Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
File: GZdiXDlfuGf12AjVNZehHOfzxMs.mft (raw, json)
Hash identifier: xrCtlVfGzaWrdsrwccM+eD0OMajZDsFHA5kj2IlCQ6Q=
Subject key identifier: 3C:1D:33:EB:EF:B1:75:4A:7E:75:81:78:A6:F3:38:1B:FD:00:68:6D
Authority key identifier: 19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB
Certificate issuer: /CN=1997625c395fb867f5d808d53597a11ce7f3c4cb
Certificate serial: 019E2023C88BE27FFCD73BC726F44AC7BE68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
Manifest number: 1908
Signing time: Wed 13 May 2026 07:01:16 +0000
Manifest this update: Wed 13 May 2026 07:01:16 +0000
Manifest next update: Thu 14 May 2026 07:01:16 +0000
Files and hashes: 1: 9PJJMzY2oUycU8l8cSSelJBMcWc.roa (hash: oL+z5SaUyU8viR3KBSssNRDGEAldy3Dx3YEcED4SCvw=)
2: GZdiXDlfuGf12AjVNZehHOfzxMs.crl (hash: fyhTuaVb8GXqKDGgOQCI/AXniC9JXqNRb6F3FQln16k=)
3: sPW3SqhXQFkvyEdUczVqCrMoZZM.roa (hash: PP/JgUlM59r8wR9R5R4QZCwoOfZzBFE/FyC4nN3GGNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:c8:8b:e2:7f:fc:d7:3b:c7:26:f4:4a:c7:be:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1997625c395fb867f5d808d53597a11ce7f3c4cb
Validity
Not Before: May 13 07:01:16 2026 GMT
Not After : May 14 07:01:16 2026 GMT
Subject: CN=3c1d33ebefb1754a7e758178a6f3381bfd00686d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e8:2a:2b:1a:f2:4a:d2:e9:11:30:11:62:d3:
07:e1:9f:e3:fe:4e:5a:2b:dc:49:1f:ff:a9:62:fa:
08:ee:52:a7:5a:ab:a9:74:f8:36:82:79:59:f9:40:
5e:93:ce:fb:29:62:96:e3:eb:42:6a:16:6a:51:5f:
c1:8b:a3:5d:6a:e1:cb:6e:fd:66:dc:e0:32:2f:82:
91:68:b5:70:08:74:07:9b:39:ce:dd:cd:03:86:a1:
97:cd:f8:f9:e7:c0:12:7c:57:b8:c0:32:35:4c:cf:
0f:7e:90:54:5a:08:5e:44:62:d8:7a:96:5f:7f:bb:
7b:6d:bd:db:a4:3f:d7:b9:3b:66:43:af:98:9f:59:
88:db:a9:09:07:65:1d:ca:f7:a0:1a:98:ce:9c:84:
d5:f9:eb:f9:ce:b4:35:bb:d7:96:60:78:55:a3:9d:
29:74:2e:39:72:0f:a3:62:50:cd:90:9d:a9:ac:2a:
eb:d2:a9:bb:99:5b:79:86:d9:85:7e:e9:a9:70:e4:
3a:0e:e5:8e:52:a3:75:6e:69:17:86:fd:50:d7:7b:
d7:ea:7e:c7:08:77:14:7d:84:b4:bf:a2:aa:10:ae:
5b:ec:bc:ac:bd:96:25:c6:df:74:d7:c3:32:9a:18:
42:cd:83:e6:5c:69:c8:93:26:59:82:b0:ab:e5:af:
79:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:1D:33:EB:EF:B1:75:4A:7E:75:81:78:A6:F3:38:1B:FD:00:68:6D
X509v3 Authority Key Identifier:
keyid:19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:68:f0:74:25:af:d0:d6:f1:d4:7e:c1:e9:44:90:e1:a4:65:
d3:13:9a:8b:0e:22:6d:74:9a:d9:4b:ad:5d:1c:68:d9:30:b5:
04:b4:0c:62:7a:ef:6a:ce:43:53:32:7d:21:3e:73:5a:6e:56:
f2:67:40:a5:5d:f4:78:fa:3f:97:17:0c:fb:0b:d2:71:40:65:
24:71:a9:76:6e:86:67:8e:28:20:b0:fa:08:50:37:f5:8a:c0:
40:98:cf:ee:8f:ed:ca:ab:93:71:75:32:9d:8a:25:00:47:91:
c9:5d:32:78:80:5a:fc:2d:22:76:f9:c9:d0:7c:a0:ef:43:e1:
ed:12:a2:bd:27:2f:51:e8:34:d3:fa:54:73:ed:b2:58:01:b5:
3f:3d:75:c9:99:b9:7d:5e:50:22:d0:27:a4:40:f9:c3:66:51:
f7:82:05:0d:b8:94:03:a1:ee:d6:b7:ed:a8:c8:e4:d7:e6:74:
b4:29:be:17:f3:37:13:14:4b:9b:0f:3b:99:cc:f3:0c:80:b5:
dd:7e:22:e7:9d:f6:50:9f:6a:90:24:4f:78:86:f1:0e:68:b1:
95:bb:d7:2d:fd:fd:e1:8f:c6:9f:27:cd:de:81:94:e3:71:1e:
07:1d:eb:1c:82:8c:bc:b0:7b:85:fc:ec:33:d2:32:07:57:c5:
fb:4b:c6:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:11:27 2026 by rpki-client