Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
File: 0ffNDsTDvFTFlDEwfuw27wOCdzM.mft (raw, json)
Hash identifier: IGU1AR62esz1j08HlXChEAvjVHV7Rcv59r7wo6Gf4cU=
Subject key identifier: E5:1B:64:F9:8B:8A:36:0B:9C:CC:68:68:DA:71:F5:1E:CB:B2:CB:4B
Authority key identifier: D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
Certificate issuer: /CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Certificate serial: 019D38666D1F37519BBFEF8A558B0EDF67B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 07:02:09 +0000
Manifest this update: Sun 29 Mar 2026 07:02:09 +0000
Manifest next update: Mon 30 Mar 2026 07:02:09 +0000
Files and hashes: 1: 0ffNDsTDvFTFlDEwfuw27wOCdzM.crl (hash: Bjbp0e5GU+OnKSmCh678k4opgI4eTOGM1s8WWILcUOg=)
2: gZRVVjbr0VF9kLZepM4sAakfV64.roa (hash: OS+DVlQyVLtcNxKCYd+cy14Vh3Z+rz6mTy8GBtTKd0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:6d:1f:37:51:9b:bf:ef:8a:55:8b:0e:df:67:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Validity
Not Before: Mar 29 07:02:09 2026 GMT
Not After : Mar 30 07:02:09 2026 GMT
Subject: CN=e51b64f98b8a360b9ccc6868da71f51ecbb2cb4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:32:ea:04:89:b3:b4:81:bf:9b:a2:0d:6c:64:
c4:f3:16:66:e6:9d:11:ff:9f:40:5c:19:db:b9:1e:
e2:62:89:1f:48:29:b7:4e:fa:7a:54:37:ad:d8:c8:
ca:e2:fe:1d:c7:6f:b2:e9:90:97:82:18:fc:0f:c7:
3a:74:ad:7e:e8:2d:5d:75:b9:12:46:74:af:aa:95:
5e:71:ff:a9:7a:e4:8d:fb:aa:0a:21:2f:a9:a6:00:
48:f6:5d:63:b8:5f:e5:b1:d0:28:84:da:ab:27:ed:
1c:c9:53:6f:8e:0a:18:d4:5d:7a:c4:ae:40:8d:15:
7a:a6:a5:a1:64:a2:d2:42:8b:24:68:f9:84:9e:29:
8a:3d:53:e0:7e:b1:8d:49:cb:c5:34:fe:d4:53:35:
2e:d9:50:4c:e5:15:88:cf:0f:87:05:2e:34:f9:72:
b2:f9:a5:92:51:65:bb:c5:5d:dc:45:eb:6a:f7:23:
4e:e3:7e:f5:78:5c:d3:c9:7a:37:8b:8f:05:a7:57:
24:79:e1:a9:d3:f9:3a:d0:89:c7:13:d6:be:3f:6c:
3b:ad:ab:18:ca:d6:df:70:86:c8:36:53:ee:db:c7:
0e:cb:6c:b9:eb:84:cc:54:93:85:45:fe:ba:9d:62:
fd:a7:ac:54:72:d2:74:ab:46:2a:67:99:65:01:5f:
ee:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:1B:64:F9:8B:8A:36:0B:9C:CC:68:68:DA:71:F5:1E:CB:B2:CB:4B
X509v3 Authority Key Identifier:
keyid:D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:3d:8a:c3:94:d5:e1:8c:d8:0a:f1:77:eb:99:6a:5d:9a:64:
73:78:86:9f:de:68:8a:a7:a3:7f:1d:90:d9:d1:e6:75:1b:17:
f7:11:94:23:bd:e5:ac:12:cc:54:8c:5f:e7:b6:9b:28:04:f6:
