Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.mft
File: R2Bl1x8emPmnynjmFOz19G1aZDw.mft (raw, json)
Hash identifier: h+Rk0RiFtYydKO1KTW426CrA0jpb9lrDbNgAwthDmVM=
Subject key identifier: 3F:58:19:A4:B8:E0:37:8A:F1:D9:75:FB:40:4B:6E:5C:1A:DA:F4:8F
Authority key identifier: 47:60:65:D7:1F:1E:98:F9:A7:CA:78:E6:14:EC:F5:F4:6D:5A:64:3C
Certificate issuer: /CN=476065d71f1e98f9a7ca78e614ecf5f46d5a643c
Certificate serial: 019D29CE82C9820EAE1A94A06F2D91563B54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R2Bl1x8emPmnynjmFOz19G1aZDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.mft
Manifest number: 0326
Signing time: Thu 26 Mar 2026 11:01:32 +0000
Manifest this update: Thu 26 Mar 2026 11:01:32 +0000
Manifest next update: Fri 27 Mar 2026 11:01:32 +0000
Files and hashes: 1: 3faqLvWKyRbHeIrogN3_fV0BvCI.roa (hash: UQfJ7cK1wnMDVZHxIQBIYMz3jz7zOHrQbZVbdTLcoWw=)
2: R2Bl1x8emPmnynjmFOz19G1aZDw.crl (hash: BZQ8B4pnXW2WqDtEzP7qW8PTlrXP6JtCM4xmkudrK5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/R2Bl1x8emPmnynjmFOz19G1aZDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:82:c9:82:0e:ae:1a:94:a0:6f:2d:91:56:3b:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=476065d71f1e98f9a7ca78e614ecf5f46d5a643c
Validity
Not Before: Mar 26 11:01:32 2026 GMT
Not After : Mar 27 11:01:32 2026 GMT
Subject: CN=3f5819a4b8e0378af1d975fb404b6e5c1adaf48f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4b:e2:63:e7:5b:42:d0:1b:5f:54:3b:38:ba:
9a:b4:8c:20:dc:16:2d:4d:d8:30:52:08:07:21:0f:
a7:9f:a1:39:96:b4:62:5a:72:2a:41:f0:80:74:78:
39:bb:5f:67:2f:02:f6:64:5f:02:14:51:65:fb:d2:
9b:df:75:0c:d7:37:4d:fc:2d:cd:b9:dc:dc:33:61:
dd:2e:ed:cc:ae:12:6c:f0:e9:39:af:3f:42:6f:e3:
24:e2:8f:75:19:6a:45:86:9b:d9:9b:ab:3b:6f:67:
49:cc:7d:f7:da:9d:fd:00:f3:19:86:0b:2a:cf:f4:
6f:a5:23:3b:9b:dc:f2:9c:dd:81:2e:64:a2:87:a1:
bd:a0:0b:f0:8a:d9:fd:71:0c:3e:b9:e8:18:b7:b9:
bf:04:ee:e7:81:13:ae:a8:fe:0d:aa:23:fa:20:69:
72:51:4d:8c:5e:f0:f2:4a:cd:57:4f:a1:ff:48:44:
9a:2a:96:af:1d:bd:3f:5e:9a:e9:3d:fc:84:9b:74:
f1:e6:04:dc:90:64:78:39:96:d4:08:8c:9a:0e:66:
aa:f9:54:5c:f2:ae:d0:2b:fe:a8:88:9a:76:58:7c:
90:7b:fb:d5:0c:02:0a:bd:79:eb:c3:b1:5a:ec:93:
11:21:aa:b0:e3:be:29:37:1b:4d:7b:2c:5c:0a:7a:
8f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:58:19:A4:B8:E0:37:8A:F1:D9:75:FB:40:4B:6E:5C:1A:DA:F4:8F
X509v3 Authority Key Identifier:
keyid:47:60:65:D7:1F:1E:98:F9:A7:CA:78:E6:14:EC:F5:F4:6D:5A:64:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R2Bl1x8emPmnynjmFOz19G1aZDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/526f3e-8924-48bd-a772-b51953037993/1/R2Bl1x8emPmnynjmFOz19G1aZDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:b9:66:e2:99:74:93:e8:00:67:fa:72:c4:93:e7:cf:1f:d7:
fd:ff:5f:a1:91:3b:e8:02:a6:50:77:e4:2e:35:b2:3e:66:de:
fd:12:a3:be:ce:59:6e:a7:2b:28:9c:ee:50:73:aa:52:af:b4:
5f:99:b6:3c:eb:98:38:2f:9b:6d:6a:62:5c:52:a9:69:81:0d:
8f:da:37:68:ed:81:48:3c:d2:d3:e8:d6:8e:e5:7a:ba:ba:62:
95:3e:7a:97:36:06:8e:7c:21:1a:1e:6f:61:c6:43:b9:03:2d:
71:cd:7f:db:84:60:cc:bc:eb:cc:d6:75:7d:cb:81:39:ad:cc:
f3:5a:b0:55:4a:75:6a:f6:42:fc:ff:7c:0a:c5:9a:e2:4e:6b:
74:2b:8c:ef:09:ea:d7:f8:d6:64:e6:a9:b7:d9:44:7f:dc:90:
ed:e4:51:3e:e2:db:df:da:11:d5:87:d9:7f:0f:63:5f:2e:d5:
bf:6b:16:f9:bf:cb:9f:39:f5:e0:e4:8f:fc:e3:55:d7:dc:03:
be:c0:29:6c:78:d5:97:57:2b:35:4f:05:f4:31:0a:ea:86:d9:
f9:57:02:eb:ca:aa:c5:2d:b1:63:4b:ad:a0:20:62:ee:fd:f8:
5d:63:f4:84:76:7a:b3:b7:0b:4f:a3:a9:cb:ee:13:6c:8c:44:
83:48:10:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pzoLJgg6uGpSgby2RVjtUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3NjA2NWQ3MWYxZTk4ZjlhN2NhNzhlNjE0ZWNmNWY0NmQ1
YTY0M2MwHhcNMjYwMzI2MTEwMTMyWhcNMjYwMzI3MTEwMTMyWjAzMTEwLwYDVQQD
EygzZjU4MTlhNGI4ZTAzNzhhZjFkOTc1ZmI0MDRiNmU1YzFhZGFmNDhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUviY+dbQtAbX1Q7OLqatIwg3BYt
TdgwUggHIQ+nn6E5lrRiWnIqQfCAdHg5u19nLwL2ZF8CFFFl+9Kb33UM1zdN/C3N
udzcM2HdLu3MrhJs8Ok5rz9Cb+Mk4o91GWpFhpvZm6s7b2dJzH332p39APMZhgsq
z/RvpSM7m9zynN2BLmSih6G9oAvwitn9cQw+uegYt7m/BO7ngROuqP4NqiP6IGly
UU2MXvDySs1XT6H/SESaKpavHb0/XprpPfyEm3Tx5gTckGR4OZbUCIyaDmaq+VRc
8q7QK/6oiJp2WHyQe/vVDAIKvXnrw7Fa7JMRIaqw474pNxtNeyxcCnqPCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD9YGaS44DeK8dl1+0BLblwa2vSPMB8GA1UdIwQY
MBaAFEdgZdcfHpj5p8p45hTs9fRtWmQ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUjJCbDF4OGVtUG1ueW5qbUZPejE5RzFhWkR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS81MjZmM2UtODkyNC00OGJkLWE3NzIt
YjUxOTUzMDM3OTkzLzEvUjJCbDF4OGVtUG1ueW5qbUZPejE5RzFhWkR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS81MjZmM2UtODkyNC00OGJkLWE3NzItYjUxOTUzMDM3OTkz
LzEvUjJCbDF4OGVtUG1ueW5qbUZPejE5RzFhWkR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGblm4pl0
k+gAZ/pyxJPnzx/X/f9foZE76AKmUHfkLjWyPmbe/RKjvs5ZbqcrKJzuUHOqUq+0
X5m2POuYOC+bbWpiXFKpaYENj9o3aO2BSDzS0+jWjuV6urpilT56lzYGjnwhGh5v
YcZDuQMtcc1/24RgzLzrzNZ1fcuBOa3M81qwVUp1avZC/P98CsWa4k5rdCuM7wnq
1/jWZOapt9lEf9yQ7eRRPuLb39oR1YfZfw9jXy7Vv2sW+b/Lnzn14OSP/ONV19wD
vsApbHjVl1crNU8F9DEK6obZ+VcC68qqxS2xY0utoCBi7v34XWP0hHZ6s7cLT6Op
y+4TbIxEg0gQgQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 16:04:43 2026 by rpki-client