Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
File: GtYaUvEILs9Ml7USK0YRIlBzRRs.mft (raw, json)
Hash identifier: yT9Emq92mVtl+1G2rffB4YyDkzxCZX4VtJC9zKkfCsM=
Subject key identifier: 2B:F6:70:21:50:43:48:9C:A3:26:BD:25:37:B8:F9:C2:1E:2C:BD:6E
Authority key identifier: 1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
Certificate issuer: /CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Certificate serial: 019D39AF3B44C06B85313FD00A41EC592659
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 13:01:18 +0000
Manifest this update: Sun 29 Mar 2026 13:01:18 +0000
Manifest next update: Mon 30 Mar 2026 13:01:18 +0000
Files and hashes: 1: GtYaUvEILs9Ml7USK0YRIlBzRRs.crl (hash: 5XUHJJOqWi7TUJjS+eDhYG34PwjQWAy/By/toJFvl/U=)
2: H00Omd7RPitereQtVkcKdJ7rvQE.roa (hash: P3INZZ+wxZ5iAVG5bG8aZrx0nXJci1wMPc5cl04gndw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:3b:44:c0:6b:85:31:3f:d0:0a:41:ec:59:26:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Validity
Not Before: Mar 29 13:01:18 2026 GMT
Not After : Mar 30 13:01:18 2026 GMT
Subject: CN=2bf670215043489ca326bd2537b8f9c21e2cbd6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ef:ea:7e:21:51:53:7d:e0:09:c2:3b:78:63:
03:74:53:9d:bf:a4:9a:52:53:ad:bb:08:b8:4f:8e:
88:bf:23:4d:72:e9:05:d2:46:56:5d:fa:9d:1e:bb:
95:e0:e2:20:fe:77:8a:e5:0f:82:4e:14:c5:d0:ee:
cc:36:44:81:f6:bc:c5:05:b7:02:95:11:ad:5b:e8:
f5:67:f6:4e:c8:8f:7e:20:74:fc:bd:0f:76:22:45:
48:cb:02:78:7b:f1:50:b8:80:03:15:41:83:13:cf:
c1:30:17:ed:f7:cb:8e:1c:57:8b:8b:14:c0:fd:c6:
d3:16:95:2f:34:de:23:d4:65:66:00:f0:3b:74:cc:
a4:01:03:cb:ec:54:9e:e1:a9:7e:58:dd:96:2b:ad:
fb:24:05:cd:a2:00:bc:68:e0:f4:24:72:be:ee:6d:
bb:da:d9:e4:79:7b:23:27:80:fc:ac:41:d1:37:3c:
0a:d7:4d:aa:f0:3a:bf:5a:f0:8f:8e:cc:6f:42:c5:
86:0a:35:dc:ee:bc:b7:79:15:e5:30:e0:29:04:a1:
1b:37:fb:70:bd:f7:6c:63:22:c5:4a:2e:d4:b9:74:
eb:5b:7d:15:97:fb:0e:bb:7c:26:90:87:7b:d4:d3:
2c:17:a6:63:25:41:91:eb:11:9f:57:b1:8f:2a:b5:
c5:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:F6:70:21:50:43:48:9C:A3:26:BD:25:37:B8:F9:C2:1E:2C:BD:6E
X509v3 Authority Key Identifier:
keyid:1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
eb:82:ac:dc:44:63:2c:e0:2e:ff:8b:f9:8d:66:39:dc:e3:45:
bc:77:7c:62:db:4c:25:3e:d7:31:11:06:a9:b6:44:95:0a:bd:
81:ea:2f:9b:72:9b:37:f0:e9:48:b3:4f:27:51:d3:75:42:5d:
18:40:6e:b0:60:87:58:f0:79:f9:a0:ea:01:c0:e4:4a:68:91:
76:c2:20:c9:de:f4:15:a1:1e:8f:87:12:f1:b5:87:e6:1f:47:
d2:67:d2:ca:2e:07:0f:21:6f:9d:9a:2a:af:06:34:4b:a3:01:
f0:8f:73:f6:e3:57:a6:10:a9:d1:27:39:77:7f:9b:a5:45:c0:
63:f3:14:0c:f7:1c:a7:62:97:fb:56:33:cd:4f:44:40:69:a5:
45:b1:a4:e6:48:3b:6e:04:f9:b0:cf:a1:19:eb:a0:bb:dc:3d:
d7:ac:ce:84:92:d5:b6:d1:4d:ea:6e:b0:5a:3c:c7:14:f8:e6:
b8:23:e3:b1:4c:15:43:78:c0:75:bb:4a:a1:33:a7:80:97:f9:
1e:cb:8f:19:98:8e:65:b6:ff:22:bd:45:3a:95:3c:f1:56:eb:
ab:3f:ec:14:74:1e:3f:68:a7:b2:a6:1b:ad:48:36:d3:d8:f0:
14:32:ab:13:de:56:8e:1d:52:f4:19:ae:de:7e:31:34:05:a5:
4e:1e:20:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:27 2026 by rpki-client