Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
File: 0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft (raw, json)
Hash identifier: DdRQXuNGdtt86Huv/LAdZVTFp2II2x0kDvmcD2dqn6Y=
Subject key identifier: D3:42:63:FB:D5:1A:64:66:5D:92:C9:8B:D9:5D:35:34:76:D7:F6:09
Authority key identifier: D1:3B:BC:92:A2:FA:90:A0:A1:12:2B:83:30:34:6F:9A:61:71:D9:76
Certificate issuer: /CN=d13bbc92a2fa90a0a1122b8330346f9a6171d976
Certificate serial: 019D25BA300A6EB0DCDEA8B578CEE8386A96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
Manifest number: 1385
Signing time: Wed 25 Mar 2026 16:00:52 +0000
Manifest this update: Wed 25 Mar 2026 16:00:52 +0000
Manifest next update: Thu 26 Mar 2026 16:00:52 +0000
Files and hashes: 1: 0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl (hash: 0kPCB472OoPUBs1R6ObB7cf3sZVVWC4x8GPDJyRU3AA=)
2: 1pCvkt2PpE0ZPUQ0xcRpclm4Vx4.asa (hash: DhYV1vMdkhq6+tjylyKNPB9YXFnru1L+V/7iVRsUG3M=)
3: 2xGqMqbFa646EMEXsukXriphVW8.roa (hash: odEL2M6BYLsF4njGikEkDGjtP1dJDgPaubWbiCHPAAg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:30:0a:6e:b0:dc:de:a8:b5:78:ce:e8:38:6a:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d13bbc92a2fa90a0a1122b8330346f9a6171d976
Validity
Not Before: Mar 25 16:00:52 2026 GMT
Not After : Mar 26 16:00:52 2026 GMT
Subject: CN=d34263fbd51a64665d92c98bd95d353476d7f609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:6a:82:3a:ab:c7:c9:8a:ab:dd:50:e1:d9:6d:
96:75:bd:91:e8:f5:bb:fb:ed:d7:28:9b:23:0d:9d:
45:c1:14:90:57:c9:f6:1e:23:45:f7:35:b4:09:92:
c0:8d:e5:85:91:38:a0:fe:a4:3f:86:6f:3f:8a:33:
88:3f:af:6a:a7:73:25:73:50:8d:17:c6:79:49:45:
0d:af:38:9b:a5:97:42:28:23:4e:35:f3:2b:ad:76:
6e:b7:c0:93:32:05:9d:a8:df:ba:1b:f4:a4:82:13:
34:a0:80:dc:b4:00:2e:57:dd:a1:d6:74:c6:a1:2b:
a5:bd:22:78:82:55:a3:09:36:bc:a2:14:0d:91:73:
ae:1a:d7:9f:30:30:b2:8a:9f:95:1d:41:31:3c:06:
8c:2d:f0:7e:54:f6:c9:7a:8b:4b:35:24:57:02:b0:
56:6a:f8:0a:4a:c9:f2:7a:be:06:f3:ab:f7:c7:86:
55:73:0b:89:4d:a1:64:bb:99:38:65:4e:ec:ca:a3:
b1:63:5e:8c:58:7f:89:27:eb:42:f9:8a:68:89:df:
71:dc:9b:9a:1e:88:e2:e6:95:55:c0:34:48:46:87:
1e:3b:fd:61:8d:c6:4e:20:f2:e0:1a:b1:fc:23:87:
6d:5a:7f:86:dd:6d:fd:a3:ef:72:65:39:ed:c4:97:
c2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:42:63:FB:D5:1A:64:66:5D:92:C9:8B:D9:5D:35:34:76:D7:F6:09
X509v3 Authority Key Identifier:
keyid:D1:3B:BC:92:A2:FA:90:A0:A1:12:2B:83:30:34:6F:9A:61:71:D9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:72:f5:4c:90:d1:dc:26:1a:bc:d7:5b:86:35:a2:d7:4d:ff:
