Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft
File: gTpCg40uRe1drUEUYG2XKaZQHSM.mft (raw, json)
Hash identifier: h+YragZ3YDK0t/u/y4a5IkHmCGea/vQqBFs7BfzgXF4=
Subject key identifier: 28:25:F4:9F:6F:CA:93:C9:A8:94:48:4E:75:CD:EB:5E:51:20:43:8F
Authority key identifier: 81:3A:42:83:8D:2E:45:ED:5D:AD:41:14:60:6D:97:29:A6:50:1D:23
Certificate issuer: /CN=813a42838d2e45ed5dad4114606d9729a6501d23
Certificate serial: 019DA4F85A7762E17E4C996EFD4605444DC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTpCg40uRe1drUEUYG2XKaZQHSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft
Manifest number: 1126
Signing time: Sun 19 Apr 2026 09:00:32 +0000
Manifest this update: Sun 19 Apr 2026 09:00:32 +0000
Manifest next update: Mon 20 Apr 2026 09:00:32 +0000
Files and hashes: 1: gTpCg40uRe1drUEUYG2XKaZQHSM.crl (hash: FO0pV66dyeBoK1kuZ8I54RLNDhL6byO/PbjGatbkhNs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft
rsync://rpki.ripe.net/repository/DEFAULT/gTpCg40uRe1drUEUYG2XKaZQHSM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:f8:5a:77:62:e1:7e:4c:99:6e:fd:46:05:44:4d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=813a42838d2e45ed5dad4114606d9729a6501d23
Validity
Not Before: Apr 19 09:00:32 2026 GMT
Not After : Apr 20 09:00:32 2026 GMT
Subject: CN=2825f49f6fca93c9a894484e75cdeb5e5120438f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:17:33:db:58:cc:5f:56:79:04:11:d2:43:a8:
1d:2b:0e:f5:e9:52:f1:35:bf:7b:3b:69:cc:dc:3c:
7a:30:59:a3:92:bf:e1:4f:ad:0e:d7:a1:26:b7:24:
50:0c:45:18:cc:60:33:46:b4:15:4a:9a:ea:e6:29:
1a:c4:0e:54:e5:3c:e5:79:c6:d4:19:0f:38:2b:b1:
83:24:b4:14:d2:77:e0:ff:c0:68:8a:fe:ba:2c:f6:
1a:ac:61:8c:8f:b7:f9:c5:1a:e8:8f:13:1b:3b:80:
66:35:8e:ff:ea:ec:28:d5:8a:86:70:ff:86:fe:d2:
8a:90:97:cf:9a:f4:a1:b7:d7:09:ec:ac:6b:b4:2f:
69:f5:9f:ce:c4:59:40:2f:b4:8e:27:74:84:62:cf:
5c:88:ab:91:ab:24:fc:37:a3:b6:0a:ac:6b:7f:25:
77:ca:37:21:69:06:50:38:39:ff:ba:1b:11:03:69:
5f:1f:04:96:48:b0:58:76:39:5b:c8:99:7e:9f:1e:
f4:75:e7:3a:2f:9e:19:48:b7:34:95:c9:ee:0f:ef:
f9:05:de:f1:e1:b0:0f:07:fb:75:93:32:fa:58:65:
d8:50:01:86:1c:bc:3d:92:a7:71:74:a8:70:53:2a:
a2:52:70:f1:b5:c2:20:0d:96:e1:a0:3e:cd:05:db:
91:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:25:F4:9F:6F:CA:93:C9:A8:94:48:4E:75:CD:EB:5E:51:20:43:8F
X509v3 Authority Key Identifier:
keyid:81:3A:42:83:8D:2E:45:ED:5D:AD:41:14:60:6D:97:29:A6:50:1D:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTpCg40uRe1drUEUYG2XKaZQHSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:c4:6c:e6:0f:4d:76:b5:b2:48:54:19:8e:d0:be:70:35:ee:
f5:43:a9:c8:cc:98:1d:81:52:8c:15:4e:73:57:14:16:17:23:
8b:5a:13:ed:9e:9e:1b:d1:d0:b2:26:ef:83:61:56:19:b7:52:
b4:32:1d:a6:e7:5f:d5:26:6b:dd:04:c1:90:99:7b:39:38:ff:
fd:e5:41:52:d5:18:d9:ba:cf:c3:f2:0e:79:e2:4f:0b:e1:1f:
aa:2f:67:59:36:2e:2d:07:10:c4:c6:1a:8b:20:e4:2a:32:04:
5f:6e:c9:9f:09:d2:e0:68:e4:d3:e1:01:0f:3c:13:e6:d5:7a:
2e:11:14:0e:65:c8:a0:59:7a:36:b2:4e:55:aa:ee:e9:0b:cf:
d8:d4:62:e5:93:e4:6c:ef:f5:67:30:ee:04:86:68:96:fa:70:
0e:1b:97:ab:a4:b4:d4:ac:7b:3b:b5:43:f5:47:13:ee:f8:07:
34:47:c7:c9:02:2e:9b:81:41:be:ef:33:55:44:01:e6:e7:a8:
95:68:bd:f1:c7:28:95:c6:c2:ee:43:15:e3:89:32:e4:0b:9c:
ff:df:df:09:0e:ce:f6:38:7a:49:f7:d9:e6:bc:30:4e:59:60:
77:95:3d:7d:12:c6:5a:31:53:22:18:24:9e:8b:9d:0d:df:59:
2d:e2:87:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2k+Fp3YuF+TJlu/UYFRE3IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxM2E0MjgzOGQyZTQ1ZWQ1ZGFkNDExNDYwNmQ5NzI5YTY1
MDFkMjMwHhcNMjYwNDE5MDkwMDMyWhcNMjYwNDIwMDkwMDMyWjAzMTEwLwYDVQQD
EygyODI1ZjQ5ZjZmY2E5M2M5YTg5NDQ4NGU3NWNkZWI1ZTUxMjA0MzhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArRcz21jMX1Z5BBHSQ6gdKw716VLx
Nb97O2nM3Dx6MFmjkr/hT60O16EmtyRQDEUYzGAzRrQVSprq5ikaxA5U5TzlecbU
GQ84K7GDJLQU0nfg/8Boiv66LPYarGGMj7f5xRrojxMbO4BmNY7/6uwo1YqGcP+G
/tKKkJfPmvSht9cJ7KxrtC9p9Z/OxFlAL7SOJ3SEYs9ciKuRqyT8N6O2CqxrfyV3
yjchaQZQODn/uhsRA2lfHwSWSLBYdjlbyJl+nx70dec6L54ZSLc0lcnuD+/5Bd7x
4bAPB/t1kzL6WGXYUAGGHLw9kqdxdKhwUyqiUnDxtcIgDZbhoD7NBduRIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCgl9J9vypPJqJRITnXN615RIEOPMB8GA1UdIwQY
MBaAFIE6QoONLkXtXa1BFGBtlymmUB0jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1RwQ2c0MHVSZTFkclVFVVlHMlhLYVpRSFNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi84YzM4YTMtYzIwNC00ZGNmLTljNDct
NTM0OGZlNzdiYTczLzEvZ1RwQ2c0MHVSZTFkclVFVVlHMlhLYVpRSFNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi84YzM4YTMtYzIwNC00ZGNmLTljNDctNTM0OGZlNzdiYTcz
LzEvZ1RwQ2c0MHVSZTFkclVFVVlHMlhLYVpRSFNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkcRs5g9N
drWySFQZjtC+cDXu9UOpyMyYHYFSjBVOc1cUFhcji1oT7Z6eG9HQsibvg2FWGbdS
tDIdpudf1SZr3QTBkJl7OTj//eVBUtUY2brPw/IOeeJPC+Efqi9nWTYuLQcQxMYa
iyDkKjIEX27JnwnS4Gjk0+EBDzwT5tV6LhEUDmXIoFl6NrJOVaru6QvP2NRi5ZPk
bO/1ZzDuBIZolvpwDhuXq6S01Kx7O7VD9UcT7vgHNEfHyQIum4FBvu8zVUQB5ueo
lWi98ccolcbC7kMV44ky5Auc/9/fCQ7O9jh6SffZ5rwwTllgd5U9fRLGWjFTIhgk
noudDd9ZLeKHeQ==
-----END CERTIFICATE-----
Generated at Sun Apr 19 11:39:11 2026 by rpki-client