Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: bHi636eehMEdV1IBaU34ZTC1g/Ds3i98oGZu/6DB7eQ=
Subject key identifier: 64:D6:9F:29:23:51:F8:DD:9F:D6:DE:E6:A6:79:40:0A:DB:7C:BF:24
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 019D3A1C8F37E244048BBA69627F1B3D1ABF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 108B
Signing time: Sun 29 Mar 2026 15:00:43 +0000
Manifest this update: Sun 29 Mar 2026 15:00:43 +0000
Manifest next update: Mon 30 Mar 2026 15:00:43 +0000
Files and hashes: 1: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: Oql78n33lwcXxQHhS8mdDIJvqn07R7xEQUSQx9mxXcM=)
2: f7qLZUl_FwNxE3w_k0K8MDDnPE4.roa (hash: iT3SrQGihsPU4xD+7248AXf2sfstLnnSHt1kFE/x28E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:8f:37:e2:44:04:8b:ba:69:62:7f:1b:3d:1a:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Mar 29 15:00:43 2026 GMT
Not After : Mar 30 15:00:43 2026 GMT
Subject: CN=64d69f292351f8dd9fd6dee6a679400adb7cbf24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:30:8e:77:f9:ae:16:61:91:ea:3f:22:0f:7e:
61:32:b8:1a:fe:d6:b4:7e:ca:1a:20:74:87:00:b1:
47:9d:4c:00:9d:30:cc:43:8f:ef:97:24:7f:35:ef:
c4:78:05:38:52:39:6a:93:a5:5a:86:0a:0d:43:53:
6c:49:0f:ef:83:23:7b:c2:c5:fc:d6:de:22:0a:c7:
a1:db:4a:2e:f2:2d:60:f3:80:0a:15:36:ca:2d:7d:
f0:e9:14:28:a4:45:92:11:a7:1a:81:9e:05:91:60:
44:80:b0:e7:73:c6:51:85:ed:95:c1:e7:d8:d7:49:
8e:74:ed:5c:e1:aa:7c:e8:fa:a4:7f:82:c8:d2:e0:
c7:7a:7b:c5:fb:ad:b8:12:b6:06:ef:b7:d5:72:41:
35:05:e2:ad:1c:09:24:35:74:35:96:19:61:50:10:
5e:a2:1c:ec:a2:0f:56:10:2a:b6:7c:64:76:4d:d0:
4b:cb:91:5f:c5:58:ac:1b:b9:88:b9:f6:3b:f7:1b:
f1:a9:54:37:d2:c6:55:4a:72:91:e9:af:c7:56:98:
07:0b:2d:42:d0:34:a6:d1:29:26:50:d2:f7:51:d2:
0f:57:81:7d:23:75:b5:e6:76:09:22:c4:6c:74:cd:
2a:17:9a:7c:99:af:46:35:10:5e:c5:f6:67:20:7f:
00:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D6:9F:29:23:51:F8:DD:9F:D6:DE:E6:A6:79:40:0A:DB:7C:BF:24
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:93:4e:0b:f3:83:a4:e2:48:0c:f7:de:42:69:60:f4:9b:59:
24:eb:64:9c:da:aa:a6:da:dc:ec:ff:24:ab:0b:03:5a:98:f2:
9e:4b:5e:b3:14:a6:9d:56:80:2e:aa:2d:79:ba:5a:49:39:0c:
8c:95:8f:59:78:55:ee:88:6b:12:2a:5e:eb:30:cb:73:19:61:
00:80:9a:4b:66:c1:f2:e2:86:e1:18:0b:5d:11:0f:41:13:33:
73:41:05:bf:57:0a:6c:e4:64:a8:59:a7:87:eb:ff:10:68:d0:
b9:8c:43:6c:ff:e2:6e:f1:37:e9:5f:04:1a:93:38:dd:7e:28:
39:12:f4:99:a4:c4:fe:1c:5a:fe:10:3d:28:2c:56:f0:56:85:
26:73:0a:b1:e7:fe:06:6a:0b:61:82:69:2d:7c:f6:de:eb:87:
84:26:8c:21:ca:4b:66:7f:9c:82:87:10:d3:f8:bd:4b:55:98:
79:09:3e:d3:c5:23:4c:72:cb:7c:9a:c7:a5:d9:d0:aa:97:f8:
29:e9:9e:32:c0:28:8c:f8:51:47:43:f0:7b:5e:1c:cd:1f:3a:
76:7c:c4:4b:f4:0c:70:21:a5:1b:1e:a0:f1:51:4b:f1:da:6f:
9c:7b:10:ce:eb:a2:29:50:1a:9d:77:f6:ae:72:7d:83:4a:36:
56:4c:67:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06HI834kQEi7ppYn8bPRq/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxOGRiMjg4MjNmMzcwOGIyNTVhYTEyNGJhNmVmNzQxZDEx
M2VhZjMwHhcNMjYwMzI5MTUwMDQzWhcNMjYwMzMwMTUwMDQzWjAzMTEwLwYDVQQD
Eyg2NGQ2OWYyOTIzNTFmOGRkOWZkNmRlZTZhNjc5NDAwYWRiN2NiZjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvzCOd/muFmGR6j8iD35hMrga/ta0
fsoaIHSHALFHnUwAnTDMQ4/vlyR/Ne/EeAU4Ujlqk6VahgoNQ1NsSQ/vgyN7wsX8
1t4iCseh20ou8i1g84AKFTbKLX3w6RQopEWSEacagZ4FkWBEgLDnc8ZRhe2VwefY
10mOdO1c4ap86Pqkf4LI0uDHenvF+624ErYG77fVckE1BeKtHAkkNXQ1lhlhUBBe
ohzsog9WECq2fGR2TdBLy5FfxVisG7mIufY79xvxqVQ30sZVSnKR6a/HVpgHCy1C
0DSm0SkmUNL3UdIPV4F9I3W15nYJIsRsdM0qF5p8ma9GNRBexfZnIH8AxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGTWnykjUfjdn9be5qZ5QArbfL8kMB8GA1UdIwQY
MBaAFCGNsogj83CLJVqhJLpu90HRE+rzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQt
NzlkYzNkMGJiZWQ4LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQtNzlkYzNkMGJiZWQ4
LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGJNOC/OD
pOJIDPfeQmlg9JtZJOtknNqqptrc7P8kqwsDWpjynktesxSmnVaALqotebpaSTkM
jJWPWXhV7ohrEipe6zDLcxlhAICaS2bB8uKG4RgLXREPQRMzc0EFv1cKbORkqFmn
h+v/EGjQuYxDbP/ibvE36V8EGpM43X4oORL0maTE/hxa/hA9KCxW8FaFJnMKsef+
BmoLYYJpLXz23uuHhCaMIcpLZn+cgocQ0/i9S1WYeQk+08UjTHLLfJrHpdnQqpf4
KemeMsAojPhRR0Pwe14czR86dnzES/QMcCGlGx6g8VFL8dpvnHsQzuuiKVAanXf2
rnJ9g0o2Vkxn4A==
-----END CERTIFICATE-----
Generated at Sun Mar 29 17:02:26 2026 by rpki-client