Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
File: rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft (raw, json)
Hash identifier: fmcmNM5K9a9R+Nbohnz2UtEzU0bQbP4q0hxThzs+ctU=
Subject key identifier: 30:3A:CA:2D:64:2A:44:45:7A:40:35:7A:92:4A:7C:F4:15:78:A5:78
Authority key identifier: AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9
Certificate issuer: /CN=aec5c7ab5b72181e4e4211322215e9776b4900f9
Certificate serial: 019CAD22FFDE4D5E9539E31918FDAD44C100
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
Manifest number: 0D44
Signing time: Mon 02 Mar 2026 06:01:17 +0000
Manifest this update: Mon 02 Mar 2026 06:01:17 +0000
Manifest next update: Tue 03 Mar 2026 06:01:17 +0000
Files and hashes: 1: rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl (hash: jD9sBrM/Ej2oakbON7S7K0DOGds53mp96i0FAL6wdes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 06:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:ff:de:4d:5e:95:39:e3:19:18:fd:ad:44:c1:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aec5c7ab5b72181e4e4211322215e9776b4900f9
Validity
Not Before: Mar 2 06:01:17 2026 GMT
Not After : Mar 3 06:01:17 2026 GMT
Subject: CN=303aca2d642a44457a40357a924a7cf41578a578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9c:44:45:b4:96:ad:f1:78:1a:11:66:ee:2d:
11:2f:cb:ad:ac:3a:f0:6a:aa:1f:d7:2c:f4:ca:e9:
25:ca:4b:68:0f:f2:2a:eb:43:df:53:bf:d0:ec:25:
82:e8:ee:b4:91:7a:5c:12:a7:ec:a1:3a:5b:f9:00:
3e:49:b6:74:a2:c5:6b:44:af:bb:21:29:fb:e1:a0:
ab:be:98:0d:95:42:6f:1e:08:e9:82:d0:39:bc:a6:
b5:68:45:30:a4:b6:90:b2:d2:2d:ca:51:ea:56:87:
19:fe:f9:e0:1f:b3:42:6f:b2:16:a1:4f:7b:ff:0f:
61:31:69:c4:4d:04:b7:2d:bf:f2:bf:66:34:f4:07:
69:78:52:62:f0:ed:d3:ed:29:df:03:f7:32:c8:20:
35:f2:b2:02:67:10:92:1f:fc:7a:62:8a:3e:1b:3d:
fc:e1:54:4e:9a:0b:cf:b1:fc:ec:ca:6d:2a:9c:92:
9a:13:8c:5f:f2:d9:93:2e:d3:05:ed:8c:94:34:33:
a7:1e:d5:61:b6:65:23:db:0d:c3:c8:08:bb:a2:22:
73:ec:7a:65:ef:53:c1:b2:a3:3a:17:1c:7e:03:40:
c2:d2:78:ab:0e:79:36:05:40:f5:ab:c7:0d:36:69:
d4:5c:d5:9d:af:e9:e2:d0:f7:fd:a2:ee:f8:da:c4:
62:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:3A:CA:2D:64:2A:44:45:7A:40:35:7A:92:4A:7C:F4:15:78:A5:78
X509v3 Authority Key Identifier:
keyid:AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:cc:6f:cc:d0:46:5b:42:6d:65:91:df:12:3c:5a:e7:02:db:
c8:0f:2a:86:c3:0a:3b:41:ae:6a:b7:d5:c7:e4:30:47:63:dc:
5b:0d:39:16:37:a9:3a:19:04:61:67:47:61:8d:55:05:fc:a3:
63:9f:80:e1:fa:b6:5c:56:36:f0:25:5e:51:ea:9e:5b:e7:e6:
c0:75:35:4a:e3:b8:b8:5f:a6:3b:f3:2a:6b:00:71:c2:fd:b4:
eb:11:0e:4f:a0:dc:7c:45:48:03:16:95:37:a8:3e:a3:ac:ee:
ec:ee:28:0a:83:5d:db:07:09:69:89:51:f3:02:95:e0:74:31:
4e:1a:ce:91:eb:70:eb:9d:2b:d3:a1:ae:1d:c0:f4:36:d0:e1:
f6:ac:97:f7:44:d7:08:a8:63:69:bd:01:a3:47:e2:ed:e1:8c:
ba:f4:6f:59:80:c2:5d:c9:6f:c8:14:a9:51:14:27:0e:21:a2:
a4:84:27:07:e0:b1:ec:99:56:f9:c3:ef:0c:db:b0:d6:d0:24:
95:c3:1e:3b:c3:01:8a:be:e1:c0:eb:4e:72:0d:f8:fd:36:1e:
22:f7:8e:c1:f7:65:d4:17:ba:cb:97:84:3a:ed:20:ef:f5:5a:
e6:88:27:b2:ec:37:10:ee:58:f9:2c:1c:47:ae:41:e3:44:ee:
53:7f:4d:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytIv/eTV6VOeMZGP2tRMEAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlYzVjN2FiNWI3MjE4MWU0ZTQyMTEzMjIyMTVlOTc3NmI0
OTAwZjkwHhcNMjYwMzAyMDYwMTE3WhcNMjYwMzAzMDYwMTE3WjAzMTEwLwYDVQQD
EygzMDNhY2EyZDY0MmE0NDQ1N2E0MDM1N2E5MjRhN2NmNDE1NzhhNTc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwJxERbSWrfF4GhFm7i0RL8utrDrw
aqof1yz0yuklyktoD/Iq60PfU7/Q7CWC6O60kXpcEqfsoTpb+QA+SbZ0osVrRK+7
ISn74aCrvpgNlUJvHgjpgtA5vKa1aEUwpLaQstItylHqVocZ/vngH7NCb7IWoU97
/w9hMWnETQS3Lb/yv2Y09AdpeFJi8O3T7SnfA/cyyCA18rICZxCSH/x6Yoo+Gz38
4VROmgvPsfzsym0qnJKaE4xf8tmTLtMF7YyUNDOnHtVhtmUj2w3DyAi7oiJz7Hpl
71PBsqM6Fxx+A0DC0nirDnk2BUD1q8cNNmnUXNWdr+ni0Pf9ou742sRinwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDA6yi1kKkRFekA1epJKfPQVeKV4MB8GA1UdIwQY
MBaAFK7Fx6tbchgeTkIRMiIV6XdrSQD5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnNYSHExdHlHQjVPUWhFeUloWHBkMnRKQVBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC85ODgxOGQtZjhiMy00NjQ1LTg2YTgt
MzAyZDkyMjI0Y2IyLzEvcnNYSHExdHlHQjVPUWhFeUloWHBkMnRKQVBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC85ODgxOGQtZjhiMy00NjQ1LTg2YTgtMzAyZDkyMjI0Y2Iy
LzEvcnNYSHExdHlHQjVPUWhFeUloWHBkMnRKQVBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHsxvzNBG
W0JtZZHfEjxa5wLbyA8qhsMKO0GuarfVx+QwR2PcWw05FjepOhkEYWdHYY1VBfyj
Y5+A4fq2XFY28CVeUeqeW+fmwHU1SuO4uF+mO/MqawBxwv206xEOT6DcfEVIAxaV
N6g+o6zu7O4oCoNd2wcJaYlR8wKV4HQxThrOketw650r06GuHcD0NtDh9qyX90TX
CKhjab0Bo0fi7eGMuvRvWYDCXclvyBSpURQnDiGipIQnB+Cx7JlW+cPvDNuw1tAk
lcMeO8MBir7hwOtOcg34/TYeIveOwfdl1Be6y5eEOu0g7/Va5ognsuw3EO5Y+Swc
R65B40TuU39NYw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 16:33:02 2026 by rpki-client