Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b30ea1-5bff-4575-84e3-14fb48ed454d/1/B2yh-gAAa6SP7plAIRY6koqhgE4.mft
File: B2yh-gAAa6SP7plAIRY6koqhgE4.mft (raw, json)
Hash identifier: 6bYma/Z+H0d5cTz1fNcxPJnMbLvbI/JPd7rygMv0afE=
Subject key identifier: 2F:73:6C:BD:D0:50:BD:FD:56:F6:95:E0:10:E7:6A:DC:DB:55:D1:88
Authority key identifier: 07:6C:A1:FA:00:00:6B:A4:8F:EE:99:40:21:16:3A:92:8A:A1:80:4E
Certificate issuer: /CN=076ca1fa00006ba48fee994021163a928aa1804e
Certificate serial: 019D38654D748F2835EE3D9285EA1A3375B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B2yh-gAAa6SP7plAIRY6koqhgE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b30ea1-5bff-4575-84e3-14fb48ed454d/1/B2yh-gAAa6SP7plAIRY6koqhgE4.mft
Manifest number: 0150
Signing time: Sun 29 Mar 2026 07:00:56 +0000
Manifest this update: Sun 29 Mar 2026 07:00:56 +0000
Manifest next update: Mon 30 Mar 2026 07:00:56 +0000
Files and hashes: 1: B2yh-gAAa6SP7plAIRY6koqhgE4.crl (hash: Ky7Abls0pqFYMbX+NdO1mTow5rLa+7r46Xm2LMvFFHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/b30ea1-5bff-4575-84e3-14fb48ed454d/1/B2yh-gAAa6SP7plAIRY6koqhgE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/b30ea1-5bff-4575-84e3-14fb48ed454d/1/B2yh-gAAa6SP7plAIRY6koqhgE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/B2yh-gAAa6SP7plAIRY6koqhgE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:4d:74:8f:28:35:ee:3d:92:85:ea:1a:33:75:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=076ca1fa00006ba48fee994021163a928aa1804e
Validity
Not Before: Mar 29 07:00:56 2026 GMT
Not After : Mar 30 07:00:56 2026 GMT
Subject: CN=2f736cbdd050bdfd56f695e010e76adcdb55d188
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b8:b9:34:cd:5a:30:37:b8:f8:03:2e:53:d0:
47:37:65:9a:18:40:57:09:b5:5e:e4:2d:d5:bf:de:
32:5e:59:9c:8b:31:3c:de:11:19:c3:88:45:dd:48:
3c:ee:31:a6:1f:25:f9:d4:63:1c:19:56:7d:57:2e:
cb:fe:51:27:eb:c3:3c:8e:25:23:c0:cf:4e:53:34:
28:29:30:36:93:ef:28:43:3f:ff:fb:84:45:9e:a4:
f0:b4:32:88:13:30:1b:55:be:5a:75:7a:1a:62:22:
6c:84:20:c7:89:ea:88:e5:8c:cd:03:7c:c7:3e:04:
e5:c7:25:50:7f:bc:70:9e:0e:4f:2a:c4:45:22:6b:
4b:3c:83:6d:99:eb:ac:c0:8e:ce:59:8f:17:75:00:
83:bb:3b:b6:81:27:6d:aa:3c:af:88:25:db:00:a2:
b9:63:29:c3:ee:b0:23:3f:f8:a5:f5:3e:01:b0:1f:
0f:59:77:a1:74:fb:f8:26:bf:a6:d0:d2:d2:9c:2c:
2a:aa:e2:70:bf:9e:8f:30:9e:21:be:b1:62:39:b9:
6f:bf:2b:a0:08:f8:63:5b:97:ec:a2:2e:29:d4:4a:
2c:4c:b8:06:15:e0:f1:2b:32:45:40:8c:76:ed:98:
8c:2f:cd:4a:0a:02:6e:83:8b:dd:13:8c:8b:59:e2:
e5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:73:6C:BD:D0:50:BD:FD:56:F6:95:E0:10:E7:6A:DC:DB:55:D1:88
X509v3 Authority Key Identifier:
keyid:07:6C:A1:FA:00:00:6B:A4:8F:EE:99:40:21:16:3A:92:8A:A1:80:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B2yh-gAAa6SP7plAIRY6koqhgE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b30ea1-5bff-4575-84e3-14fb48ed454d/1/B2yh-gAAa6SP7plAIRY6koqhgE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b30ea1-5bff-4575-84e3-14fb48ed454d/1/B2yh-gAAa6SP7plAIRY6koqhgE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:20:47:3c:fb:cf:81:46:9d:c9:8a:59:5f:07:d7:d5:1d:74:
f2:21:15:7f:56:9f:db:65:97:cd:90:ca:34:a4:49:08:4f:3a:
8a:29:83:e4:33:8e:62:62:a3:af:7a:b8:54:47:78:7c:ed:f2:
50:cf:a1:df:e5:ea:a1:e1:54:21:17:8d:6e:ec:82:3b:de:3c:
48:90:e3:c7:9e:fe:b4:29:99:fc:6b:2d:0b:7c:f3:0b:72:3c:
ac:6d:98:16:94:71:d9:fd:d2:bc:37:a7:82:16:f9:5c:da:49:
67:53:93:7f:2a:64:88:95:11:e7:93:d2:7c:b9:05:03:e9:f4:
8e:07:52:6b:b8:19:ff:b5:63:a2:37:bd:12:23:d8:c4:03:92:
a5:e4:14:a8:44:2e:4d:f0:c9:f0:e8:13:d5:f6:83:88:a3:f3:
e8:ac:74:ec:07:4b:07:fc:9f:52:aa:b6:93:17:3c:84:de:da:
f3:8e:54:83:25:53:52:2c:f7:ac:92:76:79:e8:5f:f8:d2:b5:
88:47:3e:90:fd:c4:60:41:40:d7:ef:16:40:20:71:4f:1b:2c:
2d:bf:79:dd:3e:53:d0:0f:a9:c6:d6:91:e4:9d:e0:db:c7:5a:
5d:cd:90:0a:44:e5:08:81:82:7a:9a:18:03:6d:cb:5e:76:2e:
7c:10:d2:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZU10jyg17j2SheoaM3W2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3NmNhMWZhMDAwMDZiYTQ4ZmVlOTk0MDIxMTYzYTkyOGFh
MTgwNGUwHhcNMjYwMzI5MDcwMDU2WhcNMjYwMzMwMDcwMDU2WjAzMTEwLwYDVQQD
EygyZjczNmNiZGQwNTBiZGZkNTZmNjk1ZTAxMGU3NmFkY2RiNTVkMTg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyri5NM1aMDe4+AMuU9BHN2WaGEBX
CbVe5C3Vv94yXlmcizE83hEZw4hF3Ug87jGmHyX51GMcGVZ9Vy7L/lEn68M8jiUj
wM9OUzQoKTA2k+8oQz//+4RFnqTwtDKIEzAbVb5adXoaYiJshCDHieqI5YzNA3zH
PgTlxyVQf7xwng5PKsRFImtLPINtmeuswI7OWY8XdQCDuzu2gSdtqjyviCXbAKK5
YynD7rAjP/il9T4BsB8PWXehdPv4Jr+m0NLSnCwqquJwv56PMJ4hvrFiOblvvyug
CPhjW5fsoi4p1EosTLgGFeDxKzJFQIx27ZiML81KCgJug4vdE4yLWeLlWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC9zbL3QUL39VvaV4BDnatzbVdGIMB8GA1UdIwQY
MBaAFAdsofoAAGukj+6ZQCEWOpKKoYBOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQjJ5aC1nQUFhNlNQN3BsQUlSWTZrb3FoZ0U0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9iMzBlYTEtNWJmZi00NTc1LTg0ZTMt
MTRmYjQ4ZWQ0NTRkLzEvQjJ5aC1nQUFhNlNQN3BsQUlSWTZrb3FoZ0U0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS9iMzBlYTEtNWJmZi00NTc1LTg0ZTMtMTRmYjQ4ZWQ0NTRk
LzEvQjJ5aC1nQUFhNlNQN3BsQUlSWTZrb3FoZ0U0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtCBHPPvP
gUadyYpZXwfX1R108iEVf1af22WXzZDKNKRJCE86iimD5DOOYmKjr3q4VEd4fO3y
UM+h3+XqoeFUIReNbuyCO948SJDjx57+tCmZ/GstC3zzC3I8rG2YFpRx2f3SvDen
ghb5XNpJZ1OTfypkiJUR55PSfLkFA+n0jgdSa7gZ/7Vjoje9EiPYxAOSpeQUqEQu
TfDJ8OgT1faDiKPz6Kx07AdLB/yfUqq2kxc8hN7a845UgyVTUiz3rJJ2eehf+NK1
iEc+kP3EYEFA1+8WQCBxTxssLb953T5T0A+pxtaR5J3g28daXc2QCkTlCIGCepoY
A23LXnYufBDStA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:53:47 2026 by rpki-client