Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
File: gzVETFgRYcWIroS-AZZbyOg3gLg.mft (raw, json)
Hash identifier: VAIi1hhLMAB0Aq/0+tpX+jf2fYbzh7I8opLkyRLS8TA=
Subject key identifier: 2F:B1:7B:2C:C2:23:06:BE:D0:5C:E4:E6:50:24:F0:77:76:5D:B6:81
Authority key identifier: 83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
Certificate issuer: /CN=8335444c581161c588ae84be01965bc8e83780b8
Certificate serial: 019CAE6C1D35FEF6D79AD62A58ECA4B3007E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
Manifest number: 1572
Signing time: Mon 02 Mar 2026 12:00:46 +0000
Manifest this update: Mon 02 Mar 2026 12:00:46 +0000
Manifest next update: Tue 03 Mar 2026 12:00:46 +0000
Files and hashes: 1: 7e4cKF3TuVRmJGKrCMROf7YbeTM.roa (hash: EI5hNOLcVf+LZoym/zm/8vnZenolnXToI8NdHBuqEzE=)
2: gzVETFgRYcWIroS-AZZbyOg3gLg.crl (hash: 04MGekS2jxGWOk6BhY2Af+/1lvVQHxZsENGPyWVkEmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6c:1d:35:fe:f6:d7:9a:d6:2a:58:ec:a4:b3:00:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8335444c581161c588ae84be01965bc8e83780b8
Validity
Not Before: Mar 2 12:00:46 2026 GMT
Not After : Mar 3 12:00:46 2026 GMT
Subject: CN=2fb17b2cc22306bed05ce4e65024f077765db681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e0:b9:56:36:00:1e:cb:cf:c1:74:e4:f9:22:
39:e6:6d:93:cc:64:dd:ad:35:0b:4b:87:c9:44:9a:
ff:86:59:20:e2:32:73:43:ca:e7:81:85:78:68:74:
a9:5a:2a:5d:08:32:99:82:16:96:6f:17:15:7d:43:
d0:97:b6:aa:db:60:c0:72:53:1a:fc:8c:73:de:fb:
31:91:e7:01:83:76:b7:dc:ff:b5:3e:5a:da:14:d3:
89:b7:3f:cd:0f:b4:8a:e3:3f:32:8f:3e:0f:69:c1:
9d:e3:95:c8:b1:f6:3b:7f:5a:b3:b6:82:88:56:e5:
57:4a:b8:28:1b:08:d0:40:fd:32:c1:9e:a1:52:6e:
58:c1:c8:71:c5:10:69:a4:f8:06:8d:50:af:82:92:
0e:a1:88:0a:d7:1a:67:18:b7:40:82:d9:62:5c:6a:
5e:2c:8d:7d:c7:7a:71:ab:c4:33:38:4f:6b:44:90:
68:55:ed:1e:0d:3b:50:08:81:26:04:b1:80:2f:4f:
0f:21:79:27:7b:1d:f0:c2:1f:86:94:36:ee:63:c0:
19:ef:d8:7f:70:c6:3f:74:c4:1f:1e:cc:1e:b4:a8:
a5:51:cf:83:14:b1:27:06:b7:c9:d9:72:ba:a8:17:
6f:d8:f1:85:11:24:f0:55:3c:d4:dc:be:59:cb:ff:
9b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B1:7B:2C:C2:23:06:BE:D0:5C:E4:E6:50:24:F0:77:76:5D:B6:81
X509v3 Authority Key Identifier:
keyid:83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:4f:2a:93:5e:aa:f5:31:b3:19:03:79:a5:c2:be:6e:12:5b:
dd:36:cb:c7:99:6a:f6:05:a0:95:ef:65:ff:42:f3:9f:60:2a:
c6:83:8e:13:5d:95:a2:82:2f:bc:3a:e6:ae:26:f1:9e:10:94:
7f:ff:35:de:0c:1a:cb:8c:ee:df:74:dd:c8:1f:9f:9f:af:4f:
0d:37:9c:de:87:9a:27:89:03:5b:a0:e9:9d:07:4b:c2:01:ce:
8a:74:ad:94:6e:26:76:86:ec:6e:7b:c0:3b:69:69:ec:f0:ec:
1f:85:73:9f:d6:0a:1a:0e:0f:9b:57:8a:61:20:d9:d9:a2:fa:
62:b0:8b:c4:70:41:61:fd:30:ac:a8:31:05:ef:d7:f2:c6:01:
77:ea:18:88:f6:77:08:da:c5:45:8c:85:1b:7d:52:c2:96:54:
4e:45:a2:46:2c:cc:5d:51:38:ed:d5:60:d2:86:7c:f4:a1:e3:
e6:2d:52:f4:5d:16:2b:dc:f1:be:11:41:2e:3e:f0:04:17:d6:
6f:50:8a:3d:b2:df:7d:41:35:5f:40:40:d7:6c:49:76:83:28:
88:de:cc:d6:33:f7:1c:d1:9d:d7:42:c0:56:fb:cd:03:ec:4f:
69:b5:8d:69:a0:0c:1f:cf:2a:0a:cd:7c:f2:79:dc:55:70:c0:
20:9e:8e:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyubB01/vbXmtYqWOykswB+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzMzU0NDRjNTgxMTYxYzU4OGFlODRiZTAxOTY1YmM4ZTgz
NzgwYjgwHhcNMjYwMzAyMTIwMDQ2WhcNMjYwMzAzMTIwMDQ2WjAzMTEwLwYDVQQD
EygyZmIxN2IyY2MyMjMwNmJlZDA1Y2U0ZTY1MDI0ZjA3Nzc2NWRiNjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxuC5VjYAHsvPwXTk+SI55m2TzGTd
rTULS4fJRJr/hlkg4jJzQ8rngYV4aHSpWipdCDKZghaWbxcVfUPQl7aq22DAclMa
/Ixz3vsxkecBg3a33P+1PlraFNOJtz/ND7SK4z8yjz4PacGd45XIsfY7f1qztoKI
VuVXSrgoGwjQQP0ywZ6hUm5YwchxxRBppPgGjVCvgpIOoYgK1xpnGLdAgtliXGpe
LI19x3pxq8QzOE9rRJBoVe0eDTtQCIEmBLGAL08PIXknex3wwh+GlDbuY8AZ79h/
cMY/dMQfHswetKilUc+DFLEnBrfJ2XK6qBdv2PGFESTwVTzU3L5Zy/+bbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC+xeyzCIwa+0Fzk5lAk8Hd2XbaBMB8GA1UdIwQY
MBaAFIM1RExYEWHFiK6EvgGWW8joN4C4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3pWRVRGZ1JZY1dJcm9TLUFaWmJ5T2czZ0xnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8wNGI5MWEtZTM0OS00MGNkLWI5MDEt
MWYxM2Y1NWQwMDU5LzEvZ3pWRVRGZ1JZY1dJcm9TLUFaWmJ5T2czZ0xnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8wNGI5MWEtZTM0OS00MGNkLWI5MDEtMWYxM2Y1NWQwMDU5
LzEvZ3pWRVRGZ1JZY1dJcm9TLUFaWmJ5T2czZ0xnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXE8qk16q
9TGzGQN5pcK+bhJb3TbLx5lq9gWgle9l/0Lzn2AqxoOOE12VooIvvDrmribxnhCU
f/813gway4zu33TdyB+fn69PDTec3oeaJ4kDW6DpnQdLwgHOinStlG4mdobsbnvA
O2lp7PDsH4Vzn9YKGg4Pm1eKYSDZ2aL6YrCLxHBBYf0wrKgxBe/X8sYBd+oYiPZ3
CNrFRYyFG31SwpZUTkWiRizMXVE47dVg0oZ89KHj5i1S9F0WK9zxvhFBLj7wBBfW
b1CKPbLffUE1X0BA12xJdoMoiN7M1jP3HNGd10LAVvvNA+xPabWNaaAMH88qCs18
8nncVXDAIJ6OZw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 15:28:29 2026 by rpki-client