d5:eb:c5:c2:a4:8a:7c:3b:c8:02:cc:19:ea:bc:32:05:66:6b:
60:e8:3f:da:ba:29:5d:af:3b:68:75:b3:76:73:67:61:d1:51:
44:0f:9b:9f:ac:ec:59:e1:5f:03:2d:ff:f8:72:bf:cc:fd:c1:
ea:ad:55:49:15:25:f8:af:fc:97:f1:9a:75:4b:ad:bf:bc:a4:
6b:bc:79:cf:78:6e:fa:0a:5b:58:f8:d9:b5:1c:f3:41:58:82:
56:26:08:9a:cb:54:73:f3:3a:f3:24:19:34:dd:c2:1a:ca:cb:
d7:a7:b8:03:f9:ef:5c:d7:10:83:ca:b8:83:3f:58:0f:60:ad:
16:34:c8:19:59:8a:af:b4:72:b5:a4:2f:3a:cc:78:4b:83:ae:
5a:12:4b:4e:fd:f6:59:81:41:6b:c6:32:23:4c:f5:fb:11:ca:
86:f0:13:74:16:c9:4c:ce:a4:35:c0:6d:20:69:38:d8:7e:9b:
77:07:ff:7a:bc:86:ce:3a:bf:09:51:ae:ef:12:a9:bc:ae:f8:
d8:88:be:1e:50:16:66:d6:60:32:3a:ac:2a:65:de:22:a1:54:
dc:95:cb:31:66:6e:fd:ee:12:29:65:40:6e:02:2c:3b:99:42:
47:3a:5e:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0lujAKbrDc3qi1eM7oOGqWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxM2JiYzkyYTJmYTkwYTBhMTEyMmI4MzMwMzQ2ZjlhNjE3
MWQ5NzYwHhcNMjYwMzI1MTYwMDUyWhcNMjYwMzI2MTYwMDUyWjAzMTEwLwYDVQQD
EyhkMzQyNjNmYmQ1MWE2NDY2NWQ5MmM5OGJkOTVkMzUzNDc2ZDdmNjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3mqCOqvHyYqr3VDh2W2Wdb2R6PW7
++3XKJsjDZ1FwRSQV8n2HiNF9zW0CZLAjeWFkTig/qQ/hm8/ijOIP69qp3Mlc1CN
F8Z5SUUNrzibpZdCKCNONfMrrXZut8CTMgWdqN+6G/SkghM0oIDctAAuV92h1nTG
oSulvSJ4glWjCTa8ohQNkXOuGtefMDCyip+VHUExPAaMLfB+VPbJeotLNSRXArBW
avgKSsnyer4G86v3x4ZVcwuJTaFku5k4ZU7syqOxY16MWH+JJ+tC+Ypoid9x3Jua
Hoji5pVVwDRIRoceO/1hjcZOIPLgGrH8I4dtWn+G3W39o+9yZTntxJfC7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNNCY/vVGmRmXZLJi9ldNTR21/YJMB8GA1UdIwQY
MBaAFNE7vJKi+pCgoRIrgzA0b5phcdl2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFR1OGtxTDZrS0NoRWl1RE1EUnZtbUZ4MlhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8yNTY2YzItYmU1Mi00YjQyLWE4NGMt
Y2MzMzg0YWQ4MWExLzEvMFR1OGtxTDZrS0NoRWl1RE1EUnZtbUZ4MlhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi8yNTY2YzItYmU1Mi00YjQyLWE4NGMtY2MzMzg0YWQ4MWEx
LzEvMFR1OGtxTDZrS0NoRWl1RE1EUnZtbUZ4MlhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa3L1TJDR
3CYavNdbhjWi103/1evFwqSKfDvIAswZ6rwyBWZrYOg/2ropXa87aHWzdnNnYdFR
RA+bn6zsWeFfAy3/+HK/zP3B6q1VSRUl+K/8l/GadUutv7yka7x5z3hu+gpbWPjZ
tRzzQViCViYImstUc/M68yQZNN3CGsrL16e4A/nvXNcQg8q4gz9YD2CtFjTIGVmK
r7RytaQvOsx4S4OuWhJLTv32WYFBa8YyI0z1+xHKhvATdBbJTM6kNcBtIGk42H6b
dwf/eryGzjq/CVGu7xKpvK742Ii+HlAWZtZgMjqsKmXeIqFU3JXLMWZu/e4SKWVA
bgIsO5lCRzpesw==
-----END CERTIFICATE-----
Generated at Wed Mar 25 21:25:48 2026 by rpki-client