Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
File: KeieDArUFRV01m8rML0dpKqd8Fs.mft (raw, json)
Hash identifier: V+1g3XzvX2PIFYquhzsYC+EkBwzeICBQ2UZX13SRL7g=
Subject key identifier: BC:B2:E5:B2:72:F6:DD:72:87:FB:02:24:15:8D:E6:05:5A:5B:9F:EF
Authority key identifier: 29:E8:9E:0C:0A:D4:15:15:74:D6:6F:2B:30:BD:1D:A4:AA:9D:F0:5B
Certificate issuer: /CN=29e89e0c0ad4151574d66f2b30bd1da4aa9df05b
Certificate serial: 019CAB6BCF9BEDBED0FC09FF77040432B3A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeieDArUFRV01m8rML0dpKqd8Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
Manifest number: 1512
Signing time: Sun 01 Mar 2026 22:01:35 +0000
Manifest this update: Sun 01 Mar 2026 22:01:35 +0000
Manifest next update: Mon 02 Mar 2026 22:01:35 +0000
Files and hashes: 1: KeieDArUFRV01m8rML0dpKqd8Fs.crl (hash: VfK1BDpZ+2geBGzxqgjpMIDLZCnOuHKrbnQskxhsiZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/KeieDArUFRV01m8rML0dpKqd8Fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:cf:9b:ed:be:d0:fc:09:ff:77:04:04:32:b3:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29e89e0c0ad4151574d66f2b30bd1da4aa9df05b
Validity
Not Before: Mar 1 22:01:35 2026 GMT
Not After : Mar 2 22:01:35 2026 GMT
Subject: CN=bcb2e5b272f6dd7287fb0224158de6055a5b9fef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:4d:28:b7:e7:5c:9d:c0:f6:5f:22:d3:81:bc:
72:b3:29:3f:4b:7b:64:05:9c:8d:29:33:75:78:1a:
e1:ed:40:cb:e8:99:f0:cf:99:09:6d:1f:9a:35:ed:
fb:66:a1:74:20:5b:7f:dd:04:b6:4e:64:ff:f9:c5:
ef:b9:5e:3e:be:1f:8a:bc:cd:ef:6d:f4:82:e5:0e:
00:fc:81:64:35:ef:6a:f6:aa:25:2e:fd:53:72:8b:
0f:b7:af:6d:c1:76:41:09:04:34:43:3c:6c:9e:72:
00:6a:a4:97:e5:c2:5e:33:88:70:e4:2b:65:91:b4:
05:3b:00:43:c7:fc:6f:88:d2:5a:24:0a:f6:b9:aa:
90:20:99:e9:5a:02:b5:7f:e3:3b:3b:58:59:e2:50:
2d:ef:03:ea:04:d3:b6:32:9a:07:9a:3a:77:f3:9d:
30:1b:e4:ed:57:cb:36:07:52:ea:98:cb:d3:d8:ae:
74:54:a3:df:94:b3:8d:b1:0f:e7:69:b7:86:95:2d:
27:64:9a:15:b3:2a:c5:dc:73:e0:9c:46:e7:4a:26:
09:97:12:9a:ea:1c:a9:34:84:4b:f3:77:83:6f:1c:
d5:94:7d:bd:7a:cf:11:79:ad:61:c3:d4:cf:06:db:
3a:cc:29:22:43:24:8d:c3:71:fe:6a:f5:35:f8:a5:
1d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:B2:E5:B2:72:F6:DD:72:87:FB:02:24:15:8D:E6:05:5A:5B:9F:EF
X509v3 Authority Key Identifier:
keyid:29:E8:9E:0C:0A:D4:15:15:74:D6:6F:2B:30:BD:1D:A4:AA:9D:F0:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeieDArUFRV01m8rML0dpKqd8Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:d9:ae:e5:b3:57:4d:9e:af:b2:eb:d6:8c:fb:f3:4a:c3:cd:
3d:05:c9:0f:9d:6a:97:99:d6:08:20:68:ce:b6:3f:a7:a4:b5:
64:4c:b2:4d:9c:06:9b:3d:3d:7e:3a:f7:08:95:b6:30:c0:2e:
67:17:a1:05:f4:17:de:74:5b:b0:85:1f:62:c5:39:29:c2:a2:
fc:05:47:41:e4:dc:85:e0:f8:e4:d4:ad:24:ca:63:f3:76:e9:
11:97:1d:9e:88:a8:80:24:31:e4:fd:74:fd:c5:ac:24:61:28:
84:2b:14:50:5e:73:21:18:0c:78:26:13:48:e2:7b:fb:71:53:
ff:8d:1d:f3:a5:aa:a3:40:09:31:d4:0a:d7:35:da:96:1e:ac:
32:25:65:8b:cd:50:a1:68:34:ec:0d:53:4b:67:3e:18:04:e1:
a1:52:bb:15:ae:42:07:45:b7:10:b1:f9:b4:70:5c:17:af:a9:
54:3b:d8:c5:b4:1b:00:54:bd:30:4a:20:23:20:40:cd:66:f7:
40:4d:ee:d5:db:d1:73:44:28:b4:b6:67:31:7b:3c:ca:a5:56:
af:9c:f6:4d:9c:e5:a0:2d:ed:ab:8b:55:4d:d9:eb:a1:66:8e:
bd:d0:df:3e:6a:f0:92:8a:90:34:34:33:7d:df:4d:9c:ed:01:
f8:c6:68:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyra8+b7b7Q/An/dwQEMrOlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ZTg5ZTBjMGFkNDE1MTU3NGQ2NmYyYjMwYmQxZGE0YWE5
ZGYwNWIwHhcNMjYwMzAxMjIwMTM1WhcNMjYwMzAyMjIwMTM1WjAzMTEwLwYDVQQD
EyhiY2IyZTViMjcyZjZkZDcyODdmYjAyMjQxNThkZTYwNTVhNWI5ZmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3k0ot+dcncD2XyLTgbxysyk/S3tk
BZyNKTN1eBrh7UDL6Jnwz5kJbR+aNe37ZqF0IFt/3QS2TmT/+cXvuV4+vh+KvM3v
bfSC5Q4A/IFkNe9q9qolLv1TcosPt69twXZBCQQ0QzxsnnIAaqSX5cJeM4hw5Ctl
kbQFOwBDx/xviNJaJAr2uaqQIJnpWgK1f+M7O1hZ4lAt7wPqBNO2MpoHmjp3850w
G+TtV8s2B1LqmMvT2K50VKPflLONsQ/nabeGlS0nZJoVsyrF3HPgnEbnSiYJlxKa
6hypNIRL83eDbxzVlH29es8Rea1hw9TPBts6zCkiQySNw3H+avU1+KUdrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLyy5bJy9t1yh/sCJBWN5gVaW5/vMB8GA1UdIwQY
MBaAFCnongwK1BUVdNZvKzC9HaSqnfBbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2VpZURBclVGUlYwMW04ck1MMGRwS3FkOEZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9iODdjMmEtY2QwMy00NTM4LTlkYzQt
OTkxZmFlNWM5YjA3LzEvS2VpZURBclVGUlYwMW04ck1MMGRwS3FkOEZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS9iODdjMmEtY2QwMy00NTM4LTlkYzQtOTkxZmFlNWM5YjA3
LzEvS2VpZURBclVGUlYwMW04ck1MMGRwS3FkOEZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgdmu5bNX
TZ6vsuvWjPvzSsPNPQXJD51ql5nWCCBozrY/p6S1ZEyyTZwGmz09fjr3CJW2MMAu
ZxehBfQX3nRbsIUfYsU5KcKi/AVHQeTcheD45NStJMpj83bpEZcdnoiogCQx5P10
/cWsJGEohCsUUF5zIRgMeCYTSOJ7+3FT/40d86Wqo0AJMdQK1zXalh6sMiVli81Q
oWg07A1TS2c+GAThoVK7Fa5CB0W3ELH5tHBcF6+pVDvYxbQbAFS9MEogIyBAzWb3
QE3u1dvRc0QotLZnMXs8yqVWr5z2TZzloC3tq4tVTdnroWaOvdDfPmrwkoqQNDQz
fd9NnO0B+MZoBw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:56:08 2026 by rpki-client