Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
File: Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft (raw, json)
Hash identifier: fZl35BalwZPu++GC5iY09X/Eq+LksRVJD4wgKTonTCM=
Subject key identifier: 8C:12:7C:68:84:B5:F5:7F:A9:F5:79:33:49:74:E2:47:7B:68:95:02
Authority key identifier: 4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14
Certificate issuer: /CN=4b177c450d2035067baa26920b8a4bd36c7b3314
Certificate serial: 019D28F21A041E8F428FEEA4D8ADFDA74529
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
Manifest number: 0F99
Signing time: Thu 26 Mar 2026 07:00:48 +0000
Manifest this update: Thu 26 Mar 2026 07:00:48 +0000
Manifest next update: Fri 27 Mar 2026 07:00:48 +0000
Files and hashes: 1: Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl (hash: AjhMdgUR93192Ms62mcrw5fQa1m35ZdAd/q4DKn/q1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:1a:04:1e:8f:42:8f:ee:a4:d8:ad:fd:a7:45:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b177c450d2035067baa26920b8a4bd36c7b3314
Validity
Not Before: Mar 26 07:00:48 2026 GMT
Not After : Mar 27 07:00:48 2026 GMT
Subject: CN=8c127c6884b5f57fa9f579334974e2477b689502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8d:99:3a:44:28:d0:4a:da:1c:1d:90:e7:e0:
c6:4f:68:e8:2f:ff:09:8d:81:b0:ae:3c:a1:5c:69:
08:c4:86:3b:74:97:5c:3b:c9:17:68:2f:6b:8f:c7:
74:d5:7b:cd:80:b3:87:24:12:d3:f5:d3:e3:ac:ad:
2d:88:66:7a:d4:0c:34:b8:35:17:d3:a0:d1:0c:b7:
bf:6f:66:5b:40:14:8a:b8:e9:59:7a:b4:d6:f8:72:
a5:11:74:f4:ea:f2:2a:2f:e9:83:ba:05:74:14:06:
6a:0f:25:9f:0c:05:2c:39:3e:57:53:cb:12:44:9e:
69:b5:3a:aa:8a:3c:76:05:ff:8d:32:aa:d4:72:bb:
bc:f8:e2:8b:cf:03:8d:fc:67:8f:c3:ae:8b:8c:f5:
5e:9e:a5:fc:4e:cf:4a:0c:5d:89:30:a5:ad:2e:6e:
95:4b:a1:47:f3:e4:cb:74:ea:fe:e6:37:bc:cd:56:
fc:c3:83:cf:45:cd:af:bd:a6:76:12:7e:63:12:a7:
25:4b:0f:6f:c8:64:f9:91:af:1a:f3:32:74:5c:41:
87:72:64:78:a4:37:fb:2f:80:29:21:43:89:cf:a1:
22:9a:a8:c7:19:3f:89:55:fc:66:3d:17:ac:7f:33:
9c:86:81:ae:00:af:8f:56:c6:ad:e5:8e:fd:e9:50:
8e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:12:7C:68:84:B5:F5:7F:A9:F5:79:33:49:74:E2:47:7B:68:95:02
X509v3 Authority Key Identifier:
keyid:4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:8a:19:e2:3d:22:5b:1d:b6:ad:d4:7f:dd:33:63:75:f2:0c:
e1:2a:f0:96:db:4e:7d:b7:60:05:5d:bd:2c:ec:e9:18:9f:d0:
45:f8:53:2c:32:2a:af:8e:85:23:50:ea:f5:27:66:fb:91:7e:
9b:06:3f:65:8c:98:37:ba:0b:b3:a4:f2:b8:82:b1:2b:a7:ec:
93:28:91:a3:26:3e:48:09:6c:9b:8b:8e:06:d9:9d:a5:12:35:
d5:7e:77:6a:75:b1:ea:63:3e:b8:53:0e:59:21:09:fd:fa:c2:
85:48:1e:8d:6a:89:a2:bb:d5:82:1f:59:aa:97:9d:07:00:fe:
e2:01:18:d1:de:d3:ab:ca:15:5f:a0:6f:68:2c:42:19:01:74:
6b:df:e0:a0:4b:b2:8a:93:d3:69:d4:c8:ef:cf:2b:b9:5d:5d:
10:cc:ff:d5:d3:56:59:c6:17:68:eb:df:d1:91:ed:18:bc:82:
fe:c0:be:78:b8:a7:75:6d:f2:f8:cd:96:0a:94:5b:ec:be:ea:
46:e5:12:df:f7:cb:f4:33:87:fa:e5:f6:52:25:02:f9:3e:3b:
27:e3:78:c9:dd:3f:06:1e:4b:38:60:72:f4:ca:f1:e7:47:5a:
02:b1:b1:d1:ce:6d:84:7b:2c:7c:a1:07:7e:a8:ca:c7:16:e1:
75:45:31:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8hoEHo9Cj+6k2K39p0UpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiMTc3YzQ1MGQyMDM1MDY3YmFhMjY5MjBiOGE0YmQzNmM3
YjMzMTQwHhcNMjYwMzI2MDcwMDQ4WhcNMjYwMzI3MDcwMDQ4WjAzMTEwLwYDVQQD
Eyg4YzEyN2M2ODg0YjVmNTdmYTlmNTc5MzM0OTc0ZTI0NzdiNjg5NTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuY2ZOkQo0EraHB2Q5+DGT2joL/8J
jYGwrjyhXGkIxIY7dJdcO8kXaC9rj8d01XvNgLOHJBLT9dPjrK0tiGZ61Aw0uDUX
06DRDLe/b2ZbQBSKuOlZerTW+HKlEXT06vIqL+mDugV0FAZqDyWfDAUsOT5XU8sS
RJ5ptTqqijx2Bf+NMqrUcru8+OKLzwON/GePw66LjPVenqX8Ts9KDF2JMKWtLm6V
S6FH8+TLdOr+5je8zVb8w4PPRc2vvaZ2En5jEqclSw9vyGT5ka8a8zJ0XEGHcmR4
pDf7L4ApIUOJz6EimqjHGT+JVfxmPResfzOchoGuAK+PVsat5Y796VCOYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIwSfGiEtfV/qfV5M0l04kd7aJUCMB8GA1UdIwQY
MBaAFEsXfEUNIDUGe6omkguKS9NsezMUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS81YTZhYWQtYTRjNy00M2I5LThhOWUt
OGQ3YjczNmE2OTVjLzEvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS81YTZhYWQtYTRjNy00M2I5LThhOWUtOGQ3YjczNmE2OTVj
LzEvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMYoZ4j0i
Wx22rdR/3TNjdfIM4SrwlttOfbdgBV29LOzpGJ/QRfhTLDIqr46FI1Dq9Sdm+5F+
mwY/ZYyYN7oLs6TyuIKxK6fskyiRoyY+SAlsm4uOBtmdpRI11X53anWx6mM+uFMO
WSEJ/frChUgejWqJorvVgh9ZqpedBwD+4gEY0d7Tq8oVX6BvaCxCGQF0a9/goEuy
ipPTadTI788ruV1dEMz/1dNWWcYXaOvf0ZHtGLyC/sC+eLindW3y+M2WCpRb7L7q
RuUS3/fL9DOH+uX2UiUC+T47J+N4yd0/Bh5LOGBy9Mrx50daArGx0c5thHssfKEH
fqjKxxbhdUUxLg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 12:57:39 2026 by rpki-client