Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.mft
File: MU0IhXjsDimwS0PpAUk1hnJjZP0.mft (raw, json)
Hash identifier: oQ+YiICgO6KCXuZ27MhBup5gmptFTl2Q8G37EKgFGLk=
Subject key identifier: D4:60:B0:D4:00:5A:A8:58:08:47:BD:41:2A:95:62:5D:94:EC:F6:36
Authority key identifier: 31:4D:08:85:78:EC:0E:29:B0:4B:43:E9:01:49:35:86:72:63:64:FD
Certificate issuer: /CN=314d088578ec0e29b04b43e901493586726364fd
Certificate serial: 019CAB6B53A6A1599749591AD0828DFAA783
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MU0IhXjsDimwS0PpAUk1hnJjZP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.mft
Manifest number: 157E
Signing time: Sun 01 Mar 2026 22:01:03 +0000
Manifest this update: Sun 01 Mar 2026 22:01:03 +0000
Manifest next update: Mon 02 Mar 2026 22:01:03 +0000
Files and hashes: 1: MU0IhXjsDimwS0PpAUk1hnJjZP0.crl (hash: eqUwYCkqLPDuMyEVSpgO/+KPKbkw84Zs8ySXUIrs9/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/MU0IhXjsDimwS0PpAUk1hnJjZP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:53:a6:a1:59:97:49:59:1a:d0:82:8d:fa:a7:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=314d088578ec0e29b04b43e901493586726364fd
Validity
Not Before: Mar 1 22:01:03 2026 GMT
Not After : Mar 2 22:01:03 2026 GMT
Subject: CN=d460b0d4005aa8580847bd412a95625d94ecf636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:dc:d7:41:22:a1:c4:e2:01:59:1e:81:95:3f:
d3:91:03:a6:e8:67:af:4a:49:fe:a4:41:90:49:e8:
da:f3:0c:25:2d:68:aa:be:8b:93:0c:f6:58:99:9a:
a7:07:e3:5d:bb:22:6c:36:36:2b:b5:9b:b7:43:5e:
89:8d:d8:f7:d4:17:86:23:1e:0b:f9:5e:a1:d9:b2:
70:36:d9:26:76:31:14:e6:28:16:cd:f8:b4:f1:57:
ed:0c:58:53:69:09:18:0f:31:f7:3d:55:f4:86:01:
e2:4d:98:b1:8c:93:0e:bf:60:7b:f3:96:ae:19:7d:
14:94:7b:02:7a:ee:6f:08:83:95:f9:89:de:9a:bb:
4c:e8:14:a3:52:15:cc:2e:d5:6f:ca:11:06:23:cc:
68:6d:1a:fe:a2:18:9a:ff:29:2c:8e:33:b9:37:77:
f0:62:68:7d:32:b5:01:13:fe:eb:d6:f5:5f:9e:b0:
cb:99:f6:97:17:92:14:be:b6:a7:e9:11:ef:49:00:
d1:42:d4:19:37:ed:8d:93:3c:c4:94:fa:19:59:cc:
c4:db:36:88:98:71:a6:a4:d1:62:1f:8b:13:81:60:
9c:f5:75:1c:2b:d6:58:eb:17:27:3a:90:c6:d2:5a:
81:0c:0a:89:f0:a6:22:c9:39:c7:c0:d7:ca:e4:4d:
49:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:60:B0:D4:00:5A:A8:58:08:47:BD:41:2A:95:62:5D:94:EC:F6:36
X509v3 Authority Key Identifier:
keyid:31:4D:08:85:78:EC:0E:29:B0:4B:43:E9:01:49:35:86:72:63:64:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MU0IhXjsDimwS0PpAUk1hnJjZP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:af:70:65:2c:19:58:f9:95:29:56:b5:cc:a3:3d:11:15:33:
