Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.mft
File: MpbYU2ObwBkplCk-veCYBdLWIqQ.mft (raw, json)
Hash identifier: 6aL+fyUhUC4BDbMSfqAyttiDfEndfpsFw/z1jH7//yM=
Subject key identifier: 85:3D:51:8A:A6:3D:11:B9:CF:57:AE:E7:A1:F1:43:BB:65:03:04:AF
Authority key identifier: 32:96:D8:53:63:9B:C0:19:29:94:29:3E:BD:E0:98:05:D2:D6:22:A4
Certificate issuer: /CN=3296d853639bc0192994293ebde09805d2d622a4
Certificate serial: 019D39AF2BAA08E29368248353F5CA483221
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MpbYU2ObwBkplCk-veCYBdLWIqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 13:01:14 +0000
Manifest this update: Sun 29 Mar 2026 13:01:14 +0000
Manifest next update: Mon 30 Mar 2026 13:01:14 +0000
Files and hashes: 1: G7nobLrj8R2BNKD9qeCFlINElBE.roa (hash: feBfEoqTINzaFtDjP4sDoL+bj+2B+0C698Qwh7PEDZk=)
2: MpbYU2ObwBkplCk-veCYBdLWIqQ.crl (hash: sVbB+5zJp5BAx00xkhMAdK9FH5Oh21HUjFhX/6uPCro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/MpbYU2ObwBkplCk-veCYBdLWIqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:2b:aa:08:e2:93:68:24:83:53:f5:ca:48:32:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3296d853639bc0192994293ebde09805d2d622a4
Validity
Not Before: Mar 29 13:01:14 2026 GMT
Not After : Mar 30 13:01:14 2026 GMT
Subject: CN=853d518aa63d11b9cf57aee7a1f143bb650304af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ec:73:f1:0b:26:1f:5f:10:e6:f1:05:a8:b9:
35:3a:ab:2a:aa:2b:f5:72:90:5a:43:95:44:a7:34:
35:8e:fa:ff:c3:13:cd:b5:d2:3f:f4:a8:0e:6c:de:
87:08:4b:20:5b:b0:80:5c:50:11:ad:7f:1e:7f:41:
de:b1:68:d6:09:4e:52:29:dd:93:0a:55:5b:e8:b9:
fc:c0:6a:73:c4:f5:67:df:e6:a9:b1:ac:86:6e:6a:
97:cd:a1:e3:73:2e:8c:29:45:46:e5:17:d5:fa:d9:
f6:06:fb:4c:8e:01:3e:04:d8:5c:8b:b2:d6:9d:42:
e1:88:93:ac:83:7a:17:35:42:34:cd:df:71:bc:85:
01:31:0d:33:d6:d3:5f:59:dc:54:27:9f:4b:e1:0f:
b1:99:e9:87:34:80:a1:9b:cb:59:32:be:31:ba:8e:
df:08:4e:56:e1:16:81:8b:12:ab:ae:1e:a6:b1:ef:
d8:81:87:27:f1:11:b7:f2:f3:45:14:65:09:b6:ce:
77:91:f6:39:41:db:ac:fb:2c:b1:5b:76:c0:06:ce:
95:c5:26:f6:fc:8a:f3:ad:89:f6:5d:12:e1:0b:30:
f8:5e:41:f4:e7:06:97:98:5a:c1:b9:4d:7f:b5:24:
95:c7:32:77:38:69:83:74:d5:f2:ff:f7:93:4b:27:
42:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:3D:51:8A:A6:3D:11:B9:CF:57:AE:E7:A1:F1:43:BB:65:03:04:AF
X509v3 Authority Key Identifier:
keyid:32:96:D8:53:63:9B:C0:19:29:94:29:3E:BD:E0:98:05:D2:D6:22:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MpbYU2ObwBkplCk-veCYBdLWIqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:95:3a:b6:3f:5e:ec:39:a2:0e:51:05:4f:d4:e6:dc:4f:dc:
b9:05:e8:6a:5e:3a:63:93:7d:7a:6f:71:84:fd:4d:a6:76:a3:
25:f2:c1:86:eb:b6:d3:12:87:d6:e0:b0:d1:18:c6:06:ae:f0:
34:0f:32:71:87:74:bb:e0:82:17:b5:c8:00:8a:c4:f9:e2:d5:
59:13:ad:01:e9:88:71:e1:f9:ab:a6:4a:1f:c2:59:d7:02:f0:
74:4e:86:53:c5:b8:78:a5:34:3f:c3:0b:72:d8:1d:6a:7d:a0:
3f:7e:10:98:7f:55:9f:24:48:72:0f:1d:c7:f2:30:2f:0b:6b:
ad:2a:ad:bc:b5:67:e7:9b:75:41:8b:25:d9:b9:85:83:eb:85:
b7:c3:d9:83:01:1d:5c:e1:69:82:92:77:d8:41:e0:93:ea:f3:
34:13:30:79:96:1a:c0:90:c4:62:08:6a:d3:70:dc:36:ae:fb:
a9:7c:b1:df:c7:7b:7c:d7:ab:32:25:15:8a:ef:d5:c9:90:d9:
49:0c:0e:28:67:7c:3d:35:96:33:ef:ef:b8:34:5f:fc:03:0f:
4b:12:cf:5a:31:ee:4f:d8:e6:e0:6c:39:df:79:51:d1:c4:af:
fd:18:71:5a:71:20:88:1b:b0:fa:d2:b3:42:4c:b3:f8:d4:52:
0b:e4:bb:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05ryuqCOKTaCSDU/XKSDIhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyOTZkODUzNjM5YmMwMTkyOTk0MjkzZWJkZTA5ODA1ZDJk
NjIyYTQwHhcNMjYwMzI5MTMwMTE0WhcNMjYwMzMwMTMwMTE0WjAzMTEwLwYDVQQD
Eyg4NTNkNTE4YWE2M2QxMWI5Y2Y1N2FlZTdhMWYxNDNiYjY1MDMwNGFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2exz8QsmH18Q5vEFqLk1Oqsqqiv1
cpBaQ5VEpzQ1jvr/wxPNtdI/9KgObN6HCEsgW7CAXFARrX8ef0HesWjWCU5SKd2T
ClVb6Ln8wGpzxPVn3+apsayGbmqXzaHjcy6MKUVG5RfV+tn2BvtMjgE+BNhci7LW
nULhiJOsg3oXNUI0zd9xvIUBMQ0z1tNfWdxUJ59L4Q+xmemHNIChm8tZMr4xuo7f
CE5W4RaBixKrrh6mse/YgYcn8RG38vNFFGUJts53kfY5Qdus+yyxW3bABs6VxSb2
/IrzrYn2XRLhCzD4XkH05waXmFrBuU1/tSSVxzJ3OGmDdNXy//eTSydC+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIU9UYqmPRG5z1eu56HxQ7tlAwSvMB8GA1UdIwQY
MBaAFDKW2FNjm8AZKZQpPr3gmAXS1iKkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTXBiWVUyT2J3QmtwbENrLXZlQ1lCZExXSXFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS82NmYwN2QtYWRjYS00MGIwLWEwYTAt
ZTc2MTgxOWY0NzVlLzEvTXBiWVUyT2J3QmtwbENrLXZlQ1lCZExXSXFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS82NmYwN2QtYWRjYS00MGIwLWEwYTAtZTc2MTgxOWY0NzVl
LzEvTXBiWVUyT2J3QmtwbENrLXZlQ1lCZExXSXFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADZU6tj9e
7DmiDlEFT9Tm3E/cuQXoal46Y5N9em9xhP1NpnajJfLBhuu20xKH1uCw0RjGBq7w
NA8ycYd0u+CCF7XIAIrE+eLVWROtAemIceH5q6ZKH8JZ1wLwdE6GU8W4eKU0P8ML
ctgdan2gP34QmH9VnyRIcg8dx/IwLwtrrSqtvLVn55t1QYsl2bmFg+uFt8PZgwEd
XOFpgpJ32EHgk+rzNBMweZYawJDEYghq03DcNq77qXyx38d7fNerMiUViu/VyZDZ
SQwOKGd8PTWWM+/vuDRf/AMPSxLPWjHuT9jm4Gw533lR0cSv/RhxWnEgiBuw+tKz
Qkyz+NRSC+S7Lg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:17:21 2026 by rpki-client