Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
File: 8zXtZqwB15F1zk149nKh_kcgN4A.mft (raw, json)
Hash identifier: yVl5lycOOGUrL3B6XzCuunUhoHw2WBtWqpcKGgOn39w=
Subject key identifier: 2C:14:15:2B:2E:AE:1C:AE:29:38:B4:E0:8D:B0:5D:74:5D:DD:A3:47
Authority key identifier: F3:35:ED:66:AC:01:D7:91:75:CE:4D:78:F6:72:A1:FE:47:20:37:80
Certificate issuer: /CN=f335ed66ac01d79175ce4d78f672a1fe47203780
Certificate serial: 019D2AA9B1EADF0BC19CBC5321F9D5FF16BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
Manifest number: 024D
Signing time: Thu 26 Mar 2026 15:00:57 +0000
Manifest this update: Thu 26 Mar 2026 15:00:57 +0000
Manifest next update: Fri 27 Mar 2026 15:00:57 +0000
Files and hashes: 1: 8zXtZqwB15F1zk149nKh_kcgN4A.crl (hash: CPSrWnV8rEP9hFB+DyRGNogKFwDngDagc5BXxd6/P+4=)
2: VpiFwK0hsjfTbGKdlZz4M450A4o.roa (hash: 7nG4whDnBMU971FoyHXyhGJf7PxhrWgEoIfy9EmmD2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 15:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:b1:ea:df:0b:c1:9c:bc:53:21:f9:d5:ff:16:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f335ed66ac01d79175ce4d78f672a1fe47203780
Validity
Not Before: Mar 26 15:00:57 2026 GMT
Not After : Mar 27 15:00:57 2026 GMT
Subject: CN=2c14152b2eae1cae2938b4e08db05d745ddda347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:67:30:97:b5:38:1a:aa:9a:3d:5c:7e:2e:1c:
1e:b7:cc:05:7d:cd:75:d2:34:ad:d7:67:af:d6:72:
95:48:cf:0a:d7:96:4e:4e:bc:84:d0:0b:72:ea:c3:
a8:ea:78:ef:d4:2c:33:2f:50:9a:85:0a:08:2e:e0:
54:26:2c:0e:21:cd:83:75:90:2a:0d:6c:a2:42:41:
3c:7e:0c:28:d7:bc:83:b4:12:1c:f8:c3:6b:bf:3d:
64:50:f1:fc:17:cf:ab:4a:69:9a:bc:08:55:d3:1d:
a7:87:09:fd:34:62:ed:66:70:17:e5:67:6d:ff:a9:
87:66:a6:ad:fc:10:1b:4c:f7:35:cf:e7:ec:83:01:
79:2e:11:9e:8f:30:3f:bc:4d:d5:f8:12:d9:e2:9a:
bd:c5:86:a9:b4:94:e1:7c:c8:86:34:11:e2:57:d0:
b0:b8:fe:85:d7:48:55:8a:51:11:0b:44:bb:af:e3:
b6:17:2f:d1:5e:6f:a3:46:b7:29:cb:44:c8:d2:3f:
d3:30:22:34:3e:af:6f:86:5f:c7:75:93:d7:3c:c8:
44:0a:ed:f9:70:d2:99:94:e5:fa:19:30:58:0e:d2:
5b:82:a3:af:6e:93:ad:ba:43:c8:63:6f:fa:ca:e7:
96:53:22:48:f7:ba:1c:96:0f:d1:e1:f0:8a:77:ce:
0d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:14:15:2B:2E:AE:1C:AE:29:38:B4:E0:8D:B0:5D:74:5D:DD:A3:47
X509v3 Authority Key Identifier:
keyid:F3:35:ED:66:AC:01:D7:91:75:CE:4D:78:F6:72:A1:FE:47:20:37:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:e6:7d:a3:12:f6:e2:d4:bb:0a:86:25:95:68:1b:db:9f:00:
