Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
File: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft (raw, json)
Hash identifier: StVxZW/YPOyF6Q5QvnV7P7iFEzB4WYuvQbyL+kLAcAw=
Subject key identifier: 3A:F5:89:71:60:E4:C6:E0:45:23:CD:72:94:AF:44:E5:2C:26:90:F4
Authority key identifier: D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
Certificate issuer: /CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Certificate serial: 019D33085D4EBB5320EDFEC576E114AA9A29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
Manifest number: 06E2
Signing time: Sat 28 Mar 2026 06:01:19 +0000
Manifest this update: Sat 28 Mar 2026 06:01:19 +0000
Manifest next update: Sun 29 Mar 2026 06:01:19 +0000
Files and hashes: 1: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl (hash: 3iGXM381Nw6EN1373THrFxLcexELzypHeSLL/Ac+Trs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:08:5d:4e:bb:53:20:ed:fe:c5:76:e1:14:aa:9a:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Validity
Not Before: Mar 28 06:01:19 2026 GMT
Not After : Mar 29 06:01:19 2026 GMT
Subject: CN=3af5897160e4c6e04523cd7294af44e52c2690f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:6a:b9:34:3f:41:ab:0f:9e:0b:12:0b:c0:a1:
2b:9f:74:eb:77:e6:eb:38:84:55:88:18:41:86:8b:
2f:8f:9c:b0:a1:ca:18:5b:fe:28:de:8f:ad:2c:b3:
76:b9:a2:fb:4b:1f:58:84:db:51:ab:63:9f:f7:72:
ed:11:ff:9f:68:75:52:aa:f1:aa:0b:e5:4a:9c:84:
f8:7e:f2:33:93:05:dc:3e:4c:34:2d:ef:90:e2:21:
53:2f:d4:ff:6c:f3:21:ee:82:6b:77:e5:1a:79:2f:
53:e6:ed:14:f2:3d:eb:f1:f6:4e:e6:96:fa:a1:cf:
6c:6f:6c:b5:f7:4f:13:b1:be:c2:ce:ef:3a:cd:66:
e2:57:b3:5d:84:62:09:a8:e6:3a:e5:55:f5:40:47:
76:be:77:2b:0a:65:c0:a3:ef:1a:6a:a8:59:17:79:
c0:a4:ab:b5:00:6a:95:7f:b0:de:02:83:a6:2d:d7:
3f:a6:54:78:45:1a:ce:a3:e2:1c:58:1c:32:f0:3c:
fc:dc:86:e6:93:10:ef:0a:2c:68:90:42:18:78:13:
f6:87:ce:7b:59:eb:e9:fb:fa:49:a9:cc:5d:bb:3d:
5c:07:a0:4f:49:6d:e6:e6:e2:3a:c1:fb:a6:41:c3:
ea:9c:5a:3d:14:e8:4f:2a:45:89:64:39:6b:a8:5b:
90:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F5:89:71:60:E4:C6:E0:45:23:CD:72:94:AF:44:E5:2C:26:90:F4
X509v3 Authority Key Identifier:
keyid:D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:73:3b:b8:b2:16:da:50:8a:d2:af:c1:6f:0d:41:73:22:a5:
81:68:62:a1:7a:0c:d0:0b:0e:b3:aa:dd:7c:25:a0:3c:21:87:
5a:04:4f:4a:27:23:f6:13:59:23:f1:b6:c7:21:ac:72:85:69:
0c:a4:0c:fa:70:aa:7c:ee:13:40:02:6c:52:4b:34:0c:12:11:
f2:e4:51:d5:d1:66:d3:f9:91:0a:40:95:ea:5a:bb:de:36:59:
06:17:b6:81:9d:0b:72:09:57:59:36:1b:fe:47:6b:7c:74:7d:
88:f8:0a:16:88:c1:32:9a:23:90:bd:37:7a:80:c8:14:1d:ac:
d1:cb:a8:74:23:95:ef:b1:41:8b:bd:4d:86:c8:59:45:ae:b2:
18:4d:0b:d7:b9:35:ce:0d:76:a6:b1:9f:fb:8e:b7:70:69:b7:
cf:82:93:40:a4:e3:a0:ba:c8:ce:71:12:c9:40:81:39:99:68:
e5:4a:af:0d:e8:4d:d2:02:2b:0d:ef:af:ef:dd:78:37:ae:31:
7c:c0:cd:89:b2:c7:73:30:8b:f0:34:7b:22:43:5e:43:3b:93:
b0:60:a5:9d:8a:f0:81:b8:d2:4f:68:18:73:13:98:8b:08:ad:
ec:dd:e3:ff:fe:6d:7e:47:d7:eb:84:42:27:d7:cf:55:3f:7d:
71:41:9b:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0zCF1Ou1Mg7f7FduEUqpopMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxYjBlODY4NmY3ZGFiMWY2NGM4MGQ0MzgyYzNjNTk0OWZm
MTFkYmYwHhcNMjYwMzI4MDYwMTE5WhcNMjYwMzI5MDYwMTE5WjAzMTEwLwYDVQQD
EygzYWY1ODk3MTYwZTRjNmUwNDUyM2NkNzI5NGFmNDRlNTJjMjY5MGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA32q5ND9Bqw+eCxILwKErn3Trd+br
OIRViBhBhosvj5ywocoYW/4o3o+tLLN2uaL7Sx9YhNtRq2Of93LtEf+faHVSqvGq
C+VKnIT4fvIzkwXcPkw0Le+Q4iFTL9T/bPMh7oJrd+UaeS9T5u0U8j3r8fZO5pb6
oc9sb2y1908Tsb7Czu86zWbiV7NdhGIJqOY65VX1QEd2vncrCmXAo+8aaqhZF3nA
pKu1AGqVf7DeAoOmLdc/plR4RRrOo+IcWBwy8Dz83IbmkxDvCixokEIYeBP2h857
Wevp+/pJqcxduz1cB6BPSW3m5uI6wfumQcPqnFo9FOhPKkWJZDlrqFuQQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDr1iXFg5MbgRSPNcpSvROUsJpD0MB8GA1UdIwQY
MBaAFNGw6GhvfasfZMgNQ4LDxZSf8R2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGJEb2FHOTlxeDlreUExRGdzUEZsSl94SGI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy80NTZhMmItODc1NS00YmZjLThiNmMt
ZGJiYzI1NGQxYzZjLzEvMGJEb2FHOTlxeDlreUExRGdzUEZsSl94SGI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy80NTZhMmItODc1NS00YmZjLThiNmMtZGJiYzI1NGQxYzZj
LzEvMGJEb2FHOTlxeDlreUExRGdzUEZsSl94SGI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZXM7uLIW
2lCK0q/Bbw1BcyKlgWhioXoM0AsOs6rdfCWgPCGHWgRPSicj9hNZI/G2xyGscoVp
DKQM+nCqfO4TQAJsUks0DBIR8uRR1dFm0/mRCkCV6lq73jZZBhe2gZ0LcglXWTYb
/kdrfHR9iPgKFojBMpojkL03eoDIFB2s0cuodCOV77FBi71NhshZRa6yGE0L17k1
zg12prGf+463cGm3z4KTQKTjoLrIznESyUCBOZlo5UqvDehN0gIrDe+v7914N64x
fMDNibLHczCL8DR7IkNeQzuTsGClnYrwgbjST2gYcxOYiwit7N3j//5tfkfX64RC
J9fPVT99cUGbzA==
-----END CERTIFICATE-----
Generated at Sat Mar 28 10:33:19 2026 by rpki-client