Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
File: 67YrcxkGEIQRy1VV2BvcOj_cbbg.mft (raw, json)
Hash identifier: 6eqAbZp2Dp4DCpbXNYIHi7Ce+iRpKDuT56rKTDw+ujY=
Subject key identifier: C9:94:0B:D8:21:42:F7:29:9E:36:3D:6D:BF:12:B4:DE:70:9E:02:ED
Authority key identifier: EB:B6:2B:73:19:06:10:84:11:CB:55:55:D8:1B:DC:3A:3F:DC:6D:B8
Certificate issuer: /CN=ebb62b731906108411cb5555d81bdc3a3fdc6db8
Certificate serial: 019D3752950ED5A8751E073D00068A5772C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
Manifest number: 033B
Signing time: Sun 29 Mar 2026 02:00:52 +0000
Manifest this update: Sun 29 Mar 2026 02:00:52 +0000
Manifest next update: Mon 30 Mar 2026 02:00:52 +0000
Files and hashes: 1: 67YrcxkGEIQRy1VV2BvcOj_cbbg.crl (hash: vfOWRsO52GzhwjgAUaIC7ND+UqipK5dR4nWkTcdo874=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:95:0e:d5:a8:75:1e:07:3d:00:06:8a:57:72:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebb62b731906108411cb5555d81bdc3a3fdc6db8
Validity
Not Before: Mar 29 02:00:52 2026 GMT
Not After : Mar 30 02:00:52 2026 GMT
Subject: CN=c9940bd82142f7299e363d6dbf12b4de709e02ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c3:26:c1:14:e0:b3:b6:e8:dc:4f:55:69:67:
87:4e:16:d0:4a:44:b6:98:f9:33:5f:be:03:86:bb:
6b:9c:91:ea:80:89:27:cf:10:b4:8e:ae:d9:15:41:
a7:f7:13:e4:53:52:99:e4:9b:c1:b4:ef:bc:c8:44:
c6:4b:58:c7:53:03:4a:b9:32:02:f2:db:58:62:ad:
ba:57:22:e1:a0:7c:0f:d7:24:5f:66:2c:dc:95:9d:
e6:c6:9e:36:0d:aa:5c:93:e8:eb:3b:70:ef:de:a3:
a0:2b:36:5f:35:30:41:f3:ba:66:e0:14:1e:01:79:
9e:41:54:6f:cc:dc:bc:5b:1f:28:ba:e6:49:02:4d:
b9:d3:73:37:4c:bb:ec:4d:32:2e:72:11:21:23:68:
13:59:87:0b:1a:a4:7a:e9:7f:ff:f9:9f:b6:14:72:
3a:a8:8a:2b:b6:dd:98:03:67:d0:e0:e8:72:c3:61:
52:1f:54:76:ee:c9:38:d0:95:54:1c:bf:42:35:31:
e1:fb:73:ba:2c:f8:f4:3a:24:d0:8d:f4:b4:c5:0c:
1f:af:21:1e:62:11:c9:68:f9:be:11:49:80:3e:71:
85:69:8d:b8:b7:42:aa:a1:cd:16:55:b9:5a:dd:b9:
bb:76:52:58:4e:ed:1e:f3:e2:eb:54:18:50:bc:53:
3f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:94:0B:D8:21:42:F7:29:9E:36:3D:6D:BF:12:B4:DE:70:9E:02:ED
X509v3 Authority Key Identifier:
keyid:EB:B6:2B:73:19:06:10:84:11:CB:55:55:D8:1B:DC:3A:3F:DC:6D:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:42:03:f0:9b:68:81:34:72:db:1b:e1:67:65:e6:c1:d8:32:
a4:a7:33:a0:da:81:a6:d3:23:a6:00:68:6b:a3:0a:1d:41:f0:
e5:99:50:25:c1:73:e9:2f:f3:6d:7d:c5:8b:7f:ff:3f:b6:51:
43:a3:d2:ed:9c:b2:ee:59:db:b9:5b:15:5a:4c:6e:49:d7:8a:
b8:b2:01:a0:c3:3a:11:43:07:31:1c:28:8e:55:42:c9:a6:a0:
31:49:ed:1c:cd:8c:1f:9f:5f:cb:08:5e:23:6e:6a:89:0f:d7:
f9:63:43:c5:c4:a5:b6:a6:65:17:14:bc:c4:9f:a6:69:2a:54:
04:5a:01:9b:aa:5f:45:fd:da:1d:e6:78:c8:7d:5d:1d:3d:f6:
9d:43:d8:fc:34:dc:06:f4:3b:ad:42:eb:74:94:53:2d:ac:0f:
34:48:22:35:7b:88:b0:8c:33:90:9b:65:0c:fe:62:05:e7:17:
4d:7f:e2:4e:18:87:80:eb:9c:d3:19:92:06:d1:13:06:f2:89:
d6:1c:9d:52:64:b3:87:2a:6a:b5:a4:9e:02:eb:f9:45:81:e1:
4b:a5:1b:f1:73:52:63:7c:6c:8b:f8:7e:4a:91:d7:36:e7:42:
25:76:88:24:47:06:20:67:2e:71:6e:04:7f:4b:e3:41:07:49:
20:1a:f1:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03UpUO1ah1Hgc9AAaKV3LBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGViYjYyYjczMTkwNjEwODQxMWNiNTU1NWQ4MWJkYzNhM2Zk
YzZkYjgwHhcNMjYwMzI5MDIwMDUyWhcNMjYwMzMwMDIwMDUyWjAzMTEwLwYDVQQD
EyhjOTk0MGJkODIxNDJmNzI5OWUzNjNkNmRiZjEyYjRkZTcwOWUwMmVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucMmwRTgs7bo3E9VaWeHThbQSkS2
mPkzX74DhrtrnJHqgIknzxC0jq7ZFUGn9xPkU1KZ5JvBtO+8yETGS1jHUwNKuTIC
8ttYYq26VyLhoHwP1yRfZizclZ3mxp42Dapck+jrO3Dv3qOgKzZfNTBB87pm4BQe
AXmeQVRvzNy8Wx8ouuZJAk2503M3TLvsTTIuchEhI2gTWYcLGqR66X//+Z+2FHI6
qIortt2YA2fQ4Ohyw2FSH1R27sk40JVUHL9CNTHh+3O6LPj0OiTQjfS0xQwfryEe
YhHJaPm+EUmAPnGFaY24t0Kqoc0WVbla3bm7dlJYTu0e8+LrVBhQvFM/NQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMmUC9ghQvcpnjY9bb8StN5wngLtMB8GA1UdIwQY
MBaAFOu2K3MZBhCEEctVVdgb3Do/3G24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNjdZcmN4a0dFSVFSeTFWVjJCdmNPal9jYmJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zMzJmMGEtNTdkMS00MGQwLWE4NmIt
NzcyMTNmOTkxZGI5LzEvNjdZcmN4a0dFSVFSeTFWVjJCdmNPal9jYmJnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS8zMzJmMGEtNTdkMS00MGQwLWE4NmItNzcyMTNmOTkxZGI5
LzEvNjdZcmN4a0dFSVFSeTFWVjJCdmNPal9jYmJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA0ID8Jto
gTRy2xvhZ2XmwdgypKczoNqBptMjpgBoa6MKHUHw5ZlQJcFz6S/zbX3Fi3//P7ZR
Q6PS7Zyy7lnbuVsVWkxuSdeKuLIBoMM6EUMHMRwojlVCyaagMUntHM2MH59fywhe
I25qiQ/X+WNDxcSltqZlFxS8xJ+maSpUBFoBm6pfRf3aHeZ4yH1dHT32nUPY/DTc
BvQ7rULrdJRTLawPNEgiNXuIsIwzkJtlDP5iBecXTX/iThiHgOuc0xmSBtETBvKJ
1hydUmSzhypqtaSeAuv5RYHhS6Ub8XNSY3xsi/h+SpHXNudCJXaIJEcGIGcucW4E
f0vjQQdJIBrx6A==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:37:53 2026 by rpki-client