Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
File: 1TVDIcElQ2AUXq8l9pk4uN80ezE.mft (raw, json)
Hash identifier: CAnAnDin2AMjYxqbqMc7cMzykwevhAY25YqqjS+ymhk=
Subject key identifier: 8D:48:9C:0F:E8:48:BF:59:89:C1:6B:D2:90:29:E3:2F:9B:0E:19:EA
Authority key identifier: D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
Certificate issuer: /CN=d5354321c1254360145eaf25f69938b8df347b31
Certificate serial: 019CA9EB30FB348D72284DFDA8D5EFFFF12E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
Manifest number: 0D47
Signing time: Sun 01 Mar 2026 15:01:28 +0000
Manifest this update: Sun 01 Mar 2026 15:01:28 +0000
Manifest next update: Mon 02 Mar 2026 15:01:28 +0000
Files and hashes: 1: 1TVDIcElQ2AUXq8l9pk4uN80ezE.crl (hash: d+uW1tClOZhf1vRO5UnWzv47xypdMRM8evgQ7PZ2SSc=)
2: yqbwyn5sfCL6hbkLZAJdRWAyPBM.roa (hash: ZWKRKB/jnik25oPS/+Y2ymZERk+OEa7DBYYnhwqGBQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:eb:30:fb:34:8d:72:28:4d:fd:a8:d5:ef:ff:f1:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5354321c1254360145eaf25f69938b8df347b31
Validity
Not Before: Mar 1 15:01:28 2026 GMT
Not After : Mar 2 15:01:28 2026 GMT
Subject: CN=8d489c0fe848bf5989c16bd29029e32f9b0e19ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e8:67:bd:e6:ae:49:cf:ca:90:c3:75:bb:03:
f5:c5:0b:68:85:65:1a:20:d6:82:aa:12:78:65:bf:
8e:42:6c:0b:17:97:ab:56:89:e6:ac:e5:25:cf:51:
c4:15:2e:52:de:14:d1:51:79:04:9f:03:91:c8:15:
8b:01:54:e2:df:86:8c:e4:19:1f:19:5c:7c:7f:0b:
d4:26:2a:72:ff:7e:4a:7e:cc:60:97:a7:88:21:ee:
93:f7:27:7d:1a:3d:d1:c8:a4:59:84:70:54:03:ef:
00:93:25:d3:0b:cc:a1:f0:9e:b1:a2:66:79:58:2e:
80:5c:ae:50:9e:49:38:b7:ee:b2:f8:2d:84:7a:a1:
fe:eb:f6:5b:7d:a0:fa:0c:bb:68:fd:ee:57:96:d3:
df:97:85:78:3b:af:17:96:72:f0:fc:62:55:54:aa:
6a:ae:b9:15:04:42:15:20:1e:dd:40:23:56:3f:20:
c8:ec:3d:8a:49:1d:0c:c6:04:79:b8:4b:95:aa:99:
75:b6:0a:2c:91:16:14:b8:69:21:38:46:d6:db:31:
f0:77:74:45:f4:ef:a9:bb:1b:09:84:8d:97:5f:fa:
3e:a9:20:f4:73:99:3a:fd:66:39:a0:36:2c:25:b6:
4d:ed:25:9f:f4:b0:0d:43:97:5e:f0:d6:69:ef:34:
ae:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:48:9C:0F:E8:48:BF:59:89:C1:6B:D2:90:29:E3:2F:9B:0E:19:EA
X509v3 Authority Key Identifier:
keyid:D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:53:77:46:34:28:cc:33:8c:93:04:61:6f:f8:2d:dd:5a:09:
5d:ea:35:21:66:c5:62:12:0a:b4:78:e5:b0:e0:da:09:66:5e:
12:a8:39:8d:9f:78:33:76:d0:f6:43:6f:66:cd:8e:4f:7a:ad:
ae:40:0b:39:13:c6:39:0a:39:78:e8:bf:86:67:f5:2f:b5:39:
ae:8d:7e:b8:1c:f8:fd:0b:9b:77:a1:7f:9e:b2:23:20:f5:08:
e3:0c:9a:70:db:19:72:9e:38:54:14:7d:da:ce:b5:8c:2c:a0:
8f:47:b3:7b:87:c6:a6:64:c2:ba:e1:5d:25:fe:16:f0:37:5a:
56:d8:70:e1:43:3c:e4:0a:9e:d5:66:79:6e:54:d4:e5:29:61:
a6:87:6f:c2:22:a4:ea:c3:65:20:be:bf:88:0d:59:c4:59:c0:
80:22:a9:0b:85:96:47:96:03:3e:6f:da:62:73:6a:03:67:fa:
0c:ea:29:b8:ea:47:4c:77:6f:60:8b:23:e7:d0:ab:8a:70:31:
8c:40:51:a4:eb:d8:c2:a4:0e:77:0b:c3:c6:09:3b:9a:75:2a:
fe:e3:23:6b:5e:e8:25:ff:50:b2:37:ac:43:ae:6e:cd:9c:b2:
67:92:2c:f7:f6:38:6d:a0:e8:4b:48:c3:cb:73:7e:a6:99:d7:
35:62:e8:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyp6zD7NI1yKE39qNXv//EuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1MzU0MzIxYzEyNTQzNjAxNDVlYWYyNWY2OTkzOGI4ZGYz
NDdiMzEwHhcNMjYwMzAxMTUwMTI4WhcNMjYwMzAyMTUwMTI4WjAzMTEwLwYDVQQD
Eyg4ZDQ4OWMwZmU4NDhiZjU5ODljMTZiZDI5MDI5ZTMyZjliMGUxOWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvOhnveauSc/KkMN1uwP1xQtohWUa
INaCqhJ4Zb+OQmwLF5erVonmrOUlz1HEFS5S3hTRUXkEnwORyBWLAVTi34aM5Bkf
GVx8fwvUJipy/35Kfsxgl6eIIe6T9yd9Gj3RyKRZhHBUA+8AkyXTC8yh8J6xomZ5
WC6AXK5Qnkk4t+6y+C2EeqH+6/ZbfaD6DLto/e5XltPfl4V4O68XlnLw/GJVVKpq
rrkVBEIVIB7dQCNWPyDI7D2KSR0MxgR5uEuVqpl1tgoskRYUuGkhOEbW2zHwd3RF
9O+puxsJhI2XX/o+qSD0c5k6/WY5oDYsJbZN7SWf9LANQ5de8NZp7zSumwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI1InA/oSL9ZicFr0pAp4y+bDhnqMB8GA1UdIwQY
MBaAFNU1QyHBJUNgFF6vJfaZOLjfNHsxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9kOWY5YTgtZGEwMS00ZDM1LTgyODQt
YjY0ZWI4ZDgzNjU4LzEvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS9kOWY5YTgtZGEwMS00ZDM1LTgyODQtYjY0ZWI4ZDgzNjU4
LzEvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADlN3RjQo
zDOMkwRhb/gt3VoJXeo1IWbFYhIKtHjlsODaCWZeEqg5jZ94M3bQ9kNvZs2OT3qt
rkALORPGOQo5eOi/hmf1L7U5ro1+uBz4/Qubd6F/nrIjIPUI4wyacNsZcp44VBR9
2s61jCygj0eze4fGpmTCuuFdJf4W8DdaVthw4UM85Aqe1WZ5blTU5SlhpodvwiKk
6sNlIL6/iA1ZxFnAgCKpC4WWR5YDPm/aYnNqA2f6DOopuOpHTHdvYIsj59CrinAx
jEBRpOvYwqQOdwvDxgk7mnUq/uMja17oJf9QsjesQ65uzZyyZ5Is9/Y4baDoS0jD
y3N+ppnXNWLo7Q==
-----END CERTIFICATE-----
Generated at Mon Mar 2 00:56:38 2026 by rpki-client