Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/413e91-acfe-47e1-add2-79d5b46d9c0e/1/GWa02kiR-4CQGCvDO0m1liT8nZs.mft
File: GWa02kiR-4CQGCvDO0m1liT8nZs.mft (raw, json)
Hash identifier: eyd99ZSUURjw6KjLgWQirBMbW3RGGkoSfoO8gBjeuuo=
Subject key identifier: DA:68:BC:8C:04:66:12:29:E9:CF:E4:8A:56:4D:93:01:A2:DF:83:D6
Authority key identifier: 19:66:B4:DA:48:91:FB:80:90:18:2B:C3:3B:49:B5:96:24:FC:9D:9B
Certificate issuer: /CN=1966b4da4891fb8090182bc33b49b59624fc9d9b
Certificate serial: 019D98F4A85E356EFF364B91731C5E8AD305
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GWa02kiR-4CQGCvDO0m1liT8nZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/413e91-acfe-47e1-add2-79d5b46d9c0e/1/GWa02kiR-4CQGCvDO0m1liT8nZs.mft
Manifest number: 17AD
Signing time: Fri 17 Apr 2026 01:01:03 +0000
Manifest this update: Fri 17 Apr 2026 01:01:03 +0000
Manifest next update: Sat 18 Apr 2026 01:01:03 +0000
Files and hashes: 1: GWa02kiR-4CQGCvDO0m1liT8nZs.crl (hash: lOol4ruhQT67G0RoykNg5Q8jo2lLZdVb0E0978Rvhqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/413e91-acfe-47e1-add2-79d5b46d9c0e/1/GWa02kiR-4CQGCvDO0m1liT8nZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/413e91-acfe-47e1-add2-79d5b46d9c0e/1/GWa02kiR-4CQGCvDO0m1liT8nZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GWa02kiR-4CQGCvDO0m1liT8nZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:a8:5e:35:6e:ff:36:4b:91:73:1c:5e:8a:d3:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1966b4da4891fb8090182bc33b49b59624fc9d9b
Validity
Not Before: Apr 17 01:01:03 2026 GMT
Not After : Apr 18 01:01:03 2026 GMT
Subject: CN=da68bc8c04661229e9cfe48a564d9301a2df83d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:28:8d:69:6d:0b:fa:c2:04:5d:e5:97:57:70:
1d:f5:3a:72:a5:9c:6e:69:84:9b:8c:77:93:0c:f4:
52:5e:4e:37:c8:25:5f:65:17:01:25:8f:28:98:8c:
aa:0e:fa:5a:0b:1e:5e:28:fb:a4:1e:e6:5e:31:4a:
87:7c:65:14:9f:94:c0:41:65:2e:20:c3:24:7b:f2:
aa:b3:fa:e9:80:0c:d1:02:78:58:54:d8:1c:75:b6:
24:17:f3:99:b6:dc:71:60:f8:ee:a9:82:29:37:d6:
d6:52:3c:5e:46:51:f9:ef:a6:86:1c:e9:62:a0:23:
fb:7d:ff:56:55:50:65:b6:d5:eb:9b:99:df:36:ce:
99:9e:85:ae:9b:c4:bc:ca:dc:cf:05:40:cf:8e:36:
e6:a5:2c:5f:ee:36:9a:99:4a:a4:6c:5a:a3:13:53:
99:08:e7:8f:d1:c9:33:5b:1a:56:64:df:4f:7e:69:
25:be:49:48:f0:bf:b6:55:56:e9:ed:1a:24:91:2b:
c5:62:c0:e2:6e:af:c7:20:cf:23:82:93:eb:42:e8:
23:f8:9e:f1:b3:55:62:ff:1b:74:9a:f6:36:26:4d:
fd:29:c8:40:dd:a2:17:b1:64:8e:1d:cf:72:4f:42:
ae:7c:01:ef:b5:16:54:15:bf:54:ba:aa:29:df:a5:
bb:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:68:BC:8C:04:66:12:29:E9:CF:E4:8A:56:4D:93:01:A2:DF:83:D6
X509v3 Authority Key Identifier:
keyid:19:66:B4:DA:48:91:FB:80:90:18:2B:C3:3B:49:B5:96:24:FC:9D:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GWa02kiR-4CQGCvDO0m1liT8nZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/413e91-acfe-47e1-add2-79d5b46d9c0e/1/GWa02kiR-4CQGCvDO0m1liT8nZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/413e91-acfe-47e1-add2-79d5b46d9c0e/1/GWa02kiR-4CQGCvDO0m1liT8nZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:73:bf:29:04:f6:c0:c4:36:a6:90:d4:b7:f3:ed:d4:cf:30:
30:db:30:ec:fc:4f:69:51:19:85:51:a4:07:4b:9a:9e:65:d2:
17:20:fc:a1:04:ac:43:04:31:bd:5b:0c:b1:d9:5d:20:78:47:
03:9e:a9:cb:ac:69:7f:0d:ac:40:0e:33:b6:b9:60:8c:71:11:
1b:e3:7e:4a:af:9f:e9:ec:40:7c:50:24:1f:26:88:90:a0:59:
7b:9d:c1:55:6e:f7:30:6f:21:c8:dc:ba:d3:a1:46:de:55:c3:
eb:c4:82:ed:5f:ae:2a:74:30:0e:c1:d8:a9:97:88:50:d2:bc:
47:dc:81:74:cc:f3:ac:50:90:01:60:ad:6d:d3:ec:d0:86:b9:
0a:25:bf:fc:06:e4:c9:64:b9:5e:58:bd:38:7c:dd:fc:24:6f:
0b:34:63:b5:4e:f5:ab:85:0c:87:76:78:bd:b7:0c:d8:b7:46:
cd:89:ef:f2:18:4f:7f:9b:25:79:6f:6b:f7:ae:ef:65:05:55:
b3:1c:d7:db:03:ae:a9:ee:37:12:3d:b2:09:b8:84:b5:13:d3:
c3:83:e8:4a:30:33:0c:02:3e:1b:24:91:7f:44:6a:7f:bc:e2:
5b:09:1b:fe:69:3e:c2:9d:6d:03:6f:0d:6b:ee:fe:48:72:80:
17:fa:7b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:57:49 2026 by rpki-client