Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/993364-d85f-4007-96ec-49ac28142318/1/iXlCagvNkDpVJkksxa97TysO2wQ.mft
File: iXlCagvNkDpVJkksxa97TysO2wQ.mft (raw, json)
Hash identifier: gi1n33rFyQGAxUI22I99ywxYBavf5Znw002j9R+J98w=
Subject key identifier: B3:D3:C0:03:B1:6B:C6:07:A2:25:80:EE:42:58:23:9E:BF:56:C3:FE
Authority key identifier: 89:79:42:6A:0B:CD:90:3A:55:26:49:2C:C5:AF:7B:4F:2B:0E:DB:04
Certificate issuer: /CN=8979426a0bcd903a5526492cc5af7b4f2b0edb04
Certificate serial: 019CAC7E1D99E4C4EF03A03EF7B6AEB00EBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iXlCagvNkDpVJkksxa97TysO2wQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/993364-d85f-4007-96ec-49ac28142318/1/iXlCagvNkDpVJkksxa97TysO2wQ.mft
Manifest number: 07C8
Signing time: Mon 02 Mar 2026 03:01:12 +0000
Manifest this update: Mon 02 Mar 2026 03:01:12 +0000
Manifest next update: Tue 03 Mar 2026 03:01:12 +0000
Files and hashes: 1: iXlCagvNkDpVJkksxa97TysO2wQ.crl (hash: 3aG5FkWZ+rRJUuXTsM3fkYeHOrn6eKzgPKmUwMwG+Ig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/993364-d85f-4007-96ec-49ac28142318/1/iXlCagvNkDpVJkksxa97TysO2wQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/993364-d85f-4007-96ec-49ac28142318/1/iXlCagvNkDpVJkksxa97TysO2wQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/iXlCagvNkDpVJkksxa97TysO2wQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7e:1d:99:e4:c4:ef:03:a0:3e:f7:b6:ae:b0:0e:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8979426a0bcd903a5526492cc5af7b4f2b0edb04
Validity
Not Before: Mar 2 03:01:12 2026 GMT
Not After : Mar 3 03:01:12 2026 GMT
Subject: CN=b3d3c003b16bc607a22580ee4258239ebf56c3fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:03:70:49:c9:a5:23:eb:04:f6:1c:8c:27:c8:
a1:86:15:45:fa:9e:cb:9f:10:6b:6b:a9:97:ce:20:
7a:5f:82:49:6a:af:cd:1b:c0:9c:0c:fa:dc:59:66:
69:e9:d8:c5:0a:96:3d:9f:fb:12:71:76:74:ec:27:
2f:54:28:38:b3:03:b6:14:4b:57:97:a5:f7:fc:06:
bf:3b:97:54:f5:c8:13:57:39:b0:c7:cb:dd:91:ab:
f5:64:e9:bd:15:04:bf:3d:3e:14:02:c4:ac:c6:6a:
16:67:00:a0:c5:de:3d:dd:b8:a3:70:cc:40:04:e6:
65:01:e5:b6:a2:38:2a:15:2c:aa:b5:10:15:e2:85:
9a:11:d4:68:91:08:6f:bb:c8:0b:a3:22:cc:ed:4d:
23:06:0f:1f:bf:8c:ab:f6:9f:d2:03:f5:c4:ba:25:
c9:2e:83:38:96:32:68:9a:86:66:13:44:73:b3:64:
36:31:cb:79:9d:6c:96:bf:94:28:a6:5a:bc:e9:3d:
b3:d2:06:1d:e3:e0:24:27:50:97:8a:b1:83:76:25:
88:49:b6:96:56:b9:21:54:c2:de:de:b8:7c:76:1c:
8f:9d:90:8d:50:5a:4e:67:e3:6a:1d:b0:d8:4d:48:
e9:3b:3c:f6:15:9a:6f:77:35:13:25:7d:19:da:86:
4f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D3:C0:03:B1:6B:C6:07:A2:25:80:EE:42:58:23:9E:BF:56:C3:FE
X509v3 Authority Key Identifier:
keyid:89:79:42:6A:0B:CD:90:3A:55:26:49:2C:C5:AF:7B:4F:2B:0E:DB:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iXlCagvNkDpVJkksxa97TysO2wQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/993364-d85f-4007-96ec-49ac28142318/1/iXlCagvNkDpVJkksxa97TysO2wQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/993364-d85f-4007-96ec-49ac28142318/1/iXlCagvNkDpVJkksxa97TysO2wQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:69:3c:ec:23:e5:a4:44:3e:4e:dd:7a:15:bd:e1:f0:5f:75:
76:ac:68:21:f3:e4:14:fc:93:85:a9:ad:f9:16:b2:30:a2:98:
87:73:95:7c:91:5a:f1:c3:1c:24:96:96:cc:37:d6:a6:aa:df:
24:95:7c:71:19:60:35:04:d8:84:b1:f4:1a:a1:f5:73:26:29:
05:00:f6:fe:a6:e1:95:bb:ea:0d:56:dc:18:b4:a5:82:c3:6b:
32:a6:29:34:81:3f:df:05:85:0d:09:01:92:67:df:f1:62:d9:
4a:f9:dd:8c:c7:d9:87:0c:06:92:63:07:82:91:a4:80:b2:c0:
15:97:15:d9:af:99:a1:93:ea:88:3c:1d:76:84:8d:28:88:ea:
14:84:22:ae:4e:d5:35:b8:e3:12:ff:b0:6b:8a:c7:a9:f5:1c:
0c:c6:35:9a:d4:a2:ea:c3:4d:25:7d:d2:37:19:f1:a3:b3:78:
f1:01:e2:3f:56:bc:1b:03:cb:0f:ff:80:21:e5:bc:4a:e7:62:
54:6e:51:90:d4:22:71:fd:e9:99:60:e5:34:13:14:16:c4:4d:
d3:c5:b2:58:0a:e4:c5:05:35:b1:eb:2d:d1:da:94:b3:4b:dd:
18:1d:ed:09:06:1d:dd:25:9b:23:4c:dd:d6:d5:87:0c:d0:58:
dd:0c:c5:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysfh2Z5MTvA6A+97ausA67MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5Nzk0MjZhMGJjZDkwM2E1NTI2NDkyY2M1YWY3YjRmMmIw
ZWRiMDQwHhcNMjYwMzAyMDMwMTEyWhcNMjYwMzAzMDMwMTEyWjAzMTEwLwYDVQQD
EyhiM2QzYzAwM2IxNmJjNjA3YTIyNTgwZWU0MjU4MjM5ZWJmNTZjM2ZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgNwScmlI+sE9hyMJ8ihhhVF+p7L
nxBra6mXziB6X4JJaq/NG8CcDPrcWWZp6djFCpY9n/sScXZ07CcvVCg4swO2FEtX
l6X3/Aa/O5dU9cgTVzmwx8vdkav1ZOm9FQS/PT4UAsSsxmoWZwCgxd493bijcMxA
BOZlAeW2ojgqFSyqtRAV4oWaEdRokQhvu8gLoyLM7U0jBg8fv4yr9p/SA/XEuiXJ
LoM4ljJomoZmE0Rzs2Q2Mct5nWyWv5Qoplq86T2z0gYd4+AkJ1CXirGDdiWISbaW
VrkhVMLe3rh8dhyPnZCNUFpOZ+NqHbDYTUjpOzz2FZpvdzUTJX0Z2oZPIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLPTwAOxa8YHoiWA7kJYI56/VsP+MB8GA1UdIwQY
MBaAFIl5QmoLzZA6VSZJLMWve08rDtsEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVhsQ2Fndk5rRHBWSmtrc3hhOTdUeXNPMndRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi85OTMzNjQtZDg1Zi00MDA3LTk2ZWMt
NDlhYzI4MTQyMzE4LzEvaVhsQ2Fndk5rRHBWSmtrc3hhOTdUeXNPMndRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi85OTMzNjQtZDg1Zi00MDA3LTk2ZWMtNDlhYzI4MTQyMzE4
LzEvaVhsQ2Fndk5rRHBWSmtrc3hhOTdUeXNPMndRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQGk87CPl
pEQ+Tt16Fb3h8F91dqxoIfPkFPyThamt+RayMKKYh3OVfJFa8cMcJJaWzDfWpqrf
JJV8cRlgNQTYhLH0GqH1cyYpBQD2/qbhlbvqDVbcGLSlgsNrMqYpNIE/3wWFDQkB
kmff8WLZSvndjMfZhwwGkmMHgpGkgLLAFZcV2a+ZoZPqiDwddoSNKIjqFIQirk7V
NbjjEv+wa4rHqfUcDMY1mtSi6sNNJX3SNxnxo7N48QHiP1a8GwPLD/+AIeW8Sudi
VG5RkNQicf3pmWDlNBMUFsRN08WyWArkxQU1sest0dqUs0vdGB3tCQYd3SWbI0zd
1tWHDNBY3QzFMw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 05:38:05 2026 by rpki-client