Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
File: DLvQEU2XGWdQ1IxeElbtBVpeniw.mft (raw, json)
Hash identifier: dKCj4L7EJVW1aLny58DxuS6DAV/aKmTjysoHE+G679o=
Subject key identifier: 41:A2:5E:FA:22:6F:8B:C9:22:7C:01:4C:CB:CE:3C:B9:FC:75:92:BC
Authority key identifier: 0C:BB:D0:11:4D:97:19:67:50:D4:8C:5E:12:56:ED:05:5A:5E:9E:2C
Certificate issuer: /CN=0cbbd0114d97196750d48c5e1256ed055a5e9e2c
Certificate serial: 019D284DA35FA19AD2C29B61CAC4ED169877
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
Manifest number: 0CDF
Signing time: Thu 26 Mar 2026 04:01:09 +0000
Manifest this update: Thu 26 Mar 2026 04:01:09 +0000
Manifest next update: Fri 27 Mar 2026 04:01:09 +0000
Files and hashes: 1: DLvQEU2XGWdQ1IxeElbtBVpeniw.crl (hash: BFlz+TNz0hWF435piIVxFMcNYQnKBeG/9mle71uG9ro=)
2: zTRd4Rg7f52eGJE9IBoR1ppNzbw.roa (hash: 1Wo48c+UEPKDWWzPD4uCsXMeUU5ZpLq6o6j7k+pojVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:a3:5f:a1:9a:d2:c2:9b:61:ca:c4:ed:16:98:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cbbd0114d97196750d48c5e1256ed055a5e9e2c
Validity
Not Before: Mar 26 04:01:09 2026 GMT
Not After : Mar 27 04:01:09 2026 GMT
Subject: CN=41a25efa226f8bc9227c014ccbce3cb9fc7592bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:93:31:2c:f8:e9:a4:c6:5e:a3:72:49:80:e6:
b9:c1:8f:24:db:a6:d9:b4:74:f6:ff:48:4d:15:d1:
7b:31:09:f8:c6:2d:37:70:71:b7:3e:10:7b:f1:b2:
fa:dc:9c:40:b2:d9:1b:3e:c0:c9:c9:99:6a:53:09:
14:a8:0c:c2:e5:a9:ad:46:6d:7c:ab:c2:ee:17:01:
e2:5d:27:b9:65:34:29:e8:0d:d0:60:ed:cd:7c:c7:
df:7a:2d:43:b3:4c:55:85:83:1a:4d:e4:16:38:83:
e0:82:88:a0:c2:ce:60:9e:60:01:ce:51:7a:ba:63:
c0:29:ae:39:b4:56:d9:a7:03:cd:9a:03:58:56:2d:
ac:d9:07:6e:64:d0:b6:8d:8e:75:c1:40:6d:10:f2:
98:b8:a6:06:86:b5:a1:4c:4a:b0:d8:54:99:b2:61:
a8:ad:a2:41:b7:50:00:e4:77:05:b9:c7:be:6f:55:
30:dc:c7:09:11:66:06:ad:aa:04:92:8c:44:5f:b4:
9a:be:76:26:a6:51:9f:31:d5:ec:12:0b:ce:dd:e6:
7f:a1:3e:2d:33:d5:c6:39:35:aa:2f:4f:4d:6d:a2:
41:81:4b:5a:af:85:64:a5:23:bb:5f:4c:fd:71:88:
a6:49:91:90:81:5d:93:c4:e4:85:c8:28:94:41:bc:
a0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:A2:5E:FA:22:6F:8B:C9:22:7C:01:4C:CB:CE:3C:B9:FC:75:92:BC
X509v3 Authority Key Identifier:
keyid:0C:BB:D0:11:4D:97:19:67:50:D4:8C:5E:12:56:ED:05:5A:5E:9E:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:ff:78:ea:cf:68:b9:e3:7f:68:a5:51:6b:3e:22:f5:0c:ec:
91:3f:44:55:3a:f4:42:d4:cf:1a:b0:27:28:d9:48:dd:04:31:
ca:d2:49:81:10:77:dc:ee:27:79:89:03:4d:bd:5b:50:73:93:
d6:91:e9:81:12:9c:8d:7e:85:23:37:21:fe:b2:b7:78:1d:0c:
e6:56:08:85:a3:a4:79:11:06:ed:d4:9e:b1:81:e8:f0:80:7e:
17:75:4b:86:94:9a:9e:cb:c5:18:08:a7:25:1e:1c:71:6f:36:
e0:8d:de:25:81:ea:86:ee:f7:bf:84:83:18:e0:9a:45:02:02:
cd:65:14:c4:78:26:f6:43:f1:a0:94:14:a8:a0:b8:f2:37:32:
17:71:c1:80:fc:13:15:f2:a3:2d:8e:6f:d0:7f:7e:f7:27:6b:
0e:16:e3:41:79:9b:78:a8:70:ad:b2:73:6e:99:cd:25:10:11:
4a:74:16:19:39:3c:60:6e:1c:67:f4:98:da:73:29:77:ff:29:
dd:11:6f:5c:eb:f7:13:18:3b:db:1e:df:64:e1:cd:2a:55:5d:
98:63:bb:be:2f:65:c4:f1:aa:0a:5a:0c:0b:bc:d3:41:cd:45:
34:76:db:ff:50:09:23:41:d2:fa:85:02:e9:a9:76:0c:2a:7e:
ee:c7:da:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oTaNfoZrSwpthysTtFph3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjYmJkMDExNGQ5NzE5Njc1MGQ0OGM1ZTEyNTZlZDA1NWE1
ZTllMmMwHhcNMjYwMzI2MDQwMTA5WhcNMjYwMzI3MDQwMTA5WjAzMTEwLwYDVQQD
Eyg0MWEyNWVmYTIyNmY4YmM5MjI3YzAxNGNjYmNlM2NiOWZjNzU5MmJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAupMxLPjppMZeo3JJgOa5wY8k26bZ
tHT2/0hNFdF7MQn4xi03cHG3PhB78bL63JxAstkbPsDJyZlqUwkUqAzC5amtRm18
q8LuFwHiXSe5ZTQp6A3QYO3NfMffei1Ds0xVhYMaTeQWOIPggoigws5gnmABzlF6
umPAKa45tFbZpwPNmgNYVi2s2QduZNC2jY51wUBtEPKYuKYGhrWhTEqw2FSZsmGo
raJBt1AA5HcFuce+b1Uw3McJEWYGraoEkoxEX7SavnYmplGfMdXsEgvO3eZ/oT4t
M9XGOTWqL09NbaJBgUtar4VkpSO7X0z9cYimSZGQgV2TxOSFyCiUQbyg3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEGiXvoib4vJInwBTMvOPLn8dZK8MB8GA1UdIwQY
MBaAFAy70BFNlxlnUNSMXhJW7QVaXp4sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREx2UUVVMlhHV2RRMUl4ZUVsYnRCVnBlbml3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8yYTFiNGUtZDc1NC00NDNjLWEzNjAt
YWZiNTY2Y2RmYWM2LzEvREx2UUVVMlhHV2RRMUl4ZUVsYnRCVnBlbml3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC8yYTFiNGUtZDc1NC00NDNjLWEzNjAtYWZiNTY2Y2RmYWM2
LzEvREx2UUVVMlhHV2RRMUl4ZUVsYnRCVnBlbml3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC/946s9o
ueN/aKVRaz4i9QzskT9EVTr0QtTPGrAnKNlI3QQxytJJgRB33O4neYkDTb1bUHOT
1pHpgRKcjX6FIzch/rK3eB0M5lYIhaOkeREG7dSesYHo8IB+F3VLhpSansvFGAin
JR4ccW824I3eJYHqhu73v4SDGOCaRQICzWUUxHgm9kPxoJQUqKC48jcyF3HBgPwT
FfKjLY5v0H9+9ydrDhbjQXmbeKhwrbJzbpnNJRARSnQWGTk8YG4cZ/SY2nMpd/8p
3RFvXOv3Exg72x7fZOHNKlVdmGO7vi9lxPGqCloMC7zTQc1FNHbb/1AJI0HS+oUC
6al2DCp+7sfaKQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 08:56:08 2026 by rpki-client