Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
File: 25Kd7FwPI63Zuu7qe7OayHpykIM.mft (raw, json)
Hash identifier: g4GCDFXsl9yHeOPei1iCjdsnrINkWTJjfHjhgm5msJA=
Subject key identifier: DF:EE:21:90:D3:DF:0C:FA:19:D0:CB:5A:34:4F:F9:9A:BC:44:AF:AE
Authority key identifier: DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83
Certificate issuer: /CN=db929dec5c0f23add9baeeea7bb39ac87a729083
Certificate serial: 019D27DF87E1EF9055A6301685D3CBB19785
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
Manifest number: 188B
Signing time: Thu 26 Mar 2026 02:00:53 +0000
Manifest this update: Thu 26 Mar 2026 02:00:53 +0000
Manifest next update: Fri 27 Mar 2026 02:00:53 +0000
Files and hashes: 1: 25Kd7FwPI63Zuu7qe7OayHpykIM.crl (hash: TQJmeR0yq5hInOcknD/1nP0gAmHBIGRHNETLF8upoao=)
2: Vtd2ZoTlFAYzPYon3etMYV70kbQ.roa (hash: UpRfDwFjhIVb/ZI584vVNpvIkj/uDCeECPlZurhHCQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:87:e1:ef:90:55:a6:30:16:85:d3:cb:b1:97:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db929dec5c0f23add9baeeea7bb39ac87a729083
Validity
Not Before: Mar 26 02:00:53 2026 GMT
Not After : Mar 27 02:00:53 2026 GMT
Subject: CN=dfee2190d3df0cfa19d0cb5a344ff99abc44afae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d1:a0:d3:d3:22:bc:44:f4:c0:d4:ca:78:b8:
b7:3e:63:e3:a6:20:32:18:4a:1e:5f:ce:0b:10:af:
de:ac:7d:f4:82:58:0d:5a:58:4f:3e:a7:0e:fe:02:
41:02:01:f7:58:9a:4a:e5:23:68:42:89:a3:b8:7a:
9c:14:24:8a:40:13:d7:ae:89:b7:cb:2f:6a:fe:e8:
bc:0c:65:f3:09:45:16:b4:37:ed:e9:09:04:ea:91:
5a:0a:31:62:2f:d9:f5:f7:70:54:7e:65:86:b0:6d:
72:c4:3b:30:61:bc:78:84:e6:9f:55:0e:b8:c3:7e:
a7:7e:d1:d3:88:c6:ad:c8:42:63:e8:6b:5a:83:a5:
aa:2c:68:0b:b0:12:8e:7a:94:5d:64:75:65:0d:6d:
68:86:07:81:ab:69:87:f4:93:3b:b8:d3:d0:22:51:
68:e7:93:06:d6:99:9a:9f:b9:d1:6b:12:a7:46:b5:
0b:7b:cd:7f:0b:a0:dc:37:28:71:6f:c2:81:dc:c0:
fc:36:b0:d9:49:be:86:dd:2d:77:0c:3d:9e:a2:ea:
bb:d5:45:5d:a4:9e:bc:5a:8d:4f:7b:45:5b:e1:ce:
7b:f9:78:0e:0b:34:bd:11:fe:91:81:d4:79:02:79:
a0:ce:6c:f0:2e:6f:65:98:52:c5:78:e3:85:4c:b5:
90:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:EE:21:90:D3:DF:0C:FA:19:D0:CB:5A:34:4F:F9:9A:BC:44:AF:AE
X509v3 Authority Key Identifier:
keyid:DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:a9:5c:45:7a:4e:c4:ed:9e:65:86:ac:70:4b:6f:6f:69:7c:
58:95:49:ca:8a:ad:90:58:0f:d0:c9:f5:30:e4:5c:48:b7:49:
a5:35:da:93:76:9a:68:59:de:c9:82:a2:95:cf:65:b6:27:c3:
18:f4:bd:b4:e0:13:86:96:ad:9f:7b:df:4c:c6:85:a9:14:d7:
8a:6b:fe:2e:32:7c:a5:4b:ab:96:2f:7d:81:92:15:7e:58:45:
3f:a9:a4:0a:0a:45:d1:98:72:fe:26:f2:0f:28:ea:2d:bb:2c:
85:d2:9f:2a:1a:43:02:21:9c:ae:2c:98:e2:54:ed:e1:a9:14:
25:91:c8:39:93:70:7b:c8:52:e2:c4:10:98:2b:a0:6d:c5:82:
94:93:21:ed:be:3d:11:b3:70:0e:ea:6c:6b:54:3a:3f:e8:36:
9f:ed:79:73:1e:45:e1:c2:18:f5:fb:56:e9:da:af:b2:eb:95:
05:1a:7a:3b:22:5d:78:53:e7:f4:97:7f:b6:22:9e:e4:9d:09:
a7:61:a8:5d:b3:5c:0e:5f:8c:69:44:93:c3:2a:75:fa:c6:21:
ff:1b:ed:0c:5b:21:d6:a1:3e:65:0e:bb:08:3f:68:a2:64:cc:
0a:cd:02:1b:1c:68:07:3e:2a:85:c1:58:73:2d:2c:0c:0c:48:
2d:18:1c:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n34fh75BVpjAWhdPLsZeFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiOTI5ZGVjNWMwZjIzYWRkOWJhZWVlYTdiYjM5YWM4N2E3
MjkwODMwHhcNMjYwMzI2MDIwMDUzWhcNMjYwMzI3MDIwMDUzWjAzMTEwLwYDVQQD
EyhkZmVlMjE5MGQzZGYwY2ZhMTlkMGNiNWEzNDRmZjk5YWJjNDRhZmFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttGg09MivET0wNTKeLi3PmPjpiAy
GEoeX84LEK/erH30glgNWlhPPqcO/gJBAgH3WJpK5SNoQomjuHqcFCSKQBPXrom3
yy9q/ui8DGXzCUUWtDft6QkE6pFaCjFiL9n193BUfmWGsG1yxDswYbx4hOafVQ64
w36nftHTiMatyEJj6Gtag6WqLGgLsBKOepRdZHVlDW1ohgeBq2mH9JM7uNPQIlFo
55MG1pman7nRaxKnRrULe81/C6DcNyhxb8KB3MD8NrDZSb6G3S13DD2eouq71UVd
pJ68Wo1Pe0Vb4c57+XgOCzS9Ef6RgdR5AnmgzmzwLm9lmFLFeOOFTLWQ9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN/uIZDT3wz6GdDLWjRP+Zq8RK+uMB8GA1UdIwQY
MBaAFNuSnexcDyOt2bru6nuzmsh6cpCDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjVLZDdGd1BJNjNadXU3cWU3T2F5SHB5a0lNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9iZTVmZmYtYzkxMS00NTdjLTk1ZmMt
ZDMwYjdlMjVhZTBiLzEvMjVLZDdGd1BJNjNadXU3cWU3T2F5SHB5a0lNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9iZTVmZmYtYzkxMS00NTdjLTk1ZmMtZDMwYjdlMjVhZTBi
LzEvMjVLZDdGd1BJNjNadXU3cWU3T2F5SHB5a0lNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqalcRXpO
xO2eZYascEtvb2l8WJVJyoqtkFgP0Mn1MORcSLdJpTXak3aaaFneyYKilc9ltifD
GPS9tOAThpatn3vfTMaFqRTXimv+LjJ8pUurli99gZIVflhFP6mkCgpF0Zhy/iby
DyjqLbsshdKfKhpDAiGcriyY4lTt4akUJZHIOZNwe8hS4sQQmCugbcWClJMh7b49
EbNwDupsa1Q6P+g2n+15cx5F4cIY9ftW6dqvsuuVBRp6OyJdeFPn9Jd/tiKe5J0J
p2GoXbNcDl+MaUSTwyp1+sYh/xvtDFsh1qE+ZQ67CD9oomTMCs0CGxxoBz4qhcFY
cy0sDAxILRgcJQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:52:30 2026 by rpki-client