Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft
File: cc2ljxUk2CM2224M8qKf-vLaifg.mft (raw, json)
Hash identifier: lpVel0BjbLUaB26UTb4gdbux3jD5cOtbYLDaSa3gC2c=
Subject key identifier: 37:FB:D4:DD:86:BA:0D:32:2A:82:BF:78:3F:71:00:4F:D8:16:10:09
Authority key identifier: 71:CD:A5:8F:15:24:D8:23:36:DB:6E:0C:F2:A2:9F:FA:F2:DA:89:F8
Certificate issuer: /CN=71cda58f1524d82336db6e0cf2a29ffaf2da89f8
Certificate serial: 019D98F50BA718A056BAD7ECE18BAD7F9049
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cc2ljxUk2CM2224M8qKf-vLaifg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft
Manifest number: 10DC
Signing time: Fri 17 Apr 2026 01:01:29 +0000
Manifest this update: Fri 17 Apr 2026 01:01:29 +0000
Manifest next update: Sat 18 Apr 2026 01:01:29 +0000
Files and hashes: 1: cc2ljxUk2CM2224M8qKf-vLaifg.crl (hash: yb9MIG7ygn9wrAM7Z/JSFLwQqsxVFKY4thVsT58fxfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft
rsync://rpki.ripe.net/repository/DEFAULT/cc2ljxUk2CM2224M8qKf-vLaifg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:0b:a7:18:a0:56:ba:d7:ec:e1:8b:ad:7f:90:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71cda58f1524d82336db6e0cf2a29ffaf2da89f8
Validity
Not Before: Apr 17 01:01:29 2026 GMT
Not After : Apr 18 01:01:29 2026 GMT
Subject: CN=37fbd4dd86ba0d322a82bf783f71004fd8161009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8c:2e:f5:55:59:a1:2b:4f:d6:db:4d:f5:b1:
d4:f6:4d:58:dd:d1:bf:75:15:d8:98:6b:dc:3e:46:
94:f1:bd:3d:68:95:23:1a:9a:7a:23:a6:e5:39:b9:
0d:f7:23:95:72:a8:20:9a:e7:5a:e0:c1:09:b8:be:
e9:98:d8:6a:71:f2:55:00:59:1f:d7:6d:79:72:97:
a8:d7:44:5a:92:db:f5:3d:d3:cf:81:d7:c6:b9:0e:
2f:0f:02:6c:f3:24:bb:9e:df:81:fa:dc:47:df:9e:
c4:9e:13:33:ed:f8:58:47:3a:8c:b3:b9:ae:46:c0:
ca:b5:2a:dc:9c:0e:05:83:1b:7b:c0:db:b3:05:22:
e9:9c:0a:70:54:0a:c2:8e:02:d3:1b:7b:e6:70:69:
4b:76:e4:2a:de:55:0f:c3:24:9f:01:c0:6c:da:5d:
4d:06:00:70:a6:67:42:70:30:70:3f:05:f3:4b:2c:
e6:38:25:15:50:82:62:37:c8:4d:5b:65:be:d4:19:
df:2d:cf:c2:a7:b6:87:e1:e5:cf:0f:71:ed:1a:21:
a5:1c:ef:1a:67:a3:c6:7c:d7:66:69:41:a5:c5:4d:
05:b0:37:1e:06:2b:87:54:bc:72:27:ba:c5:c0:ee:
af:6e:cf:b5:06:76:0e:e1:da:ab:08:24:f3:17:8a:
51:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:FB:D4:DD:86:BA:0D:32:2A:82:BF:78:3F:71:00:4F:D8:16:10:09
X509v3 Authority Key Identifier:
keyid:71:CD:A5:8F:15:24:D8:23:36:DB:6E:0C:F2:A2:9F:FA:F2:DA:89:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc2ljxUk2CM2224M8qKf-vLaifg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:a0:7e:01:c8:79:3a:26:7f:92:76:de:22:fd:0e:7d:75:46:
53:12:ef:9c:1e:b1:38:21:9f:9c:d7:7e:e9:c1:a6:71:df:f8:
fe:93:98:4e:63:9d:36:ea:61:bb:5a:84:7d:0e:3a:2f:ec:17:
42:15:b8:6d:34:bd:73:07:27:1c:02:ae:6c:db:49:0b:73:3e:
51:61:5c:b6:f4:b7:79:9c:12:51:34:76:0c:18:37:6e:e0:09:
4a:41:f5:fb:68:3c:c6:dc:11:4e:f5:c1:2f:b9:b7:44:9e:ec:
2b:6f:57:09:e2:8b:dd:d4:c3:17:b0:9b:8f:7d:3d:12:02:9c:
fc:f2:1b:03:25:1c:25:ae:03:c0:fe:b8:5d:23:07:d6:e3:df:
e1:c7:d6:6a:19:fb:80:be:7f:0c:ac:84:97:00:d0:1f:32:09:
6b:db:47:4e:9b:60:1a:22:65:92:37:41:e1:73:3f:81:de:3f:
fe:42:91:69:3f:28:4a:c8:f2:1e:40:d6:bb:6f:fe:34:48:1e:
70:d5:bf:dc:a5:d6:40:f6:e3:a4:d0:6d:36:a3:58:96:7d:dc:
d2:63:b0:26:53:42:ae:48:b3:e5:a2:d9:68:ab:f1:8f:16:37:
39:4d:e5:93:eb:cd:48:5c:70:fc:e7:e5:bd:82:7b:bf:23:51:
bb:a3:33:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9QunGKBWutfs4Yutf5BJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxY2RhNThmMTUyNGQ4MjMzNmRiNmUwY2YyYTI5ZmZhZjJk
YTg5ZjgwHhcNMjYwNDE3MDEwMTI5WhcNMjYwNDE4MDEwMTI5WjAzMTEwLwYDVQQD
EygzN2ZiZDRkZDg2YmEwZDMyMmE4MmJmNzgzZjcxMDA0ZmQ4MTYxMDA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Ywu9VVZoStP1ttN9bHU9k1Y3dG/
dRXYmGvcPkaU8b09aJUjGpp6I6blObkN9yOVcqggmuda4MEJuL7pmNhqcfJVAFkf
1215cpeo10Raktv1PdPPgdfGuQ4vDwJs8yS7nt+B+txH357EnhMz7fhYRzqMs7mu
RsDKtSrcnA4Fgxt7wNuzBSLpnApwVArCjgLTG3vmcGlLduQq3lUPwySfAcBs2l1N
BgBwpmdCcDBwPwXzSyzmOCUVUIJiN8hNW2W+1BnfLc/Cp7aH4eXPD3HtGiGlHO8a
Z6PGfNdmaUGlxU0FsDceBiuHVLxyJ7rFwO6vbs+1BnYO4dqrCCTzF4pRMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDf71N2Gug0yKoK/eD9xAE/YFhAJMB8GA1UdIwQY
MBaAFHHNpY8VJNgjNttuDPKin/ry2on4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2MybGp4VWsyQ00yMjI0TThxS2YtdkxhaWZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hMzU1NDAtYWE1OC00YTNjLWFiNDUt
YmMyZDE3ZmU4YmViLzEvY2MybGp4VWsyQ00yMjI0TThxS2YtdkxhaWZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9hMzU1NDAtYWE1OC00YTNjLWFiNDUtYmMyZDE3ZmU4YmVi
LzEvY2MybGp4VWsyQ00yMjI0TThxS2YtdkxhaWZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF6B+Ach5
OiZ/knbeIv0OfXVGUxLvnB6xOCGfnNd+6cGmcd/4/pOYTmOdNuphu1qEfQ46L+wX
QhW4bTS9cwcnHAKubNtJC3M+UWFctvS3eZwSUTR2DBg3buAJSkH1+2g8xtwRTvXB
L7m3RJ7sK29XCeKL3dTDF7Cbj309EgKc/PIbAyUcJa4DwP64XSMH1uPf4cfWahn7
gL5/DKyElwDQHzIJa9tHTptgGiJlkjdB4XM/gd4//kKRaT8oSsjyHkDWu2/+NEge
cNW/3KXWQPbjpNBtNqNYln3c0mOwJlNCrkiz5aLZaKvxjxY3OU3lk+vNSFxw/Ofl
vYJ7vyNRu6Mz4g==
-----END CERTIFICATE-----
Generated at Fri Apr 17 09:36:58 2026 by rpki-client