Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
File: I--d4hUq7xsqYqMfsvNehZCzrYQ.mft (raw, json)
Hash identifier: kHHWZx6dk99ELdKtcMVB1dPhGzdZoRNjj+3RUj8aQWw=
Subject key identifier: 51:12:98:AC:B0:03:B7:56:FF:9A:21:26:FD:A9:D5:53:F5:22:1D:6F
Authority key identifier: 23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
Certificate issuer: /CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Certificate serial: 019D371B559DB7B68A469919ABDC22BF23D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
Manifest number: 08DF
Signing time: Sun 29 Mar 2026 01:00:31 +0000
Manifest this update: Sun 29 Mar 2026 01:00:31 +0000
Manifest next update: Mon 30 Mar 2026 01:00:31 +0000
Files and hashes: 1: I--d4hUq7xsqYqMfsvNehZCzrYQ.crl (hash: yw4L4W0VT3lYubd6lNxKq3qHDNctIukbgF0P63nwp50=)
2: c3qGT-HlNIbOpWOWtGq8wzGlzo8.roa (hash: dkOdUS1B4RLrr1wGef0PpA8JuUzSKd3BvzN3ojn4kHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:55:9d:b7:b6:8a:46:99:19:ab:dc:22:bf:23:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Validity
Not Before: Mar 29 01:00:31 2026 GMT
Not After : Mar 30 01:00:31 2026 GMT
Subject: CN=511298acb003b756ff9a2126fda9d553f5221d6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b5:1e:e7:1b:6f:27:aa:4b:61:e2:6b:4d:77:
46:45:88:dd:e1:ce:82:f3:e3:fd:f8:78:ee:ed:a9:
32:9f:38:f7:ee:f0:6c:9c:e1:95:06:da:7d:49:90:
45:3f:e4:0b:6b:21:10:cd:f0:29:6b:72:7d:98:8f:
59:c0:d3:ef:8a:f5:3f:3a:ad:36:04:e7:bd:1f:78:
47:e3:4a:65:8a:d7:2d:90:48:f7:df:99:7f:c1:25:
c2:c0:db:c1:0f:41:39:9a:e7:82:a8:84:e2:ed:a7:
22:ac:67:18:94:a0:83:aa:9f:be:d7:fb:b1:4e:b8:
0e:42:41:65:a2:48:ca:32:34:5e:f2:b7:39:65:28:
a0:87:02:37:30:a4:da:ae:da:5d:21:54:6c:b3:bf:
49:9b:dd:b5:dd:04:82:a0:a6:54:8e:b2:b1:14:e7:
03:57:16:53:0c:61:43:cc:2b:75:9a:ad:22:c5:4c:
1e:89:5a:95:1a:a7:67:95:3f:a4:b5:d4:4c:ce:f6:
3e:fd:23:af:1b:a3:80:e1:06:0c:69:7a:0c:14:d5:
05:dc:e2:30:1c:67:2a:71:b8:29:89:b9:09:70:86:
c2:11:5d:0e:54:1d:17:d0:ce:7b:85:33:76:de:e3:
0d:47:3f:e6:06:af:1c:76:6b:9d:0c:ec:d2:1a:e0:
1b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:12:98:AC:B0:03:B7:56:FF:9A:21:26:FD:A9:D5:53:F5:22:1D:6F
X509v3 Authority Key Identifier:
keyid:23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:24:9a:67:d2:0d:25:57:36:49:63:ed:14:ef:c5:6f:ea:c0:
2c:90:50:c7:31:33:b3:5a:33:ec:a3:4d:89:86:70:79:96:a2:
