Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.mft
File: v5ulghwIWljj4dM6TvQem3YQXuU.mft (raw, json)
Hash identifier: fMS12JFghicxV7iYw4UocKArSXq9REXniTWql0hjmGY=
Subject key identifier: B3:30:85:18:3F:F6:09:B2:59:6A:F0:E1:2D:01:56:16:2B:DD:3D:FC
Authority key identifier: BF:9B:A5:82:1C:08:5A:58:E3:E1:D3:3A:4E:F4:1E:9B:76:10:5E:E5
Certificate issuer: /CN=bf9ba5821c085a58e3e1d33a4ef41e9b76105ee5
Certificate serial: 019D2703E1BE6C29C304374BEEDD4D28A738
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5ulghwIWljj4dM6TvQem3YQXuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.mft
Manifest number: 144A
Signing time: Wed 25 Mar 2026 22:00:58 +0000
Manifest this update: Wed 25 Mar 2026 22:00:58 +0000
Manifest next update: Thu 26 Mar 2026 22:00:58 +0000
Files and hashes: 1: v5ulghwIWljj4dM6TvQem3YQXuU.crl (hash: UfrKo1FuiW/Gdzqb/+wSZjC6wXtJCaT+2UTnLf/afsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.mft
rsync://rpki.ripe.net/repository/DEFAULT/v5ulghwIWljj4dM6TvQem3YQXuU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:e1:be:6c:29:c3:04:37:4b:ee:dd:4d:28:a7:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf9ba5821c085a58e3e1d33a4ef41e9b76105ee5
Validity
Not Before: Mar 25 22:00:58 2026 GMT
Not After : Mar 26 22:00:58 2026 GMT
Subject: CN=b33085183ff609b2596af0e12d0156162bdd3dfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c4:d3:33:4f:3a:85:cc:68:9e:44:37:24:ba:
9f:98:23:ea:de:79:75:b0:43:a2:1f:03:a2:d9:7b:
a9:79:77:90:62:a0:d4:b5:20:01:4e:8f:05:18:03:
3d:b1:40:67:6e:93:6f:90:13:f5:57:62:ef:be:82:
fb:19:7f:9a:01:3e:f3:0f:f3:54:a6:b5:6b:44:e0:
fe:12:2a:0a:8f:40:07:56:d3:c2:8f:d0:8e:20:1a:
4e:e5:8a:7a:d0:b9:78:1a:83:4b:f8:6f:a3:b0:5e:
2c:53:c9:60:f9:06:84:4d:ce:df:8c:ae:2e:59:7c:
54:95:97:43:34:68:59:6e:69:e0:2a:09:ab:01:d0:
6a:bc:e2:fb:ed:c6:05:a7:42:87:08:64:49:a4:79:
12:70:7e:65:4f:17:0b:4f:e7:fb:64:57:fa:67:e0:
32:9a:16:df:2c:01:10:82:cc:3d:4a:d0:65:60:63:
37:14:d9:6e:2b:b5:17:6c:41:fd:f6:3c:e8:b9:c5:
df:96:39:ef:0a:04:12:25:86:91:f2:78:c3:a3:e5:
9c:ff:55:14:22:0d:29:11:b5:c2:2b:18:ce:58:c3:
85:9a:df:f5:f5:4b:c6:be:63:5b:15:ab:30:52:9f:
4f:45:8a:03:37:4d:30:40:4e:37:fc:c8:c6:dc:c7:
e4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:30:85:18:3F:F6:09:B2:59:6A:F0:E1:2D:01:56:16:2B:DD:3D:FC
X509v3 Authority Key Identifier:
keyid:BF:9B:A5:82:1C:08:5A:58:E3:E1:D3:3A:4E:F4:1E:9B:76:10:5E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5ulghwIWljj4dM6TvQem3YQXuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fbc8b5-c5f5-40b8-8a74-bfafb29371cf/1/v5ulghwIWljj4dM6TvQem3YQXuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:0e:b5:08:f5:d6:b3:b0:69:0d:9b:bb:fc:5d:e1:d6:b2:2e:
2b:09:00:60:8b:05:f6:dd:6f:ba:e1:d0:04:b4:58:8a:4d:b3:
c0:2f:70:2f:30:2a:b4:88:9f:e8:b9:d1:70:ff:cb:5d:6b:a4:
34:f2:c6:de:9f:48:a9:fc:fd:b4:8e:aa:0b:25:6a:3a:b4:bd:
f1:a0:a6:1a:00:b8:7d:04:e0:3a:44:f3:eb:a0:5b:bd:f9:00:
c2:bf:c0:bc:2c:75:ce:f5:1f:81:d3:87:c4:ab:00:7a:d5:4e:
7f:d4:e2:4a:af:49:c5:e9:37:4f:5e:63:90:fe:77:52:e0:aa:
c5:2b:76:b5:98:ca:82:e6:c5:11:00:ea:82:30:7a:57:63:6a:
c2:d3:5b:94:1d:21:76:15:17:44:0f:c2:fe:e4:8d:46:29:c3:
f7:cb:2d:25:1d:ec:ec:f8:35:fa:77:4e:66:b0:62:cf:c0:41:
ad:fb:e2:60:bd:01:00:ae:be:c5:97:49:8f:7c:b0:4c:cc:cb:
54:1b:28:6e:e8:cc:d2:31:a5:87:86:1e:3c:d4:00:00:c9:c8:
29:43:7e:86:0f:8f:77:36:65:7a:7b:36:55:18:a1:a2:3e:43:
1d:82:52:25:c8:e5:a9:d7:af:dc:4b:38:7a:11:c0:55:83:73:
0d:7a:34:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nA+G+bCnDBDdL7t1NKKc4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmOWJhNTgyMWMwODVhNThlM2UxZDMzYTRlZjQxZTliNzYx
MDVlZTUwHhcNMjYwMzI1MjIwMDU4WhcNMjYwMzI2MjIwMDU4WjAzMTEwLwYDVQQD
EyhiMzMwODUxODNmZjYwOWIyNTk2YWYwZTEyZDAxNTYxNjJiZGQzZGZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2sTTM086hcxonkQ3JLqfmCPq3nl1
sEOiHwOi2XupeXeQYqDUtSABTo8FGAM9sUBnbpNvkBP1V2LvvoL7GX+aAT7zD/NU
prVrROD+EioKj0AHVtPCj9COIBpO5Yp60Ll4GoNL+G+jsF4sU8lg+QaETc7fjK4u
WXxUlZdDNGhZbmngKgmrAdBqvOL77cYFp0KHCGRJpHkScH5lTxcLT+f7ZFf6Z+Ay
mhbfLAEQgsw9StBlYGM3FNluK7UXbEH99jzoucXfljnvCgQSJYaR8njDo+Wc/1UU
Ig0pEbXCKxjOWMOFmt/19UvGvmNbFaswUp9PRYoDN00wQE43/MjG3Mfk+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLMwhRg/9gmyWWrw4S0BVhYr3T38MB8GA1UdIwQY
MBaAFL+bpYIcCFpY4+HTOk70Hpt2EF7lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjV1bGdod0lXbGpqNGRNNlR2UWVtM1lRWHVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9mYmM4YjUtYzVmNS00MGI4LThhNzQt
YmZhZmIyOTM3MWNmLzEvdjV1bGdod0lXbGpqNGRNNlR2UWVtM1lRWHVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9mYmM4YjUtYzVmNS00MGI4LThhNzQtYmZhZmIyOTM3MWNm
LzEvdjV1bGdod0lXbGpqNGRNNlR2UWVtM1lRWHVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYA61CPXW
s7BpDZu7/F3h1rIuKwkAYIsF9t1vuuHQBLRYik2zwC9wLzAqtIif6LnRcP/LXWuk
NPLG3p9Iqfz9tI6qCyVqOrS98aCmGgC4fQTgOkTz66BbvfkAwr/AvCx1zvUfgdOH
xKsAetVOf9TiSq9Jxek3T15jkP53UuCqxSt2tZjKgubFEQDqgjB6V2NqwtNblB0h
dhUXRA/C/uSNRinD98stJR3s7Pg1+ndOZrBiz8BBrfviYL0BAK6+xZdJj3ywTMzL
VBsobujM0jGlh4YePNQAAMnIKUN+hg+PdzZlens2VRihoj5DHYJSJcjlqdev3Es4
ehHAVYNzDXo04g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 10:31:09 2026 by rpki-client