Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
File: GtYaUvEILs9Ml7USK0YRIlBzRRs.mft (raw, json)
Hash identifier: cgbHS1A/nY7JX2zS/T/lwSP1WBf/0ilW8OsuyM0cmTM=
Subject key identifier: 48:A2:9C:64:26:39:B4:5D:02:64:4E:EF:F9:13:DC:59:81:53:DE:B4
Authority key identifier: 1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
Certificate issuer: /CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Certificate serial: 019D2A3BD7A3BF1B275812E2D1536594C2D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 13:00:57 +0000
Manifest this update: Thu 26 Mar 2026 13:00:57 +0000
Manifest next update: Fri 27 Mar 2026 13:00:57 +0000
Files and hashes: 1: GtYaUvEILs9Ml7USK0YRIlBzRRs.crl (hash: e91ZjzElZpl5SMjJYnkeFXdd2q4dayBf4a8OPEtrvS8=)
2: H00Omd7RPitereQtVkcKdJ7rvQE.roa (hash: P3INZZ+wxZ5iAVG5bG8aZrx0nXJci1wMPc5cl04gndw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:d7:a3:bf:1b:27:58:12:e2:d1:53:65:94:c2:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Validity
Not Before: Mar 26 13:00:57 2026 GMT
Not After : Mar 27 13:00:57 2026 GMT
Subject: CN=48a29c642639b45d02644eeff913dc598153deb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f4:0e:41:be:d4:b6:7e:be:5f:f6:fb:dc:20:
7d:dc:25:e8:b5:54:9c:f4:71:7f:27:db:94:85:f1:
aa:9d:9b:4d:de:59:65:7b:b5:75:dc:f6:dc:28:94:
0c:df:a3:92:ac:c8:43:08:85:f0:1a:0a:fb:c8:e8:
a7:7f:2f:37:34:76:e3:c3:3f:b3:59:a0:e2:56:bc:
4b:04:9a:18:df:6a:64:4e:1a:50:76:56:8c:4a:ec:
12:9d:20:52:eb:2b:71:53:42:03:db:40:9b:36:2d:
63:59:31:e0:e1:ae:b4:56:5a:c0:bd:33:51:6d:09:
4c:d1:41:dc:2c:8f:b4:83:57:d6:a4:ec:58:01:4a:
cb:31:0c:49:1d:68:73:6c:1d:29:ae:07:b6:4a:46:
51:36:20:f6:38:98:a6:75:3a:d2:06:58:61:d8:69:
4a:9a:76:64:ea:ff:e5:33:ca:54:be:4a:1e:18:b2:
7f:e9:9f:8f:31:3b:1a:4d:7d:b3:46:11:a6:5c:cf:
23:ba:c4:1a:da:9e:eb:13:9f:b1:20:de:92:f8:ef:
ea:9f:de:24:54:f9:ba:69:25:28:2a:bd:b6:f2:37:
39:20:47:c2:13:2a:02:cf:6c:ff:59:4e:65:bf:e7:
87:4d:6d:23:81:b8:b0:c8:06:46:09:8f:bd:cf:28:
7b:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:A2:9C:64:26:39:B4:5D:02:64:4E:EF:F9:13:DC:59:81:53:DE:B4
X509v3 Authority Key Identifier:
keyid:1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:78:16:94:64:93:ce:7a:84:a1:f1:bd:51:d2:40:d0:b7:c6:
77:5e:ac:5b:2d:8f:e7:e9:7b:0c:83:61:54:d5:47:44:74:4b:
33:c3:ac:43:77:54:4f:b1:bd:4f:d5:d4:3d:12:49:51:6a:9f:
04:c9:c1:00:ff:1f:11:f0:36:92:93:aa:64:9e:2c:90:2b:15:
59:5a:8d:db:0f:67:88:88:9f:34:3f:3a:55:4f:e8:61:c6:00:
78:61:42:32:03:3d:fa:e1:83:c6:a0:28:0a:c2:a4:48:f2:fe:
72:5a:96:09:35:14:2b:da:15:0a:04:2b:9d:ed:e0:d0:83:1c:
39:35:2a:04:f9:0e:92:ee:ec:81:03:e1:76:f7:72:74:0c:a9:
58:29:97:c4:4f:ad:d9:39:ed:14:e5:95:93:27:e1:e3:7a:b7:
4f:a3:47:2b:b6:b6:05:86:bb:d6:48:df:7f:0a:b6:1f:c3:31:
7a:76:37:0c:5f:c2:40:01:65:82:53:ea:68:a1:66:99:06:4e:
d9:c1:4c:7e:53:66:18:3d:26:ec:c1:c8:fd:b2:5f:ca:9d:2b:
04:73:96:e6:22:15:22:70:50:0d:49:ec:b3:03:ac:3d:4b:a9:
7d:55:ef:f5:98:ae:8c:2c:3e:40:68:a0:27:88:a0:1d:52:c8:
7b:b9:b1:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:01:27 2026 by rpki-client