Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
File: a0I7KaGCk2si34-YJt1YOgBZE0o.mft (raw, json)
Hash identifier: WOtekv+XgJs+1uCTlMUjGbMK14srArMrE2Jofl1JPqc=
Subject key identifier: 2D:78:9F:AB:0B:56:E1:FD:24:D6:C4:1E:C4:BA:27:2E:97:50:E1:9B
Authority key identifier: 6B:42:3B:29:A1:82:93:6B:22:DF:8F:98:26:DD:58:3A:00:59:13:4A
Certificate issuer: /CN=6b423b29a182936b22df8f9826dd583a0059134a
Certificate serial: 019CAA592C104889F1DD1C2BF16573811053
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
Manifest number: 096B
Signing time: Sun 01 Mar 2026 17:01:36 +0000
Manifest this update: Sun 01 Mar 2026 17:01:36 +0000
Manifest next update: Mon 02 Mar 2026 17:01:36 +0000
Files and hashes: 1: a0I7KaGCk2si34-YJt1YOgBZE0o.crl (hash: j7KpI2l/f9cODvZrePPucgcDaBZquv7k5vqqrS0OjcI=)
2: betqUpBNxt2fw8P1gRb-nmRchZ0.roa (hash: TA1LiGt+yd3esB5iVavjPJEuxZ2ixHs066seZWy0AXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:59:2c:10:48:89:f1:dd:1c:2b:f1:65:73:81:10:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b423b29a182936b22df8f9826dd583a0059134a
Validity
Not Before: Mar 1 17:01:36 2026 GMT
Not After : Mar 2 17:01:36 2026 GMT
Subject: CN=2d789fab0b56e1fd24d6c41ec4ba272e9750e19b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:97:23:98:c3:b5:f1:65:d0:b4:96:ae:a6:88:
fe:c0:17:18:be:29:b6:10:d3:5d:1b:f6:c1:ed:d8:
8e:e8:47:c0:1d:2b:f6:07:ce:2e:fa:7c:1e:ed:0e:
d9:6b:2d:20:56:c7:9d:b0:c0:6f:ae:d4:0f:8f:63:
b1:c3:60:e3:5d:78:28:bc:14:99:2c:a8:35:04:79:
44:5e:43:47:b5:9c:ca:52:22:fa:d4:de:ec:61:5e:
fa:5d:f3:e9:af:8b:87:9b:ed:35:12:d8:77:52:92:
db:b5:d1:b3:9e:2b:94:16:f9:1e:ec:90:52:31:b2:
65:d3:f6:b7:72:42:e0:0c:84:22:5e:33:cc:57:be:
35:1a:2b:fd:d0:f6:7c:ca:35:44:14:d4:49:9f:01:
ed:dd:4b:0e:72:61:d5:55:f8:93:43:14:a8:b2:2a:
df:d1:8f:1b:a1:90:b6:d9:c2:21:41:0e:76:e4:fb:
a2:1d:69:bc:89:99:2d:75:bb:66:db:48:92:25:51:
c2:0f:76:18:97:77:17:5b:31:c2:50:e9:2f:2b:11:
8f:d0:0a:63:f9:b1:e5:29:40:5a:4a:ab:20:ac:87:
bd:fa:05:d1:71:15:19:57:6d:55:2e:c8:4d:3f:67:
0a:1d:2e:8a:4b:71:d0:7c:a8:e1:eb:0f:10:45:7f:
48:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:78:9F:AB:0B:56:E1:FD:24:D6:C4:1E:C4:BA:27:2E:97:50:E1:9B
X509v3 Authority Key Identifier:
keyid:6B:42:3B:29:A1:82:93:6B:22:DF:8F:98:26:DD:58:3A:00:59:13:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:88:8b:ab:47:e1:13:c7:35:2a:2d:14:ef:02:71:70:a0:d7:
07:39:d4:59:0f:d7:45:4c:f8:ff:27:39:5f:be:fe:be:3f:92:
17:fd:80:ce:df:a3:4b:b2:4c:55:4c:67:21:c3:70:77:a9:81:
a4:8c:99:70:4d:44:5a:5e:f5:d5:4e:ae:7b:c7:a7:67:85:d5:
e8:16:e2:75:ee:b2:26:a6:ee:15:75:fc:5f:d4:20:c0:00:66:
4d:28:43:39:ab:81:a0:2c:27:78:70:d3:4e:32:c4:1c:ab:40:
97:51:42:2c:c4:f7:7e:03:20:1b:64:19:b5:6b:82:3f:19:7b:
3b:82:d6:7f:2e:ef:9a:50:79:65:cc:0b:27:51:da:0c:6e:fd:
b8:f1:84:89:08:35:f7:93:e5:a7:48:dd:ff:a0:5e:6d:b2:cc:
99:46:b3:5d:93:bc:67:80:a3:bc:1b:89:51:cd:ff:44:43:c5:
e4:d1:dc:ec:af:b9:6a:d3:1b:c8:49:94:9c:e0:27:b3:49:3e:
f1:48:48:1f:dc:b5:ec:4c:93:39:d0:15:20:71:98:cd:52:dc:
e6:eb:ee:fe:f2:c4:3d:9c:f1:bf:af:c5:44:4b:72:32:48:7b:
0e:bc:aa:f1:60:db:47:d6:50:d9:df:19:2e:e4:84:83:ea:86:
aa:e1:c8:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqWSwQSInx3Rwr8WVzgRBTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiNDIzYjI5YTE4MjkzNmIyMmRmOGY5ODI2ZGQ1ODNhMDA1
OTEzNGEwHhcNMjYwMzAxMTcwMTM2WhcNMjYwMzAyMTcwMTM2WjAzMTEwLwYDVQQD
EygyZDc4OWZhYjBiNTZlMWZkMjRkNmM0MWVjNGJhMjcyZTk3NTBlMTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJcjmMO18WXQtJaupoj+wBcYvim2
ENNdG/bB7diO6EfAHSv2B84u+nwe7Q7Zay0gVsedsMBvrtQPj2Oxw2DjXXgovBSZ
LKg1BHlEXkNHtZzKUiL61N7sYV76XfPpr4uHm+01Eth3UpLbtdGzniuUFvke7JBS
MbJl0/a3ckLgDIQiXjPMV741Giv90PZ8yjVEFNRJnwHt3UsOcmHVVfiTQxSosirf
0Y8boZC22cIhQQ525PuiHWm8iZktdbtm20iSJVHCD3YYl3cXWzHCUOkvKxGP0Apj
+bHlKUBaSqsgrIe9+gXRcRUZV21VLshNP2cKHS6KS3HQfKjh6w8QRX9IlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC14n6sLVuH9JNbEHsS6Jy6XUOGbMB8GA1UdIwQY
MBaAFGtCOymhgpNrIt+PmCbdWDoAWRNKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTBJN0thR0NrMnNpMzQtWUp0MVlPZ0JaRTBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9iYTBmZjAtMmJlMi00Mjg2LWEyZDct
NThhOGEzM2Q1NGE2LzEvYTBJN0thR0NrMnNpMzQtWUp0MVlPZ0JaRTBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC9iYTBmZjAtMmJlMi00Mjg2LWEyZDctNThhOGEzM2Q1NGE2
LzEvYTBJN0thR0NrMnNpMzQtWUp0MVlPZ0JaRTBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMYiLq0fh
E8c1Ki0U7wJxcKDXBznUWQ/XRUz4/yc5X77+vj+SF/2Azt+jS7JMVUxnIcNwd6mB
pIyZcE1EWl711U6ue8enZ4XV6Bbide6yJqbuFXX8X9QgwABmTShDOauBoCwneHDT
TjLEHKtAl1FCLMT3fgMgG2QZtWuCPxl7O4LWfy7vmlB5ZcwLJ1HaDG79uPGEiQg1
95Plp0jd/6BebbLMmUazXZO8Z4CjvBuJUc3/REPF5NHc7K+5atMbyEmUnOAns0k+
8UhIH9y17EyTOdAVIHGYzVLc5uvu/vLEPZzxv6/FREtyMkh7Dryq8WDbR9ZQ2d8Z
LuSEg+qGquHIHQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:02:45 2026 by rpki-client