Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
File: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft (raw, json)
Hash identifier: hbzkOvTLMYkxMsnD4ibK8CZtzsgVdq0Iu1phi5gfyoU=
Subject key identifier: EF:94:54:A0:44:A1:4F:63:1F:F2:AC:01:EF:2C:6E:F2:CF:02:7B:8D
Authority key identifier: AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30
Certificate issuer: /CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330
Certificate serial: 019D38657F196FD5DEFEC6A07B0D8B6271EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
Manifest number: 1124
Signing time: Sun 29 Mar 2026 07:01:08 +0000
Manifest this update: Sun 29 Mar 2026 07:01:08 +0000
Manifest next update: Mon 30 Mar 2026 07:01:08 +0000
Files and hashes: 1: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl (hash: 4ofCb96Lp+o6P6ElJ/GHKppRofDLg77r0KbVue5FJfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:7f:19:6f:d5:de:fe:c6:a0:7b:0d:8b:62:71:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330
Validity
Not Before: Mar 29 07:01:08 2026 GMT
Not After : Mar 30 07:01:08 2026 GMT
Subject: CN=ef9454a044a14f631ff2ac01ef2c6ef2cf027b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ff:5d:7f:43:f1:2b:e0:47:6a:a2:92:21:3a:
bc:1d:67:72:b6:aa:68:d5:04:08:18:8d:73:62:61:
e6:77:e5:04:2b:26:0e:55:73:5c:5f:c3:db:1c:64:
8f:c3:29:85:92:0e:c5:2c:4c:f2:15:c4:c9:2c:a5:
81:c9:d2:de:2d:a2:b4:50:e3:1f:15:df:f3:ff:4a:
5f:f5:19:25:92:bc:28:eb:e3:2e:f9:1f:7c:ea:e0:
8f:fd:ed:d8:4e:88:a6:ff:57:1a:63:0f:a9:67:e7:
89:85:5a:90:75:cc:e2:c2:b8:89:18:c4:5d:cd:4d:
21:cb:52:9a:99:65:b6:e5:74:33:5a:80:b1:ec:df:
c4:e6:c8:76:31:09:5e:c8:06:e7:9c:97:75:de:d8:
54:a7:cd:a0:59:20:d6:46:53:91:c9:6f:92:6c:c4:
da:e3:27:c3:96:f8:af:28:03:42:f7:dc:c1:1b:7b:
35:bf:72:24:3a:ef:6b:87:67:e6:d9:e3:a5:e2:3c:
c5:19:c2:42:aa:4b:f1:e6:67:ef:5d:9b:cd:90:75:
60:b7:f1:3e:b4:2c:f9:18:53:f0:bf:2a:02:da:22:
4b:82:cd:f6:14:a0:8e:51:f0:5a:a3:d0:2f:a4:82:
36:87:18:cd:d2:be:8d:ce:1b:f9:ba:63:ee:f3:8c:
c1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:94:54:A0:44:A1:4F:63:1F:F2:AC:01:EF:2C:6E:F2:CF:02:7B:8D
X509v3 Authority Key Identifier:
keyid:AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:97:b2:58:59:87:8e:8d:dc:58:98:bb:4d:7b:94:b6:03:e5:
31:e0:b5:22:3d:a8:ef:7d:27:a4:74:c7:6d:02:31:f6:a9:50:
b2:7b:81:38:72:c1:71:be:48:d3:ba:3e:6e:33:a5:93:40:80:
55:d8:a3:11:14:10:e8:c8:ef:d8:c2:a7:09:4b:40:36:d5:fd:
f7:b2:25:e4:f3:19:31:72:0e:23:c9:1c:c6:53:24:a1:4f:66:
06:88:2b:d8:6a:53:2f:c3:7b:5f:4a:83:22:cb:58:3a:ad:86:
25:1d:67:80:91:07:e4:b4:46:c2:96:e9:72:74:2e:7d:cd:e3:
f6:82:6b:83:24:c8:b5:c9:b9:c7:59:66:83:70:2e:64:f4:d9:
fa:6e:07:e5:d3:ed:d2:fa:7d:c5:1e:6f:99:7f:6d:cc:be:0c:
d9:7d:da:70:4b:95:34:0e:34:b6:d7:d2:d5:eb:db:48:54:7a:
fb:a3:0d:bd:42:6a:3d:dc:5e:d5:dc:95:21:7c:1e:35:0b:f0:
9f:ea:f3:a2:9d:ea:fd:f3:01:a6:37:aa:7a:49:4d:ba:ef:e9:
54:8f:11:91:05:f9:15:48:16:d7:f9:3b:93:09:37:39:30:d0:
00:39:a7:06:cb:82:e0:c7:3a:3f:ac:23:a2:08:7a:a0:f1:b8:
90:6e:58:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZX8Zb9Xe/sagew2LYnHqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmODJhMDk3YTI4YTZiNmE2OTlkOGQ2YWJlNGRjYjk1YmIx
OTgzMzAwHhcNMjYwMzI5MDcwMTA4WhcNMjYwMzMwMDcwMTA4WjAzMTEwLwYDVQQD
EyhlZjk0NTRhMDQ0YTE0ZjYzMWZmMmFjMDFlZjJjNmVmMmNmMDI3YjhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArP9df0PxK+BHaqKSITq8HWdytqpo
1QQIGI1zYmHmd+UEKyYOVXNcX8PbHGSPwymFkg7FLEzyFcTJLKWBydLeLaK0UOMf
Fd/z/0pf9Rklkrwo6+Mu+R986uCP/e3YToim/1caYw+pZ+eJhVqQdcziwriJGMRd
zU0hy1KamWW25XQzWoCx7N/E5sh2MQleyAbnnJd13thUp82gWSDWRlORyW+SbMTa
4yfDlvivKANC99zBG3s1v3IkOu9rh2fm2eOl4jzFGcJCqkvx5mfvXZvNkHVgt/E+
tCz5GFPwvyoC2iJLgs32FKCOUfBao9AvpII2hxjN0r6Nzhv5umPu84zBCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO+UVKBEoU9jH/KsAe8sbvLPAnuNMB8GA1UdIwQY
MBaAFK+CoJeiimtqaZ2Nar5Ny5W7GYMwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjRLZ2w2S0thMnBwblkxcXZrM0xsYnNaZ3pBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi83NWM1N2ItMjc4Ni00N2I5LTk4MWMt
ZmFhOGI3MThiNmNiLzEvcjRLZ2w2S0thMnBwblkxcXZrM0xsYnNaZ3pBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi83NWM1N2ItMjc4Ni00N2I5LTk4MWMtZmFhOGI3MThiNmNi
LzEvcjRLZ2w2S0thMnBwblkxcXZrM0xsYnNaZ3pBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHpeyWFmH
jo3cWJi7TXuUtgPlMeC1Ij2o730npHTHbQIx9qlQsnuBOHLBcb5I07o+bjOlk0CA
VdijERQQ6Mjv2MKnCUtANtX997Il5PMZMXIOI8kcxlMkoU9mBogr2GpTL8N7X0qD
IstYOq2GJR1ngJEH5LRGwpbpcnQufc3j9oJrgyTItcm5x1lmg3AuZPTZ+m4H5dPt
0vp9xR5vmX9tzL4M2X3acEuVNA40ttfS1evbSFR6+6MNvUJqPdxe1dyVIXweNQvw
n+rzop3q/fMBpjeqeklNuu/pVI8RkQX5FUgW1/k7kwk3OTDQADmnBsuC4Mc6P6wj
ogh6oPG4kG5YFA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:59:13 2026 by rpki-client