Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
File: CChUc8l4ylHOVGmqSu3KFkRb1lI.mft (raw, json)
Hash identifier: Fmvx0OG5xytQimJSJEjTY459Wxives2B1zvMuB5ybxU=
Subject key identifier: CE:35:0A:58:D0:A9:1D:96:81:37:52:74:00:C3:28:94:DE:71:FF:43
Authority key identifier: 08:28:54:73:C9:78:CA:51:CE:54:69:AA:4A:ED:CA:16:44:5B:D6:52
Certificate issuer: /CN=08285473c978ca51ce5469aa4aedca16445bd652
Certificate serial: 019D38D2DAEA41ADC4D405E093C10609B175
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 09:00:35 +0000
Manifest this update: Sun 29 Mar 2026 09:00:35 +0000
Manifest next update: Mon 30 Mar 2026 09:00:35 +0000
Files and hashes: 1: CChUc8l4ylHOVGmqSu3KFkRb1lI.crl (hash: MlwiNS4fNorgoimz9JNWQvf303yLhk/FcS0KFfBrn5k=)
2: KYwuzPdQcxFtvMJ482Z-no0-rlI.roa (hash: WFv3oIQNO2UW+gImEV96V10XtC3ybgEz6IBrXZKDplc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:da:ea:41:ad:c4:d4:05:e0:93:c1:06:09:b1:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08285473c978ca51ce5469aa4aedca16445bd652
Validity
Not Before: Mar 29 09:00:35 2026 GMT
Not After : Mar 30 09:00:35 2026 GMT
Subject: CN=ce350a58d0a91d968137527400c32894de71ff43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6c:4a:a8:aa:b3:a4:57:de:46:62:07:8c:52:
58:b1:6c:da:5c:b9:6e:cd:3c:cd:ef:e3:6a:e0:15:
ea:3a:c6:54:25:20:77:0e:74:cb:35:ff:00:27:e0:
67:69:43:88:f4:8b:63:5a:48:62:f3:5d:a7:f8:54:
f9:d6:52:9a:e6:37:7e:2e:dc:c7:43:a5:6f:35:30:
53:4b:6b:9b:5b:c1:6d:77:eb:cf:ab:93:1c:5a:a2:
33:be:99:ff:e8:fc:bd:47:3e:35:56:d8:ae:dc:ea:
8c:55:bd:23:90:f8:fa:0a:c8:42:a9:fd:3e:eb:bb:
9c:9f:b4:36:a0:b7:70:8a:86:a2:09:3e:76:63:f3:
20:3e:cc:30:3c:49:b4:81:8f:9b:42:8b:fb:a8:64:
7b:f1:73:1c:96:ce:1b:a3:c7:02:87:8d:ff:3a:73:
63:3a:a1:d5:3e:07:95:c8:25:e9:55:27:17:56:56:
be:eb:84:f9:07:d8:a5:97:8d:83:2c:77:80:55:d0:
39:0a:62:43:fe:fb:d4:99:d1:31:2c:c7:1f:93:a7:
89:80:f2:ce:fb:40:08:92:5b:90:1f:92:44:a2:c5:
13:58:52:aa:c9:35:4a:de:e7:34:ef:b6:ec:8e:02:
ff:66:94:e6:9c:f6:ac:49:87:82:54:96:54:80:8f:
d0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:35:0A:58:D0:A9:1D:96:81:37:52:74:00:C3:28:94:DE:71:FF:43
X509v3 Authority Key Identifier:
keyid:08:28:54:73:C9:78:CA:51:CE:54:69:AA:4A:ED:CA:16:44:5B:D6:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:ac:8d:11:e0:2b:25:c5:42:99:ee:1c:5e:13:37:d2:8f:bb:
64:b7:45:fe:05:c5:94:56:73:2e:27:2f:2f:30:9a:81:c9:09:
e5:47:74:88:f9:3d:d3:a3:82:fa:46:b8:06:29:60:84:6a:04:
23:37:20:dd:63:af:f1:e7:41:58:25:82:ad:85:2a:85:78:15:
b7:83:e0:79:f4:17:8c:20:5f:b5:a6:aa:05:aa:71:31:5e:35:
c0:22:a5:8c:33:d4:ee:3a:eb:e7:d3:21:84:ef:9b:0e:f2:d7:
49:ea:52:72:76:d9:bc:32:94:ba:c0:cc:70:d3:6e:0f:73:0c:
95:0c:54:be:bf:45:65:2f:a7:b1:23:43:0d:b0:14:0f:ab:c6:
10:84:c9:4d:aa:3c:1d:d3:a0:da:de:cd:6e:c4:e1:69:4c:49:
64:65:de:b5:52:79:7a:b7:a2:f3:11:be:f6:a2:5d:91:b2:57:
43:49:4e:ea:e4:a5:7a:5f:16:3c:05:a7:90:ae:06:08:41:d2:
cf:98:7e:af:f8:9f:b2:cc:00:0d:50:ae:62:2e:9d:b3:5d:32:
78:78:0f:d1:6a:dc:f9:67:0f:bf:6b:5f:f5:ba:08:f6:01:c5:
20:e3:2f:b2:84:9f:10:0f:53:3b:b0:95:50:d5:fe:14:39:e5:
35:0d:62:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040trqQa3E1AXgk8EGCbF1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4Mjg1NDczYzk3OGNhNTFjZTU0NjlhYTRhZWRjYTE2NDQ1
YmQ2NTIwHhcNMjYwMzI5MDkwMDM1WhcNMjYwMzMwMDkwMDM1WjAzMTEwLwYDVQQD
EyhjZTM1MGE1OGQwYTkxZDk2ODEzNzUyNzQwMGMzMjg5NGRlNzFmZjQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0mxKqKqzpFfeRmIHjFJYsWzaXLlu
zTzN7+Nq4BXqOsZUJSB3DnTLNf8AJ+BnaUOI9ItjWkhi812n+FT51lKa5jd+LtzH
Q6VvNTBTS2ubW8Ftd+vPq5McWqIzvpn/6Py9Rz41Vtiu3OqMVb0jkPj6CshCqf0+
67ucn7Q2oLdwioaiCT52Y/MgPswwPEm0gY+bQov7qGR78XMcls4bo8cCh43/OnNj
OqHVPgeVyCXpVScXVla+64T5B9ill42DLHeAVdA5CmJD/vvUmdExLMcfk6eJgPLO
+0AIkluQH5JEosUTWFKqyTVK3uc077bsjgL/ZpTmnPasSYeCVJZUgI/Q4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM41CljQqR2WgTdSdADDKJTecf9DMB8GA1UdIwQY
MBaAFAgoVHPJeMpRzlRpqkrtyhZEW9ZSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0NoVWM4bDR5bEhPVkdtcVN1M0tGa1JiMWxJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9iZmI0ZjItODg3YS00MDEzLWE4Zjgt
OGUzMDBlZmQxM2JjLzEvQ0NoVWM4bDR5bEhPVkdtcVN1M0tGa1JiMWxJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS9iZmI0ZjItODg3YS00MDEzLWE4ZjgtOGUzMDBlZmQxM2Jj
LzEvQ0NoVWM4bDR5bEhPVkdtcVN1M0tGa1JiMWxJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnayNEeAr
JcVCme4cXhM30o+7ZLdF/gXFlFZzLicvLzCagckJ5Ud0iPk906OC+ka4BilghGoE
Izcg3WOv8edBWCWCrYUqhXgVt4PgefQXjCBftaaqBapxMV41wCKljDPU7jrr59Mh
hO+bDvLXSepScnbZvDKUusDMcNNuD3MMlQxUvr9FZS+nsSNDDbAUD6vGEITJTao8
HdOg2t7NbsThaUxJZGXetVJ5erei8xG+9qJdkbJXQ0lO6uSlel8WPAWnkK4GCEHS
z5h+r/ifsswADVCuYi6ds10yeHgP0Wrc+WcPv2tf9boI9gHFIOMvsoSfEA9TO7CV
UNX+FDnlNQ1iyA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 17:47:44 2026 by rpki-client