Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft
File: U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft (raw, json)
Hash identifier: tsOoUvykWXWxoU6r6YmllrF3SFhknPXLBXo6ZgSbNwk=
Subject key identifier: 16:35:0F:AC:6D:1E:E7:A8:3C:4F:6E:3B:D9:B5:10:74:CA:09:60:5B
Authority key identifier: 53:8B:06:2C:B5:42:6F:00:E6:53:73:EE:F4:E4:CD:8A:1C:27:F6:8E
Certificate issuer: /CN=538b062cb5426f00e65373eef4e4cd8a1c27f68e
Certificate serial: 019CA97D72B31129F9B90D22DCF946A226FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4sGLLVCbwDmU3Pu9OTNihwn9o4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft
Manifest number: 1842
Signing time: Sun 01 Mar 2026 13:01:36 +0000
Manifest this update: Sun 01 Mar 2026 13:01:36 +0000
Manifest next update: Mon 02 Mar 2026 13:01:36 +0000
Files and hashes: 1: U4sGLLVCbwDmU3Pu9OTNihwn9o4.crl (hash: 5z0aVqlXvAAHFPYDNT3m0fKER4Ff5BY6L2Jnb4ZK3MU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft
rsync://rpki.ripe.net/repository/DEFAULT/U4sGLLVCbwDmU3Pu9OTNihwn9o4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 13:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:7d:72:b3:11:29:f9:b9:0d:22:dc:f9:46:a2:26:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=538b062cb5426f00e65373eef4e4cd8a1c27f68e
Validity
Not Before: Mar 1 13:01:36 2026 GMT
Not After : Mar 2 13:01:36 2026 GMT
Subject: CN=16350fac6d1ee7a83c4f6e3bd9b51074ca09605b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a4:b1:2b:33:6c:12:42:3d:9e:b5:9c:f8:9e:
be:b5:a9:e9:e5:9c:1b:02:53:ff:db:92:b7:a5:de:
eb:07:40:9b:88:34:2b:32:15:42:55:24:1b:b6:c5:
36:ff:5c:d3:87:e2:cc:2f:7e:9c:da:da:91:0c:6c:
70:68:13:bb:6c:1f:8f:67:9f:f7:2e:1e:7d:30:74:
7f:ad:12:0b:9e:9a:b0:a6:fd:9c:11:8e:8d:13:03:
ae:ca:e9:11:55:ef:88:47:5a:96:41:6e:c0:12:23:
d7:b3:60:32:aa:48:ad:f2:75:94:b5:5f:b7:58:9d:
95:8b:a2:4d:2d:24:74:79:11:b3:e8:88:e2:d2:4e:
37:01:2c:44:e5:22:04:b0:ad:de:18:36:1e:eb:73:
86:de:73:d9:a3:2b:41:fe:ea:af:8a:7b:b0:5b:7c:
aa:8c:07:03:76:77:09:45:b9:aa:bb:f6:29:0f:85:
67:e4:9f:07:37:56:1d:22:1d:e0:e9:1e:71:72:98:
3c:d2:e2:54:66:84:13:56:8d:f9:5c:63:4d:5e:28:
f3:4f:b3:29:f7:8b:19:c7:02:68:c4:40:8b:3a:bf:
2d:0b:79:e8:65:90:c8:7b:e7:e4:9b:30:63:5a:50:
c5:bf:3b:3a:eb:fd:9c:56:5a:3d:9e:62:e5:35:78:
a0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:35:0F:AC:6D:1E:E7:A8:3C:4F:6E:3B:D9:B5:10:74:CA:09:60:5B
X509v3 Authority Key Identifier:
keyid:53:8B:06:2C:B5:42:6F:00:E6:53:73:EE:F4:E4:CD:8A:1C:27:F6:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4sGLLVCbwDmU3Pu9OTNihwn9o4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:81:4b:65:d9:48:ee:6f:6f:d6:5b:ed:c1:3d:55:12:03:0d:
70:5a:54:a6:9e:18:73:64:f0:82:d8:f4:f1:be:38:8f:df:65:
00:99:9e:b3:9d:1e:76:80:db:06:b7:11:9d:05:60:7e:39:71:
18:bc:59:73:ed:27:e1:00:93:25:cf:47:93:8c:e8:22:cc:2c:
b5:2e:d3:df:06:6a:91:8a:e2:75:b4:6d:b1:4d:bb:94:b4:25:
39:3d:bc:4f:51:b4:5b:1a:f7:96:ca:ec:5d:5f:eb:50:37:51:
8b:1e:c8:e5:7a:5c:c0:86:51:1f:de:41:42:64:76:0e:2b:dd:
24:1f:9d:29:fb:54:8b:fa:b7:97:62:71:50:be:83:2d:b2:f1:
b7:13:1f:d3:c4:a7:ba:4c:68:0a:a3:f9:57:12:23:3b:9d:60:
a1:11:b2:6b:bd:c3:67:08:47:f6:8f:35:f7:aa:d4:d2:f1:1b:
05:ab:40:6a:9a:dd:d8:8e:46:01:c4:d0:8d:55:e1:b5:ae:f0:
91:96:e6:55:07:60:9a:55:2e:82:bc:32:53:18:8c:8f:bf:8a:
ba:a0:42:d1:e4:1b:b9:cb:9e:43:90:5f:3e:3c:e6:ee:66:76:
b4:48:56:86:95:b8:05:8e:54:29:61:e8:64:74:38:c3:e8:a4:
fc:45:e8:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZypfXKzESn5uQ0i3PlGoib/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzOGIwNjJjYjU0MjZmMDBlNjUzNzNlZWY0ZTRjZDhhMWMy
N2Y2OGUwHhcNMjYwMzAxMTMwMTM2WhcNMjYwMzAyMTMwMTM2WjAzMTEwLwYDVQQD
EygxNjM1MGZhYzZkMWVlN2E4M2M0ZjZlM2JkOWI1MTA3NGNhMDk2MDViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw6SxKzNsEkI9nrWc+J6+tanp5Zwb
AlP/25K3pd7rB0CbiDQrMhVCVSQbtsU2/1zTh+LML36c2tqRDGxwaBO7bB+PZ5/3
Lh59MHR/rRILnpqwpv2cEY6NEwOuyukRVe+IR1qWQW7AEiPXs2Ayqkit8nWUtV+3
WJ2Vi6JNLSR0eRGz6Iji0k43ASxE5SIEsK3eGDYe63OG3nPZoytB/uqvinuwW3yq
jAcDdncJRbmqu/YpD4Vn5J8HN1YdIh3g6R5xcpg80uJUZoQTVo35XGNNXijzT7Mp
94sZxwJoxECLOr8tC3noZZDIe+fkmzBjWlDFvzs66/2cVlo9nmLlNXigxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBY1D6xtHueoPE9uO9m1EHTKCWBbMB8GA1UdIwQY
MBaAFFOLBiy1Qm8A5lNz7vTkzYocJ/aOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTRzR0xMVkNid0RtVTNQdTlPVE5paHduOW80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8xZDQ1N2ItNDBiZC00NDhmLWE5MTUt
MjBjOGFiOTI2OTZmLzEvVTRzR0xMVkNid0RtVTNQdTlPVE5paHduOW80Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi8xZDQ1N2ItNDBiZC00NDhmLWE5MTUtMjBjOGFiOTI2OTZm
LzEvVTRzR0xMVkNid0RtVTNQdTlPVE5paHduOW80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg4FLZdlI
7m9v1lvtwT1VEgMNcFpUpp4Yc2Twgtj08b44j99lAJmes50edoDbBrcRnQVgfjlx
GLxZc+0n4QCTJc9Hk4zoIswstS7T3wZqkYridbRtsU27lLQlOT28T1G0Wxr3lsrs
XV/rUDdRix7I5XpcwIZRH95BQmR2DivdJB+dKftUi/q3l2JxUL6DLbLxtxMf08Sn
ukxoCqP5VxIjO51goRGya73DZwhH9o8196rU0vEbBatAaprd2I5GAcTQjVXhta7w
kZbmVQdgmlUugrwyUxiMj7+KuqBC0eQbucueQ5BfPjzm7mZ2tEhWhpW4BY5UKWHo
ZHQ4w+ik/EXoaw==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:45:12 2026 by rpki-client