Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
File: gzVETFgRYcWIroS-AZZbyOg3gLg.mft (raw, json)
Hash identifier: YkfypKvfRxGQRJzILbfQc4z5d3c3K51nIeMt/pxvUeg=
Subject key identifier: 2B:D9:FF:51:DE:B9:1D:D0:CB:1D:0D:30:B9:4D:F5:B3:B9:92:75:05
Authority key identifier: 83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
Certificate issuer: /CN=8335444c581161c588ae84be01965bc8e83780b8
Certificate serial: 019EC17FF3E29080DA1492A0EE78AB4768FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
Manifest number: 1685
Signing time: Sat 13 Jun 2026 15:00:48 +0000
Manifest this update: Sat 13 Jun 2026 15:00:48 +0000
Manifest next update: Sun 14 Jun 2026 15:00:48 +0000
Files and hashes: 1: 7e4cKF3TuVRmJGKrCMROf7YbeTM.roa (hash: EI5hNOLcVf+LZoym/zm/8vnZenolnXToI8NdHBuqEzE=)
2: gzVETFgRYcWIroS-AZZbyOg3gLg.crl (hash: qJs42gomgZjut2ZTYNhkEXmG5X9InhY1SmPvTH6123Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:7f:f3:e2:90:80:da:14:92:a0:ee:78:ab:47:68:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8335444c581161c588ae84be01965bc8e83780b8
Validity
Not Before: Jun 13 15:00:48 2026 GMT
Not After : Jun 14 15:00:48 2026 GMT
Subject: CN=2bd9ff51deb91dd0cb1d0d30b94df5b3b9927505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:85:5f:bb:a5:5d:fd:55:49:66:86:f0:46:78:
16:fb:aa:aa:fa:3b:cf:b3:04:f4:04:41:02:49:b3:
54:c2:94:55:ed:d0:72:47:63:f3:10:28:d0:74:36:
77:4b:ca:c4:5d:ed:9d:a8:db:0e:13:60:d1:cb:56:
ce:28:e9:aa:66:85:b7:1a:60:d0:cf:3d:05:51:26:
8e:24:48:2e:20:06:fb:fd:b0:75:3d:e5:4e:dc:91:
81:7c:1a:ed:23:55:64:d8:30:7d:68:14:5c:7d:09:
a1:c2:7c:2d:4f:6b:8f:8e:14:0b:f3:1b:0b:3c:8b:
27:74:48:af:e0:86:fc:a2:e5:f9:46:c0:65:51:a2:
7b:3c:38:e4:1b:09:0c:ac:b4:ee:a7:72:b0:02:26:
11:ad:45:e0:8d:a3:3f:c0:92:28:75:a8:08:da:11:
07:f8:9d:6c:28:9d:fd:f7:40:54:86:75:6a:85:c5:
57:2d:8b:bd:35:a5:f3:e4:71:fe:ec:b4:70:6a:27:
a9:7d:e9:e4:0d:df:73:3e:1f:34:f4:62:6f:30:2a:
d9:53:b4:82:96:88:30:5f:18:83:20:b0:04:52:e4:
f1:dc:e9:1f:27:5c:df:3d:c5:a4:b8:5d:2c:03:54:
40:51:3a:2d:c1:01:49:6f:78:17:1e:10:f4:a2:91:
57:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D9:FF:51:DE:B9:1D:D0:CB:1D:0D:30:B9:4D:F5:B3:B9:92:75:05
X509v3 Authority Key Identifier:
keyid:83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:27:db:4a:5d:d3:b5:05:57:22:a9:5d:c1:8f:6f:db:fb:79:
76:b9:ac:c0:8b:90:4d:dc:6a:59:93:9d:da:ca:2c:34:87:b2:
49:c0:5e:90:9b:b0:c3:1a:85:0c:60:6b:0b:73:bf:76:ba:7e:
ff:25:63:bf:9f:b8:8d:8e:42:7a:60:ef:11:82:b2:2e:6b:92:
03:ad:17:2f:da:7e:26:fd:b9:dc:db:6f:79:8f:cc:cd:52:85:
1f:ae:dd:46:a4:34:71:bd:88:04:72:e2:1b:78:ef:ea:5e:61:
2b:0b:c6:b4:fc:54:60:a5:e0:00:ec:b0:9d:d2:49:e8:aa:72:
da:6b:7a:22:5e:44:8a:86:0a:5f:49:32:6c:a0:64:a3:ee:63:
ac:51:cf:89:d3:5c:af:ac:0c:3d:1e:64:56:b6:b9:7d:af:05:
b7:f0:0b:8c:c8:ac:54:a1:61:ec:74:3e:5e:5d:af:3a:31:6c:
92:70:ec:e5:97:0f:34:09:d5:5d:df:05:43:ef:c7:05:05:be:
65:80:bc:a7:6e:f4:53:b0:3b:3a:ea:37:80:8e:e5:ae:3c:ff:
0a:ec:06:fb:fe:1e:69:20:96:e2:55:dc:2a:6d:75:29:80:e8:
2b:6a:f2:a3:21:1f:6b:30:e6:71:8d:36:ad:2d:f0:18:ca:37:
47:fd:21:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:58:43 2026 by rpki-client