Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
File: r4poziKkwZ8XcA9izPi7bC2vUeE.mft (raw, json)
Hash identifier: 1Y9m9c7iYrdqtBsxjpfzGVG/C+sJSS22nxhOqDapjmg=
Subject key identifier: 72:08:34:E4:02:28:BC:AD:C1:EF:2F:D4:12:21:B9:6D:AF:03:5D:1D
Authority key identifier: AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
Certificate issuer: /CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Certificate serial: 019D27DFD5F5AD105EF3CE0F37DC9188A9B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
Manifest number: 1202
Signing time: Thu 26 Mar 2026 02:01:13 +0000
Manifest this update: Thu 26 Mar 2026 02:01:13 +0000
Manifest next update: Fri 27 Mar 2026 02:01:13 +0000
Files and hashes: 1: r4poziKkwZ8XcA9izPi7bC2vUeE.crl (hash: JO8pZP/pNMDjB6jMVGGVRO0GB9FbZIAOfm7AoxfKDOs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:d5:f5:ad:10:5e:f3:ce:0f:37:dc:91:88:a9:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Validity
Not Before: Mar 26 02:01:13 2026 GMT
Not After : Mar 27 02:01:13 2026 GMT
Subject: CN=720834e40228bcadc1ef2fd41221b96daf035d1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2c:d2:c4:3c:8e:59:ba:d6:3d:ef:e7:91:4d:
45:95:74:60:fe:f1:47:c6:26:44:39:b3:db:8e:55:
0a:0c:91:d9:f4:7f:a2:de:98:d1:cf:4b:b7:d3:56:
97:62:af:3e:06:3a:e7:6f:e5:67:30:68:58:c9:53:
12:7c:39:c4:f8:12:8d:9e:1c:7f:d0:e6:55:05:c0:
53:b0:26:13:d7:d8:12:5c:8d:31:84:e4:61:87:b3:
58:0a:d1:0f:24:ba:86:f4:d9:3c:c9:32:16:e1:8f:
05:8e:07:27:20:26:35:87:6e:85:92:fb:17:d8:dd:
ac:04:14:03:41:bc:d8:63:f7:7c:b8:b1:99:34:8b:
66:b9:cb:6e:99:71:7f:69:fc:a3:df:62:8d:d9:31:
65:3b:d7:a9:07:ed:8d:b0:b7:42:25:e5:12:c5:02:
7e:1e:56:eb:a7:9a:ee:fb:1b:91:d0:3c:f8:e6:72:
b1:ca:ab:b2:53:3b:7a:c9:43:60:35:88:ce:8b:a6:
72:52:af:42:ab:16:4e:70:a4:9f:39:95:75:10:e6:
26:d4:83:5f:b5:fc:ec:7e:85:36:b4:ff:3a:a6:17:
f8:45:e7:e9:db:23:39:1d:4f:2e:47:78:3a:b6:b4:
af:4a:b1:b0:19:df:b6:50:bc:c7:ad:29:a0:60:be:
a2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:08:34:E4:02:28:BC:AD:C1:EF:2F:D4:12:21:B9:6D:AF:03:5D:1D
X509v3 Authority Key Identifier:
keyid:AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:d9:2b:9e:68:4e:20:b1:f6:43:01:51:cb:08:c3:3c:c1:04:
d3:64:42:a2:36:76:6a:e9:54:9f:ee:e3:dc:47:62:c7:aa:ff:
b3:21:18:f0:7f:69:99:9e:da:70:61:db:7c:67:bc:9e:54:61:
