Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
File: r8GT7hHlRxYWn5TI-THq4fyFSSE.mft (raw, json)
Hash identifier: oAy92dZS74F0H78gM4NHu1Y+35HiDjrZl2c+c/1FP2E=
Subject key identifier: DD:7A:3B:31:23:E9:2E:B1:80:5A:13:E4:11:04:B6:C0:9A:07:4F:5C
Authority key identifier: AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
Certificate issuer: /CN=afc193ee11e54716169f94c8f931eae1fc854921
Certificate serial: 019CAB34679C8D10140DAEFE3CC071EE31E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
Manifest number: 0D99
Signing time: Sun 01 Mar 2026 21:01:04 +0000
Manifest this update: Sun 01 Mar 2026 21:01:04 +0000
Manifest next update: Mon 02 Mar 2026 21:01:04 +0000
Files and hashes: 1: lWFmjWS1SbQSeACbvDZD9f1EmEg.roa (hash: TjMg92xbLY6yeaH0PpcE4pe0qFscpI9c3d7VL5l9Rzw=)
2: r8GT7hHlRxYWn5TI-THq4fyFSSE.crl (hash: k9gl92iANX1eWBnO6ZP0fbRTvHw3KXkOzxHJx8FY18Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:67:9c:8d:10:14:0d:ae:fe:3c:c0:71:ee:31:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afc193ee11e54716169f94c8f931eae1fc854921
Validity
Not Before: Mar 1 21:01:04 2026 GMT
Not After : Mar 2 21:01:04 2026 GMT
Subject: CN=dd7a3b3123e92eb1805a13e41104b6c09a074f5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:58:20:de:9f:18:b5:35:48:4e:b8:e5:59:1e:
e4:d9:21:53:55:0c:61:42:09:bb:e3:d9:ad:2e:57:
cb:b2:7a:e3:83:93:a9:11:39:7d:4d:69:83:79:22:
63:a1:59:63:1d:ce:ae:60:77:31:43:4b:f4:2a:9e:
fc:99:f8:90:4d:7d:e2:d0:f7:73:40:97:b7:1f:e9:
d4:b7:c7:a4:a1:e8:11:c4:7d:a8:c0:02:d6:51:8e:
a7:94:17:b4:24:44:05:5d:80:96:e7:ce:b9:b3:f0:
a5:2d:c1:2f:fb:98:4c:03:c1:fe:ff:fb:1b:32:f5:
36:3e:1b:ca:0e:7b:7e:6d:84:2c:1e:36:99:2b:4b:
16:12:e8:29:a9:19:90:c1:e7:dd:41:7e:52:b5:bb:
56:d7:09:9a:8c:52:6d:e0:86:2d:65:6b:fc:eb:00:
27:68:1a:99:30:30:76:cb:cb:76:58:4f:2a:70:d3:
f0:f5:78:b3:d9:5f:97:c4:6b:fc:d2:6e:4a:bd:fc:
b9:fd:fd:67:ad:77:13:99:c9:68:bb:8d:64:92:27:
95:6f:4d:3c:4b:37:50:d3:f3:d5:7f:41:58:84:9f:
45:5b:0e:4d:83:18:67:14:5d:f7:3f:58:64:89:25:
b7:b1:06:f9:e0:a0:a9:d3:6f:74:a9:79:ab:3f:c6:
73:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:7A:3B:31:23:E9:2E:B1:80:5A:13:E4:11:04:B6:C0:9A:07:4F:5C
X509v3 Authority Key Identifier:
keyid:AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:ab:da:5c:05:4b:44:57:24:2a:38:8c:2c:98:29:e8:c7:05:
7f:ad:11:c7:7e:ba:1d:71:ce:08:92:1e:55:f8:33:8e:f2:7d:
0b:41:52:83:36:0f:23:fe:e5:61:91:2c:ca:a3:34:b0:22:d9:
36:44:ff:57:c4:33:7c:6b:a9:11:d0:31:6d:e3:9d:ce:5a:29:
94:6c:db:ff:aa:ea:fe:ce:ad:f2:ce:88:12:3c:c0:48:17:6d:
2a:9f:b2:c2:95:2a:8f:42:c1:6f:57:5f:f4:dc:f0:2e:05:de:
86:be:83:c8:d6:4c:a3:64:81:ef:10:6c:03:e8:1d:77:6f:b1:
59:8e:c6:a1:63:ce:50:45:5c:46:2a:27:da:ff:e1:c6:56:ef:
8a:2a:29:0b:06:a7:35:9e:28:da:cd:a6:a5:9d:1b:fc:b0:d5:
f5:a2:ee:55:65:98:68:2d:54:1d:d9:fd:3a:3f:52:b3:8f:ea:
6c:75:e9:16:a8:d6:bf:4e:00:de:86:04:73:f4:13:a8:e1:7a:
3d:40:32:ed:f7:b6:2c:95:99:dc:b7:c2:04:43:13:27:7d:b0:
ea:54:d6:d9:43:23:b1:88:08:9a:08:10:0e:3e:86:d8:33:86:
50:4c:89:bc:b3:40:00:0a:d6:ea:13:26:a9:6f:9f:2b:85:6d:
bb:6a:4e:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrNGecjRAUDa7+PMBx7jHoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmYzE5M2VlMTFlNTQ3MTYxNjlmOTRjOGY5MzFlYWUxZmM4
NTQ5MjEwHhcNMjYwMzAxMjEwMTA0WhcNMjYwMzAyMjEwMTA0WjAzMTEwLwYDVQQD
EyhkZDdhM2IzMTIzZTkyZWIxODA1YTEzZTQxMTA0YjZjMDlhMDc0ZjVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh1gg3p8YtTVITrjlWR7k2SFTVQxh
Qgm749mtLlfLsnrjg5OpETl9TWmDeSJjoVljHc6uYHcxQ0v0Kp78mfiQTX3i0Pdz
QJe3H+nUt8ekoegRxH2owALWUY6nlBe0JEQFXYCW5865s/ClLcEv+5hMA8H+//sb
MvU2PhvKDnt+bYQsHjaZK0sWEugpqRmQwefdQX5StbtW1wmajFJt4IYtZWv86wAn
aBqZMDB2y8t2WE8qcNPw9Xiz2V+XxGv80m5Kvfy5/f1nrXcTmclou41kkieVb008
SzdQ0/PVf0FYhJ9FWw5NgxhnFF33P1hkiSW3sQb54KCp0290qXmrP8ZzbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN16OzEj6S6xgFoT5BEEtsCaB09cMB8GA1UdIwQY
MBaAFK/Bk+4R5UcWFp+UyPkx6uH8hUkhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjhHVDdoSGxSeFlXbjVUSS1USHE0ZnlGU1NFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8wYjljYmYtMjVhZS00MzI3LTk4YWEt
YTdkZDlhZWExZDdhLzEvcjhHVDdoSGxSeFlXbjVUSS1USHE0ZnlGU1NFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy8wYjljYmYtMjVhZS00MzI3LTk4YWEtYTdkZDlhZWExZDdh
LzEvcjhHVDdoSGxSeFlXbjVUSS1USHE0ZnlGU1NFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN6vaXAVL
RFckKjiMLJgp6McFf60Rx366HXHOCJIeVfgzjvJ9C0FSgzYPI/7lYZEsyqM0sCLZ
NkT/V8QzfGupEdAxbeOdzloplGzb/6rq/s6t8s6IEjzASBdtKp+ywpUqj0LBb1df
9NzwLgXehr6DyNZMo2SB7xBsA+gdd2+xWY7GoWPOUEVcRion2v/hxlbviiopCwan
NZ4o2s2mpZ0b/LDV9aLuVWWYaC1UHdn9Oj9Ss4/qbHXpFqjWv04A3oYEc/QTqOF6
PUAy7fe2LJWZ3LfCBEMTJ32w6lTW2UMjsYgImggQDj6G2DOGUEyJvLNAAArW6hMm
qW+fK4Vtu2pO9A==
-----END CERTIFICATE-----
Generated at Mon Mar 2 08:21:34 2026 by rpki-client