Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
File: rfDfdxFHQeE6F9chPmlWv5YntVg.mft (raw, json)
Hash identifier: ZOPHk98sGh+teRxhzvgFicsdabPO5gsH4sN7MFkdjkQ=
Subject key identifier: 72:5B:F4:57:BB:CE:5D:FE:68:FB:DB:6E:BB:EF:AB:15:DD:5E:10:E5
Authority key identifier: AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
Certificate issuer: /CN=adf0df77114741e13a17d7213e6956bf9627b558
Certificate serial: 019CAA902AC72FC8047ED71B3FDC92EA647B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
Manifest number: 16FA
Signing time: Sun 01 Mar 2026 18:01:40 +0000
Manifest this update: Sun 01 Mar 2026 18:01:40 +0000
Manifest next update: Mon 02 Mar 2026 18:01:40 +0000
Files and hashes: 1: 8eYijGU89HKkHPl1vQkVznR2YWI.roa (hash: GVKbdEH+zbWNIRI6lkz6XipadG7YSN2rD9CEidAiQUs=)
2: rfDfdxFHQeE6F9chPmlWv5YntVg.crl (hash: MqTzOH8SLEvbRGd8MbWWk9t4SS89iU1DlYokSottUUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:90:2a:c7:2f:c8:04:7e:d7:1b:3f:dc:92:ea:64:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf0df77114741e13a17d7213e6956bf9627b558
Validity
Not Before: Mar 1 18:01:40 2026 GMT
Not After : Mar 2 18:01:40 2026 GMT
Subject: CN=725bf457bbce5dfe68fbdb6ebbefab15dd5e10e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:53:e9:cc:19:46:4d:c7:d3:7c:9b:ad:67:2f:
fa:1a:c8:ba:89:32:ca:fb:05:ed:87:a2:0f:58:12:
a0:54:8b:c4:b4:48:ef:79:b1:6b:e3:c8:a4:77:b1:
5c:8a:14:90:a6:38:bf:3d:de:6f:90:e6:69:e7:e0:
18:23:ed:ac:4d:bc:31:c5:9a:3e:0c:2c:c9:27:34:
21:36:25:55:21:80:99:29:55:90:ec:0a:eb:5d:15:
75:f5:37:4a:69:dd:4a:17:81:58:09:1b:20:f1:4e:
51:e1:bf:25:c5:3f:ab:b9:55:3b:4a:c9:6f:90:9e:
bd:19:76:be:c7:88:79:1e:8b:72:6b:b0:22:97:ae:
f8:b2:81:9c:27:6a:74:86:9b:10:48:dd:b9:7d:ab:
77:38:7f:db:9b:ea:bf:82:1c:20:e8:e6:61:6f:09:
9c:ab:22:c4:a3:c8:7c:e6:fc:5d:b3:12:6f:11:ec:
3b:71:b1:75:af:71:52:f8:e4:d2:24:de:d7:0e:b3:
b8:27:bc:00:9a:08:95:30:e2:32:84:b0:5b:00:0f:
32:2c:6b:21:99:a4:72:10:fd:d7:42:9e:89:55:6e:
ca:f0:dc:fb:ab:bc:5e:7b:83:f9:06:c1:f4:98:03:
f2:e3:2a:c6:9d:b2:04:e5:f4:3b:43:35:23:61:ee:
23:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:5B:F4:57:BB:CE:5D:FE:68:FB:DB:6E:BB:EF:AB:15:DD:5E:10:E5
X509v3 Authority Key Identifier:
keyid:AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:f0:cb:dd:34:ac:0d:df:7d:15:bf:64:e7:92:23:cc:7d:ca:
