Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ff50ec-b12d-4798-89fa-22d1bcfa1eda/1/g76BmaF8rKps1S15QSNtpuVuG-o.mft
File: g76BmaF8rKps1S15QSNtpuVuG-o.mft (raw, json)
Hash identifier: RhU+HGcK3+Sr3pggv/qvJxsYYR+VNdvl2q2Q6UQGg0E=
Subject key identifier: 4B:2E:5A:FD:A8:D4:61:25:5A:EA:5B:46:5C:E2:B4:B3:40:3D:65:7F
Authority key identifier: 83:BE:81:99:A1:7C:AC:AA:6C:D5:2D:79:41:23:6D:A6:E5:6E:1B:EA
Certificate issuer: /CN=83be8199a17cacaa6cd52d7941236da6e56e1bea
Certificate serial: 019D38D3ABB64D37AEC2DD6FEB98B02BE813
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g76BmaF8rKps1S15QSNtpuVuG-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ff50ec-b12d-4798-89fa-22d1bcfa1eda/1/g76BmaF8rKps1S15QSNtpuVuG-o.mft
Manifest number: 0C14
Signing time: Sun 29 Mar 2026 09:01:29 +0000
Manifest this update: Sun 29 Mar 2026 09:01:29 +0000
Manifest next update: Mon 30 Mar 2026 09:01:29 +0000
Files and hashes: 1: 6Wov37AwFcepue1WbA70fxV-s8I.asa (hash: kdFzn0uMLw4OiGMPXx8ZYbjqBGAjU05EQ4I1clqD91o=)
2: g76BmaF8rKps1S15QSNtpuVuG-o.crl (hash: 1gzz/ujmxRYsBb2LEYMXk+d7SDUKYoTIPaE2qq1uaLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/ff50ec-b12d-4798-89fa-22d1bcfa1eda/1/g76BmaF8rKps1S15QSNtpuVuG-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/ff50ec-b12d-4798-89fa-22d1bcfa1eda/1/g76BmaF8rKps1S15QSNtpuVuG-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/g76BmaF8rKps1S15QSNtpuVuG-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:ab:b6:4d:37:ae:c2:dd:6f:eb:98:b0:2b:e8:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83be8199a17cacaa6cd52d7941236da6e56e1bea
Validity
Not Before: Mar 29 09:01:29 2026 GMT
Not After : Mar 30 09:01:29 2026 GMT
Subject: CN=4b2e5afda8d461255aea5b465ce2b4b3403d657f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2d:7b:7f:e3:fd:0d:2b:f3:49:77:0d:f1:fa:
67:63:34:95:ad:e5:0f:04:98:59:5f:19:23:af:09:
54:df:1e:24:2d:1d:f4:8d:68:57:23:94:a5:1e:5e:
cf:d6:a7:60:27:56:ab:bd:80:02:84:35:84:fe:16:
56:9a:c8:63:b5:cc:eb:38:55:12:0e:05:50:72:b0:
4c:7d:3d:4b:e2:23:70:2d:de:e2:cc:39:58:f9:47:
74:76:1e:d2:1a:c9:09:b7:c0:ed:e1:c8:eb:60:31:
29:d8:02:f4:1e:98:c9:ce:da:a3:f5:db:e5:98:a1:
b7:4f:81:be:3b:8f:bf:b5:f3:7f:d7:46:a7:d9:84:
d1:77:a4:87:9f:d3:1c:4d:5c:64:26:79:41:9c:c1:
36:5b:fb:a8:e2:85:3c:52:80:0a:33:9e:92:7c:48:
b2:10:38:ed:17:c4:fc:ae:be:41:31:f1:24:3a:ea:
a5:03:a4:ed:18:49:51:91:69:9a:62:3e:5b:63:0b:
9e:38:48:b1:1e:95:42:5f:35:a1:86:0f:9b:5b:e6:
d3:a9:ff:4e:18:7f:65:1a:ad:f3:9b:e8:ad:52:c2:
0e:b6:64:8d:a5:07:ed:15:2c:7e:bc:17:83:70:25:
c9:89:59:3e:47:b8:a4:c3:87:0e:cf:d8:12:fa:26:
6a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:2E:5A:FD:A8:D4:61:25:5A:EA:5B:46:5C:E2:B4:B3:40:3D:65:7F
X509v3 Authority Key Identifier:
keyid:83:BE:81:99:A1:7C:AC:AA:6C:D5:2D:79:41:23:6D:A6:E5:6E:1B:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g76BmaF8rKps1S15QSNtpuVuG-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ff50ec-b12d-4798-89fa-22d1bcfa1eda/1/g76BmaF8rKps1S15QSNtpuVuG-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ff50ec-b12d-4798-89fa-22d1bcfa1eda/1/g76BmaF8rKps1S15QSNtpuVuG-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:9c:2e:52:74:5b:39:e5:3d:6f:73:b6:8c:b0:9c:ca:cb:f9:
cf:69:f1:0d:cb:e2:dc:10:d5:5a:6b:cb:b1:7e:c2:d7:31:86:
3e:df:46:ae:e4:3c:f3:99:44:34:51:ac:9f:9f:10:b0:dd:74:
63:68:33:8c:03:7e:2d:09:99:f2:aa:df:b1:97:7b:b1:9b:60:
24:fc:cd:2c:21:2b:b8:29:08:50:24:9c:2e:0b:9a:98:2b:6b:
b4:2a:12:78:d4:64:90:41:05:a2:37:72:4f:3b:f4:ea:1a:b3:
03:f6:70:e2:72:9e:cc:f5:35:85:1d:87:23:c2:f4:e7:7c:ef:
12:35:a3:ab:c2:37:bf:0d:30:e3:84:39:d1:79:d2:8d:27:ed:
12:aa:10:8a:78:85:2a:07:66:a0:81:8a:ab:2e:a9:8d:57:7a:
b1:2b:7c:dd:a1:a6:63:e7:df:2c:5d:a3:0f:91:3c:4a:ea:cf:
72:01:af:6e:39:08:70:96:d7:79:9a:bb:14:f2:1f:c0:3f:83:
29:3b:05:2f:65:8e:9c:07:eb:89:e6:80:d6:37:46:d5:b9:06:
a1:c1:e8:64:d9:33:ee:b1:cf:b5:fc:18:18:3c:82:01:55:49:
b4:f7:5f:f1:55:f1:4e:05:ef:e4:b2:47:2c:ac:a0:72:66:c8:
23:8b:c0:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0406u2TTeuwt1v65iwK+gTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzYmU4MTk5YTE3Y2FjYWE2Y2Q1MmQ3OTQxMjM2ZGE2ZTU2
ZTFiZWEwHhcNMjYwMzI5MDkwMTI5WhcNMjYwMzMwMDkwMTI5WjAzMTEwLwYDVQQD
Eyg0YjJlNWFmZGE4ZDQ2MTI1NWFlYTViNDY1Y2UyYjRiMzQwM2Q2NTdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsS17f+P9DSvzSXcN8fpnYzSVreUP
BJhZXxkjrwlU3x4kLR30jWhXI5SlHl7P1qdgJ1arvYAChDWE/hZWmshjtczrOFUS
DgVQcrBMfT1L4iNwLd7izDlY+Ud0dh7SGskJt8Dt4cjrYDEp2AL0HpjJztqj9dvl
mKG3T4G+O4+/tfN/10an2YTRd6SHn9McTVxkJnlBnME2W/uo4oU8UoAKM56SfEiy
EDjtF8T8rr5BMfEkOuqlA6TtGElRkWmaYj5bYwueOEixHpVCXzWhhg+bW+bTqf9O
GH9lGq3zm+itUsIOtmSNpQftFSx+vBeDcCXJiVk+R7ikw4cOz9gS+iZqOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEsuWv2o1GElWupbRlzitLNAPWV/MB8GA1UdIwQY
MBaAFIO+gZmhfKyqbNUteUEjbablbhvqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzc2Qm1hRjhyS3BzMVMxNVFTTnRwdVZ1Ry1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9mZjUwZWMtYjEyZC00Nzk4LTg5ZmEt
MjJkMWJjZmExZWRhLzEvZzc2Qm1hRjhyS3BzMVMxNVFTTnRwdVZ1Ry1vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9mZjUwZWMtYjEyZC00Nzk4LTg5ZmEtMjJkMWJjZmExZWRh
LzEvZzc2Qm1hRjhyS3BzMVMxNVFTTnRwdVZ1Ry1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABJwuUnRb
OeU9b3O2jLCcysv5z2nxDcvi3BDVWmvLsX7C1zGGPt9GruQ885lENFGsn58QsN10
Y2gzjAN+LQmZ8qrfsZd7sZtgJPzNLCEruCkIUCScLguamCtrtCoSeNRkkEEFojdy
Tzv06hqzA/Zw4nKezPU1hR2HI8L053zvEjWjq8I3vw0w44Q50XnSjSftEqoQiniF
KgdmoIGKqy6pjVd6sSt83aGmY+ffLF2jD5E8SurPcgGvbjkIcJbXeZq7FPIfwD+D
KTsFL2WOnAfrieaA1jdG1bkGocHoZNkz7rHPtfwYGDyCAVVJtPdf8VXxTgXv5LJH
LKygcmbII4vAgg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:01:36 2026 by rpki-client