Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
File: MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft (raw, json)
Hash identifier: RJHMb91BU2Juc4wWKlVNsIsx8cmbYd8pZNGXgYA1wqE=
Subject key identifier: 51:6C:A9:05:48:45:02:1C:BD:17:6A:98:1D:AB:84:BC:5E:78:FF:67
Authority key identifier: 31:D7:D9:D2:9C:EC:F8:E5:91:22:23:3D:71:6E:6B:05:0E:71:84:78
Certificate issuer: /CN=31d7d9d29cecf8e59122233d716e6b050e718478
Certificate serial: 019CABD962237EA02C564C54CF5DDB2682B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
Manifest number: 0423
Signing time: Mon 02 Mar 2026 00:01:16 +0000
Manifest this update: Mon 02 Mar 2026 00:01:16 +0000
Manifest next update: Tue 03 Mar 2026 00:01:16 +0000
Files and hashes: 1: 9jfmZ8bQaVGPFDWRFHvQHmnS8fo.roa (hash: /DXZZnlzFxIqpfLKa2jzn4JOmraJhYpvlatvoWLWvdY=)
2: MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl (hash: A+9FHZY18MFLspfmtOy/GdvvZUIykS1xbdSsFkEBNb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:62:23:7e:a0:2c:56:4c:54:cf:5d:db:26:82:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d7d9d29cecf8e59122233d716e6b050e718478
Validity
Not Before: Mar 2 00:01:16 2026 GMT
Not After : Mar 3 00:01:16 2026 GMT
Subject: CN=516ca9054845021cbd176a981dab84bc5e78ff67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:33:80:dd:b4:aa:74:49:71:18:f7:b5:62:b9:
75:90:01:96:93:77:21:b0:af:ac:65:e8:ef:99:44:
6e:f7:84:ad:e1:6e:c7:86:7e:fe:dd:29:1c:11:44:
2f:7b:2c:95:57:b4:28:bb:46:6c:4b:28:e4:60:94:
f9:85:9d:57:c3:9e:eb:91:cc:8a:fd:99:65:bc:25:
d1:83:32:72:07:18:a1:b3:ea:63:83:53:fd:2c:81:
7f:e0:b4:ad:d8:98:f3:ea:4f:85:8d:4f:24:77:bc:
e4:37:46:51:e4:3b:57:22:9c:f2:2f:cd:a0:e1:79:
5e:ea:f4:85:0b:6b:06:b5:ea:4c:48:0c:f3:f4:82:
9e:82:19:80:28:96:7a:98:b5:92:36:76:8e:65:de:
95:b8:99:53:ac:1c:31:99:40:60:02:84:51:1e:da:
9d:ec:18:87:8c:7f:1d:7c:b8:ae:74:b5:c9:cd:3d:
08:ff:64:09:db:46:15:5a:d2:cd:c9:22:46:30:c2:
c8:4f:1f:fb:20:88:66:d9:8d:d2:2e:37:b7:14:78:
2b:9e:7c:2d:29:57:a1:95:d7:98:98:fc:b8:51:cd:
e6:8d:28:0f:00:c9:c7:2e:6c:3f:d2:a1:b4:42:e2:
32:d5:33:d1:a3:13:5d:37:fe:fc:92:00:f5:f9:a6:
5d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:6C:A9:05:48:45:02:1C:BD:17:6A:98:1D:AB:84:BC:5E:78:FF:67
X509v3 Authority Key Identifier:
keyid:31:D7:D9:D2:9C:EC:F8:E5:91:22:23:3D:71:6E:6B:05:0E:71:84:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:1c:85:97:ea:fe:f4:c7:c7:a6:e5:5e:b1:b9:b1:ae:bb:9e:
ed:37:58:96:77:af:d4:64:54:3b:fc:b6:72:de:90:d3:11:67:
d2:00:7e:7f:40:b7:7a:9d:5e:e6:e4:f0:a4:f3:e7:0a:f5:95:
60:68:70:62:8a:c0:d4:07:21:d5:1e:40:4b:74:19:84:b4:07:
c9:ff:01:c3:2d:d2:0d:61:72:18:a2:65:32:40:23:e8:d0:3a:
98:ae:71:86:64:de:0c:d4:19:1d:ba:12:89:b0:4e:67:57:2e:
f8:35:fa:e7:66:5d:b6:81:71:c0:60:3a:36:a7:b7:0c:38:89:
18:8c:f0:b4:5d:2d:02:b7:16:c3:3f:c7:53:fc:43:d2:c4:52:
da:94:4b:00:12:f5:f5:90:5c:ea:1f:59:af:80:e7:3d:6d:ee:
c5:d9:11:44:1a:7e:b7:c5:29:d8:74:fd:f2:6b:13:3c:6c:72:
18:52:99:6c:f9:81:1d:cf:56:68:d1:ca:9e:2d:cf:80:db:00:
c8:79:2b:09:60:a1:7b:58:af:cb:b2:c0:51:6f:8e:e1:a4:3b:
0d:21:1f:fa:92:72:04:90:b1:2e:95:cb:a5:3e:ac:b1:50:12:
54:ce:c2:a8:a7:66:a6:55:5c:a2:d8:fa:95:9f:e6:2c:17:a7:
ef:42:46:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2WIjfqAsVkxUz13bJoK1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxZDdkOWQyOWNlY2Y4ZTU5MTIyMjMzZDcxNmU2YjA1MGU3
MTg0NzgwHhcNMjYwMzAyMDAwMTE2WhcNMjYwMzAzMDAwMTE2WjAzMTEwLwYDVQQD
Eyg1MTZjYTkwNTQ4NDUwMjFjYmQxNzZhOTgxZGFiODRiYzVlNzhmZjY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3DOA3bSqdElxGPe1Yrl1kAGWk3ch
sK+sZejvmURu94St4W7Hhn7+3SkcEUQveyyVV7Qou0ZsSyjkYJT5hZ1Xw57rkcyK
/ZllvCXRgzJyBxihs+pjg1P9LIF/4LSt2Jjz6k+FjU8kd7zkN0ZR5DtXIpzyL82g
4Xle6vSFC2sGtepMSAzz9IKeghmAKJZ6mLWSNnaOZd6VuJlTrBwxmUBgAoRRHtqd
7BiHjH8dfLiudLXJzT0I/2QJ20YVWtLNySJGMMLITx/7IIhm2Y3SLje3FHgrnnwt
KVehldeYmPy4Uc3mjSgPAMnHLmw/0qG0QuIy1TPRoxNdN/78kgD1+aZdiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFFsqQVIRQIcvRdqmB2rhLxeeP9nMB8GA1UdIwQY
MBaAFDHX2dKc7PjlkSIjPXFuawUOcYR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWRmWjBwenMtT1dSSWlNOWNXNXJCUTV4aEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9hZjgzMmItYTY0MS00ZTQ2LWE4MzYt
NDBmNGM2OGU5YTMxLzEvTWRmWjBwenMtT1dSSWlNOWNXNXJCUTV4aEhnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC9hZjgzMmItYTY0MS00ZTQ2LWE4MzYtNDBmNGM2OGU5YTMx
LzEvTWRmWjBwenMtT1dSSWlNOWNXNXJCUTV4aEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATxyFl+r+
9MfHpuVesbmxrrue7TdYlnev1GRUO/y2ct6Q0xFn0gB+f0C3ep1e5uTwpPPnCvWV
YGhwYorA1Ach1R5AS3QZhLQHyf8Bwy3SDWFyGKJlMkAj6NA6mK5xhmTeDNQZHboS
ibBOZ1cu+DX652ZdtoFxwGA6Nqe3DDiJGIzwtF0tArcWwz/HU/xD0sRS2pRLABL1
9ZBc6h9Zr4DnPW3uxdkRRBp+t8Up2HT98msTPGxyGFKZbPmBHc9WaNHKni3PgNsA
yHkrCWChe1ivy7LAUW+O4aQ7DSEf+pJyBJCxLpXLpT6ssVASVM7CqKdmplVcotj6
lZ/mLBen70JG5Q==
-----END CERTIFICATE-----
Generated at Mon Mar 2 10:39:02 2026 by rpki-client