Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
File: gzVETFgRYcWIroS-AZZbyOg3gLg.mft (raw, json)
Hash identifier: TlM+lJqAHBiTBF0+qT7eCUjRz81Gf8dQ1KbVT/TZofA=
Subject key identifier: 84:44:6F:44:75:AC:43:16:F5:68:9F:57:2B:06:56:26:07:68:41:B9
Authority key identifier: 83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
Certificate issuer: /CN=8335444c581161c588ae84be01965bc8e83780b8
Certificate serial: 019D9A06A9C520A1247ABAB57CECE390ECF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
Manifest number: 15EC
Signing time: Fri 17 Apr 2026 06:00:20 +0000
Manifest this update: Fri 17 Apr 2026 06:00:20 +0000
Manifest next update: Sat 18 Apr 2026 06:00:20 +0000
Files and hashes: 1: 7e4cKF3TuVRmJGKrCMROf7YbeTM.roa (hash: EI5hNOLcVf+LZoym/zm/8vnZenolnXToI8NdHBuqEzE=)
2: gzVETFgRYcWIroS-AZZbyOg3gLg.crl (hash: QfEzglTNABUnosmgFCi+IJeVnS4QE3ofw6oiXxuDVxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:06:a9:c5:20:a1:24:7a:ba:b5:7c:ec:e3:90:ec:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8335444c581161c588ae84be01965bc8e83780b8
Validity
Not Before: Apr 17 06:00:20 2026 GMT
Not After : Apr 18 06:00:20 2026 GMT
Subject: CN=84446f4475ac4316f5689f572b065626076841b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:11:22:cc:8b:ae:bf:2b:9a:2a:a8:ed:69:ae:
21:82:73:95:7c:2e:d4:c8:7f:09:9f:0e:51:74:38:
b5:9f:15:94:d2:38:39:95:bb:b9:7b:b2:34:d5:9c:
22:de:74:28:0d:9e:29:b6:91:1a:bf:91:ad:d9:45:
a3:31:9c:dc:89:cb:6d:de:6a:fd:05:ac:c8:bd:a3:
4b:45:02:e4:ea:e1:67:60:c3:58:db:68:4f:d2:60:
68:bc:af:b6:ef:94:8e:3e:7b:90:e6:c7:24:94:cc:
ce:9c:7e:f6:13:39:9c:36:04:08:bf:96:58:b1:aa:
da:92:64:c0:6f:53:5c:cb:34:23:11:2c:f0:89:75:
e2:81:92:9b:16:d7:1b:b0:cc:24:8a:77:93:61:25:
84:0b:7a:d1:8e:58:aa:64:b0:8e:4a:e3:ce:17:4b:
9e:66:b2:8a:c2:ca:91:64:e3:88:20:0e:a6:49:f5:
47:f7:f8:a3:7a:b1:81:f5:cd:9d:3e:71:2f:e9:58:
09:9e:d2:f8:6a:8e:a3:bc:65:5f:98:23:2c:2d:96:
4f:1b:3b:8d:95:dd:70:72:64:bc:ac:66:2c:15:f4:
47:f5:cd:bc:8a:6c:0d:49:a4:5d:c5:51:ae:c5:f0:
c3:8d:b7:f3:39:58:c5:df:e9:79:9f:0e:11:1a:da:
20:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:44:6F:44:75:AC:43:16:F5:68:9F:57:2B:06:56:26:07:68:41:B9
X509v3 Authority Key Identifier:
keyid:83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:99:84:fd:90:24:bd:9f:3c:44:d9:63:29:ce:2f:31:b3:34:
c6:06:6a:25:76:ca:df:97:eb:b7:52:0e:a9:10:f3:93:86:98:
98:76:ca:71:b9:cb:46:8f:38:ed:14:78:bb:08:7c:be:92:52:
e7:ab:0f:8b:62:b3:13:5c:3c:9a:09:9f:ba:c6:47:32:fe:30:
5b:85:d0:9c:dc:59:fa:ae:3d:a2:e4:ec:4c:6a:88:bb:ff:84:
4a:89:d9:93:a7:44:89:f2:f1:ba:7c:90:b0:76:32:f4:86:8c:
4d:36:9c:72:24:3b:76:01:52:8e:81:25:4f:28:b4:2c:32:5e:
69:90:dd:00:9e:8a:9a:3f:67:2c:59:8d:c5:83:52:ef:95:8e:
6a:a5:4d:4e:c7:15:c7:c1:b2:da:44:22:dc:ef:e5:72:8a:77:
fa:9b:c6:3e:92:17:29:e1:ff:e6:0a:01:3a:75:fc:de:ed:8f:
01:44:cd:01:d1:99:18:d0:5d:8e:b7:01:75:b0:1f:d9:c3:3e:
26:86:80:c9:17:56:7e:78:16:86:15:70:af:2f:a0:87:de:86:
c7:77:2a:41:ce:c8:5c:08:49:7b:a2:ce:aa:4b:af:4d:27:66:
11:e6:39:46:88:81:8f:b3:4d:81:25:17:66:fc:e8:0d:b4:57:
32:76:3a:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:03:39 2026 by rpki-client