Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft
File: 39D7xN6B7icnq6PpEK_NKlOmZAw.mft (raw, json)
Hash identifier: J6GAWcKMkKeyQOiPpCwHcmQHgfshhynT6xu2TNT1Kl8=
Subject key identifier: 12:6E:30:92:67:1A:5B:07:5E:EE:2F:CE:53:FB:09:36:0D:18:95:C1
Authority key identifier: DF:D0:FB:C4:DE:81:EE:27:27:AB:A3:E9:10:AF:CD:2A:53:A6:64:0C
Certificate issuer: /CN=dfd0fbc4de81ee2727aba3e910afcd2a53a6640c
Certificate serial: 019D25F120562646F5646E66ABB03B227B5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft
Manifest number: 0185
Signing time: Wed 25 Mar 2026 17:00:52 +0000
Manifest this update: Wed 25 Mar 2026 17:00:52 +0000
Manifest next update: Thu 26 Mar 2026 17:00:52 +0000
Files and hashes: 1: 39D7xN6B7icnq6PpEK_NKlOmZAw.crl (hash: iBSQL5KZiyYRqKf1TptSDnDUeTEozCiEYXk/9LqGRqQ=)
2: G1iJHYXZZbAs4A1MhgUftxUGaws.roa (hash: 7QifEDFoU7RkmJKkZqgcMn81wo0EKV/iY/tFPszpQk0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:20:56:26:46:f5:64:6e:66:ab:b0:3b:22:7b:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfd0fbc4de81ee2727aba3e910afcd2a53a6640c
Validity
Not Before: Mar 25 17:00:52 2026 GMT
Not After : Mar 26 17:00:52 2026 GMT
Subject: CN=126e3092671a5b075eee2fce53fb09360d1895c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a9:9b:1b:4b:24:81:81:51:3f:58:8d:45:fc:
f4:d2:a0:4a:20:7a:56:1c:cf:e0:83:b9:82:0f:82:
59:50:e8:2e:fe:e6:30:d9:0d:71:6b:f7:9b:12:6e:
e6:a5:a6:d3:5e:df:a9:33:e2:16:2f:59:0b:cf:c8:
bb:ea:8d:76:8b:6e:d5:cc:c5:52:c2:f1:df:99:ea:
a5:63:2c:06:5b:fe:cc:6c:2f:eb:ef:e3:84:bb:2d:
7f:29:9b:66:b7:ce:91:c8:86:d8:2e:9c:be:74:86:
80:4a:52:4b:73:4b:d3:69:92:c6:f9:92:d9:b8:bc:
70:59:5c:0c:01:43:4e:ce:e5:b7:f8:11:1c:a6:66:
5e:93:4a:64:53:e7:7c:af:d4:09:17:7c:33:11:24:
b0:e0:87:92:07:f3:25:09:ea:51:5b:50:e0:26:d0:
15:ba:8d:a8:d7:18:15:18:40:2a:e6:fa:9f:0b:ff:
3f:c6:74:fd:2a:7e:58:53:1d:5d:0d:c7:1a:e7:e5:
07:1c:fe:e4:97:26:41:32:e2:f1:f3:4f:6e:80:d4:
5e:c9:9f:75:ce:36:40:df:25:32:d0:83:bc:a9:1b:
af:b2:00:15:06:12:84:91:0c:5e:d6:50:07:e6:83:
0f:04:53:0f:7b:6d:1a:3d:84:19:88:b9:c9:80:da:
28:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:6E:30:92:67:1A:5B:07:5E:EE:2F:CE:53:FB:09:36:0D:18:95:C1
X509v3 Authority Key Identifier:
keyid:DF:D0:FB:C4:DE:81:EE:27:27:AB:A3:E9:10:AF:CD:2A:53:A6:64:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:8d:d5:0a:51:bc:eb:82:9b:f4:02:79:82:9a:01:be:4e:e4:
e9:9c:00:c6:29:02:67:c8:ed:cc:af:9b:31:62:2e:16:7d:0e:
ed:32:c1:06:27:b8:b5:7b:36:fb:a8:bd:cd:9a:22:14:ca:ec:
51:e8:23:2a:9f:ad:ff:5c:29:6c:80:6d:44:ce:16:4b:08:68:
12:7f:ba:f3:df:79:a5:fb:61:51:ba:47:d7:15:61:b0:7f:c7:
be:71:d5:ca:a5:8d:bf:81:c5:d9:4f:a1:56:db:71:8d:fb:ee:
be:03:7a:25:ec:b4:1a:85:d5:90:0b:25:fd:08:04:f0:c1:7c:
9c:a3:2a:c7:8e:71:c1:53:bd:7e:7a:2a:97:87:da:0a:e3:13:
87:64:c6:e5:c5:3c:a6:fa:fc:bf:48:98:05:78:3f:8e:b8:92:
6d:c2:22:dd:75:6d:f3:aa:50:fd:2a:bc:c3:d0:1c:2d:8b:48:
49:d1:31:14:1a:55:3e:74:24:c1:c9:53:c6:dc:33:b0:4a:84:
6e:dc:24:15:47:40:79:89:a2:23:ae:26:59:ec:d6:65:91:92:
df:7a:4a:43:e6:90:07:c1:5e:5d:a8:77:95:c7:32:34:98:a9:
a8:ab:a0:d0:c2:a2:94:b0:c6:cc:82:4f:ba:1c:bc:53:4b:85:
d5:82:0e:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0l8SBWJkb1ZG5mq7A7IntaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmZDBmYmM0ZGU4MWVlMjcyN2FiYTNlOTEwYWZjZDJhNTNh
NjY0MGMwHhcNMjYwMzI1MTcwMDUyWhcNMjYwMzI2MTcwMDUyWjAzMTEwLwYDVQQD
EygxMjZlMzA5MjY3MWE1YjA3NWVlZTJmY2U1M2ZiMDkzNjBkMTg5NWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqmbG0skgYFRP1iNRfz00qBKIHpW
HM/gg7mCD4JZUOgu/uYw2Q1xa/ebEm7mpabTXt+pM+IWL1kLz8i76o12i27VzMVS
wvHfmeqlYywGW/7MbC/r7+OEuy1/KZtmt86RyIbYLpy+dIaASlJLc0vTaZLG+ZLZ
uLxwWVwMAUNOzuW3+BEcpmZek0pkU+d8r9QJF3wzESSw4IeSB/MlCepRW1DgJtAV
uo2o1xgVGEAq5vqfC/8/xnT9Kn5YUx1dDcca5+UHHP7klyZBMuLx809ugNReyZ91
zjZA3yUy0IO8qRuvsgAVBhKEkQxe1lAH5oMPBFMPe20aPYQZiLnJgNooAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBJuMJJnGlsHXu4vzlP7CTYNGJXBMB8GA1UdIwQY
MBaAFN/Q+8Tege4nJ6uj6RCvzSpTpmQMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMzlEN3hONkI3aWNucTZQcEVLX05LbE9tWkF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8yNDU4NzMtMWNhNy00YjcxLWIyMjAt
ZWRiMDQxOGNhYzRkLzEvMzlEN3hONkI3aWNucTZQcEVLX05LbE9tWkF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8yNDU4NzMtMWNhNy00YjcxLWIyMjAtZWRiMDQxOGNhYzRk
LzEvMzlEN3hONkI3aWNucTZQcEVLX05LbE9tWkF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvI3VClG8
64Kb9AJ5gpoBvk7k6ZwAxikCZ8jtzK+bMWIuFn0O7TLBBie4tXs2+6i9zZoiFMrs
UegjKp+t/1wpbIBtRM4WSwhoEn+68995pfthUbpH1xVhsH/HvnHVyqWNv4HF2U+h
VttxjfvuvgN6Jey0GoXVkAsl/QgE8MF8nKMqx45xwVO9fnoql4faCuMTh2TG5cU8
pvr8v0iYBXg/jriSbcIi3XVt86pQ/Sq8w9AcLYtISdExFBpVPnQkwclTxtwzsEqE
btwkFUdAeYmiI64mWezWZZGS33pKQ+aQB8FeXah3lccyNJipqKug0MKilLDGzIJP
uhy8U0uF1YIOrw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 03:33:01 2026 by rpki-client