Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
File: d9LZKEIxBOXDSA4htKPtFJiyon4.mft (raw, json)
Hash identifier: dsTW9Z91RgTEbn+UuoTInAp5lrgx1pSJncxk6WnHR0M=
Subject key identifier: 1A:BD:1F:02:B8:89:3B:9D:EE:2A:3E:39:A4:62:EF:6B:CD:A1:DD:D6
Authority key identifier: 77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
Certificate issuer: /CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Certificate serial: 019CA9B3EB06B849AAF9A61C18BA223C0E75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
Manifest number: 0DC0
Signing time: Sun 01 Mar 2026 14:01:06 +0000
Manifest this update: Sun 01 Mar 2026 14:01:06 +0000
Manifest next update: Mon 02 Mar 2026 14:01:06 +0000
Files and hashes: 1: 6h9k6xzi-eiSHNvIfR1iiY1lGdQ.roa (hash: pfVa1UicKiOy2Facu1pK6Uyiw1IMqVl6D7uB18F/7yw=)
2: 9Y6XWJ6VWz8otzDPBalCUtCfzZU.roa (hash: sjrsCbBwaUlQ8V+c9dddc6DlyD0j++DkIm2cvSRmRTg=)
3: bWOm_rxxwcbWaTmu2SnHiIL1r88.asa (hash: QCA4tD64a2YOFOaYQUc8hAaRjVEoTC+6/Xd9DFb0omA=)
4: d9LZKEIxBOXDSA4htKPtFJiyon4.crl (hash: rcZPNcV82Ej4dXzlXe8awlUcgnf8HkFjKw85m4+/Kxs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b3:eb:06:b8:49:aa:f9:a6:1c:18:ba:22:3c:0e:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Validity
Not Before: Mar 1 14:01:06 2026 GMT
Not After : Mar 2 14:01:06 2026 GMT
Subject: CN=1abd1f02b8893b9dee2a3e39a462ef6bcda1ddd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bb:22:46:cc:6d:dc:b7:34:e4:3d:25:6b:ad:
8d:a7:69:5f:cf:90:cc:ea:38:9e:ba:85:39:e9:a6:
b5:7b:18:f4:76:5e:33:8b:79:2a:07:9f:14:30:be:
45:31:56:6c:61:52:a5:ee:53:33:b1:60:a4:2d:d1:
cd:fc:a5:ca:13:33:4f:c3:bd:be:64:e7:57:61:69:
d2:c3:13:79:87:9c:ad:11:e9:eb:85:32:35:11:3c:
11:a3:49:50:0c:55:de:0c:dd:89:36:cb:78:70:a5:
7c:a9:29:1a:14:1f:c9:10:61:cd:f8:24:c2:28:98:
f7:0b:6b:97:34:e9:c1:b5:c7:16:bb:ed:1b:d1:48:
53:81:33:38:4d:8c:a7:27:0d:10:7e:1f:5b:61:6c:
ad:86:db:a4:ce:2b:91:d4:5a:d4:95:26:3f:2d:73:
e8:30:b7:7d:3a:2a:98:17:88:30:f7:2a:c5:87:5c:
67:58:22:93:4f:a1:30:15:57:6b:a8:43:bb:ec:13:
83:51:6d:fd:aa:5e:25:f4:19:b8:80:88:5a:2d:72:
cb:ad:7c:4f:17:3c:82:a5:fa:fc:f5:8a:97:5f:dc:
61:4c:9f:38:13:c3:ed:74:c1:42:ad:0e:3c:34:75:
61:38:0b:d4:88:79:e5:7e:84:4a:ff:29:f0:0f:59:
8f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BD:1F:02:B8:89:3B:9D:EE:2A:3E:39:A4:62:EF:6B:CD:A1:DD:D6
X509v3 Authority Key Identifier:
keyid:77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:ba:90:72:29:b5:35:d5:c0:7a:7b:03:e8:d2:95:ff:5d:25:
7b:a9:ab:67:00:9b:35:19:3c:bc:5a:8e:29:1f:ac:60:b4:64:
fd:8f:25:da:b9:4b:19:6f:69:95:e9:b7:be:3f:ad:d8:51:6a:
3e:ec:3e:52:57:2f:61:3a:2d:4c:05:f0:b3:3b:d0:22:cd:1d:
81:87:0d:31:18:e4:24:9b:06:2e:47:f3:7a:d7:15:22:a5:b8:
0d:02:bb:9e:9e:26:c0:6e:27:27:15:50:db:6d:23:56:fe:2b:
c8:02:bd:bc:9c:5e:b4:35:49:30:24:da:55:f5:de:3f:da:68:
c8:82:0a:68:ef:e5:c3:c8:51:98:78:3b:dd:1d:e1:89:4e:dd:
bf:a0:ba:1b:c2:fb:81:53:6f:a8:02:f5:09:89:d2:80:54:0f:
d1:1b:0a:e0:7f:33:7b:51:c9:11:89:37:17:f8:60:d9:50:9a:
c5:c6:30:8c:63:68:4e:c9:1b:2f:9f:8c:a1:45:a7:a4:0e:ec:
b5:f5:69:4a:ea:45:a3:0d:3b:e2:c4:dc:6c:e0:6d:9f:16:8e:
e3:b5:f4:dc:a3:25:25:56:d1:7b:0e:72:76:fc:99:b1:c3:44:
c9:19:52:2c:14:5b:60:b4:09:3b:5a:18:25:d4:5a:69:2e:61:
61:ad:03:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyps+sGuEmq+aYcGLoiPA51MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZDJkOTI4NDIzMTA0ZTVjMzQ4MGUyMWI0YTNlZDE0OThi
MmEyN2UwHhcNMjYwMzAxMTQwMTA2WhcNMjYwMzAyMTQwMTA2WjAzMTEwLwYDVQQD
EygxYWJkMWYwMmI4ODkzYjlkZWUyYTNlMzlhNDYyZWY2YmNkYTFkZGQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybsiRsxt3Lc05D0la62Np2lfz5DM
6jieuoU56aa1exj0dl4zi3kqB58UML5FMVZsYVKl7lMzsWCkLdHN/KXKEzNPw72+
ZOdXYWnSwxN5h5ytEenrhTI1ETwRo0lQDFXeDN2JNst4cKV8qSkaFB/JEGHN+CTC
KJj3C2uXNOnBtccWu+0b0UhTgTM4TYynJw0Qfh9bYWythtukziuR1FrUlSY/LXPo
MLd9OiqYF4gw9yrFh1xnWCKTT6EwFVdrqEO77BODUW39ql4l9Bm4gIhaLXLLrXxP
FzyCpfr89YqXX9xhTJ84E8PtdMFCrQ48NHVhOAvUiHnlfoRK/ynwD1mPxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBq9HwK4iTud7io+OaRi72vNod3WMB8GA1UdIwQY
MBaAFHfS2ShCMQTlw0gOIbSj7RSYsqJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8yYjllMjktZDU2OC00ZDUzLWIxMjgt
NDg4NzkyMzg4ZTViLzEvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS8yYjllMjktZDU2OC00ZDUzLWIxMjgtNDg4NzkyMzg4ZTVi
LzEvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQbqQcim1
NdXAensD6NKV/10le6mrZwCbNRk8vFqOKR+sYLRk/Y8l2rlLGW9plem3vj+t2FFq
Puw+UlcvYTotTAXwszvQIs0dgYcNMRjkJJsGLkfzetcVIqW4DQK7np4mwG4nJxVQ
220jVv4ryAK9vJxetDVJMCTaVfXeP9poyIIKaO/lw8hRmHg73R3hiU7dv6C6G8L7
gVNvqAL1CYnSgFQP0RsK4H8ze1HJEYk3F/hg2VCaxcYwjGNoTskbL5+MoUWnpA7s
tfVpSupFow074sTcbOBtnxaO47X03KMlJVbRew5ydvyZscNEyRlSLBRbYLQJO1oY
JdRaaS5hYa0Drw==
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:25:50 2026 by rpki-client