Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
File: rnLkfVZpJJmnJr-ADqg4A2Letr4.mft (raw, json)
Hash identifier: wVWkrcnV0UKMU3rll/yfSH4ApSA9okk0BvzBtoNT7Ww=
Subject key identifier: 52:7B:A8:EB:FE:21:CB:4D:BA:1C:ED:AD:F5:A8:2C:98:76:05:61:8C
Authority key identifier: AE:72:E4:7D:56:69:24:99:A7:26:BF:80:0E:A8:38:03:62:DE:B6:BE
Certificate issuer: /CN=ae72e47d56692499a726bf800ea8380362deb6be
Certificate serial: 019D2884729B5581697F31CB8FC35FBFD0B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
Manifest number: 1897
Signing time: Thu 26 Mar 2026 05:01:01 +0000
Manifest this update: Thu 26 Mar 2026 05:01:01 +0000
Manifest next update: Fri 27 Mar 2026 05:01:01 +0000
Files and hashes: 1: 0tjlFCD9R3QvhuaUb8R98x3yaAA.roa (hash: QW/Cv+tz1AwpdParcrVZ17Ri4asuS8geM/KpLVI71iU=)
2: RYe-A-tcBgsvnTviE-ENg27AeMY.roa (hash: BIG9Ev2/ZDOm8EsC2U3aW/Qd5R8vFaAuiSgknEWjyDA=)
3: rnLkfVZpJJmnJr-ADqg4A2Letr4.crl (hash: ekWecjqNpvyKSYkvJujT/19dKDyw3mMuU91202zs3L0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:72:9b:55:81:69:7f:31:cb:8f:c3:5f:bf:d0:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae72e47d56692499a726bf800ea8380362deb6be
Validity
Not Before: Mar 26 05:01:01 2026 GMT
Not After : Mar 27 05:01:01 2026 GMT
Subject: CN=527ba8ebfe21cb4dba1cedadf5a82c987605618c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ab:9f:13:a1:e2:5a:3c:17:0e:ea:a6:e4:88:
bd:ba:da:1c:f4:c0:24:a5:00:b6:96:ea:b6:b6:d8:
76:65:0b:aa:d1:26:29:88:cf:0f:ed:69:e8:a6:67:
90:67:8e:ab:fd:0e:51:aa:da:38:16:a9:ca:7c:1a:
1d:3f:12:09:91:eb:18:01:b1:1e:62:7e:a2:1a:2c:
18:cc:03:d6:92:7d:2f:cd:cc:62:54:8b:aa:55:81:
2f:48:10:6b:d7:f2:8c:b6:33:98:f3:32:7f:7a:39:
e7:28:1c:26:16:98:60:ec:29:30:80:ea:34:3c:96:
37:82:57:95:fb:3e:b4:9f:39:19:4c:c5:f1:c1:2c:
26:c5:a6:b7:4c:aa:5d:eb:46:3b:0a:d7:9d:3c:04:
d2:97:3d:b8:2a:5c:77:fb:a8:4a:1f:ec:28:13:1b:
a6:37:8e:d4:60:30:22:a4:26:10:5b:1b:22:2b:a9:
26:3c:66:3d:ab:f8:f6:2b:eb:e6:4c:34:29:c8:97:
c6:4f:84:38:70:fb:f2:8b:45:08:3b:c2:79:a4:08:
75:d4:62:61:8b:a5:34:39:62:3d:8a:6b:80:6a:ed:
00:66:d2:20:39:b1:bf:b6:45:7f:50:47:a9:77:cd:
9e:bf:ee:8a:e1:85:26:b6:c4:83:f9:88:d0:41:6f:
8c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7B:A8:EB:FE:21:CB:4D:BA:1C:ED:AD:F5:A8:2C:98:76:05:61:8C
X509v3 Authority Key Identifier:
keyid:AE:72:E4:7D:56:69:24:99:A7:26:BF:80:0E:A8:38:03:62:DE:B6:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:1c:4c:40:6a:9f:03:61:5c:53:42:01:fe:ab:4c:41:1f:90:
64:83:64:44:10:77:05:f7:7d:40:ec:55:e0:8b:b1:51:10:89:
9a:4f:1f:56:4a:5b:9b:08:32:c4:6a:87:1b:66:1f:a7:d9:74:
54:b6:e7:d0:49:38:7e:e4:8c:d3:aa:85:e0:31:ca:be:b3:24:
37:6d:58:df:26:d0:ed:29:e8:5d:21:20:09:21:6f:80:b2:63:
e6:9b:a1:9e:8d:85:6a:67:4b:6e:5c:10:e6:62:a6:93:ac:f2:
86:20:3f:9b:9e:80:e6:3e:1a:1d:49:3e:7c:28:8e:50:75:b4:
f9:d5:51:6c:a0:42:15:c8:e2:31:b6:7c:1c:c6:72:0d:03:2a:
5f:22:d3:31:cc:57:3f:4f:0d:b0:81:29:e0:70:a6:6f:c6:18:
76:d6:bf:91:ad:e0:ce:bd:b7:df:eb:d7:e9:18:47:62:5f:4b:
af:38:de:4a:8f:23:87:7f:76:b5:e5:7f:f6:5b:81:78:7e:a1:
6e:2b:4c:73:b4:7d:7c:dd:48:f4:cc:f4:cb:0c:6d:08:1d:24:
c9:e9:05:0d:63:24:88:65:e1:b6:a2:cd:e8:b2:73:8d:d9:58:
62:eb:be:80:7d:01:f5:82:c8:fb:26:08:32:f7:24:50:c3:00:
0e:35:46:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ohHKbVYFpfzHLj8Nfv9C4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlNzJlNDdkNTY2OTI0OTlhNzI2YmY4MDBlYTgzODAzNjJk
ZWI2YmUwHhcNMjYwMzI2MDUwMTAxWhcNMjYwMzI3MDUwMTAxWjAzMTEwLwYDVQQD
Eyg1MjdiYThlYmZlMjFjYjRkYmExY2VkYWRmNWE4MmM5ODc2MDU2MThjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6ufE6HiWjwXDuqm5Ii9utoc9MAk
pQC2luq2tth2ZQuq0SYpiM8P7WnopmeQZ46r/Q5Rqto4FqnKfBodPxIJkesYAbEe
Yn6iGiwYzAPWkn0vzcxiVIuqVYEvSBBr1/KMtjOY8zJ/ejnnKBwmFphg7CkwgOo0
PJY3gleV+z60nzkZTMXxwSwmxaa3TKpd60Y7CtedPATSlz24Klx3+6hKH+woExum
N47UYDAipCYQWxsiK6kmPGY9q/j2K+vmTDQpyJfGT4Q4cPvyi0UIO8J5pAh11GJh
i6U0OWI9imuAau0AZtIgObG/tkV/UEepd82ev+6K4YUmtsSD+YjQQW+MCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFJ7qOv+IctNuhztrfWoLJh2BWGMMB8GA1UdIwQY
MBaAFK5y5H1WaSSZpya/gA6oOANi3ra+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm5Ma2ZWWnBKSm1uSnItQURxZzRBMkxldHI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS82YmI0NzEtNGEzZS00ODhkLWI4OGMt
ZmUxMmM3NWJmNGFiLzEvcm5Ma2ZWWnBKSm1uSnItQURxZzRBMkxldHI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS82YmI0NzEtNGEzZS00ODhkLWI4OGMtZmUxMmM3NWJmNGFi
LzEvcm5Ma2ZWWnBKSm1uSnItQURxZzRBMkxldHI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaBxMQGqf
A2FcU0IB/qtMQR+QZINkRBB3Bfd9QOxV4IuxURCJmk8fVkpbmwgyxGqHG2Yfp9l0
VLbn0Ek4fuSM06qF4DHKvrMkN21Y3ybQ7SnoXSEgCSFvgLJj5puhno2FamdLblwQ
5mKmk6zyhiA/m56A5j4aHUk+fCiOUHW0+dVRbKBCFcjiMbZ8HMZyDQMqXyLTMcxX
P08NsIEp4HCmb8YYdta/ka3gzr233+vX6RhHYl9LrzjeSo8jh392teV/9luBeH6h
bitMc7R9fN1I9Mz0ywxtCB0kyekFDWMkiGXhtqLN6LJzjdlYYuu+gH0B9YLI+yYI
MvckUMMADjVGWw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:52:14 2026 by rpki-client