Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
File: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft (raw, json)
Hash identifier: UlEuIkRDMh4ZxJEcpd62M7y7WG1zbz2jeDa8SA0olU4=
Subject key identifier: 60:21:ED:00:EC:C4:CC:DC:D8:B0:43:31:89:B1:A6:1F:FA:12:EF:F6
Authority key identifier: D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
Certificate issuer: /CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Certificate serial: 019D2703C574F0481FC7A5FB4273940742AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
Manifest number: 0DCE
Signing time: Wed 25 Mar 2026 22:00:51 +0000
Manifest this update: Wed 25 Mar 2026 22:00:51 +0000
Manifest next update: Thu 26 Mar 2026 22:00:51 +0000
Files and hashes: 1: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl (hash: Yw0HYXOJ26CgIkosK07tzh3q8zo1e9T837ch3tsB4Wg=)
2: ehFRVj_TXPwQ0rPF1XZNBg0Qd-I.roa (hash: rTBvSqvCO1yVewsD3TnK3oF62RT8jXzzKUsjw4v3zO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:c5:74:f0:48:1f:c7:a5:fb:42:73:94:07:42:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Validity
Not Before: Mar 25 22:00:51 2026 GMT
Not After : Mar 26 22:00:51 2026 GMT
Subject: CN=6021ed00ecc4ccdcd8b0433189b1a61ffa12eff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1e:5f:99:b8:ed:2d:e4:a2:bd:7e:bb:df:b3:
75:63:b5:d4:22:f5:91:24:0a:1f:14:cc:20:27:a4:
42:ca:4b:c8:56:0b:37:3a:78:18:a7:6a:1c:89:3e:
f6:6f:04:3c:43:f1:42:81:a3:7c:5a:4d:32:5f:a0:
c5:8d:c3:94:e7:8d:49:cb:46:5e:75:96:f9:19:b6:
46:c1:98:44:d6:8a:e6:ea:2a:24:6a:60:72:e8:da:
7c:85:26:e4:59:e1:16:d1:8c:dd:5e:60:69:51:2e:
81:f8:8c:23:53:c7:7f:b4:3d:ee:05:1a:e0:52:ba:
73:23:21:16:aa:04:98:2e:e7:3b:46:98:0b:19:cc:
dc:2d:bf:f4:aa:1f:2f:9b:37:cd:d0:44:f3:f3:5d:
38:9e:75:b3:b5:21:e2:43:67:53:21:14:c7:41:78:
ec:d1:94:de:84:49:f9:65:d7:32:54:47:f9:04:33:
01:a8:8c:0b:a4:f7:48:17:ee:8f:cf:22:f8:f9:5b:
e0:69:87:a6:95:c9:5d:dd:5d:65:3f:88:bd:ce:dd:
ce:ef:f7:82:46:26:0b:d7:a0:a5:cb:6d:fc:ef:a5:
38:29:48:ee:27:dd:d7:b5:80:2e:c0:3c:84:c1:5d:
d2:25:7f:8a:41:a0:8b:85:f2:60:da:85:a0:1d:26:
24:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:21:ED:00:EC:C4:CC:DC:D8:B0:43:31:89:B1:A6:1F:FA:12:EF:F6
X509v3 Authority Key Identifier:
keyid:D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:65:da:32:6e:c5:00:c6:2f:d6:ee:4a:91:aa:e3:f3:bb:2c:
0b:77:bf:41:72:3d:21:20:c1:8e:5f:d0:de:a5:47:24:f8:af:
83:60:c0:a4:d5:d2:7e:84:f2:6a:a6:00:4d:3d:1f:03:48:56:
3e:98:76:07:5a:6c:58:41:19:bf:67:74:58:3d:bc:ff:d5:49:
39:7d:c6:bb:fb:3f:7f:ba:04:1a:68:e9:e5:4d:2f:12:73:9e:
b6:2e:6e:79:b0:ee:5a:16:95:e3:6d:15:f6:78:17:17:26:34:
0a:52:c5:ad:5a:81:85:8f:46:b9:88:51:c6:6b:0f:61:e7:a0:
18:89:9f:a4:87:08:85:02:2c:fb:d5:af:2a:c4:32:83:94:fe:
87:30:93:6c:aa:b4:b4:85:55:d5:26:c3:77:bc:78:a3:3d:09:
41:ce:ae:0a:3e:e1:09:8b:15:cf:02:72:82:e2:e4:71:a2:fb:
19:30:66:5c:c1:8e:d0:b3:31:57:ba:e7:58:95:ec:15:20:40:
7c:fc:ed:c4:b8:4b:33:f0:b5:8c:b9:43:73:f7:cf:3c:ba:69:
1b:0d:8f:73:d7:37:6e:cd:e8:56:f9:81:37:ef:f5:90:9c:8f:
c4:12:d2:d6:3d:be:9c:3e:4e:34:f1:52:83:56:eb:6a:d4:95:
d5:4b:d2:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nA8V08Egfx6X7QnOUB0KqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0YzBkNjk0ZDU5ZDdkMzZiYTQyMWEzMDUwZjRlYzdkZDM3
ODFlZmQwHhcNMjYwMzI1MjIwMDUxWhcNMjYwMzI2MjIwMDUxWjAzMTEwLwYDVQQD
Eyg2MDIxZWQwMGVjYzRjY2RjZDhiMDQzMzE4OWIxYTYxZmZhMTJlZmY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApR5fmbjtLeSivX6737N1Y7XUIvWR
JAofFMwgJ6RCykvIVgs3OngYp2ociT72bwQ8Q/FCgaN8Wk0yX6DFjcOU541Jy0Ze
dZb5GbZGwZhE1orm6iokamBy6Np8hSbkWeEW0YzdXmBpUS6B+IwjU8d/tD3uBRrg
UrpzIyEWqgSYLuc7RpgLGczcLb/0qh8vmzfN0ETz8104nnWztSHiQ2dTIRTHQXjs
0ZTehEn5ZdcyVEf5BDMBqIwLpPdIF+6PzyL4+VvgaYemlcld3V1lP4i9zt3O7/eC
RiYL16Cly23876U4KUjuJ93XtYAuwDyEwV3SJX+KQaCLhfJg2oWgHSYkCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGAh7QDsxMzc2LBDMYmxph/6Eu/2MB8GA1UdIwQY
MBaAFNTA1pTVnX02ukIaMFD07H3TeB79MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMU1EV2xOV2RmVGE2UWhvd1VQVHNmZE40SHYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS80MWNjY2UtYWNkOC00ZmI4LWIxNDgt
YTc5NTEwZTYxM2U4LzEvMU1EV2xOV2RmVGE2UWhvd1VQVHNmZE40SHYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS80MWNjY2UtYWNkOC00ZmI4LWIxNDgtYTc5NTEwZTYxM2U4
LzEvMU1EV2xOV2RmVGE2UWhvd1VQVHNmZE40SHYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUGXaMm7F
AMYv1u5Kkarj87ssC3e/QXI9ISDBjl/Q3qVHJPivg2DApNXSfoTyaqYATT0fA0hW
Pph2B1psWEEZv2d0WD28/9VJOX3Gu/s/f7oEGmjp5U0vEnOeti5uebDuWhaV420V
9ngXFyY0ClLFrVqBhY9GuYhRxmsPYeegGImfpIcIhQIs+9WvKsQyg5T+hzCTbKq0
tIVV1SbDd7x4oz0JQc6uCj7hCYsVzwJyguLkcaL7GTBmXMGO0LMxV7rnWJXsFSBA
fPztxLhLM/C1jLlDc/fPPLppGw2Pc9c3bs3oVvmBN+/1kJyPxBLS1j2+nD5ONPFS
g1bratSV1UvSsg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 06:45:51 2026 by rpki-client