Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
File: _ORf1v09kyaEwMW8J_T6YVoQkOA.mft (raw, json)
Hash identifier: DKD+GWQNqanqqpaxbOUoLJSav8pdFLNxqh9ddRR7FDA=
Subject key identifier: C8:B3:CB:CA:22:7C:78:30:88:B9:90:F8:47:A2:4C:A1:2E:CF:E1:0E
Authority key identifier: FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
Certificate issuer: /CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Certificate serial: 019CA9B3A8F883AB0AADD7CAEF09C38E903E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
Manifest number: 0EC9
Signing time: Sun 01 Mar 2026 14:00:49 +0000
Manifest this update: Sun 01 Mar 2026 14:00:49 +0000
Manifest next update: Mon 02 Mar 2026 14:00:49 +0000
Files and hashes: 1: _ORf1v09kyaEwMW8J_T6YVoQkOA.crl (hash: MKPVxObUu92TpAq50NmsoDKV9/tSMVyTTQuHz0Y4Zmo=)
2: abxz-YS2pIcWJysLZsLURj3wFjE.roa (hash: v8u8I3KyfjrBtGFxRTuhA7B6RHsn+uH/zjkzCl303+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b3:a8:f8:83:ab:0a:ad:d7:ca:ef:09:c3:8e:90:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Validity
Not Before: Mar 1 14:00:49 2026 GMT
Not After : Mar 2 14:00:49 2026 GMT
Subject: CN=c8b3cbca227c783088b990f847a24ca12ecfe10e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b0:2a:22:65:37:c6:ea:e7:cd:a5:8d:77:6e:
6d:4a:e3:eb:de:5e:34:37:2a:87:d3:58:31:6c:fe:
5d:92:aa:37:11:cd:84:d5:1a:9f:e9:6e:39:8c:7f:
73:b6:2a:34:02:b9:ce:1d:83:79:4e:85:29:33:49:
b5:b8:0c:37:54:99:64:09:ad:5b:14:dc:a0:40:32:
ef:df:d5:51:a9:aa:69:7f:5e:28:7d:73:19:0f:ce:
d5:bc:75:86:c9:8f:80:3e:c7:13:03:c3:c7:c4:e2:
c2:1a:68:89:2f:66:e5:c4:a1:44:91:54:95:89:cf:
d7:c8:55:2a:ad:f3:be:e9:4e:24:9b:1d:1b:13:36:
f6:95:03:e9:0a:4d:ab:c8:16:15:74:bd:f9:02:79:
ef:2d:1e:38:5b:fe:68:74:8a:51:a6:4c:99:cf:39:
b9:e8:60:45:f6:58:77:94:99:f8:62:b7:73:db:b0:
f8:78:f6:f5:8e:fd:a8:ec:b1:a4:fa:cb:7d:90:35:
a1:2e:52:b5:2d:ac:dc:25:4c:9f:8e:ea:68:7b:f6:
d3:20:24:79:42:4f:1a:65:9b:52:45:aa:73:25:80:
b7:61:97:e9:3b:5c:94:32:21:f9:f9:c4:a8:db:2c:
4c:61:a1:95:b3:17:cb:16:99:27:01:9c:ea:33:d7:
31:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:B3:CB:CA:22:7C:78:30:88:B9:90:F8:47:A2:4C:A1:2E:CF:E1:0E
X509v3 Authority Key Identifier:
keyid:FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:55:6f:2e:9a:44:d3:1b:d0:c1:ea:0c:b6:0b:7b:7d:0f:46:
11:ae:35:89:da:ec:e8:12:d0:67:90:a0:75:6f:f2:af:54:88:
