Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
File: AsLBh9mLRgOATtEWWttFCbYwqDo.mft (raw, json)
Hash identifier: v5DYV9+3r6z289LiLgaPGKY9DXWApDzkFf+C49NECjU=
Subject key identifier: CF:F1:12:A1:AC:41:5D:A4:F9:04:6D:7A:C5:41:D3:7D:32:66:FD:2A
Authority key identifier: 02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A
Certificate issuer: /CN=02c2c187d98b4603804ed1165adb4509b630a83a
Certificate serial: 019CAB3406B39CAEDC48B91D998E77139D55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
Manifest number: 0D3B
Signing time: Sun 01 Mar 2026 21:00:39 +0000
Manifest this update: Sun 01 Mar 2026 21:00:39 +0000
Manifest next update: Mon 02 Mar 2026 21:00:39 +0000
Files and hashes: 1: AsLBh9mLRgOATtEWWttFCbYwqDo.crl (hash: zPuiLiCeW9Rk/R/YwzwQWpHw9+a9bpQdYMdAQn+19XQ=)
2: WuVnfkB6n82FOg4W-IcUzY3Fe0M.roa (hash: DZE6yI97kbfPPegu/0turhmXzDIWBsKrThF8bRlEJlI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:06:b3:9c:ae:dc:48:b9:1d:99:8e:77:13:9d:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c2c187d98b4603804ed1165adb4509b630a83a
Validity
Not Before: Mar 1 21:00:39 2026 GMT
Not After : Mar 2 21:00:39 2026 GMT
Subject: CN=cff112a1ac415da4f9046d7ac541d37d3266fd2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:2d:9e:66:29:d7:49:f7:8f:b1:e7:4d:ba:c4:
f5:55:2f:46:c9:cd:c3:aa:22:77:3e:78:4a:aa:0b:
6d:06:72:88:69:4f:75:9c:78:81:39:72:e1:d3:c9:
43:cc:8b:c2:c6:f6:93:9f:14:30:98:c3:f3:73:0a:
f6:d0:f2:63:b1:bd:96:dc:2e:7c:79:6d:64:2b:d1:
d8:3c:c0:b5:70:3d:6b:10:fc:38:e9:7c:5c:ce:1f:
c5:81:c2:7f:68:4c:0b:cc:bc:51:df:c9:9d:3b:03:
18:92:62:d8:c8:dd:4d:18:0e:2a:18:45:0e:41:79:
47:12:a4:e3:5b:9f:44:26:96:73:a3:db:54:b8:3a:
c2:0e:e2:12:0c:79:1d:32:58:c7:e3:35:7c:cd:5d:
63:cc:13:bf:6b:b8:fb:fb:0b:eb:d3:d4:41:81:84:
28:6f:fa:84:eb:0a:c3:38:92:4d:6f:26:fe:f0:bd:
12:11:f4:be:aa:2f:c6:e0:ad:4b:fd:82:5f:e9:0c:
84:cb:26:b0:e5:15:76:f5:8b:c6:63:e0:cd:9a:fc:
dc:ef:fe:81:a9:89:03:b9:99:80:56:2b:b6:a1:18:
34:4d:32:69:29:b0:28:ec:b9:01:48:b2:86:16:35:
2a:06:9f:7f:05:fc:7f:da:05:af:2f:ad:50:9f:83:
eb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:F1:12:A1:AC:41:5D:A4:F9:04:6D:7A:C5:41:D3:7D:32:66:FD:2A
X509v3 Authority Key Identifier:
keyid:02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:95:d8:e7:e5:4b:0c:25:d8:42:e0:67:7c:ae:7b:c8:8c:de:
6e:a4:0e:8b:6c:d2:06:52:f0:57:ce:a8:f8:96:75:10:79:ce:
c1:38:cf:aa:97:6f:a2:24:0a:ec:e9:06:40:9d:fa:91:52:ae:
3b:0f:14:9c:6c:dd:2b:47:46:e3:36:69:38:cb:e8:5e:eb:b4:
c0:53:c6:a2:8e:83:2c:4f:fb:b9:7d:fe:3a:8b:f8:4c:05:b5:
7b:73:f0:6b:ee:ac:8a:3c:50:b1:cb:20:d3:14:ce:06:df:86:
92:78:a8:f8:79:48:b1:bd:7f:83:f6:d8:d6:72:51:72:d8:75:
50:5a:94:ff:68:94:6a:16:5d:7f:fc:71:cb:fe:13:9d:d0:32:
0b:53:f8:b3:5a:04:41:96:85:cc:5f:e1:ab:91:a7:57:ac:7f:
97:e9:ba:71:01:07:99:0b:49:a4:ab:53:65:fe:1c:b6:81:f5:
34:9c:60:9c:69:ac:75:62:0e:1c:f2:bb:11:63:cd:19:0f:f9:
20:86:e9:5c:dc:df:52:21:d9:1e:51:28:c6:0f:00:3c:6f:90:
18:7a:65:77:7f:a1:eb:af:d7:a5:fd:89:db:2d:26:e9:45:38:
70:54:49:64:66:d0:87:a1:db:b2:ad:c6:6a:4a:cc:f3:e0:38:
aa:a1:16:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrNAaznK7cSLkdmY53E51VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyYzJjMTg3ZDk4YjQ2MDM4MDRlZDExNjVhZGI0NTA5YjYz
MGE4M2EwHhcNMjYwMzAxMjEwMDM5WhcNMjYwMzAyMjEwMDM5WjAzMTEwLwYDVQQD
EyhjZmYxMTJhMWFjNDE1ZGE0ZjkwNDZkN2FjNTQxZDM3ZDMyNjZmZDJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+y2eZinXSfePsedNusT1VS9Gyc3D
qiJ3PnhKqgttBnKIaU91nHiBOXLh08lDzIvCxvaTnxQwmMPzcwr20PJjsb2W3C58
eW1kK9HYPMC1cD1rEPw46Xxczh/FgcJ/aEwLzLxR38mdOwMYkmLYyN1NGA4qGEUO
QXlHEqTjW59EJpZzo9tUuDrCDuISDHkdMljH4zV8zV1jzBO/a7j7+wvr09RBgYQo
b/qE6wrDOJJNbyb+8L0SEfS+qi/G4K1L/YJf6QyEyyaw5RV29YvGY+DNmvzc7/6B
qYkDuZmAViu2oRg0TTJpKbAo7LkBSLKGFjUqBp9/Bfx/2gWvL61Qn4Pr/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM/xEqGsQV2k+QRtesVB030yZv0qMB8GA1UdIwQY
MBaAFALCwYfZi0YDgE7RFlrbRQm2MKg6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXNMQmg5bUxSZ09BVHRFV1d0dEZDYll3cURvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy83MjllYTQtNmE2OC00ODM4LThmZWMt
N2ZlYjE4YjlmNTUyLzEvQXNMQmg5bUxSZ09BVHRFV1d0dEZDYll3cURvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy83MjllYTQtNmE2OC00ODM4LThmZWMtN2ZlYjE4YjlmNTUy
LzEvQXNMQmg5bUxSZ09BVHRFV1d0dEZDYll3cURvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWJXY5+VL
DCXYQuBnfK57yIzebqQOi2zSBlLwV86o+JZ1EHnOwTjPqpdvoiQK7OkGQJ36kVKu
Ow8UnGzdK0dG4zZpOMvoXuu0wFPGoo6DLE/7uX3+Oov4TAW1e3Pwa+6sijxQscsg
0xTOBt+Gknio+HlIsb1/g/bY1nJRcth1UFqU/2iUahZdf/xxy/4TndAyC1P4s1oE
QZaFzF/hq5GnV6x/l+m6cQEHmQtJpKtTZf4ctoH1NJxgnGmsdWIOHPK7EWPNGQ/5
IIbpXNzfUiHZHlEoxg8APG+QGHpld3+h66/Xpf2J2y0m6UU4cFRJZGbQh6Hbsq3G
akrM8+A4qqEWSQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 06:14:07 2026 by rpki-client