Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: fe/i8f8ZaIIJk74jClrbhDC7VvN0mRF1VFS6S5ENwP4=
Subject key identifier: F7:68:D1:CA:FD:5E:2F:7E:C4:E0:18:80:4A:61:05:3B:14:3D:43:7E
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 019D3A1C34A943DAA1C622D4515506B0C157
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 15:00:20 +0000
Manifest this update: Sun 29 Mar 2026 15:00:20 +0000
Manifest next update: Mon 30 Mar 2026 15:00:20 +0000
Files and hashes: 1: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: uystlBxfYOMutrzqgHfdCb9E7WgRO10/1gpL7DgrUnI=)
2: PUGn7Ab6cMVb76OjXGWaJzUV5BY.roa (hash: iJYYEN2U/S0Cca5PknTdBrcbLrfBr1O6hjipT0an39E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 15:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:34:a9:43:da:a1:c6:22:d4:51:55:06:b0:c1:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: Mar 29 15:00:20 2026 GMT
Not After : Mar 30 15:00:20 2026 GMT
Subject: CN=f768d1cafd5e2f7ec4e018804a61053b143d437e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c6:af:80:b1:50:a6:9b:d9:97:f4:10:9f:b8:
44:f9:68:51:33:ee:8a:aa:63:e2:ce:e4:d1:d5:3b:
70:01:46:d4:7f:6d:21:dd:6f:9c:8f:7b:ad:14:c4:
93:50:f5:fb:17:a6:4b:83:42:8d:3d:b4:2f:18:5b:
0c:0c:66:d9:28:8c:eb:f0:0e:df:56:ee:d1:11:af:
cc:a0:4b:25:10:27:a1:98:16:a9:ff:cb:5f:f6:e6:
9d:ec:cd:50:b6:34:fd:15:43:61:fa:97:5a:4b:70:
cd:a8:2b:0d:05:1d:91:d4:c5:ae:99:34:6d:fb:79:
ba:6c:b4:b2:97:ac:68:69:37:29:e9:49:70:e1:1c:
88:0b:09:79:35:e2:b8:95:4d:cf:c3:15:35:f6:d9:
c6:02:9a:fe:33:91:f1:22:a4:ee:b4:35:d2:76:ce:
4f:f6:b9:15:ac:4c:c3:b6:d5:62:51:86:9c:54:c3:
90:ad:1e:c2:54:55:09:cb:7e:db:87:ab:af:dd:24:
63:56:8c:fe:9d:da:b1:b6:e1:2a:5a:94:36:57:a3:
fb:6c:49:e2:ae:bc:6d:3e:10:41:28:84:7f:b4:aa:
41:83:fa:f9:ea:4f:a2:50:fc:d0:b8:b9:b9:02:d6:
2c:51:34:da:ce:72:5e:24:02:d4:fd:f5:90:03:b6:
af:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:68:D1:CA:FD:5E:2F:7E:C4:E0:18:80:4A:61:05:3B:14:3D:43:7E
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:23:80:17:04:f7:3a:58:7c:33:7b:83:b2:d2:42:e3:76:b3:
0f:ab:37:67:7b:19:e7:06:6c:d9:4b:85:61:17:75:ad:cd:28:
e7:1a:d9:cf:ef:83:55:0b:3d:96:8b:a3:95:4b:15:52:2e:97:
06:89:eb:f8:c9:92:31:5b:99:11:cd:40:d0:d4:7a:e8:08:36:
00:90:e9:1c:37:c0:ad:f5:da:2f:b6:09:45:01:c2:7d:23:d7:
86:4c:3c:b9:fc:38:2e:3d:da:fd:1c:da:87:1f:ce:00:db:a2:
cc:e3:67:6d:81:f9:7b:25:a2:a2:19:7e:f2:65:1c:e7:d9:8b:
8f:d5:e5:8b:5a:bc:4f:7c:25:5a:78:ac:89:eb:1d:57:d4:f4:
0d:84:52:86:92:58:30:15:df:2d:99:5a:ad:a5:a1:9d:44:ee:
f6:05:5d:6f:b6:69:dc:83:97:72:ba:98:d3:af:62:38:45:a1:
f5:99:e1:56:07:b8:a8:82:88:ac:6b:41:f9:10:87:56:13:06:
3b:c3:80:dd:85:c1:4b:42:a8:43:c2:8b:ea:94:09:8c:3b:24:
97:f6:cf:86:26:bd:5a:cc:47:c8:1b:31:77:16:04:38:7c:ba:
d4:cd:87:57:20:0b:24:b9:99:5e:15:9e:ae:8a:85:d6:d5:73:
bd:59:6b:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06HDSpQ9qhxiLUUVUGsMFXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwZjZlNTNiNjk3YWQyNjNiNGJhNGVhNDk4MTQzNjZhODgz
YjU0YWQwHhcNMjYwMzI5MTUwMDIwWhcNMjYwMzMwMTUwMDIwWjAzMTEwLwYDVQQD
EyhmNzY4ZDFjYWZkNWUyZjdlYzRlMDE4ODA0YTYxMDUzYjE0M2Q0MzdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcavgLFQppvZl/QQn7hE+WhRM+6K
qmPizuTR1TtwAUbUf20h3W+cj3utFMSTUPX7F6ZLg0KNPbQvGFsMDGbZKIzr8A7f
Vu7REa/MoEslECehmBap/8tf9uad7M1QtjT9FUNh+pdaS3DNqCsNBR2R1MWumTRt
+3m6bLSyl6xoaTcp6Ulw4RyICwl5NeK4lU3PwxU19tnGApr+M5HxIqTutDXSds5P
9rkVrEzDttViUYacVMOQrR7CVFUJy37bh6uv3SRjVoz+ndqxtuEqWpQ2V6P7bEni
rrxtPhBBKIR/tKpBg/r56k+iUPzQuLm5AtYsUTTaznJeJALU/fWQA7av8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPdo0cr9Xi9+xOAYgEphBTsUPUN+MB8GA1UdIwQY
MBaAFCD25TtpetJjtLpOpJgUNmqIO1StMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVBibE8ybDYwbU8wdWs2a21CUTJhb2c3VkswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9lNzU3NmEtNDM2My00OTg0LWI0Yzct
YjFmMjljY2NjZTU1LzEvSVBibE8ybDYwbU8wdWs2a21CUTJhb2c3VkswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi9lNzU3NmEtNDM2My00OTg0LWI0YzctYjFmMjljY2NjZTU1
LzEvSVBibE8ybDYwbU8wdWs2a21CUTJhb2c3VkswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjSOAFwT3
Olh8M3uDstJC43azD6s3Z3sZ5wZs2UuFYRd1rc0o5xrZz++DVQs9loujlUsVUi6X
Bonr+MmSMVuZEc1A0NR66Ag2AJDpHDfArfXaL7YJRQHCfSPXhkw8ufw4Lj3a/Rza
hx/OANuizONnbYH5eyWiohl+8mUc59mLj9Xli1q8T3wlWnisiesdV9T0DYRShpJY
MBXfLZlaraWhnUTu9gVdb7Zp3IOXcrqY069iOEWh9ZnhVge4qIKIrGtB+RCHVhMG
O8OA3YXBS0KoQ8KL6pQJjDskl/bPhia9WsxHyBsxdxYEOHy61M2HVyALJLmZXhWe
roqF1tVzvVlraA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:59:16 2026 by rpki-client