Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/cfa76c-05cc-43dc-98f1-e707dec7bd6c/1/rSRGM37TPO3jTe_1VxBdxxwDqRY.mft
File: rSRGM37TPO3jTe_1VxBdxxwDqRY.mft (raw, json)
Hash identifier: BzYR6dto6j6Q2ux6xGA/2PQOyhE7GgV1VMjjUYbMVR0=
Subject key identifier: 23:C2:B0:D5:A1:9A:23:AD:CF:99:B0:8E:E9:61:B9:07:E7:04:21:82
Authority key identifier: AD:24:46:33:7E:D3:3C:ED:E3:4D:EF:F5:57:10:5D:C7:1C:03:A9:16
Certificate issuer: /CN=ad2446337ed33cede34deff557105dc71c03a916
Certificate serial: 019D2AE05A4A11FB5A380047EFABD61A5FAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rSRGM37TPO3jTe_1VxBdxxwDqRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/cfa76c-05cc-43dc-98f1-e707dec7bd6c/1/rSRGM37TPO3jTe_1VxBdxxwDqRY.mft
Manifest number: 0819
Signing time: Thu 26 Mar 2026 16:00:39 +0000
Manifest this update: Thu 26 Mar 2026 16:00:39 +0000
Manifest next update: Fri 27 Mar 2026 16:00:39 +0000
Files and hashes: 1: rSRGM37TPO3jTe_1VxBdxxwDqRY.crl (hash: e+YzyWkHNyDnWbza82+Q0hblylpCU3+/2ZteqJBtdbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/cfa76c-05cc-43dc-98f1-e707dec7bd6c/1/rSRGM37TPO3jTe_1VxBdxxwDqRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/cfa76c-05cc-43dc-98f1-e707dec7bd6c/1/rSRGM37TPO3jTe_1VxBdxxwDqRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rSRGM37TPO3jTe_1VxBdxxwDqRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e0:5a:4a:11:fb:5a:38:00:47:ef:ab:d6:1a:5f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad2446337ed33cede34deff557105dc71c03a916
Validity
Not Before: Mar 26 16:00:39 2026 GMT
Not After : Mar 27 16:00:39 2026 GMT
Subject: CN=23c2b0d5a19a23adcf99b08ee961b907e7042182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:11:3f:e9:c7:c0:59:a9:8d:f7:c3:ef:11:aa:
66:01:4e:86:86:cb:47:9f:51:d7:7c:d5:1a:f1:d0:
9a:87:5a:85:a8:4a:19:48:50:c9:bf:f6:78:a6:31:
6e:17:59:5a:a8:35:ab:a9:b1:b8:8f:3a:ad:54:27:
35:1b:12:03:7b:26:44:68:2b:a2:c6:51:18:ca:eb:
e1:24:03:8d:ce:af:ea:2f:b8:95:67:4f:b2:38:b4:
a4:e9:77:c9:7c:58:50:29:c7:3a:7c:24:db:ea:6d:
3d:dc:b3:f4:40:fa:16:87:81:c8:89:bf:6d:55:c3:
9d:64:d7:38:f0:5c:a5:9c:c3:84:c6:4c:9d:08:c7:
fc:7b:aa:65:b1:22:f7:8a:87:c2:d6:75:1b:05:dd:
fb:80:02:df:c1:99:4f:6c:09:3f:1b:61:f5:e2:3c:
76:43:48:ec:cf:71:1a:0d:b9:c2:80:f6:8e:94:f3:
01:e1:1a:e8:9e:37:8c:6d:11:2e:6f:76:7b:f8:ab:
56:94:c7:6a:d8:02:5b:03:79:2e:70:fa:71:cc:0c:
56:77:c8:c9:95:75:1d:7b:c8:87:50:e8:36:a1:7f:
ec:09:c0:2c:59:58:0d:a3:2a:7b:d3:49:66:84:32:
25:16:b9:b0:2c:3e:db:c4:33:a3:00:84:17:26:8f:
b2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C2:B0:D5:A1:9A:23:AD:CF:99:B0:8E:E9:61:B9:07:E7:04:21:82
X509v3 Authority Key Identifier:
keyid:AD:24:46:33:7E:D3:3C:ED:E3:4D:EF:F5:57:10:5D:C7:1C:03:A9:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSRGM37TPO3jTe_1VxBdxxwDqRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/cfa76c-05cc-43dc-98f1-e707dec7bd6c/1/rSRGM37TPO3jTe_1VxBdxxwDqRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/cfa76c-05cc-43dc-98f1-e707dec7bd6c/1/rSRGM37TPO3jTe_1VxBdxxwDqRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:39:60:52:8b:cf:56:3a:37:ad:1a:e1:e5:9d:69:3e:59:62:
f6:a2:01:dd:bb:ed:b0:c9:ef:c6:04:07:c6:da:46:89:dd:9c:
fc:52:8d:fc:6c:97:f5:1f:bd:8c:d2:96:5a:2f:d5:a2:52:e7:
c2:77:50:7e:74:5b:ae:5e:d9:8d:72:f2:77:a4:fa:9c:3b:c9:
49:f2:99:ae:b2:26:8b:fc:58:44:f4:e4:12:39:ed:28:36:dc:
58:47:7e:af:aa:8b:da:9e:66:f4:7c:50:01:e4:e8:d2:ba:59:
02:42:8b:a0:8c:1a:ae:f2:50:7e:4b:0c:42:df:ef:d0:4b:06:
02:4e:12:b5:f1:ae:8d:cf:c6:a0:b1:2e:fc:69:20:00:95:dc:
61:02:01:11:b1:bc:33:1a:65:d3:3e:bc:5e:fc:cd:5b:aa:4d:
2b:a0:06:f0:fb:54:f5:7d:86:b0:a0:cc:13:e4:37:88:81:34:
9a:d8:02:ed:4e:db:0d:68:d4:84:16:4f:b1:b5:53:af:e6:1e:
c4:49:89:f4:08:8a:f1:33:f6:90:47:14:ef:42:2d:72:30:e7:
98:0d:b1:46:3a:0a:bb:41:1e:72:0c:d8:4d:42:b4:b3:1e:a9:
01:66:4a:f1:3b:62:d7:81:cd:e1:30:34:8f:9d:61:3a:45:f8:
54:f1:86:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0q4FpKEftaOABH76vWGl+rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMjQ0NjMzN2VkMzNjZWRlMzRkZWZmNTU3MTA1ZGM3MWMw
M2E5MTYwHhcNMjYwMzI2MTYwMDM5WhcNMjYwMzI3MTYwMDM5WjAzMTEwLwYDVQQD
EygyM2MyYjBkNWExOWEyM2FkY2Y5OWIwOGVlOTYxYjkwN2U3MDQyMTgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhE/6cfAWamN98PvEapmAU6GhstH
n1HXfNUa8dCah1qFqEoZSFDJv/Z4pjFuF1laqDWrqbG4jzqtVCc1GxIDeyZEaCui
xlEYyuvhJAONzq/qL7iVZ0+yOLSk6XfJfFhQKcc6fCTb6m093LP0QPoWh4HIib9t
VcOdZNc48FylnMOExkydCMf8e6plsSL3iofC1nUbBd37gALfwZlPbAk/G2H14jx2
Q0jsz3EaDbnCgPaOlPMB4RronjeMbREub3Z7+KtWlMdq2AJbA3kucPpxzAxWd8jJ
lXUde8iHUOg2oX/sCcAsWVgNoyp700lmhDIlFrmwLD7bxDOjAIQXJo+yUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCPCsNWhmiOtz5mwjulhuQfnBCGCMB8GA1UdIwQY
MBaAFK0kRjN+0zzt403v9VcQXcccA6kWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclNSR00zN1RQTzNqVGVfMVZ4QmR4eHdEcVJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9jZmE3NmMtMDVjYy00M2RjLTk4ZjEt
ZTcwN2RlYzdiZDZjLzEvclNSR00zN1RQTzNqVGVfMVZ4QmR4eHdEcVJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9jZmE3NmMtMDVjYy00M2RjLTk4ZjEtZTcwN2RlYzdiZDZj
LzEvclNSR00zN1RQTzNqVGVfMVZ4QmR4eHdEcVJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYDlgUovP
Vjo3rRrh5Z1pPlli9qIB3bvtsMnvxgQHxtpGid2c/FKN/GyX9R+9jNKWWi/VolLn
wndQfnRbrl7ZjXLyd6T6nDvJSfKZrrImi/xYRPTkEjntKDbcWEd+r6qL2p5m9HxQ
AeTo0rpZAkKLoIwarvJQfksMQt/v0EsGAk4StfGujc/GoLEu/GkgAJXcYQIBEbG8
Mxpl0z68XvzNW6pNK6AG8PtU9X2GsKDME+Q3iIE0mtgC7U7bDWjUhBZPsbVTr+Ye
xEmJ9AiK8TP2kEcU70ItcjDnmA2xRjoKu0EecgzYTUK0sx6pAWZK8Tti14HN4TA0
j51hOkX4VPGGig==
-----END CERTIFICATE-----
Generated at Thu Mar 26 21:49:04 2026 by rpki-client