Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
File: ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft (raw, json)
Hash identifier: ZNA6seTaGm1oO6vbohCc4vDSmBiJOtnbpCiCoO8YUzo=
Subject key identifier: 7F:54:E9:89:83:85:DC:56:42:C4:BE:DD:C5:7F:75:6D:21:04:DC:3D
Authority key identifier: 11:2A:6A:26:0D:1E:67:E0:A7:B4:E6:DC:F4:03:FD:39:F6:DE:97:54
Certificate issuer: /CN=112a6a260d1e67e0a7b4e6dcf403fd39f6de9754
Certificate serial: 019D382E6454A8BC68FDD57E601AC0DDCD9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
Manifest number: 0767
Signing time: Sun 29 Mar 2026 06:00:57 +0000
Manifest this update: Sun 29 Mar 2026 06:00:57 +0000
Manifest next update: Mon 30 Mar 2026 06:00:57 +0000
Files and hashes: 1: ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl (hash: VQzkuvrOyD+EPbuyAc8FrnTUXXNOjEbyYi2/5Fh8yek=)
2: stYBdowOVPO4I6l2lk6N70Rzn-E.roa (hash: YY8VJy7fjrv/nyUerV6XVPDCUnj9z+ve+4ysfFvneOU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:64:54:a8:bc:68:fd:d5:7e:60:1a:c0:dd:cd:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112a6a260d1e67e0a7b4e6dcf403fd39f6de9754
Validity
Not Before: Mar 29 06:00:57 2026 GMT
Not After : Mar 30 06:00:57 2026 GMT
Subject: CN=7f54e9898385dc5642c4beddc57f756d2104dc3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f3:89:b3:4b:27:d0:2d:44:fa:5d:e7:0a:45:
e6:ad:86:2b:95:e1:84:ef:81:5c:11:dd:99:a3:27:
53:a9:71:18:61:65:58:f0:64:61:c7:3f:8b:c1:cc:
ab:51:eb:a7:c0:01:0f:4d:14:4d:de:fc:a2:d0:29:
17:19:f6:6e:eb:67:d6:36:dd:2d:3d:2f:53:74:d5:
c5:53:62:fe:ac:5e:e0:b3:68:c9:62:82:d9:e5:a4:
e0:05:57:7c:93:a6:d7:09:06:5a:b3:78:6c:ee:55:
de:7d:99:3d:7a:f3:c9:8e:87:41:af:57:b5:89:46:
e9:b5:b9:86:73:d6:a8:7a:91:46:43:9a:f1:67:b6:
8e:90:84:de:1d:58:bf:d3:bc:78:67:18:93:3c:69:
1b:c9:eb:2d:89:24:00:42:dd:7b:4e:35:b4:2d:ac:
b5:a2:7c:ad:71:07:ca:2d:b0:7a:3a:cf:a2:36:6a:
02:b6:d4:bd:f0:a8:ce:a7:60:f1:59:80:e8:13:9e:
30:06:02:36:09:90:b9:e5:27:17:57:e1:44:e4:54:
bf:a0:f1:aa:e8:90:09:af:63:4a:b8:c4:7b:a3:3e:
e8:a1:b6:f1:b4:ae:f0:35:17:6d:02:fa:8e:33:9d:
95:b9:22:c1:d7:6a:e4:71:ab:cd:a1:dc:f0:cb:c5:
78:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:54:E9:89:83:85:DC:56:42:C4:BE:DD:C5:7F:75:6D:21:04:DC:3D
X509v3 Authority Key Identifier:
keyid:11:2A:6A:26:0D:1E:67:E0:A7:B4:E6:DC:F4:03:FD:39:F6:DE:97:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:33:34:9b:7b:60:32:2b:81:53:2b:d0:d5:0f:88:f6:f1:25:
45:93:c2:e5:ce:9c:e0:4b:ab:3c:cb:2e:1c:15:55:c3:dc:86:
23:0d:94:46:a3:24:c8:48:a6:b7:cd:f1:6f:97:1c:15:63:64:
ff:a7:76:cd:ac:30:db:d5:2c:75:a3:d1:27:7f:3a:f8:c4:1f:
38:14:2b:a2:e7:4a:2d:d6:04:e1:83:b3:9e:10:88:8b:8d:ac:
7f:49:fc:8f:d9:4a:2c:60:69:ce:b5:a7:b8:31:53:04:5b:eb:
cb:b6:21:85:c3:c2:3d:4a:8f:84:cf:fe:db:42:14:89:8f:cc:
ad:c1:50:e5:a5:e3:b1:a8:eb:22:41:d2:f3:e9:56:ec:0c:81:
51:69:34:62:23:42:cb:32:a0:33:ec:d0:40:99:23:22:1d:07:
02:b1:af:b0:24:82:cd:5f:cd:12:ff:30:fb:02:d7:9a:8c:cd:
4c:96:f3:ea:24:48:7a:30:e8:e3:a7:a7:bd:fa:70:74:3b:7a:
d9:ce:2c:ac:bb:45:5d:ec:e6:1f:de:79:2c:6b:8c:a4:2d:d7:
43:1a:d4:38:4f:8b:67:07:73:c4:5f:d0:08:f5:57:d6:89:b1:
28:52:71:19:3f:63:90:2d:33:87:9f:37:fb:44:0b:ce:d5:47:
8e:38:eb:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04LmRUqLxo/dV+YBrA3c2aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExMmE2YTI2MGQxZTY3ZTBhN2I0ZTZkY2Y0MDNmZDM5ZjZk
ZTk3NTQwHhcNMjYwMzI5MDYwMDU3WhcNMjYwMzMwMDYwMDU3WjAzMTEwLwYDVQQD
Eyg3ZjU0ZTk4OTgzODVkYzU2NDJjNGJlZGRjNTdmNzU2ZDIxMDRkYzNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/OJs0sn0C1E+l3nCkXmrYYrleGE
74FcEd2ZoydTqXEYYWVY8GRhxz+LwcyrUeunwAEPTRRN3vyi0CkXGfZu62fWNt0t
PS9TdNXFU2L+rF7gs2jJYoLZ5aTgBVd8k6bXCQZas3hs7lXefZk9evPJjodBr1e1
iUbptbmGc9aoepFGQ5rxZ7aOkITeHVi/07x4ZxiTPGkbyestiSQAQt17TjW0Lay1
onytcQfKLbB6Os+iNmoCttS98KjOp2DxWYDoE54wBgI2CZC55ScXV+FE5FS/oPGq
6JAJr2NKuMR7oz7oobbxtK7wNRdtAvqOM52VuSLB12rkcavNodzwy8V4oQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH9U6YmDhdxWQsS+3cV/dW0hBNw9MB8GA1UdIwQY
MBaAFBEqaiYNHmfgp7Tm3PQD/Tn23pdUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRVNwcUpnMGVaLUNudE9iYzlBUDlPZmJlbDFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi84NGZhZWQtMGNiNS00Nzk5LTk0NDct
YTM5ODhmYzkwZDYwLzEvRVNwcUpnMGVaLUNudE9iYzlBUDlPZmJlbDFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi84NGZhZWQtMGNiNS00Nzk5LTk0NDctYTM5ODhmYzkwZDYw
LzEvRVNwcUpnMGVaLUNudE9iYzlBUDlPZmJlbDFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgDM0m3tg
MiuBUyvQ1Q+I9vElRZPC5c6c4EurPMsuHBVVw9yGIw2URqMkyEimt83xb5ccFWNk
/6d2zaww29UsdaPRJ386+MQfOBQroudKLdYE4YOznhCIi42sf0n8j9lKLGBpzrWn
uDFTBFvry7YhhcPCPUqPhM/+20IUiY/MrcFQ5aXjsajrIkHS8+lW7AyBUWk0YiNC
yzKgM+zQQJkjIh0HArGvsCSCzV/NEv8w+wLXmozNTJbz6iRIejDo46envfpwdDt6
2c4srLtFXezmH955LGuMpC3XQxrUOE+LZwdzxF/QCPVX1omxKFJxGT9jkC0zh583
+0QLztVHjjjr+g==
-----END CERTIFICATE-----
Generated at Sun Mar 29 09:09:34 2026 by rpki-client