26:f2:92:32:16:8e:f1:7b:80:d8:2e:5f:ae:77:ff:8f:04:c7:
b4:b2:87:8f:05:85:4d:ef:85:da:a6:2a:3d:18:c9:61:4c:0c:
2a:2c:b1:32:59:63:2e:f3:a8:ac:ba:5a:d4:98:c4:d1:6d:a4:
4a:99:22:7f:aa:8a:3b:48:1a:92:a1:c4:12:23:69:75:23:b5:
83:15:0c:2e:73:e5:d5:da:fa:ca:de:f5:6c:ef:53:04:0f:b7:
37:89:f5:6f:2e:0d:06:31:14:6d:5a:28:cc:09:86:92:47:18:
e4:85:6b:0e:60:8c:94:34:fc:e0:e2:b2:ef:c2:ad:ea:cf:9d:
ea:0e:ba:d6:e7:2f:98:36:0b:aa:c4:93:7e:6b:9c:db:b5:60:
c8:9f:b5:7c:c9:29:a2:9b:8a:01:31:0f:60:b2:eb:68:62:bd:
c2:00:2c:9a:76:60:09:d5:c8:96:d6:b2:3b:59:11:73:56:bd:
3e:9f:6e:78:43:cb:08:8a:f8:d4:23:55:72:06:87:a5:4b:bf:
57:85:ba:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04Zm0fN1Gbv++KVYsO32e3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxZjdjZDBlYzRjM2JjNTRjNTk0MzEzMDdlZWMzNmVmMDM4
Mjc3MzMwHhcNMjYwMzI5MDcwMjA5WhcNMjYwMzMwMDcwMjA5WjAzMTEwLwYDVQQD
EyhlNTFiNjRmOThiOGEzNjBiOWNjYzY4NjhkYTcxZjUxZWNiYjJjYjRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTLqBImztIG/m6INbGTE8xZm5p0R
/59AXBnbuR7iYokfSCm3Tvp6VDet2MjK4v4dx2+y6ZCXghj8D8c6dK1+6C1ddbkS
RnSvqpVecf+peuSN+6oKIS+ppgBI9l1juF/lsdAohNqrJ+0cyVNvjgoY1F16xK5A
jRV6pqWhZKLSQoskaPmEnimKPVPgfrGNScvFNP7UUzUu2VBM5RWIzw+HBS40+XKy
+aWSUWW7xV3cRetq9yNO4371eFzTyXo3i48Fp1ckeeGp0/k60InHE9a+P2w7rasY
ytbfcIbINlPu28cOy2y564TMVJOFRf66nWL9p6xUctJ0q0YqZ5llAV/u7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOUbZPmLijYLnMxoaNpx9R7LsstLMB8GA1UdIwQY
MBaAFNH3zQ7Ew7xUxZQxMH7sNu8DgnczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGZmTkRzVER2RlRGbERFd2Z1dzI3d09DZHpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8wMjRkNDctNDdiMi00MGI1LWEyYjgt
OWNiNWQ4OGZkZDM5LzEvMGZmTkRzVER2RlRGbERFd2Z1dzI3d09DZHpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8wMjRkNDctNDdiMi00MGI1LWEyYjgtOWNiNWQ4OGZkZDM5
LzEvMGZmTkRzVER2RlRGbERFd2Z1dzI3d09DZHpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVz2Kw5TV
4YzYCvF365lqXZpkc3iGn95oiqejfx2Q2dHmdRsX9xGUI73lrBLMVIxf57abKAT2
JvKSMhaO8XuA2C5frnf/jwTHtLKHjwWFTe+F2qYqPRjJYUwMKiyxMlljLvOorLpa
1JjE0W2kSpkif6qKO0gakqHEEiNpdSO1gxUMLnPl1dr6yt71bO9TBA+3N4n1by4N
BjEUbVoozAmGkkcY5IVrDmCMlDT84OKy78Kt6s+d6g661ucvmDYLqsSTfmuc27Vg
yJ+1fMkpopuKATEPYLLraGK9wgAsmnZgCdXIltayO1kRc1a9Pp9ueEPLCIr41CNV
cgaHpUu/V4W6aA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 17:47:45 2026 by rpki-client