Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.mft
File: v_tlOi9T2WcLP5GEAgnz8seKwbI.mft (raw, json)
Hash identifier: LyUiaKbMp5xxE6jzBV9vdgSRoLbu1LadCKh/KnlWowM=
Subject key identifier: 43:84:A7:FF:88:FB:99:95:D8:33:95:2E:35:30:D3:49:E0:FC:33:B7
Authority key identifier: BF:FB:65:3A:2F:53:D9:67:0B:3F:91:84:02:09:F3:F2:C7:8A:C1:B2
Certificate issuer: /CN=bffb653a2f53d9670b3f91840209f3f2c78ac1b2
Certificate serial: 019D386550E3BC9E33525F146A086A00635D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v_tlOi9T2WcLP5GEAgnz8seKwbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 07:00:57 +0000
Manifest this update: Sun 29 Mar 2026 07:00:57 +0000
Manifest next update: Mon 30 Mar 2026 07:00:57 +0000
Files and hashes: 1: v_tlOi9T2WcLP5GEAgnz8seKwbI.crl (hash: hRCCE2ltWKtMP+Hp4rcopUHGbTlUjrEJzeuHl8gF//k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/v_tlOi9T2WcLP5GEAgnz8seKwbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:50:e3:bc:9e:33:52:5f:14:6a:08:6a:00:63:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bffb653a2f53d9670b3f91840209f3f2c78ac1b2
Validity
Not Before: Mar 29 07:00:57 2026 GMT
Not After : Mar 30 07:00:57 2026 GMT
Subject: CN=4384a7ff88fb9995d833952e3530d349e0fc33b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:93:04:7b:5b:da:6f:f9:49:88:ff:09:06:3e:
8e:56:0c:db:85:df:5e:c7:16:69:5c:55:95:3a:d3:
d2:b6:e5:6d:3f:ad:f0:aa:3f:03:5f:a8:53:83:80:
22:ba:b2:88:fc:3f:9b:bb:20:80:2d:85:8f:ba:bf:
87:43:56:15:52:a7:88:4e:31:8f:b7:89:c9:fa:46:
39:d5:c7:f6:2c:89:71:5c:40:26:ee:5e:a0:d9:e1:
67:0d:7c:d9:fd:07:d9:0d:2f:9b:d5:0d:30:23:64:
3c:eb:32:57:5b:b4:5a:22:39:f7:35:22:ac:6f:65:
ab:1b:b6:57:18:5c:b3:47:c2:0b:3c:d0:98:27:11:
3a:28:ac:33:a1:d1:d6:d1:e8:93:82:2d:b5:b2:5a:
46:c8:f9:2d:81:58:7e:a1:88:35:a0:9a:fa:2d:09:
7e:4a:a7:a2:02:e9:e4:f7:4f:cb:05:cb:1d:22:50:
40:41:fb:fb:7a:77:df:90:ad:9e:61:f5:38:41:d2:
9d:59:a4:90:8f:e3:13:94:e1:09:a3:0a:ef:f6:6f:
10:e1:4f:7e:fd:8f:84:6a:e0:9c:fc:86:8e:10:17:
c0:89:3a:49:9c:4a:d6:d3:ac:42:9d:00:76:75:15:
1e:3b:fe:0e:a9:90:5d:b3:de:d6:f0:bc:ef:cc:34:
9e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:84:A7:FF:88:FB:99:95:D8:33:95:2E:35:30:D3:49:E0:FC:33:B7
X509v3 Authority Key Identifier:
keyid:BF:FB:65:3A:2F:53:D9:67:0B:3F:91:84:02:09:F3:F2:C7:8A:C1:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v_tlOi9T2WcLP5GEAgnz8seKwbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:53:c7:6f:74:9b:00:6b:41:00:af:b8:9e:14:50:7b:5c:cc:
6b:6f:04:3a:8e:2e:1d:b6:1b:22:e4:a5:2f:16:ce:6c:36:ec:
74:7c:84:09:f8:02:86:fc:bb:9d:78:c6:f6:7c:3c:69:21:d0:
4b:65:87:b5:48:09:0d:19:25:6f:32:b2:92:91:62:d8:1b:96:
21:02:ce:2a:82:64:d8:be:d7:84:70:b8:0b:7f:fb:a4:08:c4:
36:a0:b8:e5:6e:4d:be:20:72:c9:24:cb:f4:05:20:2a:b0:33:
5c:6c:b0:55:4a:e5:ae:15:5d:34:23:17:69:d9:37:d1:3a:fa:
49:48:ef:55:26:65:a1:88:b1:f3:39:2a:b9:88:97:79:a4:ce:
92:6d:b6:a7:79:42:ed:20:a2:40:23:e0:cf:32:83:d2:8f:b8:
6f:2b:8a:21:b6:68:22:51:a7:fc:7c:93:10:b5:e7:42:16:6a:
50:77:36:68:1f:97:b7:47:38:e5:fe:22:5f:4d:cd:4d:7c:10:
aa:8e:1f:23:e7:02:44:58:30:4f:0d:c1:a8:09:6e:68:fa:3e:
04:0f:4a:f4:df:22:f3:2a:01:7d:0f:36:93:23:ab:2b:ce:5f:
5f:b2:ea:d9:7a:73:b0:3c:e9:f8:b8:36:b7:34:ac:b6:b1:d6:
77:b6:39:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZVDjvJ4zUl8UaghqAGNdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmZmI2NTNhMmY1M2Q5NjcwYjNmOTE4NDAyMDlmM2YyYzc4
YWMxYjIwHhcNMjYwMzI5MDcwMDU3WhcNMjYwMzMwMDcwMDU3WjAzMTEwLwYDVQQD
Eyg0Mzg0YTdmZjg4ZmI5OTk1ZDgzMzk1MmUzNTMwZDM0OWUwZmMzM2I3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pMEe1vab/lJiP8JBj6OVgzbhd9e
xxZpXFWVOtPStuVtP63wqj8DX6hTg4AiurKI/D+buyCALYWPur+HQ1YVUqeITjGP
t4nJ+kY51cf2LIlxXEAm7l6g2eFnDXzZ/QfZDS+b1Q0wI2Q86zJXW7RaIjn3NSKs
b2WrG7ZXGFyzR8ILPNCYJxE6KKwzodHW0eiTgi21slpGyPktgVh+oYg1oJr6LQl+
SqeiAunk90/LBcsdIlBAQfv7enffkK2eYfU4QdKdWaSQj+MTlOEJowrv9m8Q4U9+
/Y+EauCc/IaOEBfAiTpJnErW06xCnQB2dRUeO/4OqZBds97W8LzvzDSebQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEOEp/+I+5mV2DOVLjUw00ng/DO3MB8GA1UdIwQY
MBaAFL/7ZTovU9lnCz+RhAIJ8/LHisGyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdl90bE9pOVQyV2NMUDVHRUFnbno4c2VLd2JJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8zMDdlMzAtMTc3ZC00YjNmLWI1NjQt
YmQyZjhjNmQ1NDk5LzEvdl90bE9pOVQyV2NMUDVHRUFnbno4c2VLd2JJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8zMDdlMzAtMTc3ZC00YjNmLWI1NjQtYmQyZjhjNmQ1NDk5
LzEvdl90bE9pOVQyV2NMUDVHRUFnbno4c2VLd2JJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIFPHb3Sb
AGtBAK+4nhRQe1zMa28EOo4uHbYbIuSlLxbObDbsdHyECfgChvy7nXjG9nw8aSHQ
S2WHtUgJDRklbzKykpFi2BuWIQLOKoJk2L7XhHC4C3/7pAjENqC45W5NviByySTL
9AUgKrAzXGywVUrlrhVdNCMXadk30Tr6SUjvVSZloYix8zkquYiXeaTOkm22p3lC
7SCiQCPgzzKD0o+4byuKIbZoIlGn/HyTELXnQhZqUHc2aB+Xt0c45f4iX03NTXwQ
qo4fI+cCRFgwTw3BqAluaPo+BA9K9N8i8yoBfQ82kyOrK85fX7Lq2XpzsDzp+Lg2
tzSstrHWd7Y5UA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 17:02:09 2026 by rpki-client