Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
File: mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft (raw, json)
Hash identifier: CGvD+e+ZmcJUHeeFjUUmXLRho9SJcPpUkr7yhRTsvkg=
Subject key identifier: 56:81:93:4D:B3:12:07:8D:F6:B6:DC:F7:7D:F5:21:F1:DE:FB:45:1E
Authority key identifier: 9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
Certificate issuer: /CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Certificate serial: 019D3A548CE7C1E3748DC14D7217DC820734
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
Manifest number: 1332
Signing time: Sun 29 Mar 2026 16:01:52 +0000
Manifest this update: Sun 29 Mar 2026 16:01:52 +0000
Manifest next update: Mon 30 Mar 2026 16:01:52 +0000
Files and hashes: 1: mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl (hash: nE0hDenucxt+69+getdM9HO8kNa371sCzy5c1pdwmkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:54:8c:e7:c1:e3:74:8d:c1:4d:72:17:dc:82:07:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Validity
Not Before: Mar 29 16:01:52 2026 GMT
Not After : Mar 30 16:01:52 2026 GMT
Subject: CN=5681934db312078df6b6dcf77df521f1defb451e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:29:b7:d5:d9:d1:02:6c:77:1c:73:0a:0e:b8:
52:ac:9a:a2:b5:8d:91:b9:8e:52:21:01:44:5e:62:
4b:d0:37:e0:e1:3b:24:9e:9e:1d:8c:7a:6c:35:c1:
58:5c:8e:3c:66:9a:e4:22:c5:73:3e:45:fd:33:25:
30:4a:92:4c:16:01:ec:04:eb:55:db:f3:90:50:2f:
5c:44:5f:da:09:c4:72:7d:50:30:b8:11:d1:c1:95:
a2:62:0d:09:92:56:5c:c8:9f:55:42:42:23:dc:b6:
0d:6e:b0:f2:af:6f:83:aa:cb:25:01:f4:68:99:67:
cd:06:81:2c:64:51:ad:30:ac:ea:da:f0:3e:23:ed:
88:34:b2:36:0f:62:09:25:4e:31:ef:8d:a1:9d:a0:
c7:31:ae:87:26:83:e7:00:2f:77:10:05:51:a9:54:
d7:e8:bd:54:0a:16:b0:8c:cd:fa:0a:a7:0d:59:da:
c4:2b:cc:4b:af:11:51:b7:37:e3:4e:7d:e3:8f:b9:
43:0e:96:65:88:4d:5d:15:bb:74:24:2b:4b:3a:93:
6b:80:12:d2:96:db:9b:74:f9:c9:23:59:54:4b:16:
6a:f1:5d:2f:d1:c3:bd:19:90:40:10:30:da:1b:01:
3b:69:df:0f:7a:80:80:7e:11:29:f0:d2:00:27:77:
57:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:81:93:4D:B3:12:07:8D:F6:B6:DC:F7:7D:F5:21:F1:DE:FB:45:1E
X509v3 Authority Key Identifier:
keyid:9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:a8:61:cd:e8:ea:cb:7d:52:38:f3:23:43:5d:ff:32:4a:95:
ee:1e:e9:83:77:ae:d8:19:ab:ff:ea:8d:e4:ca:3a:4b:86:d6:
2d:78:b7:fe:5b:cc:db:7f:b7:b2:84:a7:3d:79:0d:74:74:a6:
b5:1f:8e:4d:5d:9b:d7:a3:0a:f8:bd:19:a2:b3:ca:3f:c2:b5:
1d:14:a4:50:d2:3c:3c:2b:ef:97:39:3c:db:68:b3:62:f8:7e:
bf:59:95:7b:8c:48:97:18:f7:e3:59:28:24:5c:fc:45:3a:61:
60:44:bc:6f:b3:bf:0a:32:90:f4:84:79:06:bd:78:30:9b:7c:
91:3d:21:93:3a:eb:44:84:fa:19:b5:ff:3c:5f:40:0c:8d:14:
da:6a:bb:4d:5e:05:d5:c7:3f:bc:bd:e4:cf:9b:00:32:0d:32:
38:43:0b:2b:69:7d:9e:c2:d5:68:8a:49:46:8f:29:9d:8f:75:
0f:45:3e:17:95:fb:d3:cf:11:50:64:b9:ff:01:28:b1:b5:8c:
da:d7:33:c3:e5:70:49:83:95:2d:5e:aa:02:58:ad:cc:f8:94:
95:11:b9:2d:3e:6f:7a:3f:ba:de:52:ee:44:90:83:9b:2a:ac:
da:0f:7a:15:ac:f9:3c:73:37:ac:aa:73:ce:ad:dd:07:f5:02:
f3:25:b8:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06VIznweN0jcFNchfcggc0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhZjlkMWU1NWY0M2U0ZmRkNmQyNGZiNGIwZWRhNmU5ZDEy
OGFhNTEwHhcNMjYwMzI5MTYwMTUyWhcNMjYwMzMwMTYwMTUyWjAzMTEwLwYDVQQD
Eyg1NjgxOTM0ZGIzMTIwNzhkZjZiNmRjZjc3ZGY1MjFmMWRlZmI0NTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiim31dnRAmx3HHMKDrhSrJqitY2R
uY5SIQFEXmJL0Dfg4Tsknp4djHpsNcFYXI48ZprkIsVzPkX9MyUwSpJMFgHsBOtV
2/OQUC9cRF/aCcRyfVAwuBHRwZWiYg0JklZcyJ9VQkIj3LYNbrDyr2+DqsslAfRo
mWfNBoEsZFGtMKzq2vA+I+2INLI2D2IJJU4x742hnaDHMa6HJoPnAC93EAVRqVTX
6L1UChawjM36CqcNWdrEK8xLrxFRtzfjTn3jj7lDDpZliE1dFbt0JCtLOpNrgBLS
ltubdPnJI1lUSxZq8V0v0cO9GZBAEDDaGwE7ad8PeoCAfhEp8NIAJ3dXwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFaBk02zEgeN9rbc9331IfHe+0UeMB8GA1UdIwQY
MBaAFJr50eVfQ+T91tJPtLDtpunRKKpRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXZuUjVWOUQ1UDNXMGstMHNPMm02ZEVvcWxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS8wYzVlZDctMGU3Mi00ZWFkLTkwNmMt
MjkxYTMxNjRhMGI4LzEvbXZuUjVWOUQ1UDNXMGstMHNPMm02ZEVvcWxFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS8wYzVlZDctMGU3Mi00ZWFkLTkwNmMtMjkxYTMxNjRhMGI4
LzEvbXZuUjVWOUQ1UDNXMGstMHNPMm02ZEVvcWxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbahhzejq
y31SOPMjQ13/MkqV7h7pg3eu2Bmr/+qN5Mo6S4bWLXi3/lvM23+3soSnPXkNdHSm
tR+OTV2b16MK+L0ZorPKP8K1HRSkUNI8PCvvlzk822izYvh+v1mVe4xIlxj341ko
JFz8RTphYES8b7O/CjKQ9IR5Br14MJt8kT0hkzrrRIT6GbX/PF9ADI0U2mq7TV4F
1cc/vL3kz5sAMg0yOEMLK2l9nsLVaIpJRo8pnY91D0U+F5X7088RUGS5/wEosbWM
2tczw+VwSYOVLV6qAlitzPiUlRG5LT5vej+63lLuRJCDmyqs2g96Faz5PHM3rKpz
zq3dB/UC8yW4Yg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:08:00 2026 by rpki-client