Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
File: 96wXOfUp2vTMczgkibgFl-ugf0E.mft (raw, json)
Hash identifier: +BP8OT2k8GwmepCX/9+dGZSA4U8ryuCeTFNuFWHgC9Q=
Subject key identifier: C1:B9:DD:86:3D:41:15:9D:ED:6A:3F:02:30:84:AC:1F:F2:9D:F8:33
Authority key identifier: F7:AC:17:39:F5:29:DA:F4:CC:73:38:24:89:B8:05:97:EB:A0:7F:41
Certificate issuer: /CN=f7ac1739f529daf4cc73382489b80597eba07f41
Certificate serial: 019D3909C75E5B56E13AD010D6205D24435E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
Manifest number: 0AC8
Signing time: Sun 29 Mar 2026 10:00:35 +0000
Manifest this update: Sun 29 Mar 2026 10:00:35 +0000
Manifest next update: Mon 30 Mar 2026 10:00:35 +0000
Files and hashes: 1: 96wXOfUp2vTMczgkibgFl-ugf0E.crl (hash: 9fOKmlBDQNZieNgf1/kHnXsyQ0GAsr5wfOHd7ASWuOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:c7:5e:5b:56:e1:3a:d0:10:d6:20:5d:24:43:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7ac1739f529daf4cc73382489b80597eba07f41
Validity
Not Before: Mar 29 10:00:35 2026 GMT
Not After : Mar 30 10:00:35 2026 GMT
Subject: CN=c1b9dd863d41159ded6a3f023084ac1ff29df833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7e:34:82:99:ab:92:c9:97:af:5e:c4:da:c1:
31:4b:cd:7b:94:b0:3d:30:ea:32:23:15:1e:64:f2:
fb:d6:d2:d6:0e:9e:bf:c7:38:84:6c:8b:8d:1a:0f:
8d:cc:25:a4:65:e7:d6:36:12:09:d9:c3:fe:0f:ce:
88:30:29:c9:e9:42:68:26:cc:4b:c3:96:c8:4e:0a:
74:15:c4:8b:c7:30:d0:03:da:ed:1a:df:c4:e5:42:
a9:9f:e0:18:db:3a:24:41:03:99:4d:98:40:14:0d:
e3:e4:82:d1:63:1a:5e:30:0c:79:75:ed:9c:02:f2:
c7:af:9a:d2:d5:bf:c8:28:87:c2:72:70:23:84:9e:
33:98:86:3c:42:45:44:2c:6f:49:c4:27:4c:99:ca:
24:30:2b:f1:5e:07:b3:88:63:d3:df:8c:2f:3d:84:
55:8f:5b:eb:26:e4:4a:6e:9e:b0:df:95:57:a2:5b:
e9:98:ac:17:8d:1c:8b:42:43:ca:2f:36:fd:92:fb:
29:5a:c2:34:47:7c:ee:a8:b0:50:44:4a:67:9e:de:
0f:8b:11:38:f3:59:42:92:cb:5b:88:2c:7d:0b:e2:
5b:b6:79:e0:da:a6:0e:60:4b:1f:54:c4:d7:f7:20:
84:01:e9:66:cd:06:54:1f:0a:ef:28:cf:f5:dc:8c:
b4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:B9:DD:86:3D:41:15:9D:ED:6A:3F:02:30:84:AC:1F:F2:9D:F8:33
X509v3 Authority Key Identifier:
keyid:F7:AC:17:39:F5:29:DA:F4:CC:73:38:24:89:B8:05:97:EB:A0:7F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:9c:9c:39:3e:d3:be:c5:fb:65:da:1a:52:66:d4:06:56:10:
c5:88:d2:1d:6a:71:78:dc:ad:96:55:0d:62:68:e0:32:b9:fc:
13:18:e0:35:17:fd:e9:84:0f:e2:d7:4e:de:b6:64:b4:2f:93:
6d:5b:4a:c2:ef:35:db:4a:b5:2b:9b:dc:8d:72:38:70:0d:d4:
b4:b7:10:26:0b:30:19:cc:9c:fe:03:32:23:c9:96:8d:63:cd:
92:a1:d1:db:04:bb:3d:31:06:26:42:1f:6a:a7:b8:72:83:44:
a5:98:2e:80:81:cd:10:03:0b:b6:82:21:62:80:e7:52:e4:0b:
63:36:2b:4d:e6:0b:43:0b:c6:ef:22:fd:b3:4e:d1:8c:bb:6a:
f5:6e:49:6f:4f:87:1e:b0:18:52:2b:c1:dd:63:36:92:fc:05:
47:a5:00:4e:d3:6d:4a:ea:e9:18:49:f2:6b:a5:10:23:3b:a5:
af:9c:76:c2:08:48:d8:0d:c5:33:53:f7:67:1b:5b:b6:8f:77:
31:d7:d1:07:b3:74:30:ee:a2:50:e4:6c:a4:f7:6b:bc:0e:c0:
55:b0:f5:8b:97:68:9e:f3:1f:8b:24:9f:ab:ba:0f:e3:32:5e:
84:18:67:40:37:7e:df:be:d9:4d:91:37:f7:27:bf:7f:69:65:
ce:55:97:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05CcdeW1bhOtAQ1iBdJENeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3YWMxNzM5ZjUyOWRhZjRjYzczMzgyNDg5YjgwNTk3ZWJh
MDdmNDEwHhcNMjYwMzI5MTAwMDM1WhcNMjYwMzMwMTAwMDM1WjAzMTEwLwYDVQQD
EyhjMWI5ZGQ4NjNkNDExNTlkZWQ2YTNmMDIzMDg0YWMxZmYyOWRmODMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsX40gpmrksmXr17E2sExS817lLA9
MOoyIxUeZPL71tLWDp6/xziEbIuNGg+NzCWkZefWNhIJ2cP+D86IMCnJ6UJoJsxL
w5bITgp0FcSLxzDQA9rtGt/E5UKpn+AY2zokQQOZTZhAFA3j5ILRYxpeMAx5de2c
AvLHr5rS1b/IKIfCcnAjhJ4zmIY8QkVELG9JxCdMmcokMCvxXgeziGPT34wvPYRV
j1vrJuRKbp6w35VXolvpmKwXjRyLQkPKLzb9kvspWsI0R3zuqLBQREpnnt4PixE4
81lCkstbiCx9C+Jbtnng2qYOYEsfVMTX9yCEAelmzQZUHwrvKM/13Iy0DQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMG53YY9QRWd7Wo/AjCErB/ynfgzMB8GA1UdIwQY
MBaAFPesFzn1Kdr0zHM4JIm4BZfroH9BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTZ3WE9mVXAydlRNY3pna2liZ0ZsLXVnZjBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My8xMjNiMjUtZmVlNC00OTBiLWJlMDAt
MGI4YTc5MmMxYjlkLzEvOTZ3WE9mVXAydlRNY3pna2liZ0ZsLXVnZjBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My8xMjNiMjUtZmVlNC00OTBiLWJlMDAtMGI4YTc5MmMxYjlk
LzEvOTZ3WE9mVXAydlRNY3pna2liZ0ZsLXVnZjBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbJycOT7T
vsX7ZdoaUmbUBlYQxYjSHWpxeNytllUNYmjgMrn8ExjgNRf96YQP4tdO3rZktC+T
bVtKwu8120q1K5vcjXI4cA3UtLcQJgswGcyc/gMyI8mWjWPNkqHR2wS7PTEGJkIf
aqe4coNEpZgugIHNEAMLtoIhYoDnUuQLYzYrTeYLQwvG7yL9s07RjLtq9W5Jb0+H
HrAYUivB3WM2kvwFR6UATtNtSurpGEnya6UQIzulr5x2wghI2A3FM1P3Zxtbto93
MdfRB7N0MO6iUORspPdrvA7AVbD1i5donvMfiySfq7oP4zJehBhnQDd+377ZTZE3
9ye/f2llzlWXZA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 16:27:29 2026 by rpki-client