7e:de:f9:d1:aa:45:32:ae:56:6e:99:9a:e0:42:c9:e8:7b:4b:
69:f9:6d:e8:12:3a:fb:b0:2a:d9:d8:0e:a4:57:c4:ff:98:fe:
fe:90:b9:7e:cb:73:19:a0:8d:b1:6f:8a:4a:70:ad:7c:d7:f8:
d6:8d:3f:95:e5:c0:6c:c3:0f:d7:cd:a8:6b:c9:15:df:4b:56:
5c:e6:7b:33:02:dc:ee:7c:a5:5d:7e:1d:53:58:88:ff:fd:bf:
9a:32:a7:ea:90:45:97:23:cc:ed:a1:bc:f4:a8:57:24:d3:0d:
ec:92:56:ea:b1:04:91:80:e5:66:9a:bc:58:f2:43:a1:54:d3:
4e:bb:1f:53:70:8d:b4:e3:8d:cf:12:67:3b:1f:3a:1d:fc:06:
2b:4d:8b:f3:57:0d:5f:0b:01:f2:2c:25:e1:4e:96:ed:3b:b1:
72:7a:4c:ac:da:dd:d1:2c:42:4f:b2:a5:bc:4e:df:9e:07:12:
cb:e1:af:00:bb:6a:ce:c5:93:99:31:76:95:2b:2d:26:07:14:
a9:2a:0d:e0:24:3c:21:d7:1a:71:c9:f9:e6:67:b2:68:af:9b:
40:19:97:bd:23:7e:16:3c:5f:fc:19:8f:72:a0:60:e7:71:cc:
94:00:13:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyra1OmoVmXSVka0IKN+qeDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxNGQwODg1NzhlYzBlMjliMDRiNDNlOTAxNDkzNTg2NzI2
MzY0ZmQwHhcNMjYwMzAxMjIwMTAzWhcNMjYwMzAyMjIwMTAzWjAzMTEwLwYDVQQD
EyhkNDYwYjBkNDAwNWFhODU4MDg0N2JkNDEyYTk1NjI1ZDk0ZWNmNjM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNzXQSKhxOIBWR6BlT/TkQOm6Gev
Skn+pEGQSeja8wwlLWiqvouTDPZYmZqnB+NduyJsNjYrtZu3Q16Jjdj31BeGIx4L
+V6h2bJwNtkmdjEU5igWzfi08VftDFhTaQkYDzH3PVX0hgHiTZixjJMOv2B785au
GX0UlHsCeu5vCIOV+YnemrtM6BSjUhXMLtVvyhEGI8xobRr+ohia/yksjjO5N3fw
Ymh9MrUBE/7r1vVfnrDLmfaXF5IUvran6RHvSQDRQtQZN+2NkzzElPoZWczE2zaI
mHGmpNFiH4sTgWCc9XUcK9ZY6xcnOpDG0lqBDAqJ8KYiyTnHwNfK5E1J4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNRgsNQAWqhYCEe9QSqVYl2U7PY2MB8GA1UdIwQY
MBaAFDFNCIV47A4psEtD6QFJNYZyY2T9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVUwSWhYanNEaW13UzBQcEFVazFobkpqWlAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi8zNzM4NzQtMzRmZC00ZTY0LWI2YTkt
MTgwMDZiNjY0M2FmLzEvTVUwSWhYanNEaW13UzBQcEFVazFobkpqWlAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi8zNzM4NzQtMzRmZC00ZTY0LWI2YTktMTgwMDZiNjY0M2Fm
LzEvTVUwSWhYanNEaW13UzBQcEFVazFobkpqWlAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGa9wZSwZ
WPmVKVa1zKM9ERUzft750apFMq5Wbpma4ELJ6HtLaflt6BI6+7Aq2dgOpFfE/5j+
/pC5fstzGaCNsW+KSnCtfNf41o0/leXAbMMP182oa8kV30tWXOZ7MwLc7nylXX4d
U1iI//2/mjKn6pBFlyPM7aG89KhXJNMN7JJW6rEEkYDlZpq8WPJDoVTTTrsfU3CN
tOONzxJnOx86HfwGK02L81cNXwsB8iwl4U6W7TuxcnpMrNrd0SxCT7KlvE7fngcS
y+GvALtqzsWTmTF2lSstJgcUqSoN4CQ8Idcaccn55meyaK+bQBmXvSN+Fjxf/BmP
cqBg53HMlAATRQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:03:06 2026 by rpki-client