Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
File: Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft (raw, json)
Hash identifier: OltSZaVp8dbPRDH4zyr1Cm/iGq8ax1+pwYCBbH0YBV8=
Subject key identifier: 68:5E:51:7C:BC:51:58:4D:67:97:5B:0E:83:38:FC:11:39:53:67:46
Authority key identifier: 1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF
Certificate issuer: /CN=1a7cafde3135a26bdd4179029eebf7414e9643af
Certificate serial: 019D29618B4388EF491F81B1AC5DB28B212B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
Manifest number: 1883
Signing time: Thu 26 Mar 2026 09:02:31 +0000
Manifest this update: Thu 26 Mar 2026 09:02:31 +0000
Manifest next update: Fri 27 Mar 2026 09:02:31 +0000
Files and hashes: 1: E2vGMfTh0_d3hFyTF_vwxF5KrPA.roa (hash: DBcvB5VPooiTXjGKSVqOi+hUE2hv4iu9s06iz8E2+EI=)
2: Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl (hash: ZiDMHBnzLdP+opbbMiPMxRP4odljEuhIqV6AQj50YD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:8b:43:88:ef:49:1f:81:b1:ac:5d:b2:8b:21:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7cafde3135a26bdd4179029eebf7414e9643af
Validity
Not Before: Mar 26 09:02:31 2026 GMT
Not After : Mar 27 09:02:31 2026 GMT
Subject: CN=685e517cbc51584d67975b0e8338fc1139536746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2f:d4:df:33:27:45:84:0d:46:c2:6f:db:7d:
45:16:8e:2c:2d:0a:05:25:fd:e2:e6:dc:cd:70:7a:
c4:3d:42:c1:be:0c:e2:15:c3:92:de:81:6a:7d:c0:
d0:3d:5f:f7:ec:bb:87:e8:9b:32:47:36:5a:8b:55:
21:8b:30:74:cb:f3:56:3b:f7:9b:ff:bb:8f:f3:ba:
b8:f1:31:08:b8:16:af:92:8b:86:69:05:a5:ea:db:
6d:02:89:87:ed:ad:4a:11:81:d4:f7:a0:2d:56:be:
f2:66:c6:0c:6f:ef:3d:09:3d:1b:c2:06:1a:3e:3a:
cd:ad:38:a7:ff:d4:5e:9a:52:26:c1:a2:e2:6f:f2:
d1:89:e7:81:37:9c:df:7c:6b:3f:e4:72:58:f0:e7:
bf:e4:94:e8:03:59:5f:9a:8e:17:6a:b4:fc:4f:d0:
22:f6:58:a5:61:da:ff:ee:00:23:14:96:a1:2d:d9:
8f:13:44:cc:d0:47:9d:9d:14:e1:1a:83:f3:28:bd:
23:2f:a5:cb:25:67:56:b5:4a:03:10:d3:d7:24:a4:
d6:83:52:0a:c4:1b:53:90:94:a7:da:f4:2b:97:f4:
bb:69:62:83:7b:5f:1e:90:aa:f2:db:97:21:c5:2b:
37:c8:ff:d0:17:01:73:c8:a1:59:93:54:ec:90:cb:
82:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:5E:51:7C:BC:51:58:4D:67:97:5B:0E:83:38:FC:11:39:53:67:46
X509v3 Authority Key Identifier:
keyid:1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:19:a7:f8:78:63:b3:2d:fe:a1:f3:47:05:88:6a:3f:32:af:
34:82:5a:02:28:19:b3:92:c7:33:b2:60:25:f5:da:15:f7:d5:
c2:91:0d:01:15:09:30:a2:f1:89:e3:df:21:39:ca:98:d8:02:
1a:a0:9a:7b:01:61:32:d5:d9:c3:1c:cc:5e:2f:2d:1b:cd:d1:
d6:b5:9d:2c:0e:fe:96:9f:4c:5e:d3:98:84:6d:4a:a5:e9:0d:
ce:8e:61:94:52:f2:e3:76:04:6f:57:7e:54:fa:50:d6:21:cc:
dc:6a:ab:a5:fb:aa:4e:a6:52:07:be:ea:f0:c0:e1:93:12:df:
db:34:88:a4:39:a2:29:03:40:89:84:66:5a:01:a6:b2:e5:2e:
9f:57:0c:63:cc:22:1b:70:43:cd:32:b8:eb:d3:8b:d7:fa:81:
2f:81:5d:fd:af:14:c5:ab:c8:2f:49:63:ac:62:7f:50:05:d8:
89:1d:5a:7f:70:ee:67:b7:a1:50:04:c4:cd:af:a5:63:cd:25:
a2:7c:b1:d6:c7:e9:a4:28:84:55:84:fd:5a:31:00:83:e2:c9:
3f:44:bb:53:53:6e:01:8a:c2:ea:e3:5b:8c:ea:91:17:75:65:
ab:71:7b:b6:26:47:65:7b:1a:05:bb:25:ba:f4:b1:ed:a6:2b:
49:72:4e:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:59:07 2026 by rpki-client