Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
File: bRRgVvD7veYYv_ARwPIrp0pYMrc.mft (raw, json)
Hash identifier: 0WAUVGC5+u/Rh8AbaGH33sLYxDMgyurGAFvpBJkHPWk=
Subject key identifier: AC:43:31:30:27:BA:25:3A:69:C7:34:E9:1D:D6:3F:53:E6:28:F3:C1
Authority key identifier: 6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
Certificate issuer: /CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Certificate serial: 019D382DDBDEE6AD4EEC17FF834A2A6396DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 06:00:22 +0000
Manifest this update: Sun 29 Mar 2026 06:00:22 +0000
Manifest next update: Mon 30 Mar 2026 06:00:22 +0000
Files and hashes: 1: WkpO27Y8ZxNKd7U3qDzWmgFGPCo.roa (hash: 8pKYcInVWQ20ee2YIPC0/BRFBVDzYLbWsfYCougTXnw=)
2: bRRgVvD7veYYv_ARwPIrp0pYMrc.crl (hash: F1TNMHbi75IEMWq+dbUhbGH1jaAsNjwrZ3T+8D8iIAs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:db:de:e6:ad:4e:ec:17:ff:83:4a:2a:63:96:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Validity
Not Before: Mar 29 06:00:22 2026 GMT
Not After : Mar 30 06:00:22 2026 GMT
Subject: CN=ac43313027ba253a69c734e91dd63f53e628f3c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f4:2b:a6:25:14:e4:2e:ec:db:dc:62:5f:0f:
8f:40:28:28:28:81:53:81:31:5b:56:2f:76:0a:eb:
ac:0d:4f:00:36:66:18:1e:9d:03:7d:d5:af:b6:9a:
ed:85:76:1b:b1:7c:36:2c:d9:05:69:be:c2:f0:37:
b5:0e:57:51:86:54:8d:2f:e6:19:2b:d5:12:98:a3:
e5:74:3a:66:e2:23:95:67:b8:88:15:c6:61:c8:a2:
83:ba:c7:11:56:81:0c:f8:5b:4f:9b:fc:00:ab:4d:
56:97:f4:46:16:f0:3d:f8:81:a7:70:c8:d0:d0:d1:
e5:f7:87:5a:15:00:80:2d:3a:2d:f6:ed:f2:d6:93:
84:71:74:f2:db:13:78:b7:76:f1:1c:ee:c4:b8:dd:
45:34:91:41:05:dc:16:db:5e:86:94:37:3a:52:63:
7f:2c:08:cf:f7:ab:ec:64:b6:2b:96:c6:4a:c0:0c:
dc:09:1e:13:c4:de:b9:a6:1e:11:c0:fa:22:8f:16:
d4:d3:2e:b8:11:0e:6a:30:c8:a1:35:60:5d:24:36:
ec:0a:a8:2d:72:b1:c2:c2:71:f5:99:36:83:58:34:
e2:76:88:c6:06:ea:b5:fc:82:60:b2:36:0a:82:4a:
27:6b:95:6f:94:ae:ea:a7:f7:ef:36:30:5b:6d:86:
30:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:43:31:30:27:BA:25:3A:69:C7:34:E9:1D:D6:3F:53:E6:28:F3:C1
X509v3 Authority Key Identifier:
keyid:6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:cd:c9:1c:e3:15:37:2b:1c:07:d2:43:14:c2:b0:2a:f6:aa:
7a:09:ff:cf:09:aa:33:da:85:56:16:25:ee:3e:f0:05:db:a8:
63:20:4b:f8:b8:8d:9d:79:db:9c:fb:6e:45:3a:d7:cb:ab:dc:
27:f0:fb:c3:ac:05:90:df:e1:5c:cf:e0:e6:03:28:67:da:90:
1e:b4:35:80:d9:ae:0a:a1:45:dc:83:93:4b:84:e9:c1:37:a5:
1a:15:83:7f:a2:95:e2:d3:69:35:4a:f8:ab:70:d5:b4:bf:56:
2c:ce:6e:93:09:a4:7d:53:a1:00:09:0d:19:b8:8a:cc:f4:9a:
92:25:1c:26:22:33:5c:c5:aa:54:50:2a:43:b5:51:d1:5c:70:
ab:ad:e6:34:2f:ec:7b:1b:4a:85:4e:56:73:66:82:61:3b:0a:
3b:c6:f1:86:0c:60:7e:9c:b3:82:3c:41:84:aa:3f:db:9c:83:
55:a0:9d:1d:ee:6c:43:bb:47:db:2a:f7:c1:ab:ca:b5:23:73:
67:11:99:85:96:78:21:8d:0e:8e:05:42:ee:ec:ad:d4:b8:59:
4d:3f:1d:47:51:d4:8a:7c:27:39:b7:ad:c1:5d:cf:72:e9:86:
fc:31:f6:95:57:65:36:58:39:72:e1:dc:65:6d:48:3a:8d:b8:
e8:cd:c5:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04Ldve5q1O7Bf/g0oqY5baMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMTQ2MDU2ZjBmYmJkZTYxOGJmZjAxMWMwZjIyYmE3NGE1
ODMyYjcwHhcNMjYwMzI5MDYwMDIyWhcNMjYwMzMwMDYwMDIyWjAzMTEwLwYDVQQD
EyhhYzQzMzEzMDI3YmEyNTNhNjljNzM0ZTkxZGQ2M2Y1M2U2MjhmM2MxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0vQrpiUU5C7s29xiXw+PQCgoKIFT
gTFbVi92CuusDU8ANmYYHp0DfdWvtprthXYbsXw2LNkFab7C8De1DldRhlSNL+YZ
K9USmKPldDpm4iOVZ7iIFcZhyKKDuscRVoEM+FtPm/wAq01Wl/RGFvA9+IGncMjQ
0NHl94daFQCALTot9u3y1pOEcXTy2xN4t3bxHO7EuN1FNJFBBdwW216GlDc6UmN/
LAjP96vsZLYrlsZKwAzcCR4TxN65ph4RwPoijxbU0y64EQ5qMMihNWBdJDbsCqgt
crHCwnH1mTaDWDTidojGBuq1/IJgsjYKgkona5VvlK7qp/fvNjBbbYYwEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKxDMTAnuiU6acc06R3WP1PmKPPBMB8GA1UdIwQY
MBaAFG0UYFbw+73mGL/wEcDyK6dKWDK3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlJSZ1Z2RDd2ZVlZdl9BUndQSXJwMHBZTXJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS81ODlkYjktZTIyYi00ZDY0LTk0YjQt
OGVjZjc1MTA1N2FjLzEvYlJSZ1Z2RDd2ZVlZdl9BUndQSXJwMHBZTXJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS81ODlkYjktZTIyYi00ZDY0LTk0YjQtOGVjZjc1MTA1N2Fj
LzEvYlJSZ1Z2RDd2ZVlZdl9BUndQSXJwMHBZTXJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtc3JHOMV
NyscB9JDFMKwKvaqegn/zwmqM9qFVhYl7j7wBduoYyBL+LiNnXnbnPtuRTrXy6vc
J/D7w6wFkN/hXM/g5gMoZ9qQHrQ1gNmuCqFF3IOTS4TpwTelGhWDf6KV4tNpNUr4
q3DVtL9WLM5ukwmkfVOhAAkNGbiKzPSakiUcJiIzXMWqVFAqQ7VR0Vxwq63mNC/s
extKhU5Wc2aCYTsKO8bxhgxgfpyzgjxBhKo/25yDVaCdHe5sQ7tH2yr3wavKtSNz
ZxGZhZZ4IY0OjgVC7uyt1LhZTT8dR1HUinwnObetwV3PcumG/DH2lVdlNlg5cuHc
ZW1IOo246M3FwQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:00:55 2026 by rpki-client