Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json)
Hash identifier: 3YmCHtnOnDHDqRxD9qGpF4i+ax11NSVRWK/qRJKjnHo=
Subject key identifier: A1:89:C6:F6:32:4C:0C:5E:73:5F:F5:F0:D1:EA:94:22:96:1B:00:C6
Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782
Certificate serial: 019D3909C4B48643C604CBBEE046161EBA43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
Manifest number: 0F67
Signing time: Sun 29 Mar 2026 10:00:34 +0000
Manifest this update: Sun 29 Mar 2026 10:00:34 +0000
Manifest next update: Mon 30 Mar 2026 10:00:34 +0000
Files and hashes: 1: KuefoOzdZ9vrXjVoaWqLBNOd8Fc.roa (hash: Tr2+OxM2L2vZYYtrtzp3JmsEgxHYlAlF0KBqV8P0L1o=)
2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: mGtHphMh3zZuC7HukITK+y6HO+3hhDVc3IPEOY1REKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:c4:b4:86:43:c6:04:cb:be:e0:46:16:1e:ba:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782
Validity
Not Before: Mar 29 10:00:34 2026 GMT
Not After : Mar 30 10:00:34 2026 GMT
Subject: CN=a189c6f6324c0c5e735ff5f0d1ea9422961b00c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2c:6a:25:db:0e:9a:24:5c:bf:e7:7d:5a:6d:
ee:22:11:9c:a3:cf:2e:1d:c0:25:cd:bb:af:90:8c:
27:c7:74:8c:cb:98:f2:8c:09:e1:ac:34:09:85:85:
56:91:ff:0b:49:6f:05:fd:40:9d:91:fd:dc:0c:06:
bf:95:21:db:38:3a:73:c1:b4:09:45:c7:4d:12:58:
4a:7e:0e:14:45:c1:bd:47:c9:72:97:63:1d:c0:6b:
0c:1a:f5:c1:36:3a:7f:ce:31:c5:70:ed:ea:25:49:
1a:bc:fa:75:8a:20:26:be:25:55:6f:81:36:c5:54:
ad:d7:b0:83:91:07:6d:bf:d2:1c:b9:f9:90:6b:c5:
18:87:b8:50:9e:16:3b:78:55:ca:02:73:33:79:10:
c0:7b:87:e4:a1:69:9c:da:4b:dc:79:97:b7:33:e5:
5a:f3:d9:f4:75:9f:67:46:64:ad:11:28:21:bc:a6:
8b:f9:c1:63:2e:e1:0b:ec:56:f9:11:71:b3:6d:c3:
a8:1c:40:71:4b:a0:30:b4:ed:9d:84:4c:7b:4c:cc:
c8:fc:e6:50:d9:79:33:97:b6:3e:1b:74:a8:c3:45:
ab:8d:93:07:18:8b:c5:dd:6c:57:b0:60:83:81:8b:
89:90:e9:b7:f8:8f:8b:7f:0c:b5:53:da:b0:47:0c:
a3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:89:C6:F6:32:4C:0C:5E:73:5F:F5:F0:D1:EA:94:22:96:1B:00:C6
X509v3 Authority Key Identifier:
keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:68:71:a8:1b:18:2b:dd:71:22:cd:ef:dd:9f:78:2b:91:29:
ca:45:00:bc:6a:5f:91:51:d2:fc:1b:a8:8b:e3:63:ac:75:c7:
1f:e9:5f:d7:3c:07:9f:56:ca:eb:54:18:2f:17:26:fa:46:ad:
c6:9a:62:d1:d2:dc:8f:a1:cb:7e:5e:56:2b:f4:0f:55:74:cf:
f4:1f:82:03:33:c5:9a:0d:3d:cd:55:e0:e9:c5:c9:3c:68:4c:
fb:03:ff:10:94:be:24:ea:b7:11:41:e2:72:30:95:5e:f4:19:
ca:5d:1c:3c:3c:2f:a5:30:88:50:2e:cb:0c:3c:38:02:08:11:
b7:94:d0:33:cd:61:61:e4:78:31:b8:a8:a2:8b:f1:ec:47:eb:
9c:ad:6f:41:b7:68:a0:e7:25:e0:2e:9a:09:cf:fd:e9:70:44:
8e:ea:36:bb:ca:bf:ce:a8:0e:1a:04:29:af:48:2a:3c:77:23:
ba:5d:e8:b0:1a:31:2b:55:fd:dc:42:d9:3f:76:72:c7:58:99:
8e:01:59:51:21:71:07:36:43:bb:2c:dc:82:15:08:07:3b:63:
6b:46:9a:81:90:50:7f:e2:f5:7a:6d:17:77:34:60:e3:16:e9:
86:c6:62:ca:6a:40:29:c6:e2:24:dc:12:08:69:1e:82:34:1f:
e7:01:82:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05CcS0hkPGBMu+4EYWHrpDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2OGQyMzU2OTNmNjg2N2M1YjM4MTNkYTFmMzZmZTEwN2Jk
MWQ3ODIwHhcNMjYwMzI5MTAwMDM0WhcNMjYwMzMwMTAwMDM0WjAzMTEwLwYDVQQD
EyhhMTg5YzZmNjMyNGMwYzVlNzM1ZmY1ZjBkMWVhOTQyMjk2MWIwMGM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSxqJdsOmiRcv+d9Wm3uIhGco88u
HcAlzbuvkIwnx3SMy5jyjAnhrDQJhYVWkf8LSW8F/UCdkf3cDAa/lSHbODpzwbQJ
RcdNElhKfg4URcG9R8lyl2MdwGsMGvXBNjp/zjHFcO3qJUkavPp1iiAmviVVb4E2
xVSt17CDkQdtv9IcufmQa8UYh7hQnhY7eFXKAnMzeRDAe4fkoWmc2kvceZe3M+Va
89n0dZ9nRmStESghvKaL+cFjLuEL7Fb5EXGzbcOoHEBxS6AwtO2dhEx7TMzI/OZQ
2Xkzl7Y+G3Sow0WrjZMHGIvF3WxXsGCDgYuJkOm3+I+Lfwy1U9qwRwyj7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKGJxvYyTAxec1/18NHqlCKWGwDGMB8GA1UdIwQY
MBaAFHaNI1aT9oZ8WzgT2h82/hB70deCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9lMTIwZWYtMTQzMC00NWVhLWI3N2Yt
ZTM3NmI5MjQyZWE3LzEvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS9lMTIwZWYtMTQzMC00NWVhLWI3N2YtZTM3NmI5MjQyZWE3
LzEvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY2hxqBsY
K91xIs3v3Z94K5EpykUAvGpfkVHS/Buoi+NjrHXHH+lf1zwHn1bK61QYLxcm+kat
xppi0dLcj6HLfl5WK/QPVXTP9B+CAzPFmg09zVXg6cXJPGhM+wP/EJS+JOq3EUHi
cjCVXvQZyl0cPDwvpTCIUC7LDDw4AggRt5TQM81hYeR4Mbiooovx7EfrnK1vQbdo
oOcl4C6aCc/96XBEjuo2u8q/zqgOGgQpr0gqPHcjul3osBoxK1X93ELZP3Zyx1iZ
jgFZUSFxBzZDuyzcghUIBztja0aagZBQf+L1em0XdzRg4xbphsZiympAKcbiJNwS
CGkegjQf5wGCxg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:43:26 2026 by rpki-client