Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/9f1f68-d222-4e04-aabb-66132fe8be4d/1/b3yRVzx9FFcmFdIT5MGZikDc25I.mft
File: b3yRVzx9FFcmFdIT5MGZikDc25I.mft (raw, json)
Hash identifier: 0O7yusOQNzuVFWSpv76GWV+kwi+1lCvcDSZhARhzbo0=
Subject key identifier: 94:DC:EC:C3:F9:69:C6:A7:1A:81:07:C1:42:19:E2:CE:E5:5E:8D:F5
Authority key identifier: 6F:7C:91:57:3C:7D:14:57:26:15:D2:13:E4:C1:99:8A:40:DC:DB:92
Certificate issuer: /CN=6f7c91573c7d14572615d213e4c1998a40dcdb92
Certificate serial: 019D3A1CBD99EE69F154BBB6E7241F491847
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3yRVzx9FFcmFdIT5MGZikDc25I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/9f1f68-d222-4e04-aabb-66132fe8be4d/1/b3yRVzx9FFcmFdIT5MGZikDc25I.mft
Manifest number: 20
Signing time: Sun 29 Mar 2026 15:00:55 +0000
Manifest this update: Sun 29 Mar 2026 15:00:55 +0000
Manifest next update: Mon 30 Mar 2026 15:00:55 +0000
Files and hashes: 1: 5xWOoE53hYlem2QN57cUXSMhnsc.roa (hash: kBC10N6N6UJwL2L4Yxd5v0Rih8FD+3KHXLpOPpfAyu0=)
2: b3yRVzx9FFcmFdIT5MGZikDc25I.crl (hash: WSGzaacQyXVS4Au41P9CMpGl90mt65asKC2NpRYzAsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/9f1f68-d222-4e04-aabb-66132fe8be4d/1/b3yRVzx9FFcmFdIT5MGZikDc25I.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/9f1f68-d222-4e04-aabb-66132fe8be4d/1/b3yRVzx9FFcmFdIT5MGZikDc25I.mft
rsync://rpki.ripe.net/repository/DEFAULT/b3yRVzx9FFcmFdIT5MGZikDc25I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:bd:99:ee:69:f1:54:bb:b6:e7:24:1f:49:18:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f7c91573c7d14572615d213e4c1998a40dcdb92
Validity
Not Before: Mar 29 15:00:55 2026 GMT
Not After : Mar 30 15:00:55 2026 GMT
Subject: CN=94dcecc3f969c6a71a8107c14219e2cee55e8df5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9b:27:ff:ed:6d:93:e8:03:43:d2:66:87:5c:
67:0d:66:e2:a6:a4:55:03:be:85:f6:de:74:bd:cd:
a5:4c:87:ba:6c:72:c0:23:d7:58:fd:69:ce:29:9f:
66:27:cf:72:23:9b:c1:fe:ab:ae:8c:60:a3:c4:35:
f3:e3:fc:3a:e6:fc:72:90:35:bd:af:f1:d6:82:2f:
6b:e0:7c:96:d5:9e:2e:89:ed:7e:4a:ad:28:ce:49:
63:a2:66:51:2c:5b:57:64:9e:68:eb:b5:f6:30:72:
f3:c1:ed:55:44:ec:d7:c7:35:62:6f:c6:bb:4d:92:
6e:d1:0b:a0:d7:96:3a:e0:ff:3d:29:82:bc:8c:2f:
c1:57:c9:75:09:ef:93:75:1d:29:0d:80:0d:54:ee:
4f:fe:84:bc:4d:a8:1a:d3:61:73:52:1f:27:2c:6e:
02:f2:a2:88:42:c9:5a:0d:bd:e4:04:95:f3:5a:31:
cc:e2:44:84:ca:fb:27:b6:69:59:9d:98:14:86:fe:
07:4e:37:be:b4:40:09:ff:84:fb:c3:3f:c4:a7:1b:
ad:e7:ac:56:7d:5b:1f:18:e4:c6:08:5c:7e:03:2b:
b7:64:ae:ab:47:ab:2a:59:6e:41:19:64:a6:95:22:
2c:61:23:c5:27:b8:60:cc:f3:a7:1a:44:fd:f1:b7:
75:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:DC:EC:C3:F9:69:C6:A7:1A:81:07:C1:42:19:E2:CE:E5:5E:8D:F5
X509v3 Authority Key Identifier:
keyid:6F:7C:91:57:3C:7D:14:57:26:15:D2:13:E4:C1:99:8A:40:DC:DB:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3yRVzx9FFcmFdIT5MGZikDc25I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9f1f68-d222-4e04-aabb-66132fe8be4d/1/b3yRVzx9FFcmFdIT5MGZikDc25I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9f1f68-d222-4e04-aabb-66132fe8be4d/1/b3yRVzx9FFcmFdIT5MGZikDc25I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:b9:11:59:e1:be:ce:bd:08:03:c4:ce:a7:69:31:27:ea:40:
8d:4d:03:58:65:86:71:d7:b1:f3:38:31:ef:d9:9a:17:37:18:
70:3b:85:d1:55:22:8a:86:0c:14:68:e8:3e:fc:96:3f:a4:f5:
dc:7a:f2:48:0a:a4:29:17:d5:24:17:6a:a2:23:56:47:27:0f:
3e:25:cb:14:1c:b1:45:5e:04:bf:f7:7e:e8:c2:6e:01:24:90:
02:fd:e0:7a:48:3d:bc:3c:43:51:47:ad:30:34:fd:d1:b1:06:
0e:c3:c2:3e:f0:c4:db:1c:c6:0b:8b:90:1d:63:91:f0:86:d5:
e4:92:12:0c:36:32:d2:0e:f9:65:80:5f:b7:c1:c6:6e:6e:e0:
a1:22:e4:d5:41:83:77:dc:58:2c:e2:41:79:7f:25:61:c3:24:
1d:5b:1a:f7:54:4f:0e:1e:e3:6a:6a:2d:c3:94:4c:59:13:5b:
e7:9d:bb:ad:82:98:3c:f0:f8:14:57:fa:d2:97:23:f4:a7:48:
96:a9:19:9c:10:ab:41:8d:0b:26:e8:c3:5f:56:a4:83:a0:ae:
f5:17:99:78:1b:84:f3:51:7c:6f:08:ee:0e:53:aa:20:bc:0e:
ec:e1:e7:96:33:77:7f:c4:e8:2e:06:4e:46:9c:d6:63:7a:9d:
60:27:c9:c3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06HL2Z7mnxVLu25yQfSRhHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmN2M5MTU3M2M3ZDE0NTcyNjE1ZDIxM2U0YzE5OThhNDBk
Y2RiOTIwHhcNMjYwMzI5MTUwMDU1WhcNMjYwMzMwMTUwMDU1WjAzMTEwLwYDVQQD
Eyg5NGRjZWNjM2Y5NjljNmE3MWE4MTA3YzE0MjE5ZTJjZWU1NWU4ZGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Zsn/+1tk+gDQ9Jmh1xnDWbipqRV
A76F9t50vc2lTIe6bHLAI9dY/WnOKZ9mJ89yI5vB/quujGCjxDXz4/w65vxykDW9
r/HWgi9r4HyW1Z4uie1+Sq0ozkljomZRLFtXZJ5o67X2MHLzwe1VROzXxzVib8a7
TZJu0Qug15Y64P89KYK8jC/BV8l1Ce+TdR0pDYANVO5P/oS8Taga02FzUh8nLG4C
8qKIQslaDb3kBJXzWjHM4kSEyvsntmlZnZgUhv4HTje+tEAJ/4T7wz/Epxut56xW
fVsfGOTGCFx+Ayu3ZK6rR6sqWW5BGWSmlSIsYSPFJ7hgzPOnGkT98bd1vwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJTc7MP5acanGoEHwUIZ4s7lXo31MB8GA1UdIwQY
MBaAFG98kVc8fRRXJhXSE+TBmYpA3NuSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjN5UlZ6eDlGRmNtRmRJVDVNR1ppa0RjMjVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS85ZjFmNjgtZDIyMi00ZTA0LWFhYmIt
NjYxMzJmZThiZTRkLzEvYjN5UlZ6eDlGRmNtRmRJVDVNR1ppa0RjMjVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOS85ZjFmNjgtZDIyMi00ZTA0LWFhYmItNjYxMzJmZThiZTRk
LzEvYjN5UlZ6eDlGRmNtRmRJVDVNR1ppa0RjMjVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG7kRWeG+
zr0IA8TOp2kxJ+pAjU0DWGWGcdex8zgx79maFzcYcDuF0VUiioYMFGjoPvyWP6T1
3HrySAqkKRfVJBdqoiNWRycPPiXLFByxRV4Ev/d+6MJuASSQAv3gekg9vDxDUUet
MDT90bEGDsPCPvDE2xzGC4uQHWOR8IbV5JISDDYy0g75ZYBft8HGbm7goSLk1UGD
d9xYLOJBeX8lYcMkHVsa91RPDh7jamotw5RMWRNb5527rYKYPPD4FFf60pcj9KdI
lqkZnBCrQY0LJujDX1akg6Cu9ReZeBuE81F8bwjuDlOqILwO7OHnljN3f8ToLgZO
RpzWY3qdYCfJww==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:11:39 2026 by rpki-client