Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
File: MHoDlQLUamuZCREM4qsTlod70I4.mft (raw, json)
Hash identifier: wqqwdQiAekoLA38FqVMFG0Iu9Nh4IZ6QHBGb9FYdynQ=
Subject key identifier: 8C:04:1B:F5:5F:EB:E4:7F:C1:30:94:02:B5:AB:51:EE:7A:54:12:08
Authority key identifier: 30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
Certificate issuer: /CN=307a039502d46a6b9909110ce2ab1396877bd08e
Certificate serial: 019D1FEFB67A6D8763DEBA4A49639766632B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
Manifest number: 0CE2
Signing time: Tue 24 Mar 2026 13:01:36 +0000
Manifest this update: Tue 24 Mar 2026 13:01:36 +0000
Manifest next update: Wed 25 Mar 2026 13:01:36 +0000
Files and hashes: 1: MHoDlQLUamuZCREM4qsTlod70I4.crl (hash: S2nfZwI0/2BwtNA34tnuVblyJ6+rVg64fnrsnUMcjDw=)
2: N_ijFCSvEAh4jcjSazZABa1f9xI.roa (hash: +4BuilcfoCDx9HbGYCFSYCKk2WOaVXp2uqEtuszVVIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 25 Mar 2026 13:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:1f:ef:b6:7a:6d:87:63:de:ba:4a:49:63:97:66:63:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307a039502d46a6b9909110ce2ab1396877bd08e
Validity
Not Before: Mar 24 13:01:36 2026 GMT
Not After : Mar 25 13:01:36 2026 GMT
Subject: CN=8c041bf55febe47fc1309402b5ab51ee7a541208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a0:a4:11:02:b8:62:ec:6c:6f:84:ab:3e:1b:
2d:55:cd:20:a1:20:b1:3b:7a:e2:69:c3:cd:96:51:
03:12:76:8e:51:2f:77:4b:33:d4:4b:92:c8:ed:6d:
bc:e1:18:84:8b:3c:de:a5:eb:61:eb:76:fe:b1:6a:
2a:0c:e1:e8:69:bd:5e:94:20:d2:55:bd:d9:29:76:
34:bd:06:25:6f:28:de:9a:d4:bd:20:ad:1a:44:39:
9e:55:e2:e1:78:27:05:15:ef:76:14:93:35:16:d9:
be:b2:2a:1c:e4:b5:09:28:ab:75:c3:5d:df:90:14:
35:90:a1:af:17:10:87:9b:40:d0:ad:ef:ff:86:29:
22:35:e9:6f:22:87:89:e7:3a:cc:f3:f5:42:c1:88:
86:34:98:70:a1:d0:b8:18:8b:d3:ad:a9:f4:32:3c:
a2:f9:29:4f:0f:a4:20:e0:f6:fb:3f:3e:7d:99:e0:
56:4b:b9:48:62:bf:94:b8:f0:26:51:10:f5:27:0d:
dd:03:82:81:94:52:16:52:8d:fc:ed:d3:5f:af:c6:
46:37:2b:1b:8a:ab:4b:d6:06:de:11:b4:bd:3d:ee:
b3:50:84:30:5d:82:3c:29:de:95:83:27:31:38:f0:
5a:8c:e0:a5:32:99:b7:76:47:93:25:bc:5d:dc:8e:
f5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:04:1B:F5:5F:EB:E4:7F:C1:30:94:02:B5:AB:51:EE:7A:54:12:08
X509v3 Authority Key Identifier:
keyid:30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:f2:64:96:b9:19:0a:48:6a:76:43:de:63:4b:cd:74:20:7b:
d9:53:76:0b:de:53:40:b7:af:6f:3a:a5:5d:5c:d7:a5:13:4a:
30:c4:78:b6:6c:b0:4d:03:2b:1c:12:b0:a1:d2:0f:cb:e1:7c:
84:ad:7b:ef:f1:19:74:78:bf:63:5b:56:7c:7d:68:04:46:f5:
c7:af:8b:fc:94:a4:83:04:c0:c3:53:c0:1f:14:65:e2:50:fa:
dc:dd:60:28:52:2c:a5:45:75:3f:00:a7:f3:a0:65:12:36:37:
d1:3d:75:4c:27:f4:51:07:89:2e:c1:aa:23:6c:b9:5f:09:f2:
67:c9:8e:a6:20:1f:10:14:14:8e:e1:15:5d:da:96:b4:27:12:
98:1f:85:e6:a9:ab:70:90:cd:9f:6c:fa:a5:95:97:77:06:02:
e0:b1:9b:8d:a5:30:10:3b:e8:0e:eb:74:b2:99:2e:eb:7e:4a:
66:3c:cb:b9:61:ea:27:43:95:2b:70:da:cb:cb:c2:66:9c:d7:
00:9b:7d:c0:b8:32:eb:a9:b3:71:76:f1:2a:72:3e:53:aa:d3:
7f:96:93:95:59:42:91:2f:4e:f1:2c:6c:10:76:ac:f1:29:62:
f8:8e:87:9a:8c:b0:73:b3:af:d5:07:2f:d1:0f:1d:da:bc:d0:
66:b8:2e:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0f77Z6bYdj3rpKSWOXZmMrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2EwMzk1MDJkNDZhNmI5OTA5MTEwY2UyYWIxMzk2ODc3
YmQwOGUwHhcNMjYwMzI0MTMwMTM2WhcNMjYwMzI1MTMwMTM2WjAzMTEwLwYDVQQD
Eyg4YzA0MWJmNTVmZWJlNDdmYzEzMDk0MDJiNWFiNTFlZTdhNTQxMjA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6CkEQK4Yuxsb4SrPhstVc0goSCx
O3riacPNllEDEnaOUS93SzPUS5LI7W284RiEizzepeth63b+sWoqDOHoab1elCDS
Vb3ZKXY0vQYlbyjemtS9IK0aRDmeVeLheCcFFe92FJM1Ftm+sioc5LUJKKt1w13f
kBQ1kKGvFxCHm0DQre//hikiNelvIoeJ5zrM8/VCwYiGNJhwodC4GIvTran0Mjyi
+SlPD6Qg4Pb7Pz59meBWS7lIYr+UuPAmURD1Jw3dA4KBlFIWUo387dNfr8ZGNysb
iqtL1gbeEbS9Pe6zUIQwXYI8Kd6VgycxOPBajOClMpm3dkeTJbxd3I712wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIwEG/Vf6+R/wTCUArWrUe56VBIIMB8GA1UdIwQY
MBaAFDB6A5UC1GprmQkRDOKrE5aHe9COMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9kNTEyMTEtZDBiYi00YTU3LTkzOTAt
Y2UyYTQ5NmZlZTg2LzEvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC9kNTEyMTEtZDBiYi00YTU3LTkzOTAtY2UyYTQ5NmZlZTg2
LzEvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcPJklrkZ
CkhqdkPeY0vNdCB72VN2C95TQLevbzqlXVzXpRNKMMR4tmywTQMrHBKwodIPy+F8
hK177/EZdHi/Y1tWfH1oBEb1x6+L/JSkgwTAw1PAHxRl4lD63N1gKFIspUV1PwCn
86BlEjY30T11TCf0UQeJLsGqI2y5XwnyZ8mOpiAfEBQUjuEVXdqWtCcSmB+F5qmr
cJDNn2z6pZWXdwYC4LGbjaUwEDvoDut0spku635KZjzLuWHqJ0OVK3Day8vCZpzX
AJt9wLgy66mzcXbxKnI+U6rTf5aTlVlCkS9O8SxsEHas8Sli+I6Hmoywc7Ov1Qcv
0Q8d2rzQZrguPg==
-----END CERTIFICATE-----
Generated at Tue Mar 24 22:33:48 2026 by rpki-client