Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft
File: 1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft (raw, json)
Hash identifier: Zln4XZL4FBrKrwMUs0LRwq3Ny5GIFOkCg7cCBxZ2ZSE=
Subject key identifier: 02:9A:63:5F:E1:5E:97:2C:59:49:48:F4:DB:9F:AA:0D:55:F2:44:AC
Authority key identifier: D4:8F:0C:2B:2A:D1:9F:8C:06:B4:E1:24:91:D6:12:98:64:47:1C:A8
Certificate issuer: /CN=d48f0c2b2ad19f8c06b4e12491d6129864471ca8
Certificate serial: 019D2BBCA606411DCBB548A10CE94E1C6EE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1I8MKyrRn4wGtOEkkdYSmGRHHKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft
Manifest number: 0234
Signing time: Thu 26 Mar 2026 20:01:16 +0000
Manifest this update: Thu 26 Mar 2026 20:01:16 +0000
Manifest next update: Fri 27 Mar 2026 20:01:16 +0000
Files and hashes: 1: 1I8MKyrRn4wGtOEkkdYSmGRHHKg.crl (hash: dCf1oPDNVleKThfv1d2+GLHwVpKR62ehXv+hNPUr71k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1I8MKyrRn4wGtOEkkdYSmGRHHKg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:bc:a6:06:41:1d:cb:b5:48:a1:0c:e9:4e:1c:6e:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48f0c2b2ad19f8c06b4e12491d6129864471ca8
Validity
Not Before: Mar 26 20:01:16 2026 GMT
Not After : Mar 27 20:01:16 2026 GMT
Subject: CN=029a635fe15e972c594948f4db9faa0d55f244ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:04:39:56:fb:85:91:51:ca:fb:f3:db:fd:be:
15:51:b5:2e:28:3d:ed:02:fd:ab:ae:1b:08:ce:8e:
6a:71:1c:29:e9:02:d5:3a:6e:c9:c2:23:df:87:9e:
d7:91:07:c8:c1:72:5a:3b:33:29:3c:52:3c:2c:d2:
a1:dd:e3:46:9b:46:c6:14:63:40:83:84:b5:f7:4e:
2d:3d:ca:e9:6f:81:1b:3c:eb:ae:54:26:54:d7:86:
3d:27:cc:14:4b:2b:c8:ba:37:99:5d:5b:12:3d:a8:
dd:7c:91:0f:7b:c5:a2:10:dd:1a:40:ed:b3:88:0f:
c1:45:92:b3:a0:ee:3c:dd:74:b5:fe:ef:e3:50:e2:
37:30:da:07:b9:6f:a6:b9:cd:05:dc:f9:62:24:39:
b0:88:b5:11:ce:f7:83:81:41:12:8e:59:b5:ca:a4:
69:44:a0:b1:07:93:4f:5c:0d:c1:8c:74:29:a8:5a:
2b:2e:ed:d7:ec:ca:83:ef:51:60:0b:45:c5:07:fd:
6a:f4:7e:ca:5a:f3:67:e1:34:15:e4:de:8f:c6:51:
f6:33:00:d4:22:91:2b:e3:bd:45:ee:fa:32:a4:19:
23:b7:03:fe:04:59:31:09:db:91:fb:18:69:54:fb:
6e:b1:5e:18:b9:33:60:ff:8b:88:fb:c1:a5:98:f7:
09:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:9A:63:5F:E1:5E:97:2C:59:49:48:F4:DB:9F:AA:0D:55:F2:44:AC
X509v3 Authority Key Identifier:
keyid:D4:8F:0C:2B:2A:D1:9F:8C:06:B4:E1:24:91:D6:12:98:64:47:1C:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1I8MKyrRn4wGtOEkkdYSmGRHHKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:eb:01:41:50:d3:a2:71:1b:ab:e0:ba:a2:f0:0c:0a:cb:96:
32:f1:e3:bb:dd:b9:e2:f2:b3:a6:80:7f:14:d5:01:33:b5:5f:
72:d6:eb:5a:7c:07:d3:c1:29:d4:ec:ff:3b:cf:8c:3f:83:4f:
de:04:88:e3:ec:43:9d:de:65:79:1f:3d:b6:85:e9:21:20:76:
33:2d:18:a0:23:08:36:88:b7:fc:e9:4a:ad:09:30:f3:ab:96:
fe:b5:6f:cc:28:50:2c:00:5a:67:e2:c3:b6:ae:f4:bd:7b:a5:
55:fc:16:c3:c6:a7:d2:66:ed:a8:0e:60:99:3b:f2:55:d5:91:
54:ba:4d:ac:1f:7a:1c:43:d5:ef:a1:4b:2d:58:d0:c9:11:35:
a2:c9:6d:89:d0:3d:19:28:0e:45:d0:84:8e:83:28:1f:d3:d9:
9f:60:13:2e:f5:26:f0:d5:75:af:5c:c7:fc:5c:54:ba:4a:4f:
8a:72:8a:4d:ba:d4:2b:b1:45:b8:e3:51:36:d7:45:fa:17:65:
16:b3:37:e1:cb:c9:17:e4:fe:83:98:59:a0:0c:2a:c2:55:e9:
db:00:bc:f7:00:82:a9:a2:62:56:da:26:7c:a3:7f:d9:91:00:
80:1f:31:e7:c5:e0:ea:e9:89:7f:6d:c8:34:f1:4a:03:44:f1:
bc:33:ce:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0rvKYGQR3LtUihDOlOHG7jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0OGYwYzJiMmFkMTlmOGMwNmI0ZTEyNDkxZDYxMjk4NjQ0
NzFjYTgwHhcNMjYwMzI2MjAwMTE2WhcNMjYwMzI3MjAwMTE2WjAzMTEwLwYDVQQD
EygwMjlhNjM1ZmUxNWU5NzJjNTk0OTQ4ZjRkYjlmYWEwZDU1ZjI0NGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgQ5VvuFkVHK+/Pb/b4VUbUuKD3t
Av2rrhsIzo5qcRwp6QLVOm7JwiPfh57XkQfIwXJaOzMpPFI8LNKh3eNGm0bGFGNA
g4S1904tPcrpb4EbPOuuVCZU14Y9J8wUSyvIujeZXVsSPajdfJEPe8WiEN0aQO2z
iA/BRZKzoO483XS1/u/jUOI3MNoHuW+muc0F3PliJDmwiLURzveDgUESjlm1yqRp
RKCxB5NPXA3BjHQpqForLu3X7MqD71FgC0XFB/1q9H7KWvNn4TQV5N6PxlH2MwDU
IpEr471F7voypBkjtwP+BFkxCduR+xhpVPtusV4YuTNg/4uI+8GlmPcJ2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAKaY1/hXpcsWUlI9Nufqg1V8kSsMB8GA1UdIwQY
MBaAFNSPDCsq0Z+MBrThJJHWEphkRxyoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUk4TUt5clJuNHdHdE9Fa2tkWVNtR1JISEtnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8zMDVlZGEtZjhiYS00NjkxLTg5NjAt
OTM2MTk2NzRhNDJlLzEvMUk4TUt5clJuNHdHdE9Fa2tkWVNtR1JISEtnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8zMDVlZGEtZjhiYS00NjkxLTg5NjAtOTM2MTk2NzRhNDJl
LzEvMUk4TUt5clJuNHdHdE9Fa2tkWVNtR1JISEtnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmesBQVDT
onEbq+C6ovAMCsuWMvHju9254vKzpoB/FNUBM7VfctbrWnwH08Ep1Oz/O8+MP4NP
3gSI4+xDnd5leR89toXpISB2My0YoCMINoi3/OlKrQkw86uW/rVvzChQLABaZ+LD
tq70vXulVfwWw8an0mbtqA5gmTvyVdWRVLpNrB96HEPV76FLLVjQyRE1osltidA9
GSgORdCEjoMoH9PZn2ATLvUm8NV1r1zH/FxUukpPinKKTbrUK7FFuONRNtdF+hdl
FrM34cvJF+T+g5hZoAwqwlXp2wC89wCCqaJiVtomfKN/2ZEAgB8x58Xg6umJf23I
NPFKA0TxvDPO5w==
-----END CERTIFICATE-----
Generated at Fri Mar 27 02:16:14 2026 by rpki-client