Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
File: IkCgcYD88zY191fMFEng1dvU_bg.mft (raw, json)
Hash identifier: D2IOFRxO9Y3quq/A2moU+JUHlMTvlsdxmV1aB5VakVY=
Subject key identifier: E5:DC:95:4E:78:E8:74:CC:5D:68:1B:06:2C:22:65:F6:F1:E4:E8:F4
Authority key identifier: 22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
Certificate issuer: /CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Certificate serial: 019CABD9E358C992FBB4D643B891A74B219F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
Manifest number: 042E
Signing time: Mon 02 Mar 2026 00:01:49 +0000
Manifest this update: Mon 02 Mar 2026 00:01:49 +0000
Manifest next update: Tue 03 Mar 2026 00:01:49 +0000
Files and hashes: 1: IkCgcYD88zY191fMFEng1dvU_bg.crl (hash: qc5eGci1kYRg4McyWbXTbe4DfaGzlF+C4xJH6Nb577k=)
2: PPCzo4aoB52WIulHl2b-W42AOQQ.roa (hash: v7GTmELXw/VVFQyWL5TMg5z0A0nUbHsal/nQ+BR/mNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:e3:58:c9:92:fb:b4:d6:43:b8:91:a7:4b:21:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Validity
Not Before: Mar 2 00:01:49 2026 GMT
Not After : Mar 3 00:01:49 2026 GMT
Subject: CN=e5dc954e78e874cc5d681b062c2265f6f1e4e8f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:08:8e:de:05:cd:22:0d:e0:e5:29:fd:a0:33:
98:16:9b:14:71:f8:14:2d:62:5b:96:cd:96:4b:7e:
a5:9e:b3:40:b1:ea:94:3f:d1:92:87:98:15:ce:e4:
ed:3e:d9:5f:dd:56:79:00:7e:30:38:f1:70:30:c8:
a3:fa:ad:d0:ca:1e:5b:c8:ad:27:b4:ee:17:f7:65:
7b:bf:1b:db:f6:12:c6:02:89:18:71:54:60:f6:b4:
e3:62:56:52:ed:79:43:aa:9a:74:f9:89:9c:d3:a5:
4e:54:6a:6f:b2:6e:3f:4b:6e:9b:f4:ef:bc:10:0e:
d6:bd:11:ef:35:21:78:76:c3:1d:52:70:97:61:b6:
6b:f1:83:0a:99:cd:9b:a6:69:3a:81:9a:04:4d:fc:
bc:73:34:69:31:c8:c8:28:cb:bb:23:cd:fd:0d:7e:
c4:ab:4c:05:14:5f:04:a0:c7:a9:1b:37:dd:37:19:
e1:2f:84:c7:c3:6f:64:25:b5:f8:b4:21:32:e4:df:
3d:4d:a7:98:6f:db:ec:52:c7:60:ad:3f:06:a3:5d:
12:a6:63:ba:70:4e:30:8a:f7:d7:1e:88:a3:2d:b0:
8e:92:be:39:30:27:36:81:3f:27:8a:86:72:5b:62:
70:78:79:3c:b2:35:87:9f:9b:27:d8:e6:1b:81:34:
6e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:DC:95:4E:78:E8:74:CC:5D:68:1B:06:2C:22:65:F6:F1:E4:E8:F4
X509v3 Authority Key Identifier:
keyid:22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:80:c7:a3:6f:13:17:24:88:08:57:2f:68:37:cc:b2:f0:68:
aa:02:7c:18:5d:a3:4d:37:cf:31:07:78:79:2b:21:41:d7:22:
d3:74:74:d5:09:03:36:21:89:14:d5:14:00:42:9c:09:8d:fd:
5d:a2:ad:0f:70:6b:5e:49:c9:17:7a:95:d7:e6:8a:7f:92:39:
cb:c0:cc:5a:45:ba:71:e1:20:8d:ba:62:74:4e:9b:53:f7:92:
0e:3a:89:7d:2e:76:0e:73:63:85:34:39:88:69:e6:c1:89:1e:
2b:33:60:7a:4e:b1:8c:d5:85:f6:45:20:8e:db:0f:b4:1c:96:
33:c7:69:22:bc:74:e9:c0:e0:de:c2:36:ce:d2:fc:2e:90:d9:
ed:43:1f:36:48:50:15:66:e0:6d:30:ce:fc:75:90:09:a7:01:
dd:d8:3b:47:b4:94:7c:44:b3:b0:1d:b3:2c:d1:6a:56:05:29:
8b:5d:8b:bb:29:de:b0:9a:16:23:57:b8:59:c2:06:f1:c7:ae:
27:d4:97:d1:f8:7e:a6:97:17:48:af:f7:10:8a:47:47:63:22:
da:a2:1a:29:04:7c:0e:f6:ba:39:4f:bf:6c:24:78:c9:e7:bd:
56:da:62:b0:1b:c3:80:9f:2b:fe:96:2e:42:a5:74:78:b1:dd:
6c:92:5c:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2eNYyZL7tNZDuJGnSyGfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyNDBhMDcxODBmY2YzMzYzNWY3NTdjYzE0NDllMGQ1ZGJk
NGZkYjgwHhcNMjYwMzAyMDAwMTQ5WhcNMjYwMzAzMDAwMTQ5WjAzMTEwLwYDVQQD
EyhlNWRjOTU0ZTc4ZTg3NGNjNWQ2ODFiMDYyYzIyNjVmNmYxZTRlOGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqAiO3gXNIg3g5Sn9oDOYFpsUcfgU
LWJbls2WS36lnrNAseqUP9GSh5gVzuTtPtlf3VZ5AH4wOPFwMMij+q3Qyh5byK0n
tO4X92V7vxvb9hLGAokYcVRg9rTjYlZS7XlDqpp0+Ymc06VOVGpvsm4/S26b9O+8
EA7WvRHvNSF4dsMdUnCXYbZr8YMKmc2bpmk6gZoETfy8czRpMcjIKMu7I839DX7E
q0wFFF8EoMepGzfdNxnhL4THw29kJbX4tCEy5N89TaeYb9vsUsdgrT8Go10SpmO6
cE4wivfXHoijLbCOkr45MCc2gT8nioZyW2JweHk8sjWHn5sn2OYbgTRuiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOXclU546HTMXWgbBiwiZfbx5Oj0MB8GA1UdIwQY
MBaAFCJAoHGA/PM2NfdXzBRJ4NXb1P24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9hMzE0Y2MtMDY2ZS00YzA5LWEzNmEt
ZDBiZDBlODAzZmQxLzEvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9hMzE0Y2MtMDY2ZS00YzA5LWEzNmEtZDBiZDBlODAzZmQx
LzEvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAYDHo28T
FySICFcvaDfMsvBoqgJ8GF2jTTfPMQd4eSshQdci03R01QkDNiGJFNUUAEKcCY39
XaKtD3BrXknJF3qV1+aKf5I5y8DMWkW6ceEgjbpidE6bU/eSDjqJfS52DnNjhTQ5
iGnmwYkeKzNgek6xjNWF9kUgjtsPtByWM8dpIrx06cDg3sI2ztL8LpDZ7UMfNkhQ
FWbgbTDO/HWQCacB3dg7R7SUfESzsB2zLNFqVgUpi12LuynesJoWI1e4WcIG8ceu
J9SX0fh+ppcXSK/3EIpHR2Mi2qIaKQR8Dva6OU+/bCR4yee9VtpisBvDgJ8r/pYu
QqV0eLHdbJJcTA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:58:25 2026 by rpki-client