Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
File: gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft (raw, json)
Hash identifier: wNa3ITC1s342J9yDpiWu+Y+kTVkf+LOvxmVCXYViOwU=
Subject key identifier: 95:FE:0B:13:9C:F0:DE:8B:F7:C3:96:51:BB:53:CF:55:23:CF:93:38
Authority key identifier: 81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5
Certificate issuer: /CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
Certificate serial: 019D9EBFDFDD7DE12EC9685C19CD5A851E52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
Manifest number: 1232
Signing time: Sat 18 Apr 2026 04:01:07 +0000
Manifest this update: Sat 18 Apr 2026 04:01:07 +0000
Manifest next update: Sun 19 Apr 2026 04:01:07 +0000
Files and hashes: 1: gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl (hash: lGt11wgvFWL9WkjeelJzHPxcHPS5WXDO9ygatznadTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 01:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9e:bf:df:dd:7d:e1:2e:c9:68:5c:19:cd:5a:85:1e:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
Validity
Not Before: Apr 18 04:01:07 2026 GMT
Not After : Apr 19 04:01:07 2026 GMT
Subject: CN=95fe0b139cf0de8bf7c39651bb53cf5523cf9338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:dc:2d:5a:f0:bd:1c:ef:a8:eb:5a:0f:7e:16:
b5:7b:13:82:0a:ad:fc:d1:67:b9:31:c2:ac:5d:15:
30:33:c7:4e:c0:4d:ce:3a:55:14:8c:22:90:cf:28:
ef:ef:20:d8:31:1c:83:22:a5:f5:8a:af:c7:7c:40:
db:10:70:7a:65:48:6b:37:58:69:76:cb:d3:42:88:
a2:a1:48:a8:fb:42:fb:2c:27:93:6d:80:e0:17:45:
59:35:5b:4c:45:1d:f0:0b:30:d0:02:b8:4e:85:15:
07:4f:b6:2c:c2:60:12:5c:0f:cb:4b:d6:3e:9b:78:
9b:f9:1a:99:9d:a3:c7:06:73:6e:58:d8:bb:b7:53:
4b:7c:30:f0:bc:2d:13:6f:08:13:cf:79:89:7d:0b:
db:fe:ee:79:04:ba:c4:44:60:11:6d:b4:7f:4b:0c:
10:81:c9:03:71:7f:df:cd:2e:be:fd:49:2e:c2:d0:
7c:24:c9:f8:42:42:36:09:e6:13:50:27:e6:35:48:
60:4a:5a:5f:b4:c4:80:f2:dd:b2:7b:af:09:d4:43:
76:01:4a:6c:22:91:d0:c8:7f:b2:92:58:10:bb:ca:
ad:f0:3f:f3:3c:13:ea:54:b1:5b:e3:7c:e8:ab:63:
aa:75:8e:21:50:db:2b:0c:36:89:5f:b5:89:11:cd:
c8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:FE:0B:13:9C:F0:DE:8B:F7:C3:96:51:BB:53:CF:55:23:CF:93:38
X509v3 Authority Key Identifier:
keyid:81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:5d:48:ac:9a:c9:9c:ea:3b:ed:d6:8e:54:88:dc:39:48:2f:
a4:82:76:2f:c8:c9:f2:d8:10:18:bb:05:34:82:0c:b3:90:4b:
fa:23:53:ce:01:12:31:5f:b8:9e:1f:02:b6:00:3b:ff:63:ef:
08:87:e2:e7:9c:ab:07:8f:fe:11:a4:84:8f:f5:83:3a:f6:94:
bb:09:cb:df:d7:09:eb:ad:5c:77:87:4a:8d:4a:e7:fe:0f:fc:
f3:04:6d:a1:52:eb:52:f9:dd:0e:56:1b:cd:44:8f:09:8e:d1:
4d:d6:7b:31:06:6c:7a:12:87:d2:4b:e7:ee:03:fd:e7:22:88:
d4:1c:1d:0e:1b:05:1d:48:7f:da:31:b6:d2:06:b5:9f:c7:8c:
a1:a2:6b:c7:74:2d:74:d6:65:74:70:47:82:ce:26:06:1c:c5:
85:f1:15:01:55:1d:92:b0:ab:c2:92:68:6f:e6:01:93:39:a1:
79:86:7a:e4:73:33:33:79:c8:2a:ec:15:10:b7:02:1c:b9:d8:
da:69:cc:07:ea:b6:ff:21:0c:1a:9f:63:ad:52:36:bc:6a:d2:
9b:36:71:84:73:9c:d5:ca:aa:91:d4:6b:1f:0b:fe:21:c8:11:
76:5f:0d:78:5b:26:87:dd:91:4d:9d:96:bf:c9:12:12:d9:45:
75:22:8f:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ev9/dfeEuyWhcGc1ahR5SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxY2QwMjYyYTIyMWMzNWE2N2NmMTczYTYwZDFlY2Q5YWZh
YmRkYjUwHhcNMjYwNDE4MDQwMTA3WhcNMjYwNDE5MDQwMTA3WjAzMTEwLwYDVQQD
Eyg5NWZlMGIxMzljZjBkZThiZjdjMzk2NTFiYjUzY2Y1NTIzY2Y5MzM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstwtWvC9HO+o61oPfha1exOCCq38
0We5McKsXRUwM8dOwE3OOlUUjCKQzyjv7yDYMRyDIqX1iq/HfEDbEHB6ZUhrN1hp
dsvTQoiioUio+0L7LCeTbYDgF0VZNVtMRR3wCzDQArhOhRUHT7YswmASXA/LS9Y+
m3ib+RqZnaPHBnNuWNi7t1NLfDDwvC0TbwgTz3mJfQvb/u55BLrERGARbbR/SwwQ
gckDcX/fzS6+/UkuwtB8JMn4QkI2CeYTUCfmNUhgSlpftMSA8t2ye68J1EN2AUps
IpHQyH+yklgQu8qt8D/zPBPqVLFb43zoq2OqdY4hUNsrDDaJX7WJEc3IFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJX+CxOc8N6L98OWUbtTz1Ujz5M4MB8GA1UdIwQY
MBaAFIHNAmKiIcNaZ88XOmDR7Nmvq921MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2MwQ1lxSWh3MXBuenhjNllOSHMyYS1yM2JVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83NDA4MTMtOTE4MC00MDZmLWFmNmEt
ZmRkMDk2MmNlYWFiLzEvZ2MwQ1lxSWh3MXBuenhjNllOSHMyYS1yM2JVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny83NDA4MTMtOTE4MC00MDZmLWFmNmEtZmRkMDk2MmNlYWFi
LzEvZ2MwQ1lxSWh3MXBuenhjNllOSHMyYS1yM2JVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJV1IrJrJ
nOo77daOVIjcOUgvpIJ2L8jJ8tgQGLsFNIIMs5BL+iNTzgESMV+4nh8CtgA7/2Pv
CIfi55yrB4/+EaSEj/WDOvaUuwnL39cJ661cd4dKjUrn/g/88wRtoVLrUvndDlYb
zUSPCY7RTdZ7MQZsehKH0kvn7gP95yKI1BwdDhsFHUh/2jG20ga1n8eMoaJrx3Qt
dNZldHBHgs4mBhzFhfEVAVUdkrCrwpJob+YBkzmheYZ65HMzM3nIKuwVELcCHLnY
2mnMB+q2/yEMGp9jrVI2vGrSmzZxhHOc1cqqkdRrHwv+IcgRdl8NeFsmh92RTZ2W
v8kSEtlFdSKP+g==
-----END CERTIFICATE-----
Generated at Sat Apr 18 10:16:19 2026 by rpki-client