0c:28:20:68:54:01:15:7f:69:55:5a:48:8a:33:69:cb:3f:69:
eb:9c:94:d4:34:54:68:09:3f:69:f4:0a:b5:fb:dc:d3:9c:ea:
49:6c:3a:c9:d2:35:4d:be:76:c4:c4:26:74:ce:10:cd:fd:f1:
e8:cd:22:34:12:fd:5b:40:eb:3d:e3:23:59:1f:1a:8e:ce:53:
e8:6a:67:c4:a4:04:5e:ae:35:f0:88:ac:b2:7e:47:08:a8:1e:
dd:48:10:87:65:37:35:34:c6:45:88:93:18:f3:fe:c7:a3:0e:
b1:19:00:d5:62:1e:25:c2:4a:bb:0f:19:16:82:40:f3:7d:be:
ee:0b:37:c0:06:87:7d:b9:81:48:34:2f:cc:e9:4f:5b:e4:d0:
d5:4f:a7:72:70:9e:1f:69:03:c7:9e:e6:9a:8e:fd:b4:36:f4:
6c:f5:40:b7:33:9c:0a:e9:20:5e:c1:cb:70:8c:66:08:1c:26:
cb:fb:89:21:cb:ff:39:24:63:36:08:b9:b8:bd:6b:f3:22:41:
8f:53:1d:6d:d4:a9:ed:75:db:25:06:06:81:09:07:8c:bf:10:
80:db:40:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyps6j4g6sKrdfK7wnDjpA+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjZTQ1ZmQ2ZmQzZDkzMjY4NGMwYzViYzI3ZjRmYTYxNWEx
MDkwZTAwHhcNMjYwMzAxMTQwMDQ5WhcNMjYwMzAyMTQwMDQ5WjAzMTEwLwYDVQQD
EyhjOGIzY2JjYTIyN2M3ODMwODhiOTkwZjg0N2EyNGNhMTJlY2ZlMTBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbAqImU3xurnzaWNd25tSuPr3l40
NyqH01gxbP5dkqo3Ec2E1Rqf6W45jH9ztio0ArnOHYN5ToUpM0m1uAw3VJlkCa1b
FNygQDLv39VRqappf14ofXMZD87VvHWGyY+APscTA8PHxOLCGmiJL2blxKFEkVSV
ic/XyFUqrfO+6U4kmx0bEzb2lQPpCk2ryBYVdL35AnnvLR44W/5odIpRpkyZzzm5
6GBF9lh3lJn4Yrdz27D4ePb1jv2o7LGk+st9kDWhLlK1LazcJUyfjupoe/bTICR5
Qk8aZZtSRapzJYC3YZfpO1yUMiH5+cSo2yxMYaGVsxfLFpknAZzqM9cxgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMizy8oifHgwiLmQ+EeiTKEuz+EOMB8GA1UdIwQY
MBaAFPzkX9b9PZMmhMDFvCf0+mFaEJDgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX09SZjF2MDlreWFFd01XOEpfVDZZVm9Ra09BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9iZjVhNjQtOGFhZi00NGE4LWJhY2Ut
MzY4NTBkZjRlOTk3LzEvX09SZjF2MDlreWFFd01XOEpfVDZZVm9Ra09BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi9iZjVhNjQtOGFhZi00NGE4LWJhY2UtMzY4NTBkZjRlOTk3
LzEvX09SZjF2MDlreWFFd01XOEpfVDZZVm9Ra09BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ1VvLppE
0xvQweoMtgt7fQ9GEa41idrs6BLQZ5CgdW/yr1SIDCggaFQBFX9pVVpIijNpyz9p
65yU1DRUaAk/afQKtfvc05zqSWw6ydI1Tb52xMQmdM4Qzf3x6M0iNBL9W0DrPeMj
WR8ajs5T6GpnxKQEXq418Iissn5HCKge3UgQh2U3NTTGRYiTGPP+x6MOsRkA1WIe
JcJKuw8ZFoJA832+7gs3wAaHfbmBSDQvzOlPW+TQ1U+ncnCeH2kDx57mmo79tDb0
bPVAtzOcCukgXsHLcIxmCBwmy/uJIcv/OSRjNgi5uL1r8yJBj1MdbdSp7XXbJQYG
gQkHjL8QgNtAqA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 01:49:43 2026 by rpki-client