Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
File: 1jND98xsI32j-LgROMBR2Pk8nE0.mft (raw, json)
Hash identifier: TlJZ5SpAWrdFaGbGEaNwd8lDu6+d/FDvWerij60ldU0=
Subject key identifier: 70:C8:51:7F:88:BD:BB:E7:0A:D9:4E:37:EA:44:D2:BD:3E:26:14:B0
Authority key identifier: D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D
Certificate issuer: /CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d
Certificate serial: 019D39412D29EB15916DC573DCD30AC09F2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 11:01:05 +0000
Manifest this update: Sun 29 Mar 2026 11:01:05 +0000
Manifest next update: Mon 30 Mar 2026 11:01:05 +0000
Files and hashes: 1: 1jND98xsI32j-LgROMBR2Pk8nE0.crl (hash: 32gp6q23Eson9iHvmCpFagS2cQARuJOuekF/FE9B80o=)
2: EP-Dzz1NsbE3FdE9FqHYCykGClM.roa (hash: j4hgB5ZXwadY27nb0X3WLEn8DWlc84cj5g+efdOnuH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:2d:29:eb:15:91:6d:c5:73:dc:d3:0a:c0:9f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d
Validity
Not Before: Mar 29 11:01:05 2026 GMT
Not After : Mar 30 11:01:05 2026 GMT
Subject: CN=70c8517f88bdbbe70ad94e37ea44d2bd3e2614b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d9:fb:cb:45:8f:be:02:22:5a:a3:e5:bc:89:
f0:e3:a4:06:56:34:ce:3a:d0:13:ea:98:48:44:49:
f9:7e:20:83:a0:89:2a:2f:ec:8e:61:76:68:9d:8e:
ba:66:e6:eb:2d:7f:d7:92:eb:37:4f:d7:12:a6:2e:
41:f2:ed:5e:3f:6b:a8:57:bf:46:8b:11:a9:ff:7a:
a2:3a:79:64:82:20:27:c8:38:9c:d8:f9:b0:29:51:
0f:f5:e7:7c:67:cb:a2:88:89:23:b8:5b:33:a8:4b:
40:f6:26:c4:71:79:99:95:99:d1:e8:68:5a:e5:af:
cc:c2:4b:fe:ec:1f:10:3b:e9:ab:d1:d6:45:2a:44:
64:24:7b:85:07:58:c9:dd:98:c7:83:01:20:83:e4:
a1:e1:7e:9c:5a:6a:dc:cb:ce:93:42:38:a7:31:13:
90:a4:2a:1a:15:e7:4d:f9:f8:e4:2b:2c:65:49:8c:
3d:9f:35:ed:e8:99:80:e0:24:a1:ee:bd:86:a4:04:
fe:50:0b:d5:ec:01:6a:39:39:44:d5:db:c2:30:c7:
93:cd:c5:a3:7c:20:75:84:4b:a0:5e:70:8b:8f:6c:
04:6b:3f:32:11:73:f8:ee:05:73:2a:ec:85:b8:fc:
4b:d6:26:52:33:bf:c6:37:ef:54:07:8e:82:b9:74:
91:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C8:51:7F:88:BD:BB:E7:0A:D9:4E:37:EA:44:D2:BD:3E:26:14:B0
X509v3 Authority Key Identifier:
keyid:D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:8c:c1:71:47:29:14:18:78:87:7e:95:ed:fe:be:2f:18:40:
fd:b6:89:5c:cd:62:55:c0:14:a9:f3:83:9a:a2:c6:85:8e:22:
b5:dd:da:d1:83:b9:2f:1d:82:1b:48:78:c2:15:24:86:4a:27:
6f:ad:0e:25:90:b6:d0:8a:ea:99:d5:31:ad:5e:54:f6:8b:17:
45:0a:32:e3:6f:f6:07:d0:6a:4e:21:14:fb:8a:8c:d1:43:38:
90:ff:7e:ce:90:47:1b:42:c2:5c:68:c8:b2:36:ad:44:c2:28:
f1:4f:17:38:1f:0d:16:e1:61:c6:bf:b4:cd:fc:d4:29:6a:14:
79:f2:32:f8:0b:d9:fa:2a:63:f1:be:62:39:41:da:4e:b9:19:
4f:56:83:72:37:aa:af:2e:1a:a3:9c:d4:0b:03:60:d2:41:59:
3c:e2:cf:76:10:e8:96:85:75:06:15:27:8c:98:ea:35:9e:b6:
8f:65:eb:ea:52:b3:18:2e:ca:a8:35:54:16:48:bd:3d:f0:ed:
ee:83:2b:94:ab:0f:6f:fc:c4:30:ac:ae:e9:d6:a5:5a:57:b2:
63:c7:6c:43:2f:a6:a4:df:d5:ef:b0:f9:c5:71:99:9f:fa:17:
38:be:11:62:e7:5e:90:28:bd:63:00:88:28:50:0d:4b:35:4a:
f5:cd:4e:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QS0p6xWRbcVz3NMKwJ8tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2MzM0M2Y3Y2M2YzIzN2RhM2Y4YjgxMTM4YzA1MWQ4Zjkz
YzljNGQwHhcNMjYwMzI5MTEwMTA1WhcNMjYwMzMwMTEwMTA1WjAzMTEwLwYDVQQD
Eyg3MGM4NTE3Zjg4YmRiYmU3MGFkOTRlMzdlYTQ0ZDJiZDNlMjYxNGIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwdn7y0WPvgIiWqPlvInw46QGVjTO
OtAT6phIREn5fiCDoIkqL+yOYXZonY66ZubrLX/Xkus3T9cSpi5B8u1eP2uoV79G
ixGp/3qiOnlkgiAnyDic2PmwKVEP9ed8Z8uiiIkjuFszqEtA9ibEcXmZlZnR6Gha
5a/Mwkv+7B8QO+mr0dZFKkRkJHuFB1jJ3ZjHgwEgg+Sh4X6cWmrcy86TQjinMROQ
pCoaFedN+fjkKyxlSYw9nzXt6JmA4CSh7r2GpAT+UAvV7AFqOTlE1dvCMMeTzcWj
fCB1hEugXnCLj2wEaz8yEXP47gVzKuyFuPxL1iZSM7/GN+9UB46CuXSRDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHDIUX+IvbvnCtlON+pE0r0+JhSwMB8GA1UdIwQY
MBaAFNYzQ/fMbCN9o/i4ETjAUdj5PJxNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS84ZWI1ODEtOWM3NC00OGUxLTgyMWEt
NTMxODBlZWM1NmZiLzEvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS84ZWI1ODEtOWM3NC00OGUxLTgyMWEtNTMxODBlZWM1NmZi
LzEvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACozBcUcp
FBh4h36V7f6+LxhA/baJXM1iVcAUqfODmqLGhY4itd3a0YO5Lx2CG0h4whUkhkon
b60OJZC20IrqmdUxrV5U9osXRQoy42/2B9BqTiEU+4qM0UM4kP9+zpBHG0LCXGjI
sjatRMIo8U8XOB8NFuFhxr+0zfzUKWoUefIy+AvZ+ipj8b5iOUHaTrkZT1aDcjeq
ry4ao5zUCwNg0kFZPOLPdhDoloV1BhUnjJjqNZ62j2Xr6lKzGC7KqDVUFki9PfDt
7oMrlKsPb/zEMKyu6dalWleyY8dsQy+mpN/V77D5xXGZn/oXOL4RYudekCi9YwCI
KFANSzVK9c1O6A==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:10 2026 by rpki-client