e3:57:d3:11:3f:fa:b4:35:16:d9:dd:22:58:ea:81:5c:4b:fe:
3d:11:72:b4:cc:32:75:2b:f4:c1:a5:3e:39:2d:e8:67:dc:ee:
20:56:70:66:79:b2:cf:32:06:19:d7:81:ea:50:b9:4f:0d:01:
1d:fa:cb:64:cc:81:24:dc:4c:e9:65:b9:a6:11:0f:4d:ae:d1:
47:48:b1:f2:24:2a:49:99:a4:6e:b7:e8:9e:81:00:c4:05:0e:
01:e5:28:25:0d:9a:91:50:6f:8e:1b:0d:95:ff:62:e2:aa:10:
83:2b:85:05:bd:56:6e:48:3f:f5:10:e7:65:72:0e:1e:04:9a:
ed:2a:21:78:34:75:9f:a8:d9:28:3c:5f:bf:56:53:35:7e:2d:
ce:27:28:ab:f2:8e:9c:25:47:48:22:a4:03:f8:be:aa:32:bb:
34:a3:86:3e:ee:7f:fe:de:39:8f:b3:86:ac:65:32:96:ed:28:
3d:cf:b1:b0:fd:f7:c1:03:29:3c:39:76:d7:6f:58:f4:0e:09:
57:80:01:1e:1c:d6:0f:70:e7:ef:06:9c:f9:67:b4:cb:91:3d:
df:7a:47:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03G1Wdt7aKRpkZq9wivyPSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzZWY5ZGUyMTUyYWVmMWIyYTYyYTMxZmIyZjM1ZTg1OTBi
M2FkODQwHhcNMjYwMzI5MDEwMDMxWhcNMjYwMzMwMDEwMDMxWjAzMTEwLwYDVQQD
Eyg1MTEyOThhY2IwMDNiNzU2ZmY5YTIxMjZmZGE5ZDU1M2Y1MjIxZDZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLUe5xtvJ6pLYeJrTXdGRYjd4c6C
8+P9+Hju7akynzj37vBsnOGVBtp9SZBFP+QLayEQzfApa3J9mI9ZwNPvivU/Oq02
BOe9H3hH40plitctkEj335l/wSXCwNvBD0E5mueCqITi7acirGcYlKCDqp++1/ux
TrgOQkFlokjKMjRe8rc5ZSighwI3MKTartpdIVRss79Jm9213QSCoKZUjrKxFOcD
VxZTDGFDzCt1mq0ixUweiVqVGqdnlT+ktdRMzvY+/SOvG6OA4QYMaXoMFNUF3OIw
HGcqcbgpibkJcIbCEV0OVB0X0M57hTN23uMNRz/mBq8cdmudDOzSGuAbWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFESmKywA7dW/5ohJv2p1VP1Ih1vMB8GA1UdIwQY
MBaAFCPvneIVKu8bKmKjH7LzXoWQs62EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSS0tZDRoVXE3eHNxWXFNZnN2TmVoWkN6cllRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9jM2YzY2MtYzU2Yi00ZDM1LWI3N2Yt
M2JjNmViMGEzNDdmLzEvSS0tZDRoVXE3eHNxWXFNZnN2TmVoWkN6cllRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9jM2YzY2MtYzU2Yi00ZDM1LWI3N2YtM2JjNmViMGEzNDdm
LzEvSS0tZDRoVXE3eHNxWXFNZnN2TmVoWkN6cllRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANiSaZ9IN
JVc2SWPtFO/Fb+rALJBQxzEzs1oz7KNNiYZweZai41fTET/6tDUW2d0iWOqBXEv+
PRFytMwydSv0waU+OS3oZ9zuIFZwZnmyzzIGGdeB6lC5Tw0BHfrLZMyBJNxM6WW5
phEPTa7RR0ix8iQqSZmkbrfonoEAxAUOAeUoJQ2akVBvjhsNlf9i4qoQgyuFBb1W
bkg/9RDnZXIOHgSa7SoheDR1n6jZKDxfv1ZTNX4tzicoq/KOnCVHSCKkA/i+qjK7
NKOGPu5//t45j7OGrGUylu0oPc+xsP33wQMpPDl2129Y9A4JV4ABHhzWD3Dn7wac
+We0y5E933pHrg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:19 2026 by rpki-client