Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft
File: 45R9MIiPTYgtNYTtyKcPt2YV5fo.mft (raw, json)
Hash identifier: bvemFtsoasOINM4ZzLHMQGqmApYIF7HvxQXfBnj5OQ8=
Subject key identifier: 4D:40:9D:7D:EC:87:5A:34:F5:CB:D5:D4:6B:A9:3D:FD:C6:F9:66:2B
Authority key identifier: E3:94:7D:30:88:8F:4D:88:2D:35:84:ED:C8:A7:0F:B7:66:15:E5:FA
Certificate issuer: /CN=e3947d30888f4d882d3584edc8a70fb76615e5fa
Certificate serial: 019D329A2A37835414B61302E87DD9B9189B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/45R9MIiPTYgtNYTtyKcPt2YV5fo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft
Manifest number: D1
Signing time: Sat 28 Mar 2026 04:00:57 +0000
Manifest this update: Sat 28 Mar 2026 04:00:57 +0000
Manifest next update: Sun 29 Mar 2026 04:00:57 +0000
Files and hashes: 1: 45R9MIiPTYgtNYTtyKcPt2YV5fo.crl (hash: 86QZug9BYA/ZG53FJT0xlscLP9nEZbv1auclkBfq1YY=)
2: GTC6u_8Z9gd4xadpdKdM5XAZSl8.roa (hash: 0yWQwDQexpIwRL0OkehWTxguFnP2RgOpylnrHqYuR9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft
rsync://rpki.ripe.net/repository/DEFAULT/45R9MIiPTYgtNYTtyKcPt2YV5fo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:9a:2a:37:83:54:14:b6:13:02:e8:7d:d9:b9:18:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3947d30888f4d882d3584edc8a70fb76615e5fa
Validity
Not Before: Mar 28 04:00:57 2026 GMT
Not After : Mar 29 04:00:57 2026 GMT
Subject: CN=4d409d7dec875a34f5cbd5d46ba93dfdc6f9662b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d3:5e:2a:49:1e:14:2c:06:20:21:fb:d3:fc:
5f:1e:0a:f5:51:c1:18:f7:39:6b:47:ea:e4:27:98:
73:47:0c:d8:91:a3:91:00:65:45:98:03:00:c6:9c:
d2:6d:02:76:26:dd:ab:b2:97:c7:8b:32:d2:e0:aa:
47:1d:33:3a:69:d0:bb:81:fb:c5:85:14:ae:1c:cf:
5c:1d:78:18:32:c0:cc:60:20:1c:65:9c:0d:13:39:
03:14:58:d6:59:cd:0d:4e:ab:f0:af:b8:de:01:af:
a7:2e:d7:af:b1:d8:da:1b:67:62:d4:4f:6b:62:2e:
44:b6:93:46:fd:9e:73:31:d2:02:f8:3c:50:e6:42:
69:33:91:82:1e:20:04:4a:62:c4:42:96:19:be:f7:
0b:3f:97:30:9e:5e:6d:c4:f9:4b:aa:93:0c:68:65:
0f:8e:66:c5:8f:06:36:37:a1:08:45:16:25:f9:44:
64:31:1c:e7:17:f5:56:f2:5b:84:02:b0:1e:e8:b0:
0b:82:52:6f:97:9a:d8:38:d2:f2:37:84:83:7b:36:
39:82:6b:0b:b5:f1:38:c9:cc:e5:bb:1e:a6:15:38:
a6:0d:13:07:84:bb:34:3f:22:f5:7a:fd:4a:e0:ee:
e7:f5:49:a2:31:0f:52:bc:4b:b7:81:20:f1:be:31:
96:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:40:9D:7D:EC:87:5A:34:F5:CB:D5:D4:6B:A9:3D:FD:C6:F9:66:2B
X509v3 Authority Key Identifier:
keyid:E3:94:7D:30:88:8F:4D:88:2D:35:84:ED:C8:A7:0F:B7:66:15:E5:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/45R9MIiPTYgtNYTtyKcPt2YV5fo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:9d:88:b2:eb:d6:af:a7:8e:97:99:e5:d4:e8:b5:95:b3:7e:
1d:af:eb:f9:93:64:7d:31:e2:84:e7:b2:52:22:c1:64:7c:fb:
85:47:6b:04:11:28:0f:aa:c0:b3:12:cb:57:b9:f8:c8:30:d4:
78:b9:19:23:50:9b:bc:8b:13:07:32:11:28:65:c6:6a:b1:c8:
8d:00:6c:8c:c4:b7:93:19:5b:92:75:22:d7:30:f4:0c:78:6f:
c7:aa:1a:bf:ad:9e:5b:ac:44:20:86:74:65:4d:a3:1c:56:f7:
1c:5e:d6:49:83:70:88:a8:97:f1:a8:cc:53:83:76:06:1a:ca:
32:b7:7e:75:e2:2d:db:b3:d0:ee:35:cb:40:6e:ad:0d:f0:a3:
0a:ed:02:0c:a0:2e:53:38:e0:e4:0c:10:eb:cc:9d:83:32:6e:
c9:e2:5c:c6:70:8f:34:69:36:72:cd:78:91:46:72:77:ce:a8:
88:98:36:a0:48:2d:0a:b1:83:f4:17:63:15:c4:9a:18:d3:65:
99:8e:a7:7a:c0:d9:14:8f:0b:f0:ed:bb:52:24:4a:2e:b7:97:
64:61:57:73:15:22:3f:ed:de:0f:ce:cc:9f:3f:0d:16:0c:9b:
5d:7d:dd:41:2b:31:0f:6b:7a:34:95:1c:49:9a:87:d7:4f:f0:
3f:a5:6a:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ymio3g1QUthMC6H3ZuRibMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzOTQ3ZDMwODg4ZjRkODgyZDM1ODRlZGM4YTcwZmI3NjYx
NWU1ZmEwHhcNMjYwMzI4MDQwMDU3WhcNMjYwMzI5MDQwMDU3WjAzMTEwLwYDVQQD
Eyg0ZDQwOWQ3ZGVjODc1YTM0ZjVjYmQ1ZDQ2YmE5M2RmZGM2Zjk2NjJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1dNeKkkeFCwGICH70/xfHgr1UcEY
9zlrR+rkJ5hzRwzYkaORAGVFmAMAxpzSbQJ2Jt2rspfHizLS4KpHHTM6adC7gfvF
hRSuHM9cHXgYMsDMYCAcZZwNEzkDFFjWWc0NTqvwr7jeAa+nLtevsdjaG2di1E9r
Yi5EtpNG/Z5zMdIC+DxQ5kJpM5GCHiAESmLEQpYZvvcLP5cwnl5txPlLqpMMaGUP
jmbFjwY2N6EIRRYl+URkMRznF/VW8luEArAe6LALglJvl5rYONLyN4SDezY5gmsL
tfE4yczlux6mFTimDRMHhLs0PyL1ev1K4O7n9UmiMQ9SvEu3gSDxvjGWzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE1AnX3sh1o09cvV1GupPf3G+WYrMB8GA1UdIwQY
MBaAFOOUfTCIj02ILTWE7cinD7dmFeX6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNDVSOU1JaVBUWWd0TllUdHlLY1B0MllWNWZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9hYWZlN2EtZTE3OS00ZDZkLTlkNjIt
OWRhMzZlOTE3M2EzLzEvNDVSOU1JaVBUWWd0TllUdHlLY1B0MllWNWZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS9hYWZlN2EtZTE3OS00ZDZkLTlkNjItOWRhMzZlOTE3M2Ez
LzEvNDVSOU1JaVBUWWd0TllUdHlLY1B0MllWNWZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIJ2IsuvW
r6eOl5nl1Oi1lbN+Ha/r+ZNkfTHihOeyUiLBZHz7hUdrBBEoD6rAsxLLV7n4yDDU
eLkZI1CbvIsTBzIRKGXGarHIjQBsjMS3kxlbknUi1zD0DHhvx6oav62eW6xEIIZ0
ZU2jHFb3HF7WSYNwiKiX8ajMU4N2BhrKMrd+deIt27PQ7jXLQG6tDfCjCu0CDKAu
Uzjg5AwQ68ydgzJuyeJcxnCPNGk2cs14kUZyd86oiJg2oEgtCrGD9BdjFcSaGNNl
mY6nesDZFI8L8O27UiRKLreXZGFXcxUiP+3eD87Mnz8NFgybXX3dQSsxD2t6NJUc
SZqH10/wP6VqqQ==
-----END CERTIFICATE-----
Generated at Sat Mar 28 11:53:49 2026 by rpki-client