Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
File: fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft (raw, json)
Hash identifier: X3V6CnndAJrX7elrlWhVE4zKtIrp4zHpoG26/wac9z0=
Subject key identifier: E0:D2:55:45:A6:CF:0A:6A:0C:3C:FF:10:0F:D5:46:0F:8A:6C:81:D4
Authority key identifier: 7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
Certificate issuer: /CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Certificate serial: 019CAAFD8DE0151DBDF8EC6CFBD66EB9C6B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
Manifest number: 17D8
Signing time: Sun 01 Mar 2026 20:01:09 +0000
Manifest this update: Sun 01 Mar 2026 20:01:09 +0000
Manifest next update: Mon 02 Mar 2026 20:01:09 +0000
Files and hashes: 1: fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl (hash: fV8P+l+mzSDBuhgLgx9jhuYimBwClqYJKZhl2tGIt2A=)
2: uuyf9SL1IzQsxC4GwsHv2Aqvi6I.roa (hash: bWBF8Lzkc1fXhVOcL+v1lM3xBjFclLxIjyc/HWhj0fY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:8d:e0:15:1d:bd:f8:ec:6c:fb:d6:6e:b9:c6:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Validity
Not Before: Mar 1 20:01:09 2026 GMT
Not After : Mar 2 20:01:09 2026 GMT
Subject: CN=e0d25545a6cf0a6a0c3cff100fd5460f8a6c81d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:41:d4:c7:25:84:3e:e7:80:13:4c:48:3d:a8:
0a:48:d7:33:af:76:f4:a7:4e:7c:b8:67:fc:49:79:
62:a4:d0:b5:a5:5a:57:77:bf:a6:9b:2d:e9:65:e9:
a6:1c:85:4e:cd:30:72:22:40:b7:3a:6c:1f:b4:93:
31:9c:71:ce:71:ec:31:e8:77:2c:ca:ae:47:6d:18:
a0:69:65:43:6e:4e:ae:1b:dd:a6:4c:84:3c:05:fc:
a3:23:19:e4:27:5e:58:4d:0b:77:0d:19:e4:3b:6c:
c6:d8:cd:38:4e:78:08:fd:e9:4c:d1:d0:2f:85:fd:
3b:25:30:a0:bf:56:ff:3b:d5:78:1f:8f:83:e4:e4:
c0:3d:92:13:2a:8f:5f:6a:8d:a9:bb:f1:a7:ae:3d:
55:32:23:26:4c:c6:15:c0:a9:3e:28:7b:1f:63:3f:
9e:1e:b2:6d:27:2a:36:9b:6b:00:06:f9:b7:76:4e:
fd:47:b6:ef:5e:63:81:e4:c5:94:0a:cb:a2:f2:57:
96:c7:fd:aa:d0:8d:53:10:2a:91:af:4c:d6:1a:5d:
f9:ce:ab:80:03:35:14:5d:6e:ef:7f:56:16:ec:6d:
78:77:35:fe:44:fe:40:58:64:da:1c:61:2b:4b:4e:
3b:86:7d:0b:fb:53:de:69:4c:90:f1:66:06:d4:61:
3b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D2:55:45:A6:CF:0A:6A:0C:3C:FF:10:0F:D5:46:0F:8A:6C:81:D4
X509v3 Authority Key Identifier:
keyid:7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:de:a3:0d:f5:18:9b:d4:a7:b0:9a:1c:83:23:cf:c5:25:69:
82:fb:1e:e6:a7:d9:56:e2:b3:a4:27:8a:fd:ec:2d:a6:71:d4:
9a:a5:e9:e5:1e:6d:9d:45:5d:d4:99:e0:d7:bb:9c:a9:d4:bc:
2e:28:98:c3:4f:a1:11:69:3f:8d:66:06:d0:a5:cb:bd:5e:6f:
62:8c:b6:57:4c:0a:09:ee:22:c3:2b:70:36:96:cf:f2:7f:f5:
f3:be:ce:bd:1b:89:e9:0e:8f:43:be:fb:a7:91:f6:8c:c3:2b:
56:4f:08:67:b2:3f:0e:66:55:55:97:f8:a7:29:23:83:63:5c:
f0:23:3b:8c:16:b8:24:22:ab:8d:7e:25:47:00:a4:62:b6:9d:
81:d3:a6:be:72:5f:53:d9:65:f1:69:3f:46:e3:38:46:bc:94:
53:48:55:48:e3:bc:63:c3:78:a7:4e:b7:23:b6:55:ae:4e:1e:
b2:7c:42:9e:ac:ff:a8:42:ad:86:ae:59:b4:22:9c:31:b4:ec:
ba:29:ec:b2:af:a8:08:2b:f3:79:35:de:c4:84:46:c9:b8:14:
41:9c:c3:6f:9e:da:14:2b:5a:10:c6:d2:fa:38:9e:cc:3d:80:
36:3a:d6:8d:90:00:d5:c7:fb:24:9f:cb:2a:f3:41:fc:a8:4d:
0c:26:aa:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyq/Y3gFR29+Oxs+9Zuuca2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMDFhNWQ5MGRjM2E4MzZjZWI2MzgxZWZjNzUzNGUxMjlm
NDNhNGMwHhcNMjYwMzAxMjAwMTA5WhcNMjYwMzAyMjAwMTA5WjAzMTEwLwYDVQQD
EyhlMGQyNTU0NWE2Y2YwYTZhMGMzY2ZmMTAwZmQ1NDYwZjhhNmM4MWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0HUxyWEPueAE0xIPagKSNczr3b0
p058uGf8SXlipNC1pVpXd7+mmy3pZemmHIVOzTByIkC3OmwftJMxnHHOcewx6Hcs
yq5HbRigaWVDbk6uG92mTIQ8BfyjIxnkJ15YTQt3DRnkO2zG2M04TngI/elM0dAv
hf07JTCgv1b/O9V4H4+D5OTAPZITKo9fao2pu/Gnrj1VMiMmTMYVwKk+KHsfYz+e
HrJtJyo2m2sABvm3dk79R7bvXmOB5MWUCsui8leWx/2q0I1TECqRr0zWGl35zquA
AzUUXW7vf1YW7G14dzX+RP5AWGTaHGErS047hn0L+1PeaUyQ8WYG1GE7FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFODSVUWmzwpqDDz/EA/VRg+KbIHUMB8GA1UdIwQY
MBaAFH0BpdkNw6g2zrY4Hvx1NOEp9DpMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFHbDJRM0RxRGJPdGpnZV9IVTA0U24wT2t3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8yMWIwMDctYTA4Ni00MzEyLTlkMjMt
NjJmNjY2NDczYjIxLzEvZlFHbDJRM0RxRGJPdGpnZV9IVTA0U24wT2t3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi8yMWIwMDctYTA4Ni00MzEyLTlkMjMtNjJmNjY2NDczYjIx
LzEvZlFHbDJRM0RxRGJPdGpnZV9IVTA0U24wT2t3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ96jDfUY
m9SnsJocgyPPxSVpgvse5qfZVuKzpCeK/ewtpnHUmqXp5R5tnUVd1Jng17ucqdS8
LiiYw0+hEWk/jWYG0KXLvV5vYoy2V0wKCe4iwytwNpbP8n/1877OvRuJ6Q6PQ777
p5H2jMMrVk8IZ7I/DmZVVZf4pykjg2Nc8CM7jBa4JCKrjX4lRwCkYradgdOmvnJf
U9ll8Wk/RuM4RryUU0hVSOO8Y8N4p063I7ZVrk4esnxCnqz/qEKthq5ZtCKcMbTs
uinssq+oCCvzeTXexIRGybgUQZzDb57aFCtaEMbS+jiezD2ANjrWjZAA1cf7JJ/L
KvNB/KhNDCaqoA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:19:16 2026 by rpki-client