53:4b:b5:a9:b3:99:49:76:1e:4c:86:50:05:c1:ff:87:e9:76:
b5:2f:98:1e:4a:97:d7:9e:29:dc:e5:1c:47:25:9c:fb:ee:3b:
f8:b4:5a:76:b0:a5:3e:4d:9a:50:e5:59:cb:cb:5b:e1:e8:1b:
5a:84:1d:25:5b:2e:84:9a:56:d2:21:9a:c6:f6:64:35:1a:06:
b4:27:0b:47:44:04:ad:e8:88:0e:a2:3d:fb:43:ca:f5:1f:b0:
6d:b3:e6:d5:c6:2d:3d:f6:7d:f9:cd:e7:08:e5:f1:22:ff:56:
61:27:37:3f:9b:8e:f8:60:72:a3:2d:99:ff:16:69:8b:bc:53:
46:de:d7:ad:a7:15:d1:af:18:d9:9d:d2:f1:a0:60:58:74:ad:
f9:ba:7c:f7:1f:6e:69:22:ea:7a:b7:3c:fc:e9:4c:21:4c:91:
41:7c:7f:52:93:ea:9f:37:5c:d6:bd:d5:c0:c4:08:6a:e2:62:
6b:52:13:54:c1:70:9e:2e:23:1f:95:6c:de:8d:95:a5:28:6d:
86:99:d8:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n39X1rRBe884PN9yRiKmyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmOGE2OGNlMjJhNGMxOWYxNzcwMGY2MmNjZjhiYjZjMmRh
ZjUxZTEwHhcNMjYwMzI2MDIwMTEzWhcNMjYwMzI3MDIwMTEzWjAzMTEwLwYDVQQD
Eyg3MjA4MzRlNDAyMjhiY2FkYzFlZjJmZDQxMjIxYjk2ZGFmMDM1ZDFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAryzSxDyOWbrWPe/nkU1FlXRg/vFH
xiZEObPbjlUKDJHZ9H+i3pjRz0u301aXYq8+Bjrnb+VnMGhYyVMSfDnE+BKNnhx/
0OZVBcBTsCYT19gSXI0xhORhh7NYCtEPJLqG9Nk8yTIW4Y8FjgcnICY1h26FkvsX
2N2sBBQDQbzYY/d8uLGZNItmuctumXF/afyj32KN2TFlO9epB+2NsLdCJeUSxQJ+
Hlbrp5ru+xuR0Dz45nKxyquyUzt6yUNgNYjOi6ZyUq9CqxZOcKSfOZV1EOYm1INf
tfzsfoU2tP86phf4Refp2yM5HU8uR3g6trSvSrGwGd+2ULzHrSmgYL6i7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHIINOQCKLytwe8v1BIhuW2vA10dMB8GA1UdIwQY
MBaAFK+KaM4ipMGfF3APYsz4u2wtr1HhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjRwb3ppS2t3WjhYY0E5aXpQaTdiQzJ2VWVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi82YjhlYTYtZjkwNy00MGQxLTllN2Qt
ZDk0ZTYwMTg0M2QxLzEvcjRwb3ppS2t3WjhYY0E5aXpQaTdiQzJ2VWVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi82YjhlYTYtZjkwNy00MGQxLTllN2QtZDk0ZTYwMTg0M2Qx
LzEvcjRwb3ppS2t3WjhYY0E5aXpQaTdiQzJ2VWVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAndkrnmhO
ILH2QwFRywjDPMEE02RCojZ2aulUn+7j3Edix6r/syEY8H9pmZ7acGHbfGe8nlRh
U0u1qbOZSXYeTIZQBcH/h+l2tS+YHkqX154p3OUcRyWc++47+LRadrClPk2aUOVZ
y8tb4egbWoQdJVsuhJpW0iGaxvZkNRoGtCcLR0QEreiIDqI9+0PK9R+wbbPm1cYt
PfZ9+c3nCOXxIv9WYSc3P5uO+GByoy2Z/xZpi7xTRt7XracV0a8Y2Z3S8aBgWHSt
+bp89x9uaSLqerc8/OlMIUyRQXx/UpPqnzdc1r3VwMQIauJia1ITVMFwni4jH5Vs
3o2VpShthpnYrg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:15:59 2026 by rpki-client