Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/01642e-c0ad-4bae-a545-8401952ac897/1/LdrykZbO5YxjJjDwK-69C1p1qdk.mft
File: LdrykZbO5YxjJjDwK-69C1p1qdk.mft (raw, json)
Hash identifier: 9fGTsS11GOVKOkWNhqhsV0U8sg/Y1DiVl+H7Z7cvSy4=
Subject key identifier: F4:62:F9:68:F1:F1:45:8B:0E:03:25:29:03:A7:AD:D6:DA:2E:AF:72
Authority key identifier: 2D:DA:F2:91:96:CE:E5:8C:63:26:30:F0:2B:EE:BD:0B:5A:75:A9:D9
Certificate issuer: /CN=2ddaf29196cee58c632630f02beebd0b5a75a9d9
Certificate serial: 019D28F215833C4BA7754E67BB5B17E9437E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LdrykZbO5YxjJjDwK-69C1p1qdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/01642e-c0ad-4bae-a545-8401952ac897/1/LdrykZbO5YxjJjDwK-69C1p1qdk.mft
Manifest number: 0316
Signing time: Thu 26 Mar 2026 07:00:46 +0000
Manifest this update: Thu 26 Mar 2026 07:00:46 +0000
Manifest next update: Fri 27 Mar 2026 07:00:46 +0000
Files and hashes: 1: LdrykZbO5YxjJjDwK-69C1p1qdk.crl (hash: TFIDVdYXWrWmO4Yuefcfv60JldA5gU1miz48e7dx7V8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/01642e-c0ad-4bae-a545-8401952ac897/1/LdrykZbO5YxjJjDwK-69C1p1qdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/01642e-c0ad-4bae-a545-8401952ac897/1/LdrykZbO5YxjJjDwK-69C1p1qdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/LdrykZbO5YxjJjDwK-69C1p1qdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:15:83:3c:4b:a7:75:4e:67:bb:5b:17:e9:43:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ddaf29196cee58c632630f02beebd0b5a75a9d9
Validity
Not Before: Mar 26 07:00:46 2026 GMT
Not After : Mar 27 07:00:46 2026 GMT
Subject: CN=f462f968f1f1458b0e03252903a7add6da2eaf72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:56:7b:76:6b:10:48:84:91:97:e6:18:b9:34:
32:68:ab:a8:f4:a0:cf:7b:32:0c:0d:d8:25:82:44:
88:0f:0b:70:89:ec:1e:5a:b0:fc:be:f0:0a:4b:3d:
87:8d:4d:7a:7e:f1:04:02:50:97:1e:f0:15:4a:85:
92:c9:c2:aa:1a:a1:d1:2f:80:7f:67:9b:99:04:8e:
a4:55:aa:e8:20:03:ea:fd:bf:d3:5c:29:61:eb:bc:
a7:6e:41:a1:89:77:2b:de:17:c4:d9:a9:dd:24:8f:
ce:2d:ac:39:27:f0:20:f9:42:b3:d7:ca:0a:b2:03:
d2:b6:66:e5:b3:e7:f8:5e:ab:74:e0:c8:d8:9f:ce:
4e:46:8d:20:db:b5:09:bb:8e:f4:10:69:19:bb:45:
40:21:14:59:ed:eb:8e:6d:66:ac:e3:48:f6:b0:c1:
a3:68:73:a6:fe:d6:eb:2d:18:e8:02:38:b4:58:24:
03:e4:4b:2b:10:68:b5:89:fb:26:96:90:98:2a:67:
45:13:ed:d8:71:83:f7:4a:d0:50:4b:af:69:d2:e1:
5a:19:a9:72:f6:e8:0f:00:c6:84:fd:ee:f5:c1:3c:
e3:a0:05:fc:a9:75:64:97:10:f0:49:54:00:6a:b4:
0a:30:06:ea:b8:f3:bf:c0:8b:6d:26:4c:75:76:3d:
ae:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:62:F9:68:F1:F1:45:8B:0E:03:25:29:03:A7:AD:D6:DA:2E:AF:72
X509v3 Authority Key Identifier:
keyid:2D:DA:F2:91:96:CE:E5:8C:63:26:30:F0:2B:EE:BD:0B:5A:75:A9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LdrykZbO5YxjJjDwK-69C1p1qdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/01642e-c0ad-4bae-a545-8401952ac897/1/LdrykZbO5YxjJjDwK-69C1p1qdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/01642e-c0ad-4bae-a545-8401952ac897/1/LdrykZbO5YxjJjDwK-69C1p1qdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:65:93:bb:aa:f0:7d:6e:f0:9c:85:a8:23:dc:39:5b:b1:8d:
24:23:dd:01:94:bd:86:8f:76:57:63:db:49:75:13:56:d8:f1:
71:66:22:3b:b1:ca:b2:73:6c:c0:77:1d:50:57:95:bc:ce:a0:
4f:f9:b7:eb:4e:9a:c2:b3:c9:cf:28:20:23:5f:be:cb:48:fc:
a1:63:14:20:83:1f:86:0f:7a:e6:ef:3f:34:16:00:0b:38:3d:
64:4e:be:d0:a1:8c:a6:41:9e:33:32:03:a0:5a:a5:78:a8:35:
07:01:79:3f:0b:de:e3:f1:1b:d4:c3:98:51:65:78:d5:4c:33:
04:c4:e5:16:39:2c:60:a9:4c:54:ad:23:79:23:98:85:80:5c:
31:52:dc:3e:0f:b2:96:1d:f5:bd:b7:da:51:d7:9f:29:21:2d:
6e:b6:af:6d:fe:0d:4c:64:4f:ec:f8:60:7d:7d:18:df:3b:bd:
4c:06:b0:6e:62:20:45:fb:f1:e1:fd:aa:e2:0c:f2:58:43:b5:
13:a6:87:1b:79:2a:86:e7:13:02:d5:31:81:58:91:9b:e9:65:
14:4e:34:c3:98:3e:b4:58:6d:54:dc:d2:6f:41:ee:3d:ca:43:
a5:16:f3:fd:ef:17:70:26:7c:ec:98:d6:6b:58:7a:54:ad:0e:
92:4e:49:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8hWDPEundU5nu1sX6UN+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkZGFmMjkxOTZjZWU1OGM2MzI2MzBmMDJiZWViZDBiNWE3
NWE5ZDkwHhcNMjYwMzI2MDcwMDQ2WhcNMjYwMzI3MDcwMDQ2WjAzMTEwLwYDVQQD
EyhmNDYyZjk2OGYxZjE0NThiMGUwMzI1MjkwM2E3YWRkNmRhMmVhZjcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArlZ7dmsQSISRl+YYuTQyaKuo9KDP
ezIMDdglgkSIDwtwieweWrD8vvAKSz2HjU16fvEEAlCXHvAVSoWSycKqGqHRL4B/
Z5uZBI6kVaroIAPq/b/TXClh67ynbkGhiXcr3hfE2andJI/OLaw5J/Ag+UKz18oK
sgPStmbls+f4Xqt04MjYn85ORo0g27UJu470EGkZu0VAIRRZ7euObWas40j2sMGj
aHOm/tbrLRjoAji0WCQD5EsrEGi1ifsmlpCYKmdFE+3YcYP3StBQS69p0uFaGaly
9ugPAMaE/e71wTzjoAX8qXVklxDwSVQAarQKMAbquPO/wIttJkx1dj2uQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPRi+Wjx8UWLDgMlKQOnrdbaLq9yMB8GA1UdIwQY
MBaAFC3a8pGWzuWMYyYw8CvuvQtadanZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGRyeWtaYk81WXhqSmpEd0stNjlDMXAxcWRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8wMTY0MmUtYzBhZC00YmFlLWE1NDUt
ODQwMTk1MmFjODk3LzEvTGRyeWtaYk81WXhqSmpEd0stNjlDMXAxcWRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS8wMTY0MmUtYzBhZC00YmFlLWE1NDUtODQwMTk1MmFjODk3
LzEvTGRyeWtaYk81WXhqSmpEd0stNjlDMXAxcWRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgWWTu6rw
fW7wnIWoI9w5W7GNJCPdAZS9ho92V2PbSXUTVtjxcWYiO7HKsnNswHcdUFeVvM6g
T/m3606awrPJzyggI1++y0j8oWMUIIMfhg965u8/NBYACzg9ZE6+0KGMpkGeMzID
oFqleKg1BwF5Pwve4/Eb1MOYUWV41UwzBMTlFjksYKlMVK0jeSOYhYBcMVLcPg+y
lh31vbfaUdefKSEtbravbf4NTGRP7PhgfX0Y3zu9TAawbmIgRfvx4f2q4gzyWEO1
E6aHG3kqhucTAtUxgViRm+llFE40w5g+tFhtVNzSb0HuPcpDpRbz/e8XcCZ87JjW
a1h6VK0Okk5Jpg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 14:43:28 2026 by rpki-client