Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
File: Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft (raw, json)
Hash identifier: uJ7TCKuTasLEn02wnVbfo6ppBePdhC3oYfn1sF0FWbY=
Subject key identifier: CC:D0:EF:95:E4:70:45:1C:F4:8F:56:53:D9:5C:87:82:F5:FA:00:61
Authority key identifier: 32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
Certificate issuer: /CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Certificate serial: 019D389BC91EC6330B3D4342EEE3BD12674B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
Manifest number: 0570
Signing time: Sun 29 Mar 2026 08:00:26 +0000
Manifest this update: Sun 29 Mar 2026 08:00:26 +0000
Manifest next update: Mon 30 Mar 2026 08:00:26 +0000
Files and hashes: 1: Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl (hash: p7Da9Hz4HTuAo79GCeYhHJDEg8X+PLMjj/Nywn8pfOE=)
2: zS1zUonEO-G6AM1cws_9_ZwZdJI.roa (hash: NMcUU3mBJ1QzroUYREZhHCEZESdeRv4hJC0eLlS6EkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:c9:1e:c6:33:0b:3d:43:42:ee:e3:bd:12:67:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Validity
Not Before: Mar 29 08:00:26 2026 GMT
Not After : Mar 30 08:00:26 2026 GMT
Subject: CN=ccd0ef95e470451cf48f5653d95c8782f5fa0061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:43:90:c7:c2:7f:80:96:53:39:e4:0b:cc:a5:
e1:c2:06:4e:5e:4f:19:ae:11:cc:25:5c:ca:04:4f:
aa:30:ce:c9:1b:3b:87:4a:91:4c:4e:a1:18:06:2e:
ee:c5:d0:b2:0c:77:fc:1e:e1:75:e8:84:2d:9c:46:
e5:d2:50:3c:01:4b:41:44:85:84:f8:43:3d:b3:f0:
9a:21:4a:6b:3f:66:ca:1d:4b:7d:a5:bd:23:aa:da:
65:3b:55:56:a3:f7:81:62:fe:ea:e9:20:06:67:d8:
7a:b8:39:5f:d3:81:e8:a9:33:8c:f0:fb:3b:c9:f9:
a6:3a:58:2b:9d:8f:04:a2:d7:50:af:d0:ea:69:ea:
e9:84:08:66:79:34:d8:88:64:35:1d:e5:cb:52:66:
05:88:df:26:7c:8e:56:1e:b6:a7:8d:49:fe:55:2e:
0e:5b:b5:67:a8:16:47:d6:21:7d:68:89:2a:f8:3c:
db:64:00:fb:bc:63:ec:99:5b:6b:df:fb:f6:28:64:
6c:9c:54:b8:19:1c:e8:77:09:2e:01:ef:5e:0c:ed:
a4:3d:b2:99:de:a3:75:fc:e0:08:7a:04:de:3d:4d:
27:d3:27:d2:ae:b3:c6:a8:4e:27:92:b8:1d:39:19:
34:08:5a:43:d8:41:de:7c:65:43:9c:46:df:75:14:
27:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D0:EF:95:E4:70:45:1C:F4:8F:56:53:D9:5C:87:82:F5:FA:00:61
X509v3 Authority Key Identifier:
keyid:32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:c5:d1:3a:3f:f0:f8:ff:9b:34:01:67:bc:09:8f:a4:35:08:
4c:97:6a:1d:e5:21:b0:c6:ea:8a:8d:33:9b:d8:e2:09:de:ff:
19:56:15:40:55:ae:9d:d1:f7:9f:d3:37:90:44:e1:61:1c:59:
01:6f:e4:7b:14:80:da:79:e4:1a:1b:33:2e:e2:0e:d7:72:36:
d3:87:2c:75:0d:3c:cc:ec:ab:17:bb:c1:95:08:9a:cc:cf:5a:
b5:58:82:ad:55:5e:75:71:43:8f:80:84:b5:c0:15:55:c8:ab:
9d:ba:78:1b:01:13:38:24:4f:43:a3:3c:24:be:9f:52:3b:28:
d9:b3:7c:64:4d:a7:22:79:a8:65:5c:24:bf:1a:5c:fe:12:37:
7f:19:8e:e6:1e:77:8d:54:58:8c:be:ae:06:e7:74:a7:b4:55:
fb:d6:ba:d7:96:1c:73:39:70:62:55:78:6e:78:14:5b:ef:ae:
c8:ea:cd:d3:94:cc:3d:6c:02:38:d9:4c:b9:ae:31:20:35:00:
9d:8e:5e:26:fe:78:ad:f3:64:55:1b:a8:f7:75:87:94:11:21:
e5:14:0b:29:27:4a:4d:12:a8:5a:01:4d:c1:56:0f:96:e6:c0:
c6:85:35:89:b6:99:a4:c9:0b:6c:e1:65:32:e7:1a:e2:47:09:
5e:23:c7:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04m8kexjMLPUNC7uO9EmdLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyOWRiYjQ2YTRlYjc2NDVkOTk0YTBlNGI5ODRmY2RhYzIw
NGE0ODQwHhcNMjYwMzI5MDgwMDI2WhcNMjYwMzMwMDgwMDI2WjAzMTEwLwYDVQQD
EyhjY2QwZWY5NWU0NzA0NTFjZjQ4ZjU2NTNkOTVjODc4MmY1ZmEwMDYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0OQx8J/gJZTOeQLzKXhwgZOXk8Z
rhHMJVzKBE+qMM7JGzuHSpFMTqEYBi7uxdCyDHf8HuF16IQtnEbl0lA8AUtBRIWE
+EM9s/CaIUprP2bKHUt9pb0jqtplO1VWo/eBYv7q6SAGZ9h6uDlf04HoqTOM8Ps7
yfmmOlgrnY8EotdQr9DqaerphAhmeTTYiGQ1HeXLUmYFiN8mfI5WHranjUn+VS4O
W7VnqBZH1iF9aIkq+DzbZAD7vGPsmVtr3/v2KGRsnFS4GRzodwkuAe9eDO2kPbKZ
3qN1/OAIegTePU0n0yfSrrPGqE4nkrgdORk0CFpD2EHefGVDnEbfdRQnMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMzQ75XkcEUc9I9WU9lch4L1+gBhMB8GA1UdIwQY
MBaAFDKdu0ak63ZF2ZSg5LmE/NrCBKSEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTXAyN1JxVHJka1habEtEa3VZVDgyc0lFcElRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9mMTcxYmUtOTY1My00MWQ4LWEzNDQt
ZmVjMTVhYjg0MTM1LzEvTXAyN1JxVHJka1habEtEa3VZVDgyc0lFcElRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy9mMTcxYmUtOTY1My00MWQ4LWEzNDQtZmVjMTVhYjg0MTM1
LzEvTXAyN1JxVHJka1habEtEa3VZVDgyc0lFcElRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAasXROj/w
+P+bNAFnvAmPpDUITJdqHeUhsMbqio0zm9jiCd7/GVYVQFWundH3n9M3kEThYRxZ
AW/kexSA2nnkGhszLuIO13I204csdQ08zOyrF7vBlQiazM9atViCrVVedXFDj4CE
tcAVVcirnbp4GwETOCRPQ6M8JL6fUjso2bN8ZE2nInmoZVwkvxpc/hI3fxmO5h53
jVRYjL6uBud0p7RV+9a615YcczlwYlV4bngUW++uyOrN05TMPWwCONlMua4xIDUA
nY5eJv54rfNkVRuo93WHlBEh5RQLKSdKTRKoWgFNwVYPlubAxoU1ibaZpMkLbOFl
Muca4kcJXiPHJA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:01 2026 by rpki-client