Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft
File: ieXrHhIJiXh0XVQNypbP8N5HBNo.mft (raw, json)
Hash identifier: lDs0ho2LG/7e2+TtfsTL1LaHnWD+r7vU3HacEfNpLxw=
Subject key identifier: EC:81:3D:75:EB:C4:E1:1D:16:60:88:CA:08:13:79:E4:1D:2A:AD:55
Authority key identifier: 89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA
Certificate issuer: /CN=89e5eb1e12098978745d540dca96cff0de4704da
Certificate serial: 019CE591842F83B17E84F2F2F6CD87B7906A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft
Manifest number: 0CDA
Signing time: Fri 13 Mar 2026 05:00:44 +0000
Manifest this update: Fri 13 Mar 2026 05:00:44 +0000
Manifest next update: Sat 14 Mar 2026 05:00:44 +0000
Files and hashes: 1: ieXrHhIJiXh0XVQNypbP8N5HBNo.crl (hash: CVoPV0OyrycJy6jltxZBXemCUhyg4KHsLNV1e8oNYoY=)
2: mdTsNfdOLmAj5Ib0bSI7RIV96g0.roa (hash: xAGPZrEW2fEUSd+UrPEI5hWaivVab8Rku87e+bOIo2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:91:84:2f:83:b1:7e:84:f2:f2:f6:cd:87:b7:90:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89e5eb1e12098978745d540dca96cff0de4704da
Validity
Not Before: Mar 13 05:00:44 2026 GMT
Not After : Mar 14 05:00:44 2026 GMT
Subject: CN=ec813d75ebc4e11d166088ca081379e41d2aad55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:eb:4b:46:d8:d7:97:57:38:07:87:07:28:5d:
d9:4d:d6:54:21:cf:81:3e:07:f2:3f:15:ac:0d:fb:
08:1f:60:91:17:d4:38:26:4b:a8:fb:ec:83:27:59:
c5:c5:9b:86:87:25:79:64:6d:10:f7:ff:bf:58:b9:
5b:50:4c:3c:d6:05:53:cc:df:3f:aa:ff:a3:4d:a1:
bc:da:20:41:0b:fa:ad:e7:bc:3f:c0:94:69:b1:9b:
d8:0f:d7:3c:8e:68:00:aa:f6:9a:00:3a:a8:95:ca:
17:76:21:e5:fb:13:b0:8a:e7:d0:3d:4d:ef:91:74:
65:95:18:66:8e:58:56:a7:4b:db:b1:c9:5e:a2:61:
14:f3:ed:a3:02:1e:4f:95:a9:32:60:67:99:3d:58:
4c:b0:d6:a3:50:34:54:05:11:61:15:d9:a6:22:31:
65:92:e5:22:cd:12:b1:00:62:d7:57:99:f1:59:7a:
9c:4e:a6:ee:dc:ba:ea:dd:46:2a:88:d0:71:54:fc:
0b:7c:66:e9:4f:91:6b:ee:b3:46:91:8c:ce:ab:78:
6c:4e:da:3f:61:25:20:cf:68:f8:8a:03:ca:14:44:
9c:d0:1c:f7:b0:5a:f7:d5:4c:8a:e3:97:f0:6b:52:
a8:3a:41:21:93:f3:a2:d0:40:f1:a4:10:d3:ca:85:
eb:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:81:3D:75:EB:C4:E1:1D:16:60:88:CA:08:13:79:E4:1D:2A:AD:55
X509v3 Authority Key Identifier:
keyid:89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:3d:00:77:19:06:b0:ad:a9:23:ba:ad:59:2d:46:c6:f2:5e:
53:18:96:9b:b8:ef:5d:a3:0d:df:45:12:5f:aa:52:6e:2d:5a:
69:83:60:7d:14:7b:82:83:77:9b:a1:fc:fc:ed:cf:98:82:83:
28:3d:12:21:43:8c:2b:5f:e6:99:9e:e6:48:8b:5b:59:a3:c3:
ad:08:0e:6b:28:df:bc:20:da:ef:3f:41:79:70:17:4a:1f:9f:
f4:4b:7b:2e:5c:44:e5:74:0a:57:0f:a9:1e:11:13:77:f5:58:
12:a6:bf:49:d3:ac:b9:a7:0d:d1:cf:dc:d2:93:df:40:cb:39:
fa:f0:a7:ec:56:2c:33:24:7d:16:42:2c:34:1a:54:dc:4d:02:
a1:02:e8:b0:f4:02:fd:aa:8a:58:41:7b:96:49:04:7f:c9:c3:
d3:da:fc:e8:48:d4:c9:fa:dc:1b:bd:33:ff:0e:82:a8:10:92:
8e:1b:26:cd:ef:78:28:09:eb:a7:37:30:1d:0c:f2:b7:01:62:
e0:15:9c:4c:f7:4a:81:f5:ca:e5:bb:fc:e2:14:82:46:02:df:
ba:18:ae:cd:fd:bd:84:a4:8a:d3:f7:11:ce:a8:39:b4:d7:ba:
f6:ef:e1:1c:33:69:eb:88:12:a7:6f:20:60:f6:ac:6e:62:44:
ee:d5:60:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzlkYQvg7F+hPLy9s2Ht5BqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5ZTVlYjFlMTIwOTg5Nzg3NDVkNTQwZGNhOTZjZmYwZGU0
NzA0ZGEwHhcNMjYwMzEzMDUwMDQ0WhcNMjYwMzE0MDUwMDQ0WjAzMTEwLwYDVQQD
EyhlYzgxM2Q3NWViYzRlMTFkMTY2MDg4Y2EwODEzNzllNDFkMmFhZDU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuetLRtjXl1c4B4cHKF3ZTdZUIc+B
PgfyPxWsDfsIH2CRF9Q4Jkuo++yDJ1nFxZuGhyV5ZG0Q9/+/WLlbUEw81gVTzN8/
qv+jTaG82iBBC/qt57w/wJRpsZvYD9c8jmgAqvaaADqolcoXdiHl+xOwiufQPU3v
kXRllRhmjlhWp0vbscleomEU8+2jAh5PlakyYGeZPVhMsNajUDRUBRFhFdmmIjFl
kuUizRKxAGLXV5nxWXqcTqbu3Lrq3UYqiNBxVPwLfGbpT5Fr7rNGkYzOq3hsTto/
YSUgz2j4igPKFESc0Bz3sFr31UyK45fwa1KoOkEhk/Oi0EDxpBDTyoXrwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOyBPXXrxOEdFmCIyggTeeQdKq1VMB8GA1UdIwQY
MBaAFInl6x4SCYl4dF1UDcqWz/DeRwTaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWVYckhoSUppWGgwWFZRTnlwYlA4TjVIQk5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9lMTNiMzItMWJhOS00ZGI5LWE1Njkt
NGFjYTA5NTY0ZmE4LzEvaWVYckhoSUppWGgwWFZRTnlwYlA4TjVIQk5vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC9lMTNiMzItMWJhOS00ZGI5LWE1NjktNGFjYTA5NTY0ZmE4
LzEvaWVYckhoSUppWGgwWFZRTnlwYlA4TjVIQk5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIz0AdxkG
sK2pI7qtWS1GxvJeUxiWm7jvXaMN30USX6pSbi1aaYNgfRR7goN3m6H8/O3PmIKD
KD0SIUOMK1/mmZ7mSItbWaPDrQgOayjfvCDa7z9BeXAXSh+f9Et7LlxE5XQKVw+p
HhETd/VYEqa/SdOsuacN0c/c0pPfQMs5+vCn7FYsMyR9FkIsNBpU3E0CoQLosPQC
/aqKWEF7lkkEf8nD09r86EjUyfrcG70z/w6CqBCSjhsmze94KAnrpzcwHQzytwFi
4BWcTPdKgfXK5bv84hSCRgLfuhiuzf29hKSK0/cRzqg5tNe69u/hHDNp64gSp28g
YPasbmJE7tVgdA==
-----END CERTIFICATE-----
Generated at Fri Mar 13 08:40:36 2026 by rpki-client