Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
File: dXFLWBraGW41UcCM52JDvgWLROs.mft (raw, json)
Hash identifier: WBxJd3xD5KLUiNlmKGk75/LjEKG3oaJgLx6NNZCUMEs=
Subject key identifier: 2E:F6:28:49:3E:95:4D:CF:F4:2A:98:07:8C:83:CC:19:3B:36:6E:A1
Authority key identifier: 75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
Certificate issuer: /CN=75714b581ada196e3551c08ce76243be058b44eb
Certificate serial: 019D394143E8957C0FF35D63DF5F09D560F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 11:01:11 +0000
Manifest this update: Sun 29 Mar 2026 11:01:11 +0000
Manifest next update: Mon 30 Mar 2026 11:01:11 +0000
Files and hashes: 1: 6TGqIbfBirKwY8Rk6PCVIU2K2Ks.roa (hash: Qk1RBNZJLMvjKgF43IlbWL77De/BDCbxdLr5OTm2nJA=)
2: dXFLWBraGW41UcCM52JDvgWLROs.crl (hash: EkEnXgE3Sde67CWH9FhqKdCI8/ujIECpUCycWnXOWsI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:43:e8:95:7c:0f:f3:5d:63:df:5f:09:d5:60:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75714b581ada196e3551c08ce76243be058b44eb
Validity
Not Before: Mar 29 11:01:11 2026 GMT
Not After : Mar 30 11:01:11 2026 GMT
Subject: CN=2ef628493e954dcff42a98078c83cc193b366ea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d0:41:4f:ac:bd:34:c0:6a:2e:71:e8:aa:c7:
84:19:60:87:02:90:37:7b:df:86:b8:b3:c9:8d:36:
17:27:80:9e:3d:d8:e9:be:03:56:92:3c:38:ff:01:
01:ec:84:d9:e9:e9:ef:03:ea:6a:6f:2b:49:78:55:
9c:fc:e6:21:d4:78:55:72:6d:80:82:2d:1c:0e:00:
ec:93:1a:8a:ab:3c:56:27:2f:e0:47:06:74:32:fc:
5e:38:b4:15:6a:9c:e2:a5:a4:f8:0e:61:4f:4e:e4:
7f:5b:af:c7:ab:2b:71:9a:85:e1:0c:e8:96:09:83:
54:02:44:91:63:74:29:ba:36:b7:30:2e:0d:f3:3d:
00:50:5d:31:af:e5:b7:af:dd:30:f0:1a:50:f0:b9:
71:b3:4f:94:92:b0:93:d2:ff:25:28:e2:13:66:b3:
80:95:de:d7:3e:03:99:e2:8f:7a:b6:2b:6a:8a:9b:
22:e2:4c:63:d3:b7:f8:e3:22:01:4b:3b:ef:fb:9c:
ce:4c:7b:ad:80:76:7d:e4:2c:b1:ce:b3:52:9e:07:
b1:f1:13:45:1b:f4:9b:63:38:cb:7d:9a:50:92:b1:
fe:6e:ab:4b:11:b7:f1:80:3c:92:6e:8f:4c:bd:57:
7c:f5:69:92:15:41:e7:b0:b9:23:05:d9:52:2a:5c:
ef:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F6:28:49:3E:95:4D:CF:F4:2A:98:07:8C:83:CC:19:3B:36:6E:A1
X509v3 Authority Key Identifier:
keyid:75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:5e:50:ba:20:4e:ac:fe:76:62:a9:08:80:37:9c:d3:cb:b9:
0f:23:25:ad:b5:15:d1:45:20:d9:18:97:6f:39:61:6b:d9:21:
43:1e:ea:7d:fd:76:f6:4f:bf:eb:b8:1b:b2:c4:bd:7a:2e:96:
7e:17:6b:a5:1a:6e:9a:a2:6a:dd:ab:d4:e5:23:4f:01:fa:87:
94:33:d0:c1:d5:bc:7f:af:97:be:32:2a:11:9f:33:76:dd:fa:
41:d8:2a:4a:ae:2e:e0:e0:f1:5a:ee:13:bd:3b:d2:d8:94:b9:
ad:d4:09:f5:93:00:38:9a:5a:77:4d:ce:f5:25:8a:bd:40:50:
36:f1:bc:cf:73:24:a3:f3:ea:da:3c:6d:39:ee:bc:32:ec:5c:
19:a4:8f:fd:19:40:b2:4e:ee:be:e4:c0:08:41:3e:a4:eb:87:
e1:88:8e:53:20:69:4d:b4:50:81:ab:c3:39:a4:6d:ae:18:bb:
59:b9:8b:53:0d:18:2f:b5:19:1c:23:b9:cb:f7:d0:b7:89:d8:
01:13:51:d6:97:a8:7b:23:8f:76:8b:88:1c:a8:17:35:03:28:
45:cb:08:27:08:d3:49:1c:64:35:93:3e:2e:56:da:aa:14:cb:
26:67:4d:ba:04:b9:b7:39:f3:ea:13:29:f6:7d:0d:5d:ff:54:
85:eb:d8:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QUPolXwP811j318J1WDzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1NzE0YjU4MWFkYTE5NmUzNTUxYzA4Y2U3NjI0M2JlMDU4
YjQ0ZWIwHhcNMjYwMzI5MTEwMTExWhcNMjYwMzMwMTEwMTExWjAzMTEwLwYDVQQD
EygyZWY2Mjg0OTNlOTU0ZGNmZjQyYTk4MDc4YzgzY2MxOTNiMzY2ZWExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytBBT6y9NMBqLnHoqseEGWCHApA3
e9+GuLPJjTYXJ4CePdjpvgNWkjw4/wEB7ITZ6envA+pqbytJeFWc/OYh1HhVcm2A
gi0cDgDskxqKqzxWJy/gRwZ0MvxeOLQVapzipaT4DmFPTuR/W6/HqytxmoXhDOiW
CYNUAkSRY3Qpuja3MC4N8z0AUF0xr+W3r90w8BpQ8Llxs0+UkrCT0v8lKOITZrOA
ld7XPgOZ4o96titqipsi4kxj07f44yIBSzvv+5zOTHutgHZ95CyxzrNSngex8RNF
G/SbYzjLfZpQkrH+bqtLEbfxgDySbo9MvVd89WmSFUHnsLkjBdlSKlzvhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC72KEk+lU3P9CqYB4yDzBk7Nm6hMB8GA1UdIwQY
MBaAFHVxS1ga2hluNVHAjOdiQ74Fi0TrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFhGTFdCcmFHVzQxVWNDTTUySkR2Z1dMUk9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8zOWQyMjYtNzJiZi00OTBlLTlmMTYt
MDczZmJiZTExMWU1LzEvZFhGTFdCcmFHVzQxVWNDTTUySkR2Z1dMUk9zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8zOWQyMjYtNzJiZi00OTBlLTlmMTYtMDczZmJiZTExMWU1
LzEvZFhGTFdCcmFHVzQxVWNDTTUySkR2Z1dMUk9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiF5QuiBO
rP52YqkIgDec08u5DyMlrbUV0UUg2RiXbzlha9khQx7qff129k+/67gbssS9ei6W
fhdrpRpumqJq3avU5SNPAfqHlDPQwdW8f6+XvjIqEZ8zdt36QdgqSq4u4ODxWu4T
vTvS2JS5rdQJ9ZMAOJpad03O9SWKvUBQNvG8z3Mko/Pq2jxtOe68MuxcGaSP/RlA
sk7uvuTACEE+pOuH4YiOUyBpTbRQgavDOaRtrhi7WbmLUw0YL7UZHCO5y/fQt4nY
ARNR1peoeyOPdouIHKgXNQMoRcsIJwjTSRxkNZM+LlbaqhTLJmdNugS5tznz6hMp
9n0NXf9UhevYAA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:02 2026 by rpki-client