79:46:aa:63:bb:5d:43:dd:da:2f:d0:9b:c0:00:2e:dc:fd:db:
30:7f:cc:14:ab:20:e8:e4:b8:72:76:4a:de:6c:25:e7:77:80:
6f:f3:13:e5:0b:d1:b7:4d:da:f4:8d:a7:f2:c3:86:0d:8e:b3:
1a:99:25:31:7e:8d:f0:b2:a8:21:c4:89:35:0a:58:5c:a7:d5:
f6:1a:11:8b:ea:8a:d5:97:e6:13:99:e7:4f:81:b5:9d:3d:a8:
18:e1:1f:31:be:4a:c2:60:76:f1:fe:b1:df:a5:cd:cb:bd:70:
64:24:84:4f:91:cc:81:65:97:27:4a:9a:18:a9:89:87:b5:e8:
84:16:e0:b2:76:b7:ca:33:8d:51:7e:31:96:5b:f4:80:04:4d:
3f:f8:6b:75:71:fb:94:4b:24:f0:f3:50:65:40:ee:43:07:54:
01:62:24:be:71:55:97:e0:ed:bb:3b:98:37:aa:e7:f0:b5:8d:
0d:47:23:c3:a3:43:b6:3c:05:47:ac:c5:06:ae:fa:3d:95:2b:
b9:92:10:1e:63:21:08:e7:26:d4:bc:e8:5a:89:ad:17:4b:0f:
63:5d:a9:ea:69:05:8f:bf:da:9d:d1:c7:54:8e:54:38:53:fd:
0c:54:46:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qqbHq3wvBnLxTIfnV/xa+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzMzVlZDY2YWMwMWQ3OTE3NWNlNGQ3OGY2NzJhMWZlNDcy
MDM3ODAwHhcNMjYwMzI2MTUwMDU3WhcNMjYwMzI3MTUwMDU3WjAzMTEwLwYDVQQD
EygyYzE0MTUyYjJlYWUxY2FlMjkzOGI0ZTA4ZGIwNWQ3NDVkZGRhMzQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8Wcwl7U4GqqaPVx+Lhwet8wFfc11
0jSt12ev1nKVSM8K15ZOTryE0Aty6sOo6njv1CwzL1CahQoILuBUJiwOIc2DdZAq
DWyiQkE8fgwo17yDtBIc+MNrvz1kUPH8F8+rSmmavAhV0x2nhwn9NGLtZnAX5Wdt
/6mHZqat/BAbTPc1z+fsgwF5LhGejzA/vE3V+BLZ4pq9xYaptJThfMiGNBHiV9Cw
uP6F10hVilERC0S7r+O2Fy/RXm+jRrcpy0TI0j/TMCI0Pq9vhl/HdZPXPMhECu35
cNKZlOX6GTBYDtJbgqOvbpOtukPIY2/6yueWUyJI97oclg/R4fCKd84NmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCwUFSsurhyuKTi04I2wXXRd3aNHMB8GA1UdIwQY
MBaAFPM17WasAdeRdc5NePZyof5HIDeAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHpYdFpxd0IxNUYxemsxNDluS2hfa2NnTjRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My83OTg4ODktMjlkNC00ZjUzLWEwNDEt
NTBhY2JhZWVjN2NhLzEvOHpYdFpxd0IxNUYxemsxNDluS2hfa2NnTjRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My83OTg4ODktMjlkNC00ZjUzLWEwNDEtNTBhY2JhZWVjN2Nh
LzEvOHpYdFpxd0IxNUYxemsxNDluS2hfa2NnTjRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANuZ9oxL2
4tS7CoYllWgb258AeUaqY7tdQ93aL9CbwAAu3P3bMH/MFKsg6OS4cnZK3mwl53eA
b/MT5QvRt03a9I2n8sOGDY6zGpklMX6N8LKoIcSJNQpYXKfV9hoRi+qK1ZfmE5nn
T4G1nT2oGOEfMb5KwmB28f6x36XNy71wZCSET5HMgWWXJ0qaGKmJh7XohBbgsna3
yjONUX4xllv0gARNP/hrdXH7lEsk8PNQZUDuQwdUAWIkvnFVl+DtuzuYN6rn8LWN
DUcjw6NDtjwFR6zFBq76PZUruZIQHmMhCOcm1LzoWomtF0sPY12p6mkFj7/andHH
VI5UOFP9DFRGUw==
-----END CERTIFICATE-----
Generated at Fri Mar 27 00:36:53 2026 by rpki-client