Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
File: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft (raw, json)
Hash identifier: onn7QWiy+WajMZ5qsP9aG9DP6DHkryK3HbVwJLIH4GA=
Subject key identifier: 8F:4D:30:56:70:59:75:8C:24:98:78:75:84:F5:33:39:2D:51:1F:2B
Authority key identifier: D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
Certificate issuer: /CN=d346e5d46291f6bc53b965865051ba399749eb2d
Certificate serial: 019D36091BC1A6BD985A3A508CA1028E0392
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
Manifest number: 0436
Signing time: Sat 28 Mar 2026 20:00:59 +0000
Manifest this update: Sat 28 Mar 2026 20:00:59 +0000
Manifest next update: Sun 29 Mar 2026 20:00:59 +0000
Files and hashes: 1: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl (hash: n3lCC/TP/fS6WEGlSNCOYHa3fTUwWHkabfyfCRwYLWY=)
2: 6P5TrCrBMBOzWPp7NfkTPVfGFC0.roa (hash: sSdGu5Xuxs0f7WjvG48kyrMaNHwDQMDfZZyHNGWz4mk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:36:09:1b:c1:a6:bd:98:5a:3a:50:8c:a1:02:8e:03:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d346e5d46291f6bc53b965865051ba399749eb2d
Validity
Not Before: Mar 28 20:00:59 2026 GMT
Not After : Mar 29 20:00:59 2026 GMT
Subject: CN=8f4d30567059758c2498787584f533392d511f2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:03:88:5e:14:04:88:c1:ad:6f:5e:36:08:1a:
e3:6a:22:2d:01:29:b7:10:44:1d:b4:ca:ba:8e:5a:
96:ad:3a:5d:48:a3:74:fd:49:d2:9c:b6:35:5c:b4:
ff:98:95:12:8a:8a:06:d7:2c:6a:77:cd:bf:e3:45:
6e:d8:20:54:77:3e:be:83:07:a8:75:33:fe:74:28:
82:a4:d5:6e:c7:e2:31:ad:53:a9:52:12:85:6c:11:
73:5c:e9:2f:8f:d5:db:6b:49:fa:dd:34:e9:ff:40:
a1:7a:88:d2:17:fc:8a:dc:c3:4e:d2:71:f3:a7:0b:
4f:8b:18:63:99:de:a0:77:37:98:21:96:87:91:84:
fc:72:99:59:ba:f1:d9:7b:32:fa:1d:5d:fa:63:25:
b4:00:61:68:41:e1:39:ac:44:94:bb:38:dd:52:eb:
8f:46:16:33:14:db:51:39:04:0d:45:2c:10:d5:13:
63:78:f1:0e:14:df:e6:20:f0:ae:20:10:7e:9c:6d:
b2:4a:55:6a:66:3b:0b:c4:cf:53:0c:a3:07:36:86:
77:ff:0f:22:d9:a9:2d:da:62:87:3a:3f:18:c6:cf:
72:90:d0:3f:ee:90:f8:9b:35:b0:83:5c:03:d4:a5:
7b:59:ba:a3:b4:2c:00:61:c5:d1:91:9d:dd:09:e9:
81:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:4D:30:56:70:59:75:8C:24:98:78:75:84:F5:33:39:2D:51:1F:2B
X509v3 Authority Key Identifier:
keyid:D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:20:0f:80:c6:cb:07:45:77:be:fd:d6:b1:0e:f3:4c:03:74:
08:d0:b6:c5:95:e1:52:29:43:aa:36:1e:bd:a1:a4:6a:83:49:
64:62:d4:f9:d6:cf:a4:b7:b9:d7:c9:36:11:2f:aa:a3:8f:f4:
9b:fe:11:ee:0e:79:ff:5e:3f:d8:b6:34:4c:5b:ca:b8:61:d4:
2c:5f:7e:d7:0e:36:7a:f3:58:1f:a0:54:b8:df:d7:ce:10:aa:
91:c9:34:6a:91:ec:22:fc:c3:fe:42:f5:e6:6e:df:bc:17:3a:
07:37:2c:cd:d0:a5:ae:f7:11:d0:05:42:ef:3f:0f:66:41:76:
4f:7e:63:40:b1:13:53:d4:cf:7d:1e:27:c5:6c:b8:b7:1c:73:
5d:99:e9:b1:54:3e:a2:ed:16:10:0f:b0:7b:3d:68:95:ac:cb:
22:f7:dd:27:42:6c:8b:81:69:64:91:fc:ae:6c:7c:71:67:6d:
27:51:84:95:89:7d:b4:f0:71:69:b5:7f:f1:66:4a:8b:43:af:
dd:98:90:34:39:16:9f:49:d0:5e:6f:d6:44:d9:ac:0c:f4:81:
85:3f:00:6c:b9:ac:fc:cb:15:f1:50:1d:ad:6c:2b:20:b8:e6:
35:75:0a:37:e2:1c:f7:8f:97:18:2d:db:fa:61:4f:ee:e9:72:
0c:f4:83:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ02CRvBpr2YWjpQjKECjgOSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNDZlNWQ0NjI5MWY2YmM1M2I5NjU4NjUwNTFiYTM5OTc0
OWViMmQwHhcNMjYwMzI4MjAwMDU5WhcNMjYwMzI5MjAwMDU5WjAzMTEwLwYDVQQD
Eyg4ZjRkMzA1NjcwNTk3NThjMjQ5ODc4NzU4NGY1MzMzOTJkNTExZjJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqAOIXhQEiMGtb142CBrjaiItASm3
EEQdtMq6jlqWrTpdSKN0/UnSnLY1XLT/mJUSiooG1yxqd82/40Vu2CBUdz6+gweo
dTP+dCiCpNVux+IxrVOpUhKFbBFzXOkvj9Xba0n63TTp/0CheojSF/yK3MNO0nHz
pwtPixhjmd6gdzeYIZaHkYT8cplZuvHZezL6HV36YyW0AGFoQeE5rESUuzjdUuuP
RhYzFNtROQQNRSwQ1RNjePEOFN/mIPCuIBB+nG2ySlVqZjsLxM9TDKMHNoZ3/w8i
2akt2mKHOj8Yxs9ykNA/7pD4mzWwg1wD1KV7WbqjtCwAYcXRkZ3dCemBXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI9NMFZwWXWMJJh4dYT1MzktUR8rMB8GA1UdIwQY
MBaAFNNG5dRikfa8U7llhlBRujmXSestMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDBibDFHS1I5cnhUdVdXR1VGRzZPWmRKNnkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC83YzhlOWMtZWM0OC00YTkwLTg2ZTUt
M2U5NDNmOTdmZjMxLzEvMDBibDFHS1I5cnhUdVdXR1VGRzZPWmRKNnkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC83YzhlOWMtZWM0OC00YTkwLTg2ZTUtM2U5NDNmOTdmZjMx
LzEvMDBibDFHS1I5cnhUdVdXR1VGRzZPWmRKNnkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATyAPgMbL
B0V3vv3WsQ7zTAN0CNC2xZXhUilDqjYevaGkaoNJZGLU+dbPpLe518k2ES+qo4/0
m/4R7g55/14/2LY0TFvKuGHULF9+1w42evNYH6BUuN/XzhCqkck0apHsIvzD/kL1
5m7fvBc6BzcszdClrvcR0AVC7z8PZkF2T35jQLETU9TPfR4nxWy4txxzXZnpsVQ+
ou0WEA+wez1olazLIvfdJ0Jsi4FpZJH8rmx8cWdtJ1GElYl9tPBxabV/8WZKi0Ov
3ZiQNDkWn0nQXm/WRNmsDPSBhT8AbLms/MsV8VAdrWwrILjmNXUKN+Ic94+XGC3b
+mFP7ulyDPSDkg==
-----END CERTIFICATE-----
Generated at Sat Mar 28 21:45:22 2026 by rpki-client