46:1c:65:c0:1f:93:49:09:0c:1d:00:3a:ac:eb:
2a:d5:60:3f:06:02:f3:90:8b:3c:11:2c:2b:c5:71:
0b:02:23:9c:6c:e6:a2:2d:9d:e8:95:e9:cb:19:ce:
b0:5a:a2:50:f2:7a:8b:e8:84:6a:1a:d5:39:24:4d:
68:3d:d2:80:3b:6b:42:04:65:7f:2b:b4:8d:49:4a:
a0:1f:98:6a:16:04:ba:9a:3e:be:19:35:22:c5:bc:
ea:7a:bc:13:5d:f4:3d:ee:ed:f3:7f:b3:99:33:79:
76:7e:f2:68:50:97:a6:5c:58:16:e0:9f:3e:68:cc:
5c:96:d5:9b:9b:cf:4e:e7:d2:7a:27:54:bd:f6:e1:
65:c7:e3:72:30:3a:c0:bd:c4:ad:64:9a:34:5d:5a:
a4:a9:f6:9a:70:00:f9:13:50:4e:c5:61:39:22:81:
6d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:B2:E3:5E:88:84:5A:B7:B7:00:8C:91:20:D9:28:14:45:FC:30:A1
X509v3 Authority Key Identifier:
keyid:83:23:F4:9D:6C:C6:50:CD:6D:65:48:23:48:E1:D6:D0:B8:FD:7E:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e73f16-45d2-43c1-a4af-5cf9194d1702/1/gyP0nWzGUM1tZUgjSOHW0Lj9fqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:c9:e6:64:96:56:5d:8c:53:89:1b:81:6e:9c:29:95:88:4e:
b8:b6:d6:87:d2:ea:81:6d:36:3b:12:82:a5:d4:19:74:e9:45:
8a:d6:78:41:0f:0e:46:c9:54:6a:87:f1:85:e9:70:35:17:0d:
e2:14:fa:16:61:cc:43:10:bc:e0:34:2b:b1:a4:1d:76:f1:be:
60:93:a2:f6:af:d8:8a:d4:26:9b:dc:93:9b:a2:dd:e7:5e:b5:
94:67:34:a6:c4:84:0c:64:6a:51:98:c3:e4:5f:8e:be:f2:8f:
bb:ef:b3:eb:54:cd:ef:f0:5a:3b:28:ff:fa:92:3c:20:f4:8c:
90:7e:43:a0:96:56:3e:c4:42:fe:bc:56:8c:b5:f5:83:27:f7:
49:6b:bc:19:92:91:7b:fa:9b:8a:54:bd:4e:e1:bb:9e:04:6a:
9a:0b:99:f0:c3:56:d9:69:95:7e:6a:33:4b:f9:0f:ce:48:7a:
34:40:3f:1b:cd:fd:ea:8e:c7:67:cd:77:2e:71:fa:29:84:ef:
42:c8:a2:2d:4d:b3:35:38:10:c5:df:6b:6a:b5:5f:45:bc:b0:
1f:ce:6a:e6:60:02:43:75:5e:5a:74:2d:81:16:f9:41:49:e7:
dc:9c:e9:7b:d7:b3:56:63:50:23:0f:4e:ae:de:8c:c3:45:65:
f0:23:20:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 20:25:40 2026 by rpki-client