Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
File: GZdiXDlfuGf12AjVNZehHOfzxMs.mft (raw, json)
Hash identifier: Hy4ujmQDA/PNoHh5XUW+OSW7QiSw/mIvmVBvZRHWH1w=
Subject key identifier: 5D:57:6D:48:80:06:60:FC:44:87:30:72:9B:9D:3D:8D:0A:65:57:ED
Authority key identifier: 19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB
Certificate issuer: /CN=1997625c395fb867f5d808d53597a11ce7f3c4cb
Certificate serial: 019D2704C31E9D370AA572C7E3A4E9F922D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 22:01:56 +0000
Manifest this update: Wed 25 Mar 2026 22:01:56 +0000
Manifest next update: Thu 26 Mar 2026 22:01:56 +0000
Files and hashes: 1: 9PJJMzY2oUycU8l8cSSelJBMcWc.roa (hash: oL+z5SaUyU8viR3KBSssNRDGEAldy3Dx3YEcED4SCvw=)
2: GZdiXDlfuGf12AjVNZehHOfzxMs.crl (hash: ga8wAnWsgelWcPIoJ4BzBAriJrFKNmcUt2Bd5rWPInM=)
3: sPW3SqhXQFkvyEdUczVqCrMoZZM.roa (hash: PP/JgUlM59r8wR9R5R4QZCwoOfZzBFE/FyC4nN3GGNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:c3:1e:9d:37:0a:a5:72:c7:e3:a4:e9:f9:22:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1997625c395fb867f5d808d53597a11ce7f3c4cb
Validity
Not Before: Mar 25 22:01:56 2026 GMT
Not After : Mar 26 22:01:56 2026 GMT
Subject: CN=5d576d48800660fc448730729b9d3d8d0a6557ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c9:2f:a4:d6:a6:f0:08:e8:7f:c9:a2:54:2e:
15:51:af:7f:5d:c4:bb:a4:a7:2c:ff:3f:79:99:da:
d9:15:75:60:0d:1c:0d:6d:ca:41:6a:9a:62:99:61:
08:ce:be:ba:79:c8:74:74:13:34:7d:ba:ac:36:0e:
50:88:a4:fa:cf:4b:06:bc:74:27:27:76:fb:dd:02:
99:ca:34:46:45:36:94:85:76:ab:cb:2c:6b:3c:24:
8c:03:33:da:8b:4c:03:cf:cf:38:7f:c6:bb:b5:2b:
1e:0a:13:b6:7d:89:e8:92:72:16:16:71:94:d8:d6:
b3:86:7a:f0:f3:f1:e0:d2:c9:a9:5e:38:7d:7e:5a:
52:22:4a:fb:01:da:4b:2d:48:b8:cf:45:75:de:d4:
80:42:60:ab:ca:ed:52:54:13:6f:7c:ba:7b:72:b2:
5b:80:cd:e0:96:9f:09:29:c1:c5:c6:a2:7f:27:f6:
9c:90:c8:87:89:7c:0b:12:13:87:2e:7d:fd:22:a1:
85:67:09:96:b9:28:df:38:f8:78:29:2b:77:3a:ad:
f8:66:40:d5:4e:83:2f:ca:d5:b7:3a:9c:a0:f7:be:
07:d3:e9:b8:bf:34:ea:e2:66:dd:bd:2c:b2:21:ca:
38:41:1b:1c:08:71:b7:f9:d9:b6:71:47:fb:93:2e:
d2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:57:6D:48:80:06:60:FC:44:87:30:72:9B:9D:3D:8D:0A:65:57:ED
X509v3 Authority Key Identifier:
keyid:19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:7e:e6:02:65:9d:5d:4d:77:af:ad:bf:88:6f:7e:6f:df:94:
81:09:73:a2:b6:b0:15:f3:9b:70:44:72:55:c1:90:b4:a5:ec:
