Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
File: GyceKuYih3VSuJ28R016EwWEpI4.mft (raw, json)
Hash identifier: GOAJtPduC1CnMq7L3TWVNwE6nR0DrqtgFGGAuKnvMP0=
Subject key identifier: 39:C5:6B:AC:97:9E:40:90:72:A2:6F:DD:A1:8C:8B:FF:6B:AE:77:35
Authority key identifier: 1B:27:1E:2A:E6:22:87:75:52:B8:9D:BC:47:4D:7A:13:05:84:A4:8E
Certificate issuer: /CN=1b271e2ae622877552b89dbc474d7a130584a48e
Certificate serial: 019D97E1A2E93A9CE15905EE255408A6554B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
Manifest number: 0CCD
Signing time: Thu 16 Apr 2026 20:00:39 +0000
Manifest this update: Thu 16 Apr 2026 20:00:39 +0000
Manifest next update: Fri 17 Apr 2026 20:00:39 +0000
Files and hashes: 1: GyceKuYih3VSuJ28R016EwWEpI4.crl (hash: d6ZXH3FSrpbRc/Y8sEt60XPwXzZ27mmJ8ypoSoRRKTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e1:a2:e9:3a:9c:e1:59:05:ee:25:54:08:a6:55:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b271e2ae622877552b89dbc474d7a130584a48e
Validity
Not Before: Apr 16 20:00:39 2026 GMT
Not After : Apr 17 20:00:39 2026 GMT
Subject: CN=39c56bac979e409072a26fdda18c8bff6bae7735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:62:74:03:79:9e:f3:d5:20:d0:50:5c:06:99:
bd:9e:f9:e9:a0:86:62:97:83:4a:5c:6f:8f:21:2a:
d3:ba:b6:ee:27:95:bd:1f:66:15:9b:66:db:b3:4f:
56:47:c3:74:77:69:b6:d3:fd:75:75:2b:13:27:62:
7e:c8:15:67:51:4e:bb:94:7d:e2:35:a3:59:3f:0b:
a9:73:23:d6:83:bf:70:3f:24:e4:42:88:bf:d2:7b:
9c:70:a6:22:9b:18:b4:64:59:bd:86:ee:b7:8c:87:
e4:a7:25:bf:98:8d:8f:39:d0:9c:6e:82:1b:ae:43:
04:f9:ca:25:91:3a:60:6e:fa:e8:70:61:8e:87:7a:
d3:0a:d3:67:d6:a9:7f:6d:d3:84:f5:01:6a:71:a0:
35:74:e4:ac:77:0b:85:cc:be:ec:60:5a:64:14:02:
cc:46:2c:20:c3:2f:fb:32:5c:8f:21:5f:72:96:4e:
63:26:1e:63:69:ea:2d:95:89:49:67:7b:d0:0b:6e:
13:0c:17:aa:fd:5c:09:7b:7a:22:b7:8e:a1:ed:48:
76:61:e8:c7:a0:58:82:1c:76:0d:38:44:d4:0a:b3:
fe:16:69:09:3b:10:10:a9:b6:61:b3:a5:19:5f:27:
a2:fc:8f:db:34:43:4d:8e:31:c8:ca:b1:ef:7d:1f:
94:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:C5:6B:AC:97:9E:40:90:72:A2:6F:DD:A1:8C:8B:FF:6B:AE:77:35
X509v3 Authority Key Identifier:
keyid:1B:27:1E:2A:E6:22:87:75:52:B8:9D:BC:47:4D:7A:13:05:84:A4:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:9a:df:36:50:c6:5a:eb:e8:a9:87:25:5b:0e:32:ea:18:5d:
6a:39:d3:a9:45:59:c8:b2:81:2f:22:cb:86:cd:ec:2e:7b:92:
e7:bc:2c:3f:6b:4e:ad:80:f7:8d:40:7a:9c:10:66:0b:8e:cc:
fd:13:e7:75:3e:18:ff:ec:bb:90:98:6b:13:6c:b0:9c:35:51:
cf:03:ad:64:db:de:95:89:23:f9:4e:a8:41:2f:2c:53:c8:af:
11:47:1a:d6:7c:2b:e5:cd:d2:4c:88:19:91:4b:6d:1e:ed:ba:
df:3e:f4:57:dd:6b:9e:1f:95:3c:08:f2:5a:72:59:83:de:93:
6f:60:0f:ef:73:89:a4:1b:64:19:af:f1:20:95:66:12:fd:e8:
3d:c8:0f:a9:a4:5b:fe:0c:e9:11:b0:b4:89:aa:1a:7a:86:94:
03:d8:9e:6c:b2:51:ba:31:02:0c:44:87:db:de:1f:e6:31:58:
30:64:9f:ba:d3:8d:7d:d1:aa:bb:aa:e6:b2:af:d4:46:be:4d:
99:84:30:ef:01:af:18:5d:6b:92:3a:0b:70:26:a6:a0:ef:a3:
08:fc:e2:3c:1d:c0:01:76:cd:fa:2e:31:c6:dc:1f:3f:d2:51:
6d:87:16:9c:e5:52:be:cc:08:65:36:02:96:92:bd:6c:06:53:
9b:63:10:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:33:22 2026 by rpki-client