Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
File: cd9sdT6ghb7zcrOSYw90uldpbuU.mft (raw, json)
Hash identifier: BY++VkCtKr0mWAD8wxm1jiX8eQa1JY5B8YCA6+7sBWY=
Subject key identifier: 1B:60:41:32:6B:FF:EE:A5:36:B0:46:78:6A:DD:45:AB:4E:85:19:E7
Authority key identifier: 71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5
Certificate issuer: /CN=71df6c753ea085bef372b392630f74ba57696ee5
Certificate serial: 019D2A72D650983879AC6743988C74B2D887
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
Manifest number: 1599
Signing time: Thu 26 Mar 2026 14:01:02 +0000
Manifest this update: Thu 26 Mar 2026 14:01:02 +0000
Manifest next update: Fri 27 Mar 2026 14:01:02 +0000
Files and hashes: 1: 90fOLXtBv8zjOyjcz26gkbyoNvE.roa (hash: Ru1YTQpQd39yRjLzCahK22aUJjQHLniT2w2j16/8ijY=)
2: GNQd5Bm0mjUJd67uPNG6cQdgvFk.roa (hash: 0ulANNIaOCC2eudb71uMMJn10FX8G4OgvsoxQ5AP27o=)
3: cd9sdT6ghb7zcrOSYw90uldpbuU.crl (hash: h53rFa8ZxHT1lzDoY9LaMKmmUzYyLkxpr5PGRWjAq00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:d6:50:98:38:79:ac:67:43:98:8c:74:b2:d8:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71df6c753ea085bef372b392630f74ba57696ee5
Validity
Not Before: Mar 26 14:01:02 2026 GMT
Not After : Mar 27 14:01:02 2026 GMT
Subject: CN=1b6041326bffeea536b046786add45ab4e8519e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3f:cf:16:19:54:dc:8e:6a:93:e6:27:47:ac:
83:a2:b8:02:f1:c8:1a:9a:e7:39:73:9d:8c:18:16:
88:b0:fb:4a:0a:62:62:c8:45:b0:47:55:fd:f1:f9:
32:99:07:c3:31:33:ae:1e:16:4a:4b:f2:f4:64:04:
b1:d9:a3:f2:30:a9:46:a0:4d:67:f4:1c:68:3b:fb:
e1:02:ba:fa:c9:07:6c:24:04:62:9d:9a:aa:97:88:
bf:12:8a:ec:a7:d5:a3:07:04:18:b7:9e:84:9e:59:
93:51:01:33:0f:a5:4b:f0:73:02:0d:77:89:62:ea:
32:d6:53:bf:4e:e6:f0:8e:09:12:1c:16:17:e3:f8:
49:ab:f2:e7:b6:de:03:2f:85:f0:86:f2:1d:98:7f:
1f:a1:61:d6:b6:8f:95:53:f8:5c:d0:90:f7:40:ed:
92:ff:fd:9d:23:49:3d:34:2a:e3:7b:78:55:c6:6c:
49:a7:2d:06:4a:cc:f9:2f:3a:c7:32:71:b6:f1:9b:
cb:f6:1f:d0:0a:58:ab:22:36:37:98:60:97:3d:26:
62:e8:24:01:6f:f4:ce:16:50:ea:30:a9:f0:21:ef:
2c:83:50:23:21:dd:5f:2d:72:3c:70:7d:ae:bc:fd:
21:1b:73:19:20:3d:31:33:08:d0:fd:93:c1:8c:2c:
a0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:60:41:32:6B:FF:EE:A5:36:B0:46:78:6A:DD:45:AB:4E:85:19:E7
X509v3 Authority Key Identifier:
keyid:71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:24:6a:17:37:d4:12:1d:9c:b2:ae:9e:3e:fa:91:e1:c2:08:
de:4c:fe:9f:e0:f4:6b:98:57:31:ef:5a:1e:0c:06:ca:60:0a:
0e:f7:c3:0c:5d:7c:ca:66:55:e0:a4:42:3d:95:6a:51:1e:a5:
85:28:d6:87:ed:ff:98:6b:80:64:a8:1a:90:ee:db:2f:bf:0b:
03:72:3e:70:6d:6d:11:23:95:95:fb:ed:37:4a:16:30:f8:2e:
ef:8d:61:8a:e3:d2:ea:95:a1:4e:2a:70:5d:9e:f4:c4:83:e4:
3b:9d:14:0f:30:e8:81:f9:98:2e:7c:4a:b4:de:09:46:38:7e:
04:a6:a3:17:5b:0e:61:dc:1e:c5:6e:c0:d6:87:b8:fb:13:c9:
15:7e:32:8c:a5:f3:96:b3:fd:0b:08:c0:d1:53:58:a2:ff:2c:
1c:5b:2d:12:c2:f9:33:78:bc:ed:01:3d:0d:01:4b:55:a6:e3:
b0:7f:0c:a3:d3:fb:39:f1:18:fb:dd:b5:31:14:58:74:68:93:
18:7a:40:80:46:6f:ba:f2:c1:2b:79:82:08:2a:38:00:42:d3:
23:49:ce:5e:71:ab:4c:c2:65:c6:7a:26:7d:59:9c:da:22:24:
fb:ad:7c:5f:a4:a8:16:a1:b1:50:32:70:e3:38:3e:8e:91:b2:
57:2a:d2:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qctZQmDh5rGdDmIx0stiHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxZGY2Yzc1M2VhMDg1YmVmMzcyYjM5MjYzMGY3NGJhNTc2
OTZlZTUwHhcNMjYwMzI2MTQwMTAyWhcNMjYwMzI3MTQwMTAyWjAzMTEwLwYDVQQD
EygxYjYwNDEzMjZiZmZlZWE1MzZiMDQ2Nzg2YWRkNDVhYjRlODUxOWU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnT/PFhlU3I5qk+YnR6yDorgC8cga
muc5c52MGBaIsPtKCmJiyEWwR1X98fkymQfDMTOuHhZKS/L0ZASx2aPyMKlGoE1n
9BxoO/vhArr6yQdsJARinZqql4i/Eorsp9WjBwQYt56EnlmTUQEzD6VL8HMCDXeJ
Yuoy1lO/TubwjgkSHBYX4/hJq/Lntt4DL4XwhvIdmH8foWHWto+VU/hc0JD3QO2S
//2dI0k9NCrje3hVxmxJpy0GSsz5LzrHMnG28ZvL9h/QClirIjY3mGCXPSZi6CQB
b/TOFlDqMKnwIe8sg1AjId1fLXI8cH2uvP0hG3MZID0xMwjQ/ZPBjCygVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBtgQTJr/+6lNrBGeGrdRatOhRnnMB8GA1UdIwQY
MBaAFHHfbHU+oIW+83KzkmMPdLpXaW7lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9jNTk0ODQtYjA3YS00Y2ExLWFiY2Qt
YTgzODQ1Y2FhYzIxLzEvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy9jNTk0ODQtYjA3YS00Y2ExLWFiY2QtYTgzODQ1Y2FhYzIx
LzEvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQCRqFzfU
Eh2csq6ePvqR4cII3kz+n+D0a5hXMe9aHgwGymAKDvfDDF18ymZV4KRCPZVqUR6l
hSjWh+3/mGuAZKgakO7bL78LA3I+cG1tESOVlfvtN0oWMPgu741hiuPS6pWhTipw
XZ70xIPkO50UDzDogfmYLnxKtN4JRjh+BKajF1sOYdwexW7A1oe4+xPJFX4yjKXz
lrP9CwjA0VNYov8sHFstEsL5M3i87QE9DQFLVabjsH8Mo9P7OfEY+921MRRYdGiT
GHpAgEZvuvLBK3mCCCo4AELTI0nOXnGrTMJlxnomfVmc2iIk+618X6SoFqGxUDJw
4zg+jpGyVyrSog==
-----END CERTIFICATE-----
Generated at Thu Mar 26 18:53:30 2026 by rpki-client