45:56:85:82:a1:55:f2:d5:51:44:4b:62:52:b7:65:9c:ef:01:
47:2e:07:f7:75:0a:4d:ba:e0:c5:15:13:d4:30:16:4d:34:3f:
d0:f0:ed:92:f5:d7:5e:48:62:f8:6a:1a:ba:0a:d0:06:cb:5d:
93:b9:6a:6e:d9:9e:51:49:04:6c:21:d8:dd:ee:00:c3:4a:21:
35:a2:48:87:94:81:3b:d9:7d:08:7a:37:b5:41:69:84:99:d5:
a5:82:b6:55:f6:bc:48:fe:4d:95:17:24:8f:47:ed:d9:e9:d4:
49:29:b4:cb:77:29:b5:32:00:41:7b:64:a6:20:13:bd:60:5c:
d6:b5:3b:05:3e:ed:df:83:de:cb:90:94:18:e7:83:82:a9:41:
fd:13:a0:8c:35:f5:11:d2:e2:3b:08:22:47:47:29:25:18:89:
5f:36:2c:7e:fd:b6:8b:e8:51:13:95:44:f5:a9:72:a7:e9:71:
70:7c:45:10:cf:91:da:f7:b8:eb:03:85:b7:52:f6:7f:87:fe:
a2:a3:08:11:bb:10:ca:fe:74:f2:0f:e1:69:97:ed:b6:8b:6e:
4f:44:e8:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBMMenTcKpXLH46Tp+SLUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5OTc2MjVjMzk1ZmI4NjdmNWQ4MDhkNTM1OTdhMTFjZTdm
M2M0Y2IwHhcNMjYwMzI1MjIwMTU2WhcNMjYwMzI2MjIwMTU2WjAzMTEwLwYDVQQD
Eyg1ZDU3NmQ0ODgwMDY2MGZjNDQ4NzMwNzI5YjlkM2Q4ZDBhNjU1N2VkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAickvpNam8Ajof8miVC4VUa9/XcS7
pKcs/z95mdrZFXVgDRwNbcpBappimWEIzr66ech0dBM0fbqsNg5QiKT6z0sGvHQn
J3b73QKZyjRGRTaUhXaryyxrPCSMAzPai0wDz884f8a7tSseChO2fYnoknIWFnGU
2Nazhnrw8/Hg0smpXjh9flpSIkr7AdpLLUi4z0V13tSAQmCryu1SVBNvfLp7crJb
gM3glp8JKcHFxqJ/J/ackMiHiXwLEhOHLn39IqGFZwmWuSjfOPh4KSt3Oq34ZkDV
ToMvytW3Opyg974H0+m4vzTq4mbdvSyyIco4QRscCHG3+dm2cUf7ky7StQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF1XbUiABmD8RIcwcpudPY0KZVftMB8GA1UdIwQY
MBaAFBmXYlw5X7hn9dgI1TWXoRzn88TLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1pkaVhEbGZ1R2YxMkFqVk5aZWhIT2Z6eE1zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS8xNmU4MTItMjdjNi00MDVkLWE0YzUt
YTdmN2I5ODA5MDA3LzEvR1pkaVhEbGZ1R2YxMkFqVk5aZWhIT2Z6eE1zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS8xNmU4MTItMjdjNi00MDVkLWE0YzUtYTdmN2I5ODA5MDA3
LzEvR1pkaVhEbGZ1R2YxMkFqVk5aZWhIT2Z6eE1zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvH7mAmWd
XU13r62/iG9+b9+UgQlzorawFfObcERyVcGQtKXsRVaFgqFV8tVRREtiUrdlnO8B
Ry4H93UKTbrgxRUT1DAWTTQ/0PDtkvXXXkhi+GoaugrQBstdk7lqbtmeUUkEbCHY
3e4Aw0ohNaJIh5SBO9l9CHo3tUFphJnVpYK2Vfa8SP5NlRckj0ft2enUSSm0y3cp
tTIAQXtkpiATvWBc1rU7BT7t34Pey5CUGOeDgqlB/ROgjDX1EdLiOwgiR0cpJRiJ
XzYsfv22i+hRE5VE9alyp+lxcHxFEM+R2ve46wOFt1L2f4f+oqMIEbsQyv508g/h
aZfttotuT0ToRw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 07:38:35 2026 by rpki-client