Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a48846-885a-490d-8577-dc9ba431d57a/1/GyN3Poe34e0LVeFQuncWsYJbPiY.mft
File: GyN3Poe34e0LVeFQuncWsYJbPiY.mft (raw, json)
Hash identifier: X40vMiCP+2hI3K1eLE6zeFcnBr3g3rR6A9YoO1JYAIg=
Subject key identifier: ED:75:BA:29:60:CD:9F:9F:E1:FB:3D:F6:75:30:2D:59:04:1A:E7:45
Authority key identifier: 1B:23:77:3E:87:B7:E1:ED:0B:55:E1:50:BA:77:16:B1:82:5B:3E:26
Certificate issuer: /CN=1b23773e87b7e1ed0b55e150ba7716b1825b3e26
Certificate serial: 019CAD5A1CD733191E66C46BC62801C6AE74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GyN3Poe34e0LVeFQuncWsYJbPiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a48846-885a-490d-8577-dc9ba431d57a/1/GyN3Poe34e0LVeFQuncWsYJbPiY.mft
Manifest number: 1585
Signing time: Mon 02 Mar 2026 07:01:29 +0000
Manifest this update: Mon 02 Mar 2026 07:01:29 +0000
Manifest next update: Tue 03 Mar 2026 07:01:29 +0000
Files and hashes: 1: GyN3Poe34e0LVeFQuncWsYJbPiY.crl (hash: g8z+HK1GE1Agc3w9rvoaph3iTczWia71NUCwoLEQyGg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/a48846-885a-490d-8577-dc9ba431d57a/1/GyN3Poe34e0LVeFQuncWsYJbPiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/a48846-885a-490d-8577-dc9ba431d57a/1/GyN3Poe34e0LVeFQuncWsYJbPiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/GyN3Poe34e0LVeFQuncWsYJbPiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:1c:d7:33:19:1e:66:c4:6b:c6:28:01:c6:ae:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b23773e87b7e1ed0b55e150ba7716b1825b3e26
Validity
Not Before: Mar 2 07:01:29 2026 GMT
Not After : Mar 3 07:01:29 2026 GMT
Subject: CN=ed75ba2960cd9f9fe1fb3df675302d59041ae745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5c:bf:25:bd:89:10:cf:42:c1:07:f6:61:41:
0a:db:69:66:50:37:b2:bb:a3:46:77:5b:74:86:76:
2b:50:64:e4:7c:f0:e1:fa:7e:9a:e2:09:44:5a:55:
83:03:8c:5a:34:14:a2:41:41:a1:4d:3c:09:b4:e7:
de:81:1c:11:b6:11:8c:1d:8d:02:17:9f:0f:1a:8e:
90:ab:89:3d:6f:4e:88:74:4d:79:38:bf:2d:74:d5:
5a:f3:9b:77:62:33:08:0b:36:b8:11:d7:8e:0a:96:
42:75:be:31:79:e0:e9:2b:06:9d:b9:6d:a5:20:90:
f5:74:30:0d:d5:2e:94:b0:9c:06:00:ad:ad:73:5d:
e1:9b:ea:94:fb:17:7d:13:97:8b:bb:7e:d0:17:fe:
7f:6e:d3:ed:5c:48:40:43:36:37:7b:e9:bc:d4:10:
c1:cc:fd:92:68:70:47:e0:42:c4:a0:71:63:aa:61:
03:88:93:e6:06:18:8a:0a:cd:24:36:70:8d:66:72:
98:9e:3a:d9:13:ab:00:fd:8a:80:d4:99:db:cd:be:
11:ed:18:06:ed:fd:b9:6a:9e:9f:39:56:e2:37:1a:
99:dd:c8:33:03:b6:bd:fc:bc:e9:f1:5a:2b:70:de:
8e:56:83:76:0f:1b:db:23:31:1a:2d:d6:52:4c:a6:
e2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:75:BA:29:60:CD:9F:9F:E1:FB:3D:F6:75:30:2D:59:04:1A:E7:45
X509v3 Authority Key Identifier:
keyid:1B:23:77:3E:87:B7:E1:ED:0B:55:E1:50:BA:77:16:B1:82:5B:3E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GyN3Poe34e0LVeFQuncWsYJbPiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a48846-885a-490d-8577-dc9ba431d57a/1/GyN3Poe34e0LVeFQuncWsYJbPiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a48846-885a-490d-8577-dc9ba431d57a/1/GyN3Poe34e0LVeFQuncWsYJbPiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:2f:81:15:c7:ca:d2:9f:a7:a9:d3:0c:a3:58:34:85:17:ff:
d8:0f:89:fc:85:71:59:24:23:c2:06:78:79:7c:01:53:7b:07:
e7:92:9b:a8:37:bc:0a:dc:80:d9:96:35:78:a3:f0:0a:5b:61:
0d:3c:3f:f1:9b:cf:24:f0:45:f7:6e:29:e6:70:7d:d8:7b:61:
cc:2b:29:61:55:8d:42:77:30:ad:78:88:e9:0f:8a:86:c3:d2:
a3:62:c5:63:da:1d:1f:12:dc:ad:2f:84:8c:3d:2a:39:61:c4:
78:b5:19:e7:ae:7b:40:11:4f:0c:75:70:ed:17:37:07:47:60:
f3:ad:52:e7:4a:2e:16:85:da:e6:f0:87:ec:ae:09:1f:05:08:
b6:2a:94:a5:6a:1e:74:25:b7:8e:09:9f:7b:d5:96:fc:a1:c6:
05:d6:5c:70:0e:66:48:26:74:a3:26:e3:60:d2:ee:d8:71:45:
ae:b4:69:6e:8c:b4:09:7e:49:29:00:18:91:e7:d5:6a:44:d7:
5c:6d:2f:18:b4:81:6d:18:c4:7e:13:c1:2d:b1:49:73:ea:d5:
7b:54:0b:f6:7f:1e:28:5e:65:91:e3:c6:cc:ae:45:6e:d7:67:
9f:69:aa:0c:89:96:05:67:8c:2b:f7:a0:ce:87:28:a2:83:be:
48:87:97:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytWhzXMxkeZsRrxigBxq50MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMjM3NzNlODdiN2UxZWQwYjU1ZTE1MGJhNzcxNmIxODI1
YjNlMjYwHhcNMjYwMzAyMDcwMTI5WhcNMjYwMzAzMDcwMTI5WjAzMTEwLwYDVQQD
EyhlZDc1YmEyOTYwY2Q5ZjlmZTFmYjNkZjY3NTMwMmQ1OTA0MWFlNzQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFy/Jb2JEM9CwQf2YUEK22lmUDey
u6NGd1t0hnYrUGTkfPDh+n6a4glEWlWDA4xaNBSiQUGhTTwJtOfegRwRthGMHY0C
F58PGo6Qq4k9b06IdE15OL8tdNVa85t3YjMICza4EdeOCpZCdb4xeeDpKwaduW2l
IJD1dDAN1S6UsJwGAK2tc13hm+qU+xd9E5eLu37QF/5/btPtXEhAQzY3e+m81BDB
zP2SaHBH4ELEoHFjqmEDiJPmBhiKCs0kNnCNZnKYnjrZE6sA/YqA1Jnbzb4R7RgG
7f25ap6fOVbiNxqZ3cgzA7a9/Lzp8VorcN6OVoN2DxvbIzEaLdZSTKbiqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO11uilgzZ+f4fs99nUwLVkEGudFMB8GA1UdIwQY
MBaAFBsjdz6Ht+HtC1XhULp3FrGCWz4mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3lOM1BvZTM0ZTBMVmVGUXVuY1dzWUpiUGlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9hNDg4NDYtODg1YS00OTBkLTg1Nzct
ZGM5YmE0MzFkNTdhLzEvR3lOM1BvZTM0ZTBMVmVGUXVuY1dzWUpiUGlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9hNDg4NDYtODg1YS00OTBkLTg1NzctZGM5YmE0MzFkNTdh
LzEvR3lOM1BvZTM0ZTBMVmVGUXVuY1dzWUpiUGlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuy+BFcfK
0p+nqdMMo1g0hRf/2A+J/IVxWSQjwgZ4eXwBU3sH55KbqDe8CtyA2ZY1eKPwClth
DTw/8ZvPJPBF924p5nB92HthzCspYVWNQncwrXiI6Q+KhsPSo2LFY9odHxLcrS+E
jD0qOWHEeLUZ5657QBFPDHVw7Rc3B0dg861S50ouFoXa5vCH7K4JHwUItiqUpWoe
dCW3jgmfe9WW/KHGBdZccA5mSCZ0oybjYNLu2HFFrrRpboy0CX5JKQAYkefVakTX
XG0vGLSBbRjEfhPBLbFJc+rVe1QL9n8eKF5lkePGzK5Fbtdnn2mqDImWBWeMK/eg
zocoooO+SIeXOw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 18:26:34 2026 by rpki-client