Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
File: d2-uQ_c9o1_houQpZirguRdR4_s.mft (raw, json)
Hash identifier: ExyM8Rp5fOmQhr1XvGULq/eCjojdFNY1nuB1H4nqBBE=
Subject key identifier: 8A:97:75:7F:77:59:03:3D:75:CC:7F:65:1C:9B:E1:A3:F0:1F:0A:C0
Authority key identifier: 77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
Certificate issuer: /CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Certificate serial: 019D39776ACEF6FD01EFA0D9052FDF52AFFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
Manifest number: 15B6
Signing time: Sun 29 Mar 2026 12:00:20 +0000
Manifest this update: Sun 29 Mar 2026 12:00:20 +0000
Manifest next update: Mon 30 Mar 2026 12:00:20 +0000
Files and hashes: 1: WIBc-XhxOnD5f9bCQ8Jz0ZuTnGc.roa (hash: BEfaJedvpJl8LX0jJodXnPNHqf67lfg9OTd8BTanSlQ=)
2: biWMyLPxPMl5FtQJTRrTfAxg-wg.roa (hash: pNDoD30C6cU3KpMd8R/7fMFpHc25Pe1LLUHjt0eH4ZA=)
3: d2-uQ_c9o1_houQpZirguRdR4_s.crl (hash: r2+IfKFTOFIBayAXuCBnVhF/vyyqdhBmPl8/7VwNUo0=)
4: pInkCUNgtUwuBuyF0FBGq4Od_LA.roa (hash: 84LwnqiXuuACgBX/nkeDGPUuwEvED3Wv0F8ikRwy6Nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 12:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:6a:ce:f6:fd:01:ef:a0:d9:05:2f:df:52:af:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Validity
Not Before: Mar 29 12:00:20 2026 GMT
Not After : Mar 30 12:00:20 2026 GMT
Subject: CN=8a97757f7759033d75cc7f651c9be1a3f01f0ac0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d5:8d:c4:23:e9:c4:3c:bb:46:13:9d:b5:49:
2b:ad:91:03:d5:80:e5:02:ac:da:34:f7:12:67:b1:
a9:f4:95:dd:4c:15:04:8d:23:3e:44:d9:a3:ac:ca:
77:ab:bf:ae:10:2b:c9:58:80:7c:a6:51:07:0f:2b:
dc:11:71:df:a5:f7:c0:7f:04:63:00:94:40:84:3e:
3b:b5:a0:be:07:de:e8:ef:b7:e1:43:7a:8a:2d:d2:
7a:f8:43:9b:eb:f0:a9:fb:a6:53:1d:f3:bc:a5:14:
7d:55:b6:57:3f:ef:83:ab:07:6f:e6:65:40:a2:8a:
dc:40:15:81:46:2c:f3:8e:06:2c:aa:a0:3d:9c:f5:
52:c0:58:95:9b:13:b3:2d:54:35:2a:84:c5:a0:6d:
6c:31:15:b9:6a:27:bb:7f:38:b5:74:72:98:4a:4c:
0b:94:bf:4b:82:9b:9b:d6:62:e7:2a:81:d6:b6:b3:
81:6a:0c:04:12:03:01:d5:76:78:8e:e8:6e:d8:54:
84:5c:8e:f9:d2:20:df:6a:bf:87:a0:83:cf:f1:8b:
24:d2:75:51:ff:f3:ac:53:bd:1a:1f:1f:6b:dd:6c:
e3:f8:48:7b:78:1e:9b:14:06:c3:c2:fb:fd:0d:f9:
54:33:83:47:9a:0c:73:6c:01:e7:9b:b6:6d:f9:52:
31:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:97:75:7F:77:59:03:3D:75:CC:7F:65:1C:9B:E1:A3:F0:1F:0A:C0
X509v3 Authority Key Identifier:
keyid:77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:c5:f8:16:8a:d0:8e:56:bc:79:9d:91:2d:d3:e5:9b:dd:2c:
be:04:cf:9b:a9:5f:98:d6:d4:f6:70:39:2d:73:bb:bb:ba:2c:
20:32:20:a9:fe:12:ef:fb:d9:27:9b:e2:3b:2f:38:11:f2:97:
1c:fd:22:56:b9:23:d6:fb:00:dd:b5:49:ca:f6:29:62:1c:4f:
28:c2:e4:f0:a7:fd:a7:68:a9:f4:3b:61:42:65:01:27:f2:31:
0c:c7:86:8c:a9:6b:be:ed:31:63:50:b7:fa:94:bf:81:7b:40:
06:07:96:15:c3:e5:8b:f4:8e:64:ff:bd:0b:15:87:a7:42:71:
5c:9f:02:af:dc:6b:80:36:e6:ef:2c:44:2c:fd:48:63:56:ad:
eb:db:a6:dd:73:3a:8e:8c:c7:de:74:70:76:a2:b9:7f:6d:cc:
ff:97:f9:e0:d4:26:38:75:6a:b5:3f:2e:da:56:a8:c7:e7:42:
39:44:c4:ba:ee:35:ae:82:1a:98:4f:5f:ca:8c:a2:c9:fb:76:
70:22:7e:13:6f:c2:42:43:6a:c5:61:c4:75:d3:64:64:cb:2d:
69:15:25:f4:7b:e4:9c:7c:44:69:e9:5b:d9:f0:a5:8f:b2:ad:
12:60:4e:57:21:2d:3a:70:ad:aa:be:4d:43:65:a8:48:95:b9:
23:dc:88:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05d2rO9v0B76DZBS/fUq/6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3NmZhZTQzZjczZGEzNWZlMWEyZTQyOTY2MmFlMGI5MTc1
MWUzZmIwHhcNMjYwMzI5MTIwMDIwWhcNMjYwMzMwMTIwMDIwWjAzMTEwLwYDVQQD
Eyg4YTk3NzU3Zjc3NTkwMzNkNzVjYzdmNjUxYzliZTFhM2YwMWYwYWMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAltWNxCPpxDy7RhOdtUkrrZED1YDl
AqzaNPcSZ7Gp9JXdTBUEjSM+RNmjrMp3q7+uECvJWIB8plEHDyvcEXHfpffAfwRj
AJRAhD47taC+B97o77fhQ3qKLdJ6+EOb6/Cp+6ZTHfO8pRR9VbZXP++Dqwdv5mVA
oorcQBWBRizzjgYsqqA9nPVSwFiVmxOzLVQ1KoTFoG1sMRW5aie7fzi1dHKYSkwL
lL9Lgpub1mLnKoHWtrOBagwEEgMB1XZ4juhu2FSEXI750iDfar+HoIPP8Ysk0nVR
//OsU70aHx9r3Wzj+Eh7eB6bFAbDwvv9DflUM4NHmgxzbAHnm7Zt+VIxRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIqXdX93WQM9dcx/ZRyb4aPwHwrAMB8GA1UdIwQY
MBaAFHdvrkP3PaNf4aLkKWYq4LkXUeP7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDItdVFfYzlvMV9ob3VRcFppcmd1UmRSNF9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8wYWNmMmQtNWQ2Mi00M2YzLThkMTQt
NGUwY2M1ODE2M2IwLzEvZDItdVFfYzlvMV9ob3VRcFppcmd1UmRSNF9zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8wYWNmMmQtNWQ2Mi00M2YzLThkMTQtNGUwY2M1ODE2M2Iw
LzEvZDItdVFfYzlvMV9ob3VRcFppcmd1UmRSNF9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAocX4ForQ
jla8eZ2RLdPlm90svgTPm6lfmNbU9nA5LXO7u7osIDIgqf4S7/vZJ5viOy84EfKX
HP0iVrkj1vsA3bVJyvYpYhxPKMLk8Kf9p2ip9DthQmUBJ/IxDMeGjKlrvu0xY1C3
+pS/gXtABgeWFcPli/SOZP+9CxWHp0JxXJ8Cr9xrgDbm7yxELP1IY1at69um3XM6
jozH3nRwdqK5f23M/5f54NQmOHVqtT8u2laox+dCOUTEuu41roIamE9fyoyiyft2
cCJ+E2/CQkNqxWHEddNkZMstaRUl9HvknHxEaelb2fClj7KtEmBOVyEtOnCtqr5N
Q2WoSJW5I9yI2Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:12:56 2026 by rpki-client