cf:86:f0:90:b5:40:c1:d5:b9:6d:4b:c6:8f:ee:18:bf:4d:12:
fa:36:e9:ac:54:1a:df:36:87:73:9f:17:2b:8a:ff:1e:4d:7d:
55:34:bd:dd:42:d8:d9:2c:7a:52:14:e2:aa:2c:ae:9b:8c:e2:
8d:66:72:26:90:ad:00:bd:32:43:6e:35:b7:1e:64:9e:1e:c7:
e4:b1:67:10:cc:fa:23:3c:96:e3:36:79:07:4c:83:03:30:f0:
34:b4:d6:39:89:20:2b:83:e6:7f:8c:9e:5a:ca:76:38:19:d9:
96:2b:bc:0f:9e:4e:14:b9:fb:5c:19:4c:11:9b:34:f6:21:ce:
52:24:4b:d8:91:f3:86:54:dd:36:c3:92:31:e5:ec:91:d6:40:
64:da:1d:a2:65:38:07:c9:d1:67:34:ca:32:75:0e:e0:70:e7:
9e:87:cb:3d:d5:d5:54:33:2a:25:8b:d8:e7:48:02:f5:cf:75:
4f:73:bd:38:a1:c4:1b:06:a7:ee:ad:d3:20:36:e3:5c:9d:14:
d2:5c:f7:a2:4a:37:91:ed:12:fa:f1:1f:b1:a9:ed:39:1b:f7:
ca:ad:79:db:3a:6f:6f:65:6b:ff:fa:b0:4c:3d:7b:43:41:11:
48:0d:61:a5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqkCrHL8gEftcbP9yS6mR7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkZjBkZjc3MTE0NzQxZTEzYTE3ZDcyMTNlNjk1NmJmOTYy
N2I1NTgwHhcNMjYwMzAxMTgwMTQwWhcNMjYwMzAyMTgwMTQwWjAzMTEwLwYDVQQD
Eyg3MjViZjQ1N2JiY2U1ZGZlNjhmYmRiNmViYmVmYWIxNWRkNWUxMGU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFPpzBlGTcfTfJutZy/6Gsi6iTLK
+wXth6IPWBKgVIvEtEjvebFr48ikd7FcihSQpji/Pd5vkOZp5+AYI+2sTbwxxZo+
DCzJJzQhNiVVIYCZKVWQ7ArrXRV19TdKad1KF4FYCRsg8U5R4b8lxT+ruVU7Sslv
kJ69GXa+x4h5Hotya7Ail674soGcJ2p0hpsQSN25fat3OH/bm+q/ghwg6OZhbwmc
qyLEo8h85vxdsxJvEew7cbF1r3FS+OTSJN7XDrO4J7wAmgiVMOIyhLBbAA8yLGsh
maRyEP3XQp6JVW7K8Nz7q7xee4P5BsH0mAPy4yrGnbIE5fQ7QzUjYe4j1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHJb9Fe7zl3+aPvbbrvvqxXdXhDlMB8GA1UdIwQY
MBaAFK3w33cRR0HhOhfXIT5pVr+WJ7VYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9hMzBiZWEtOWU5My00MDkxLWI2ZTEt
ZTFlZjI3NzcyZWFmLzEvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9hMzBiZWEtOWU5My00MDkxLWI2ZTEtZTFlZjI3NzcyZWFm
LzEvcmZEZmR4RkhRZUU2RjljaFBtbFd2NVludFZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlvDL3TSs
Dd99Fb9k55IjzH3Kz4bwkLVAwdW5bUvGj+4Yv00S+jbprFQa3zaHc58XK4r/Hk19
VTS93ULY2Sx6UhTiqiyum4zijWZyJpCtAL0yQ241tx5knh7H5LFnEMz6IzyW4zZ5
B0yDAzDwNLTWOYkgK4Pmf4yeWsp2OBnZliu8D55OFLn7XBlMEZs09iHOUiRL2JHz
hlTdNsOSMeXskdZAZNodomU4B8nRZzTKMnUO4HDnnofLPdXVVDMqJYvY50gC9c91
T3O9OKHEGwan7q3TIDbjXJ0U0lz3oko3ke0S+vEfsantORv3yq152zpvb2Vr//qw
TD17Q0ERSA1hpQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:50:44 2026 by rpki-client