Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
File: RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft (raw, json)
Hash identifier: J5KorDWyNVHwlj6CM4W0w/5uRRQe97d2XKb+P1P6khw=
Subject key identifier: FB:B0:2B:7B:39:C5:C3:DC:1E:8A:69:F0:09:55:67:94:AA:B7:0E:70
Authority key identifier: 44:8C:A3:95:37:59:7C:FA:E6:0A:E0:42:1D:B8:E0:98:B4:E2:61:30
Certificate issuer: /CN=448ca39537597cfae60ae0421db8e098b4e26130
Certificate serial: 019CA97D4EF00264946D11D959FF27F9AECF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RIyjlTdZfPrmCuBCHbjgmLTiYTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 13:01:27 +0000
Manifest this update: Sun 01 Mar 2026 13:01:27 +0000
Manifest next update: Mon 02 Mar 2026 13:01:27 +0000
Files and hashes: 1: RIyjlTdZfPrmCuBCHbjgmLTiYTA.crl (hash: dvRwbHVyavgeQ5EcZ6iknNKGWfEWCYdBOfPAUYhMHNc=)
2: UXnKo4Ey-1UOsTwsFxzecNca4ws.roa (hash: ilB1dCXfkW75QAbnFoJP+oitYYjAJLiYJ/zgOjFv/HU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/RIyjlTdZfPrmCuBCHbjgmLTiYTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 13:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:7d:4e:f0:02:64:94:6d:11:d9:59:ff:27:f9:ae:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=448ca39537597cfae60ae0421db8e098b4e26130
Validity
Not Before: Mar 1 13:01:27 2026 GMT
Not After : Mar 2 13:01:27 2026 GMT
Subject: CN=fbb02b7b39c5c3dc1e8a69f009556794aab70e70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:37:9f:62:5b:31:c3:26:aa:4b:05:68:6d:25:
b5:98:36:81:4c:70:bb:27:f1:2a:87:65:23:b5:c7:
54:3d:62:41:9b:56:7d:21:53:b4:2e:89:1d:89:0e:
af:63:db:53:f6:e2:8b:ab:ae:64:ff:72:a6:e4:2c:
3d:00:6a:62:da:48:99:17:8f:93:86:aa:31:7d:00:
46:cf:9d:5d:9a:43:f8:d4:79:44:33:46:f2:d9:e1:
43:d8:dd:65:33:56:bf:7e:31:b1:c8:06:2e:71:63:
01:88:56:79:42:6a:de:8e:a2:35:20:73:2c:66:cc:
92:22:53:02:14:78:20:00:f2:85:c2:ca:99:1f:97:
b8:8a:34:48:83:ff:ef:33:52:9a:61:96:d0:47:9f:
c7:73:7b:a7:f2:1d:ea:28:dd:18:77:e7:ce:1f:cd:
66:cf:7b:a3:a6:f5:78:8a:a7:82:ba:92:cf:b1:6c:
2e:88:57:7d:f3:15:16:48:58:07:7d:07:45:39:99:
fc:45:26:bb:fe:9a:ed:3e:ed:50:82:df:ab:45:21:
e2:51:4d:f7:76:a6:41:c1:52:e1:b7:48:c5:c3:41:
01:04:0a:b4:f5:92:6d:bb:58:71:49:1f:33:e0:87:
b9:d4:c3:aa:67:10:33:57:14:06:7a:84:3a:69:a3:
18:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:B0:2B:7B:39:C5:C3:DC:1E:8A:69:F0:09:55:67:94:AA:B7:0E:70
X509v3 Authority Key Identifier:
keyid:44:8C:A3:95:37:59:7C:FA:E6:0A:E0:42:1D:B8:E0:98:B4:E2:61:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RIyjlTdZfPrmCuBCHbjgmLTiYTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:c5:71:b0:11:6d:c1:c6:2c:e7:01:54:af:50:a8:85:75:71:
