Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
File: D8lnTtVfCnZcpdocb6-k3SXioXg.mft (raw, json)
Hash identifier: b9MGtXX0oBQJeFCgDJkCNatYWMid9xlMTSOhHjDAo2Y=
Subject key identifier: E8:75:0B:58:5F:25:04:B2:4A:E9:40:10:07:25:5C:E7:01:45:E6:35
Authority key identifier: 0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
Certificate issuer: /CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Certificate serial: 019D27A8A2F5EC17BA800BC0CB3E4A0EE426
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
Manifest number: 096B
Signing time: Thu 26 Mar 2026 01:00:56 +0000
Manifest this update: Thu 26 Mar 2026 01:00:56 +0000
Manifest next update: Fri 27 Mar 2026 01:00:56 +0000
Files and hashes: 1: D8lnTtVfCnZcpdocb6-k3SXioXg.crl (hash: 9j+moRU2X7bLt+HAUV+DRw/naUz3TXB7bfQjxtlYql0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:a2:f5:ec:17:ba:80:0b:c0:cb:3e:4a:0e:e4:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Validity
Not Before: Mar 26 01:00:56 2026 GMT
Not After : Mar 27 01:00:56 2026 GMT
Subject: CN=e8750b585f2504b24ae9401007255ce70145e635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0c:ea:20:88:41:9f:2d:d2:0e:fa:5f:ba:89:
28:1a:a1:d3:65:2b:e1:61:e9:2e:13:ba:e3:46:52:
57:81:b1:e9:42:14:32:81:5d:04:d3:dc:fa:87:dc:
b9:84:cf:ff:8d:f4:ea:0f:77:6d:37:f6:2a:44:41:
cb:59:b2:9a:88:a3:9e:44:b5:5c:54:41:05:28:d6:
0e:fd:b4:01:15:17:0f:5a:52:9c:f3:d1:64:ff:80:
19:ec:19:b1:e3:81:9d:b6:1c:f1:38:3b:09:40:3d:
9b:82:2f:ee:e4:3d:c2:32:d1:8c:ef:cd:42:df:a9:
91:cd:08:9e:a8:d4:8a:67:33:be:99:7e:a6:60:49:
ce:75:6f:94:54:77:94:b7:69:01:d8:a0:a2:d9:1a:
be:26:b6:a5:ad:bb:26:5a:22:b6:4a:40:f2:b3:c9:
fb:58:59:bf:87:38:6f:a8:5a:19:47:0a:a7:06:27:
28:83:3d:99:cc:26:96:2d:63:4d:43:a4:fd:e8:42:
a9:25:ed:cb:9f:22:bc:c7:67:15:a2:d1:82:12:ce:
d9:b5:95:79:2e:90:cf:69:46:4d:9f:6b:bc:7c:e0:
6c:08:69:4b:99:42:69:f6:3d:2d:68:d4:21:3b:43:
85:ec:99:ab:94:5b:ee:f5:6c:ef:b2:e8:03:9a:91:
34:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:75:0B:58:5F:25:04:B2:4A:E9:40:10:07:25:5C:E7:01:45:E6:35
X509v3 Authority Key Identifier:
keyid:0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:16:f9:6b:42:69:56:5a:50:af:76:10:7f:9d:2f:ae:4f:47:
da:03:9b:e3:e2:57:4b:05:fa:5f:f4:57:e2:04:5f:a5:e2:b2:
6c:33:dc:3e:96:ba:19:48:79:8f:3d:f2:92:e0:26:bd:05:51:
da:4f:d7:35:34:98:2d:13:f9:81:24:c1:fe:14:01:3c:c6:96:
64:65:7d:ef:20:6d:71:1f:20:50:91:10:fc:d6:14:41:97:8a:
bb:02:9c:20:7e:90:53:ba:70:7a:f3:fd:24:c6:63:d3:49:74:
3d:5b:02:95:9a:8f:eb:ba:0d:24:b9:9e:b4:c2:31:7b:65:29:
cc:ad:2b:b8:aa:7d:49:d8:eb:2c:09:57:35:47:1e:40:be:bc:
d3:20:e3:bd:5f:a4:e5:75:a5:60:6d:1a:81:77:ab:71:a2:9e:
62:9f:7e:4c:b0:6e:b5:fe:b2:c1:31:fb:42:b7:35:cb:8c:25:
0f:a8:b7:c3:51:5b:40:cb:fe:8f:1b:b0:6b:30:a4:51:4c:7d:
3c:aa:c8:81:d6:4b:c7:73:2e:ef:f5:ed:42:c3:c6:da:c8:38:
ef:c1:4d:86:ef:87:4b:bb:c1:0b:ef:0e:5c:26:57:e6:2b:0e:
16:2c:c9:9a:18:c8:06:de:35:77:c1:5a:23:be:d8:f7:4e:9f:
81:6a:c9:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nqKL17Be6gAvAyz5KDuQmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmYzk2NzRlZDU1ZjBhNzY1Y2E1ZGExYzZmYWZhNGRkMjVl
MmExNzgwHhcNMjYwMzI2MDEwMDU2WhcNMjYwMzI3MDEwMDU2WjAzMTEwLwYDVQQD
EyhlODc1MGI1ODVmMjUwNGIyNGFlOTQwMTAwNzI1NWNlNzAxNDVlNjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwzqIIhBny3SDvpfuokoGqHTZSvh
YekuE7rjRlJXgbHpQhQygV0E09z6h9y5hM//jfTqD3dtN/YqREHLWbKaiKOeRLVc
VEEFKNYO/bQBFRcPWlKc89Fk/4AZ7Bmx44GdthzxODsJQD2bgi/u5D3CMtGM781C
36mRzQieqNSKZzO+mX6mYEnOdW+UVHeUt2kB2KCi2Rq+JralrbsmWiK2SkDys8n7
WFm/hzhvqFoZRwqnBicogz2ZzCaWLWNNQ6T96EKpJe3LnyK8x2cVotGCEs7ZtZV5
LpDPaUZNn2u8fOBsCGlLmUJp9j0taNQhO0OF7JmrlFvu9WzvsugDmpE0FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOh1C1hfJQSySulAEAclXOcBReY1MB8GA1UdIwQY
MBaAFA/JZ07VXwp2XKXaHG+vpN0l4qF4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDhsblR0VmZDblpjcGRvY2I2LWszU1hpb1hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC84YWIyYTMtMDg4ZS00ZTBjLWJlOWEt
NGE5NDZjNTJmYmMyLzEvRDhsblR0VmZDblpjcGRvY2I2LWszU1hpb1hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC84YWIyYTMtMDg4ZS00ZTBjLWJlOWEtNGE5NDZjNTJmYmMy
LzEvRDhsblR0VmZDblpjcGRvY2I2LWszU1hpb1hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwRb5a0Jp
VlpQr3YQf50vrk9H2gOb4+JXSwX6X/RX4gRfpeKybDPcPpa6GUh5jz3ykuAmvQVR
2k/XNTSYLRP5gSTB/hQBPMaWZGV97yBtcR8gUJEQ/NYUQZeKuwKcIH6QU7pwevP9
JMZj00l0PVsClZqP67oNJLmetMIxe2UpzK0ruKp9SdjrLAlXNUceQL680yDjvV+k
5XWlYG0agXercaKeYp9+TLButf6ywTH7Qrc1y4wlD6i3w1FbQMv+jxuwazCkUUx9
PKrIgdZLx3Mu7/XtQsPG2sg478FNhu+HS7vBC+8OXCZX5isOFizJmhjIBt41d8Fa
I77Y906fgWrJiQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 04:58:52 2026 by rpki-client