Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
File: Ty87yZp5UD4JdXR36O9kPhGIbIs.mft (raw, json)
Hash identifier: 144BGnijot4h1lRfZszK86ClD89409wMJqjDLsf8qUs=
Subject key identifier: F3:F5:51:5D:C6:90:38:DC:01:77:3B:39:D0:28:46:64:52:5F:39:57
Authority key identifier: 4F:2F:3B:C9:9A:79:50:3E:09:75:74:77:E8:EF:64:3E:11:88:6C:8B
Certificate issuer: /CN=4f2f3bc99a79503e09757477e8ef643e11886c8b
Certificate serial: 019CABD91F526B3DA55CDD43C9A3D8E7C8AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
Manifest number: 16F8
Signing time: Mon 02 Mar 2026 00:00:59 +0000
Manifest this update: Mon 02 Mar 2026 00:00:59 +0000
Manifest next update: Tue 03 Mar 2026 00:00:59 +0000
Files and hashes: 1: Ty87yZp5UD4JdXR36O9kPhGIbIs.crl (hash: mCe/+cbl6rAk340CjBDMkuoeXMZ8/dXcwTJDbDzKKVE=)
2: w6PRimv4AQwUjZljEFUbn9_lMpE.roa (hash: 1BAWM7GxFGhcr0Nj+ZV21NpmZtGOTmrrpW3/r3X5CNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:1f:52:6b:3d:a5:5c:dd:43:c9:a3:d8:e7:c8:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f2f3bc99a79503e09757477e8ef643e11886c8b
Validity
Not Before: Mar 2 00:00:59 2026 GMT
Not After : Mar 3 00:00:59 2026 GMT
Subject: CN=f3f5515dc69038dc01773b39d0284664525f3957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f6:b3:bf:f1:47:c0:e1:b7:44:8b:52:6b:78:
38:2c:6c:5f:46:29:37:e2:4a:df:9f:3a:dc:32:66:
06:e0:78:6b:dd:a8:ca:f7:a2:5f:fe:03:4e:ab:d0:
a7:19:82:ec:24:57:47:75:3d:54:86:4b:85:6a:cb:
5e:68:91:65:b8:77:b2:07:cd:07:7b:bd:e1:4b:1a:
52:94:68:4d:f1:a0:e4:d0:7f:55:c9:3f:8e:b7:18:
0c:23:d8:8f:37:6a:6b:fa:24:da:fa:a5:56:3d:bf:
78:cd:82:1b:44:f7:06:8a:60:bc:66:7a:5c:8b:e5:
20:bc:04:ba:92:d3:51:be:a3:17:15:ec:f7:0b:64:
5f:1e:3f:be:4e:2b:be:2f:41:38:90:0a:58:3c:74:
3b:95:c3:09:88:98:4c:1d:6b:1a:5c:6b:27:7a:fb:
f3:2a:4d:0c:0b:58:b9:61:7e:15:c6:ce:30:fa:c6:
63:45:4c:6f:e1:22:2b:f5:d9:6f:8a:e2:93:1d:a8:
94:7a:35:f3:91:ef:e6:12:66:e4:93:5f:72:73:af:
d5:72:03:7b:05:3d:73:e8:30:e9:86:58:d1:b4:c2:
27:cf:b1:e9:86:cb:ee:43:a7:c4:67:db:03:08:50:
d3:2c:49:37:fb:21:8c:91:0e:dc:c1:6f:ef:c0:b1:
57:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:F5:51:5D:C6:90:38:DC:01:77:3B:39:D0:28:46:64:52:5F:39:57
X509v3 Authority Key Identifier:
keyid:4F:2F:3B:C9:9A:79:50:3E:09:75:74:77:E8:EF:64:3E:11:88:6C:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:e3:f2:8b:f3:be:d0:ea:73:97:49:c2:19:17:50:9f:cf:a9:
0b:54:9d:13:4c:95:55:df:0c:d9:08:c3:46:0a:91:f8:70:8f:
c9:ac:c7:7a:b2:c2:7a:60:15:9f:cc:bd:47:79:e6:2b:9a:3f:
55:4f:6a:5b:8a:bd:cd:e3:16:28:2c:ea:48:35:06:09:e2:a9:
4a:89:53:fb:ad:e6:0b:cb:a9:41:09:c7:4c:42:5e:cd:3e:4d:
32:a4:c2:d6:c7:75:90:15:46:51:0c:5a:d9:99:46:06:95:2c:
d3:77:50:8e:12:e0:99:d6:17:d6:c2:ff:62:fe:ee:14:04:53:
40:fc:74:70:4c:a9:8d:09:6c:f3:d6:11:60:6c:b8:de:54:2e:
55:06:d9:58:82:b6:53:8d:c8:95:07:12:c4:e0:75:4a:4a:51:
50:ea:9a:59:5e:cb:b4:7a:f7:a3:0e:32:f1:d4:b1:f5:ee:8f:
fc:f9:1c:c5:4d:58:0d:f0:0a:e1:53:d8:a3:6b:ae:2a:6c:b2:
c4:d8:c6:06:d3:ae:06:69:97:78:0e:6e:0c:a1:ee:20:83:f3:
8e:db:f5:8e:7b:9a:78:4e:ea:b5:4a:f1:cf:58:4a:45:17:ab:
95:4a:b2:34:43:bc:5f:9d:6d:a5:87:b7:f7:1f:e7:7f:76:7d:
89:f6:d2:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2R9Saz2lXN1DyaPY58iqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMmYzYmM5OWE3OTUwM2UwOTc1NzQ3N2U4ZWY2NDNlMTE4
ODZjOGIwHhcNMjYwMzAyMDAwMDU5WhcNMjYwMzAzMDAwMDU5WjAzMTEwLwYDVQQD
EyhmM2Y1NTE1ZGM2OTAzOGRjMDE3NzNiMzlkMDI4NDY2NDUyNWYzOTU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfazv/FHwOG3RItSa3g4LGxfRik3
4krfnzrcMmYG4Hhr3ajK96Jf/gNOq9CnGYLsJFdHdT1UhkuFasteaJFluHeyB80H
e73hSxpSlGhN8aDk0H9VyT+OtxgMI9iPN2pr+iTa+qVWPb94zYIbRPcGimC8Znpc
i+UgvAS6ktNRvqMXFez3C2RfHj++Tiu+L0E4kApYPHQ7lcMJiJhMHWsaXGsnevvz
Kk0MC1i5YX4Vxs4w+sZjRUxv4SIr9dlviuKTHaiUejXzke/mEmbkk19yc6/VcgN7
BT1z6DDphljRtMInz7HphsvuQ6fEZ9sDCFDTLEk3+yGMkQ7cwW/vwLFXmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPP1UV3GkDjcAXc7OdAoRmRSXzlXMB8GA1UdIwQY
MBaAFE8vO8maeVA+CXV0d+jvZD4RiGyLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHk4N3lacDVVRDRKZFhSMzZPOWtQaEdJYklzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy8xZTFhYzYtZmNkNi00YWU4LWFkNzct
NTFlNGJiYTZiZjViLzEvVHk4N3lacDVVRDRKZFhSMzZPOWtQaEdJYklzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy8xZTFhYzYtZmNkNi00YWU4LWFkNzctNTFlNGJiYTZiZjVi
LzEvVHk4N3lacDVVRDRKZFhSMzZPOWtQaEdJYklzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcOPyi/O+
0Opzl0nCGRdQn8+pC1SdE0yVVd8M2QjDRgqR+HCPyazHerLCemAVn8y9R3nmK5o/
VU9qW4q9zeMWKCzqSDUGCeKpSolT+63mC8upQQnHTEJezT5NMqTC1sd1kBVGUQxa
2ZlGBpUs03dQjhLgmdYX1sL/Yv7uFARTQPx0cEypjQls89YRYGy43lQuVQbZWIK2
U43IlQcSxOB1SkpRUOqaWV7LtHr3ow4y8dSx9e6P/PkcxU1YDfAK4VPYo2uuKmyy
xNjGBtOuBmmXeA5uDKHuIIPzjtv1jnuaeE7qtUrxz1hKRRerlUqyNEO8X51tpYe3
9x/nf3Z9ifbSmA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:06:51 2026 by rpki-client