Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
File: 1DNtXnTx-LfbEynwC7hXJBrnTRk.mft (raw, json)
Hash identifier: u7fBWqaD1x22hbF4H8FdUHdkM/k1wG/Nn8dknpIn0ow=
Subject key identifier: 77:FC:E8:D6:7C:2B:3D:45:A9:0F:8B:27:DA:10:6C:7E:A6:52:B1:4B
Authority key identifier: D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19
Certificate issuer: /CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19
Certificate serial: 019CACB4C6E7AD9C385949EC9CAA692DDD6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
Manifest number: 05D0
Signing time: Mon 02 Mar 2026 04:00:54 +0000
Manifest this update: Mon 02 Mar 2026 04:00:54 +0000
Manifest next update: Tue 03 Mar 2026 04:00:54 +0000
Files and hashes: 1: 1DNtXnTx-LfbEynwC7hXJBrnTRk.crl (hash: wEiPdHWgD0BU18CjkO7XM9fHY89NxvHDMaN5+sTKt3A=)
2: w4SYF93bZ7mEac54Bcw2Oj2Zjm0.roa (hash: AiCzf27YzXL7TiAwTl4rqi9Bv4ePafNZNaFvG1buGG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:c6:e7:ad:9c:38:59:49:ec:9c:aa:69:2d:dd:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19
Validity
Not Before: Mar 2 04:00:54 2026 GMT
Not After : Mar 3 04:00:54 2026 GMT
Subject: CN=77fce8d67c2b3d45a90f8b27da106c7ea652b14b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c3:22:e7:ba:f9:29:81:53:e8:40:bd:52:c4:
89:c1:a6:78:60:9c:c0:95:24:fb:b7:71:e0:dc:80:
e9:77:73:61:d9:29:39:17:ef:89:b1:78:c9:25:b1:
e4:aa:e8:c1:35:69:86:2d:3c:a8:2e:18:25:83:2d:
09:c5:ef:92:5c:e3:f5:80:b9:65:b7:25:c3:1c:d1:
2a:37:ed:67:69:db:0b:d0:3b:77:4a:8a:e9:19:26:
96:28:f1:2e:ab:e9:55:45:2e:a2:fc:b3:0d:41:e8:
e8:8a:82:90:4e:1a:25:bd:38:f9:f4:f3:12:67:d3:
39:99:61:53:25:39:09:16:88:f5:f6:72:8c:20:9e:
eb:c7:4d:61:9b:e0:bc:ae:75:71:7e:36:30:ef:6c:
30:18:60:e3:e4:8c:e3:d2:87:a2:b2:2b:ab:4b:f3:
22:35:6c:1b:62:86:e4:fb:a4:9e:06:d6:d7:ee:8b:
c4:87:56:6a:aa:e7:63:95:77:13:11:7c:f3:03:45:
22:c4:fa:e9:1a:3b:1e:c4:3e:e9:27:e5:18:dd:0a:
57:bc:41:6d:98:7b:a0:c4:0d:52:27:31:b3:bc:78:
ae:8d:5c:de:af:0a:85:2b:bb:a1:79:48:65:5c:7c:
59:cb:17:8c:c9:2f:49:01:b9:93:85:d6:71:59:95:
2b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FC:E8:D6:7C:2B:3D:45:A9:0F:8B:27:DA:10:6C:7E:A6:52:B1:4B
X509v3 Authority Key Identifier:
keyid:D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:27:6c:24:a1:53:64:c3:2f:22:20:85:e7:52:7c:ed:66:77:
bc:e4:9c:91:45:c6:45:c5:e1:e3:25:49:1f:23:84:c2:45:4f:
d0:4b:e3:c1:43:9d:cb:60:90:ff:e8:b4:c4:78:48:5f:c1:8d:
3e:db:90:55:bf:1f:d9:a4:52:38:76:fe:39:0a:22:7f:d7:64:
d3:43:ed:a5:1e:86:9d:f7:9f:06:4a:81:9d:c6:70:3f:87:44:
5c:81:15:5d:5e:c3:e2:c9:58:e4:e9:75:c7:26:58:7e:9d:a0:
79:0a:cd:ab:11:95:51:0e:0f:13:09:12:7d:2e:b8:c6:73:bf:
4e:f5:d2:dc:95:17:5d:a8:b7:41:81:ba:0d:1b:f9:91:f1:a2:
97:3b:6f:a9:51:9a:4f:6f:a4:3a:a4:d9:ba:73:15:38:89:52:
24:1d:cb:21:55:85:6c:30:fb:61:c3:a9:d4:1f:a0:47:fd:b5:
32:8c:88:c8:15:cf:be:37:c0:e6:36:22:96:39:78:98:23:b5:
47:7e:a7:1e:7b:95:be:c7:1d:9e:63:4e:1f:06:ed:29:f9:2c:
41:37:8a:b7:a9:4f:55:2e:8f:7f:d6:95:c6:b7:3a:75:83:f6:
24:12:39:4b:23:84:13:21:86:7e:f8:90:45:6d:14:27:b3:97:
71:25:c7:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZystMbnrZw4WUnsnKppLd1qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0MzM2ZDVlNzRmMWY4YjdkYjEzMjlmMDBiYjg1NzI0MWFl
NzRkMTkwHhcNMjYwMzAyMDQwMDU0WhcNMjYwMzAzMDQwMDU0WjAzMTEwLwYDVQQD
Eyg3N2ZjZThkNjdjMmIzZDQ1YTkwZjhiMjdkYTEwNmM3ZWE2NTJiMTRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMMi57r5KYFT6EC9UsSJwaZ4YJzA
lST7t3Hg3IDpd3Nh2Sk5F++JsXjJJbHkqujBNWmGLTyoLhglgy0Jxe+SXOP1gLll
tyXDHNEqN+1nadsL0Dt3SorpGSaWKPEuq+lVRS6i/LMNQejoioKQTholvTj59PMS
Z9M5mWFTJTkJFoj19nKMIJ7rx01hm+C8rnVxfjYw72wwGGDj5Izj0oeisiurS/Mi
NWwbYobk+6SeBtbX7ovEh1ZqqudjlXcTEXzzA0UixPrpGjsexD7pJ+UY3QpXvEFt
mHugxA1SJzGzvHiujVzerwqFK7uheUhlXHxZyxeMyS9JAbmThdZxWZUr6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHf86NZ8Kz1FqQ+LJ9oQbH6mUrFLMB8GA1UdIwQY
MBaAFNQzbV508fi32xMp8Au4VyQa500ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUROdFhuVHgtTGZiRXlud0M3aFhKQnJuVFJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8zYTZiZGQtMGQzYy00YTBkLThkYjYt
MmRkMjUxODRiMGQwLzEvMUROdFhuVHgtTGZiRXlud0M3aFhKQnJuVFJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS8zYTZiZGQtMGQzYy00YTBkLThkYjYtMmRkMjUxODRiMGQw
LzEvMUROdFhuVHgtTGZiRXlud0M3aFhKQnJuVFJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAidsJKFT
ZMMvIiCF51J87WZ3vOSckUXGRcXh4yVJHyOEwkVP0EvjwUOdy2CQ/+i0xHhIX8GN
PtuQVb8f2aRSOHb+OQoif9dk00PtpR6GnfefBkqBncZwP4dEXIEVXV7D4slY5Ol1
xyZYfp2geQrNqxGVUQ4PEwkSfS64xnO/TvXS3JUXXai3QYG6DRv5kfGilztvqVGa
T2+kOqTZunMVOIlSJB3LIVWFbDD7YcOp1B+gR/21MoyIyBXPvjfA5jYiljl4mCO1
R36nHnuVvscdnmNOHwbtKfksQTeKt6lPVS6Pf9aVxrc6dYP2JBI5SyOEEyGGfviQ
RW0UJ7OXcSXHuQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 07:42:35 2026 by rpki-client