Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/be04e8-e6ab-4b50-ba50-930790e61933/1/RmBLR38rZwno7JqWJ6Zixne619Y.mft
File: RmBLR38rZwno7JqWJ6Zixne619Y.mft (raw, json)
Hash identifier: RJYcRSNqn2oSoU4rJdAg2Gt9RYxUS7dRfQSbflON0fo=
Subject key identifier: 3F:A0:1E:44:EA:43:17:2A:07:30:28:9A:0F:28:6D:74:3F:61:C0:1D
Authority key identifier: 46:60:4B:47:7F:2B:67:09:E8:EC:9A:96:27:A6:62:C6:77:BA:D7:D6
Certificate issuer: /CN=46604b477f2b6709e8ec9a9627a662c677bad7d6
Certificate serial: 019D3452015E58802A9B77232B93132FAF6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RmBLR38rZwno7JqWJ6Zixne619Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/be04e8-e6ab-4b50-ba50-930790e61933/1/RmBLR38rZwno7JqWJ6Zixne619Y.mft
Manifest number: 012C
Signing time: Sat 28 Mar 2026 12:01:22 +0000
Manifest this update: Sat 28 Mar 2026 12:01:22 +0000
Manifest next update: Sun 29 Mar 2026 12:01:22 +0000
Files and hashes: 1: RmBLR38rZwno7JqWJ6Zixne619Y.crl (hash: iR1Wixmrav7W06GNLqZt8VueGUvKQRv77LIcOl/M0Ow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/be04e8-e6ab-4b50-ba50-930790e61933/1/RmBLR38rZwno7JqWJ6Zixne619Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/be04e8-e6ab-4b50-ba50-930790e61933/1/RmBLR38rZwno7JqWJ6Zixne619Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/RmBLR38rZwno7JqWJ6Zixne619Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:52:01:5e:58:80:2a:9b:77:23:2b:93:13:2f:af:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46604b477f2b6709e8ec9a9627a662c677bad7d6
Validity
Not Before: Mar 28 12:01:22 2026 GMT
Not After : Mar 29 12:01:22 2026 GMT
Subject: CN=3fa01e44ea43172a0730289a0f286d743f61c01d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:13:c3:9d:39:a9:81:4d:1d:5f:36:77:66:36:
e2:af:06:ff:87:ce:50:59:09:9e:71:8f:5b:b1:0f:
71:41:a7:1b:26:8b:22:99:7a:48:a0:f4:8e:9a:34:
74:47:d2:60:36:f6:cb:7e:65:4a:02:82:2b:3a:86:
9b:b7:f1:b0:db:fb:7c:f5:6e:ab:a8:49:f3:0a:51:
0c:0f:8a:ab:d9:ae:be:00:55:ce:91:21:99:e0:22:
38:a8:44:22:72:2d:ef:26:df:e1:db:51:a4:2b:59:
25:ec:03:d8:43:f7:7c:e2:4e:14:e3:19:51:47:3c:
85:9b:15:a5:67:a3:23:93:34:2c:10:23:d2:43:a0:
29:f7:6f:ca:5f:25:85:28:c1:25:c2:5b:cd:33:9f:
96:90:f6:5d:cb:75:27:5f:a2:4c:0e:c9:92:38:14:
19:db:32:89:0e:60:51:1b:e1:e9:96:8c:58:a6:df:
45:62:83:17:e3:a6:a1:55:3c:d2:81:80:4e:55:a1:
60:ee:5c:92:83:05:0e:6b:41:c1:91:e4:a2:2c:b2:
45:f3:e0:13:53:0f:39:d0:1b:b9:86:8e:bc:1c:53:
da:c7:c7:7a:21:89:ab:77:48:32:a0:7b:a2:ab:b9:
97:f5:70:f9:47:52:16:9c:cd:e8:aa:12:0c:10:0e:
61:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:A0:1E:44:EA:43:17:2A:07:30:28:9A:0F:28:6D:74:3F:61:C0:1D
X509v3 Authority Key Identifier:
keyid:46:60:4B:47:7F:2B:67:09:E8:EC:9A:96:27:A6:62:C6:77:BA:D7:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RmBLR38rZwno7JqWJ6Zixne619Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/be04e8-e6ab-4b50-ba50-930790e61933/1/RmBLR38rZwno7JqWJ6Zixne619Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/be04e8-e6ab-4b50-ba50-930790e61933/1/RmBLR38rZwno7JqWJ6Zixne619Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:a2:c5:0c:d5:0c:c4:4b:48:ac:3c:d8:fb:b8:85:ec:fb:df:
86:d6:67:1a:b4:4a:11:22:71:28:9f:11:cb:30:ff:46:a2:46:
22:08:84:a6:f4:2e:16:48:96:c5:e4:02:6d:8d:70:3d:37:c3:
7a:ca:df:0f:49:6f:87:a8:07:c1:ca:e7:33:a9:c8:09:38:f4:
a2:cc:6b:0c:a9:ad:e8:7f:0e:fe:c6:78:17:cf:c4:0a:0b:dc:
ea:2c:6e:12:3b:37:00:a4:31:93:40:c5:25:5a:5a:9c:35:ca:
5e:93:b7:b4:49:b1:65:cd:30:d9:38:b6:f6:70:27:43:0c:ab:
7a:34:d1:0c:48:84:0e:73:91:8b:47:9b:87:47:b5:e6:7c:25:
c1:fd:7d:17:4d:7c:38:98:e4:05:6a:54:47:10:14:3e:16:26:
aa:43:b1:61:99:bc:c5:10:ad:f1:98:6f:cb:3c:40:cc:c4:fb:
8e:61:e6:91:25:e6:77:c9:86:10:2a:05:2b:4b:54:1a:76:04:
01:9b:e0:a5:0e:5b:da:ba:6d:9d:88:3c:28:09:f2:43:8f:ab:
e0:f1:fb:96:da:ef:96:86:55:8d:ad:f1:33:d6:65:f0:53:8f:
f5:4c:5d:3e:97:63:08:14:5b:aa:ce:83:0f:1c:2e:92:09:d7:
94:76:25:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ00UgFeWIAqm3cjK5MTL69uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2NjA0YjQ3N2YyYjY3MDllOGVjOWE5NjI3YTY2MmM2Nzdi
YWQ3ZDYwHhcNMjYwMzI4MTIwMTIyWhcNMjYwMzI5MTIwMTIyWjAzMTEwLwYDVQQD
EygzZmEwMWU0NGVhNDMxNzJhMDczMDI4OWEwZjI4NmQ3NDNmNjFjMDFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhPDnTmpgU0dXzZ3Zjbirwb/h85Q
WQmecY9bsQ9xQacbJosimXpIoPSOmjR0R9JgNvbLfmVKAoIrOoabt/Gw2/t89W6r
qEnzClEMD4qr2a6+AFXOkSGZ4CI4qEQici3vJt/h21GkK1kl7APYQ/d84k4U4xlR
RzyFmxWlZ6MjkzQsECPSQ6Ap92/KXyWFKMElwlvNM5+WkPZdy3UnX6JMDsmSOBQZ
2zKJDmBRG+HploxYpt9FYoMX46ahVTzSgYBOVaFg7lySgwUOa0HBkeSiLLJF8+AT
Uw850Bu5ho68HFPax8d6IYmrd0gyoHuiq7mX9XD5R1IWnM3oqhIMEA5hIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD+gHkTqQxcqBzAomg8obXQ/YcAdMB8GA1UdIwQY
MBaAFEZgS0d/K2cJ6OyaliemYsZ3utfWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUm1CTFIzOHJad25vN0pxV0o2Wml4bmU2MTlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9iZTA0ZTgtZTZhYi00YjUwLWJhNTAt
OTMwNzkwZTYxOTMzLzEvUm1CTFIzOHJad25vN0pxV0o2Wml4bmU2MTlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9iZTA0ZTgtZTZhYi00YjUwLWJhNTAtOTMwNzkwZTYxOTMz
LzEvUm1CTFIzOHJad25vN0pxV0o2Wml4bmU2MTlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQaLFDNUM
xEtIrDzY+7iF7PvfhtZnGrRKESJxKJ8RyzD/RqJGIgiEpvQuFkiWxeQCbY1wPTfD
esrfD0lvh6gHwcrnM6nICTj0osxrDKmt6H8O/sZ4F8/ECgvc6ixuEjs3AKQxk0DF
JVpanDXKXpO3tEmxZc0w2Ti29nAnQwyrejTRDEiEDnORi0ebh0e15nwlwf19F018
OJjkBWpURxAUPhYmqkOxYZm8xRCt8ZhvyzxAzMT7jmHmkSXmd8mGECoFK0tUGnYE
AZvgpQ5b2rptnYg8KAnyQ4+r4PH7ltrvloZVja3xM9Zl8FOP9UxdPpdjCBRbqs6D
DxwukgnXlHYlSA==
-----END CERTIFICATE-----
Generated at Sat Mar 28 15:55:13 2026 by rpki-client