37:18:93:3e:5c:9d:56:41:34:d4:26:0b:46:34:90:55:7f:69:
f8:74:c2:21:46:a0:48:e0:3c:3b:08:23:bb:ff:c2:c0:f1:77:
82:15:20:80:04:bc:6b:c1:60:b2:20:46:2d:9a:c8:73:09:0c:
95:6f:aa:41:51:42:68:fc:03:ca:ce:09:29:3f:9b:c9:1c:7d:
42:84:c6:be:ab:ff:81:fb:88:ea:18:36:86:6f:73:0e:61:e6:
b3:e9:2a:98:5c:99:12:1d:40:96:81:12:0b:f4:52:8b:81:91:
e8:71:8d:2c:b3:ae:13:bb:fa:82:f2:8f:ca:14:eb:d6:ad:5c:
3a:74:66:e7:cc:65:c2:f5:c6:76:93:48:1c:73:25:21:3a:3d:
14:cb:f5:63:85:47:d4:19:70:ec:a3:4b:7a:9f:35:49:7b:b2:
3d:d4:86:a8:33:00:cb:1c:e5:99:82:bf:21:1c:06:dc:7a:da:
f0:a0:01:ca:bb:b2:f6:ab:88:e6:06:17:28:ee:27:22:07:e7:
18:9b:1b:58:d7:e1:08:52:41:13:03:c8:2b:92:7e:98:7e:8a:
3f:ea:3b:3d:c7:70:72:6b:fe:77:5c:e3:dd:98:ee:99:a6:c4:
86:1f:80:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZypfU7wAmSUbRHZWf8n+a7PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0OGNhMzk1Mzc1OTdjZmFlNjBhZTA0MjFkYjhlMDk4YjRl
MjYxMzAwHhcNMjYwMzAxMTMwMTI3WhcNMjYwMzAyMTMwMTI3WjAzMTEwLwYDVQQD
EyhmYmIwMmI3YjM5YzVjM2RjMWU4YTY5ZjAwOTU1Njc5NGFhYjcwZTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1DefYlsxwyaqSwVobSW1mDaBTHC7
J/Eqh2UjtcdUPWJBm1Z9IVO0LokdiQ6vY9tT9uKLq65k/3Km5Cw9AGpi2kiZF4+T
hqoxfQBGz51dmkP41HlEM0by2eFD2N1lM1a/fjGxyAYucWMBiFZ5QmrejqI1IHMs
ZsySIlMCFHggAPKFwsqZH5e4ijRIg//vM1KaYZbQR5/Hc3un8h3qKN0Yd+fOH81m
z3ujpvV4iqeCupLPsWwuiFd98xUWSFgHfQdFOZn8RSa7/prtPu1Qgt+rRSHiUU33
dqZBwVLht0jFw0EBBAq09ZJtu1hxSR8z4Ie51MOqZxAzVxQGeoQ6aaMY9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPuwK3s5xcPcHopp8AlVZ5Sqtw5wMB8GA1UdIwQY
MBaAFESMo5U3WXz65grgQh244Ji04mEwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkl5amxUZFpmUHJtQ3VCQ0hiamdtTFRpWVRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9kYjA1MTktNGU1YS00Yjc1LTg4ZmQt
YmJjMjM5ZTg5N2ViLzEvUkl5amxUZFpmUHJtQ3VCQ0hiamdtTFRpWVRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC9kYjA1MTktNGU1YS00Yjc1LTg4ZmQtYmJjMjM5ZTg5N2Vi
LzEvUkl5amxUZFpmUHJtQ3VCQ0hiamdtTFRpWVRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP8VxsBFt
wcYs5wFUr1CohXVxNxiTPlydVkE01CYLRjSQVX9p+HTCIUagSOA8Owgju//CwPF3
ghUggAS8a8FgsiBGLZrIcwkMlW+qQVFCaPwDys4JKT+byRx9QoTGvqv/gfuI6hg2
hm9zDmHms+kqmFyZEh1AloESC/RSi4GR6HGNLLOuE7v6gvKPyhTr1q1cOnRm58xl
wvXGdpNIHHMlITo9FMv1Y4VH1Blw7KNLep81SXuyPdSGqDMAyxzlmYK/IRwG3Hra
8KAByruy9quI5gYXKO4nIgfnGJsbWNfhCFJBEwPIK5J+mH6KP+o7Pcdwcmv+d1zj
3ZjumabEhh+AzA==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:42:01 2026 by rpki-client