Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
File: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft (raw, json)
Hash identifier: auGCYEKP4w4CnovkbBHZvLbRFWwLj+MNm0nI7jWlSME=
Subject key identifier: 15:F4:2A:27:28:2B:C9:CB:50:73:FB:C8:25:42:8A:63:A7:08:CB:52
Authority key identifier: D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
Certificate issuer: /CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Certificate serial: 019D386571F55D106E380BDB9482F16804E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
Manifest number: 0DD7
Signing time: Sun 29 Mar 2026 07:01:05 +0000
Manifest this update: Sun 29 Mar 2026 07:01:05 +0000
Manifest next update: Mon 30 Mar 2026 07:01:05 +0000
Files and hashes: 1: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl (hash: 2gbf99eUVL6YRefrCtWUkeMO8PA60TsjmBxTE/V+zKs=)
2: ehFRVj_TXPwQ0rPF1XZNBg0Qd-I.roa (hash: rTBvSqvCO1yVewsD3TnK3oF62RT8jXzzKUsjw4v3zO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:71:f5:5d:10:6e:38:0b:db:94:82:f1:68:04:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Validity
Not Before: Mar 29 07:01:05 2026 GMT
Not After : Mar 30 07:01:05 2026 GMT
Subject: CN=15f42a27282bc9cb5073fbc825428a63a708cb52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:52:f8:5c:aa:75:fd:85:d0:43:d9:b8:dc:0a:
b9:c3:e3:c5:cb:f9:2c:65:f7:03:8d:d9:27:cb:e1:
ea:16:db:3f:08:bb:e2:66:3f:a3:5e:71:27:80:9d:
ae:28:ed:d6:55:11:ca:e1:e8:78:9a:f2:6f:c3:0c:
db:93:08:41:ff:ba:fe:ec:1b:8c:eb:91:54:6b:f6:
41:9c:f5:13:1c:0f:a4:a7:3e:a9:a6:28:1b:b0:3d:
94:ce:e3:82:70:fb:8d:23:4f:d5:47:7a:bd:4e:3b:
5c:c4:33:4b:1f:4e:5a:be:20:22:fc:13:e4:e8:43:
96:cb:13:d8:98:5c:7c:25:72:24:a2:9c:f7:80:37:
a8:a8:3a:ff:e9:7e:bb:1e:77:cc:6f:7c:9f:94:9a:
61:b2:d5:92:70:91:62:46:fc:27:78:6b:09:39:96:
9d:0f:fa:ba:ec:19:5a:48:07:92:5a:b7:c8:e5:a5:
60:e0:3b:32:2e:3a:14:9a:91:9e:55:19:bb:62:d8:
92:a7:ad:8d:ce:40:f3:e0:fb:13:75:9d:00:a9:6f:
71:52:31:8f:6e:47:6e:4c:6f:16:53:fb:62:ae:00:
b0:6d:01:9b:58:3e:ac:d7:31:ef:fa:0a:b6:d4:9e:
20:21:55:28:15:cf:2d:bc:83:f7:c5:c2:62:22:5b:
72:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:F4:2A:27:28:2B:C9:CB:50:73:FB:C8:25:42:8A:63:A7:08:CB:52
X509v3 Authority Key Identifier:
keyid:D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:93:a7:8f:c6:19:e6:8c:25:f0:2e:2b:45:d7:d5:f6:47:f2:
00:77:f4:86:fc:7c:e1:e5:40:4a:19:d8:56:73:e0:6f:1c:1e:
75:c5:4e:80:a0:33:e1:a3:2f:fe:a0:8d:db:e9:e2:f8:dc:99:
27:cb:99:26:40:38:53:f2:68:3f:e7:fd:e5:eb:7e:61:28:01:
8e:5f:98:35:58:de:7f:30:52:e4:e9:8b:44:79:c5:7c:19:2d:
63:7f:64:d5:57:d8:cb:05:9a:1a:e5:05:9d:7c:cb:a9:18:5d:
0d:44:f6:b2:a8:c1:66:c7:09:06:75:ce:a5:08:81:33:d2:67:
99:21:51:d8:35:5d:f4:4a:b6:90:77:93:5e:f3:a0:ca:e5:fe:
e5:16:91:38:46:32:e1:c0:ea:86:e5:14:d9:d5:c5:50:59:0e:
2a:b0:5f:c5:af:53:3e:d6:74:71:c4:b9:8c:e3:65:ff:02:b4:
bd:8e:cd:ae:e1:73:8a:c4:6e:49:c0:ce:c1:cc:a5:f6:81:0f:
c4:3b:61:ca:18:d5:45:61:6b:20:b5:6c:c5:4d:ec:73:ba:fd:
ef:58:17:6c:24:d9:fc:ab:99:6a:d1:19:95:68:62:3d:4b:77:
c6:bd:6b:43:71:a5:0d:1d:c8:39:77:85:a7:cf:eb:fa:9b:cf:
9d:8b:44:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZXH1XRBuOAvblILxaATnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0YzBkNjk0ZDU5ZDdkMzZiYTQyMWEzMDUwZjRlYzdkZDM3
ODFlZmQwHhcNMjYwMzI5MDcwMTA1WhcNMjYwMzMwMDcwMTA1WjAzMTEwLwYDVQQD
EygxNWY0MmEyNzI4MmJjOWNiNTA3M2ZiYzgyNTQyOGE2M2E3MDhjYjUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoVL4XKp1/YXQQ9m43Aq5w+PFy/ks
ZfcDjdkny+HqFts/CLviZj+jXnEngJ2uKO3WVRHK4eh4mvJvwwzbkwhB/7r+7BuM
65FUa/ZBnPUTHA+kpz6ppigbsD2UzuOCcPuNI0/VR3q9TjtcxDNLH05aviAi/BPk
6EOWyxPYmFx8JXIkopz3gDeoqDr/6X67HnfMb3yflJphstWScJFiRvwneGsJOZad
D/q67BlaSAeSWrfI5aVg4DsyLjoUmpGeVRm7YtiSp62NzkDz4PsTdZ0AqW9xUjGP
bkduTG8WU/tirgCwbQGbWD6s1zHv+gq21J4gIVUoFc8tvIP3xcJiIltypwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBX0KicoK8nLUHP7yCVCimOnCMtSMB8GA1UdIwQY
MBaAFNTA1pTVnX02ukIaMFD07H3TeB79MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMU1EV2xOV2RmVGE2UWhvd1VQVHNmZE40SHYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS80MWNjY2UtYWNkOC00ZmI4LWIxNDgt
YTc5NTEwZTYxM2U4LzEvMU1EV2xOV2RmVGE2UWhvd1VQVHNmZE40SHYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS80MWNjY2UtYWNkOC00ZmI4LWIxNDgtYTc5NTEwZTYxM2U4
LzEvMU1EV2xOV2RmVGE2UWhvd1VQVHNmZE40SHYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH5Onj8YZ
5owl8C4rRdfV9kfyAHf0hvx84eVAShnYVnPgbxwedcVOgKAz4aMv/qCN2+ni+NyZ
J8uZJkA4U/JoP+f95et+YSgBjl+YNVjefzBS5OmLRHnFfBktY39k1VfYywWaGuUF
nXzLqRhdDUT2sqjBZscJBnXOpQiBM9JnmSFR2DVd9Eq2kHeTXvOgyuX+5RaROEYy
4cDqhuUU2dXFUFkOKrBfxa9TPtZ0ccS5jONl/wK0vY7NruFzisRuScDOwcyl9oEP
xDthyhjVRWFrILVsxU3sc7r971gXbCTZ/KuZatEZlWhiPUt3xr1rQ3GlDR3IOXeF
p8/r+pvPnYtEhA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:58 2026 by rpki-client