Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.mft
File: d8Bx2YnlMJrDyzwLCNOsslIRErY.mft (raw, json)
Hash identifier: Fwonnib2PrGk3xtWeNOuQQRINU4g+bqHhPGEIH6dUK0=
Subject key identifier: 28:0F:17:A8:07:0B:C3:C4:0E:87:CD:74:08:E7:EE:F6:FA:8B:5E:68
Authority key identifier: 77:C0:71:D9:89:E5:30:9A:C3:CB:3C:0B:08:D3:AC:B2:52:11:12:B6
Certificate issuer: /CN=77c071d989e5309ac3cb3c0b08d3acb2521112b6
Certificate serial: 019D2627FFFE151FF05A2BD502770FD804BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8Bx2YnlMJrDyzwLCNOsslIRErY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.mft
Manifest number: 14AD
Signing time: Wed 25 Mar 2026 18:00:48 +0000
Manifest this update: Wed 25 Mar 2026 18:00:48 +0000
Manifest next update: Thu 26 Mar 2026 18:00:48 +0000
Files and hashes: 1: 80Z8m6Z7JZuDHgqlRYLsoylq5hc.roa (hash: inbOmLYfTUWv8xqKpQqk0iSMIhKJkA0PbwgWW07QMo4=)
2: d8Bx2YnlMJrDyzwLCNOsslIRErY.crl (hash: U+I9JpZTsNQSTAOQQ9qAAU7fwXuL54Nb18M8P+HMjzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d8Bx2YnlMJrDyzwLCNOsslIRErY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 18:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:27:ff:fe:15:1f:f0:5a:2b:d5:02:77:0f:d8:04:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c071d989e5309ac3cb3c0b08d3acb2521112b6
Validity
Not Before: Mar 25 18:00:48 2026 GMT
Not After : Mar 26 18:00:48 2026 GMT
Subject: CN=280f17a8070bc3c40e87cd7408e7eef6fa8b5e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:dd:87:50:91:f4:b1:64:fd:93:5d:7b:e5:64:
68:a8:d7:4b:fb:47:52:01:b4:04:ef:d2:85:86:9e:
ff:72:a3:d7:31:db:b4:c3:d5:74:bf:97:7f:5d:41:
1e:2b:99:5b:c5:fd:4a:cf:b9:cc:ff:8f:2f:4a:17:
31:b2:73:8c:e7:07:eb:18:ab:89:84:5f:46:ba:3c:
f9:9b:1b:56:4c:f1:b8:05:6d:99:2e:c0:41:65:92:
46:18:be:d5:d3:79:75:88:06:3a:b0:ec:68:ca:f6:
8a:10:e4:cd:52:b0:c4:ae:ff:11:d4:d5:0d:6e:d9:
a9:7c:ed:47:b2:85:7a:58:41:da:fa:6e:ec:ca:28:
0c:04:a2:f4:f5:72:81:1f:bb:5e:ef:95:87:89:a1:
84:40:48:47:e8:48:82:c9:9a:51:ad:81:02:04:04:
1a:f1:3d:45:07:45:08:08:91:34:53:4d:fb:90:80:
b2:27:d1:ec:20:da:d4:09:d3:ea:ba:af:7a:60:22:
b2:b2:40:b2:be:86:5a:88:cd:ed:e3:ce:dd:bf:d4:
2f:66:45:ed:5f:69:36:a6:07:bd:66:5a:14:d8:87:
f3:e5:b1:f4:7a:0f:97:da:9f:e4:b8:68:8b:54:50:
98:ee:15:08:52:1c:f3:50:e7:b5:8f:fa:c5:69:07:
51:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0F:17:A8:07:0B:C3:C4:0E:87:CD:74:08:E7:EE:F6:FA:8B:5E:68
X509v3 Authority Key Identifier:
keyid:77:C0:71:D9:89:E5:30:9A:C3:CB:3C:0B:08:D3:AC:B2:52:11:12:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8Bx2YnlMJrDyzwLCNOsslIRErY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:31:51:01:a1:a1:4c:32:63:f4:a3:7f:df:b2:f9:7d:8a:21:
29:b6:89:b5:77:a3:22:8f:17:22:bc:f1:c9:6c:af:3f:fe:77:
9d:c6:e7:7d:0d:f2:59:40:d5:ce:60:0f:53:51:e9:c4:d0:12:
f3:4c:b3:c5:11:f7:12:8a:42:37:99:f0:ff:88:f2:ce:0b:97:
41:2c:21:86:9d:4f:d3:42:f2:8b:da:1c:71:b2:67:b7:e6:bd:
db:7a:70:5d:ef:21:e1:f9:f9:94:cc:5a:05:e2:d1:27:32:12:
06:3f:6a:a6:90:7f:9a:8d:2f:d8:c3:55:2b:0a:c5:55:be:1a:
0f:33:1e:ba:da:d7:ba:10:84:ab:5c:c8:15:8e:97:04:b9:aa:
06:7a:b7:f2:9f:fc:9e:1c:62:35:05:87:26:c6:f8:75:53:a2:
22:32:c0:e6:19:bb:be:db:2c:03:23:ee:21:8e:33:69:76:d3:
46:f2:d1:d4:ca:f5:6b:cc:ac:17:04:91:63:3b:58:85:93:07:
7c:12:3e:82:cf:12:49:1c:56:ff:9f:d3:fb:57:a8:d0:f1:39:
ea:62:39:bd:69:52:a7:ab:77:27:7a:e8:29:5d:cb:58:82:91:
80:54:ab:21:0d:fc:2f:3a:15:5d:d4:ae:1d:23:6e:ad:58:82:
97:a8:95:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mJ//+FR/wWivVAncP2AS/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3YzA3MWQ5ODllNTMwOWFjM2NiM2MwYjA4ZDNhY2IyNTIx
MTEyYjYwHhcNMjYwMzI1MTgwMDQ4WhcNMjYwMzI2MTgwMDQ4WjAzMTEwLwYDVQQD
EygyODBmMTdhODA3MGJjM2M0MGU4N2NkNzQwOGU3ZWVmNmZhOGI1ZTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0d2HUJH0sWT9k1175WRoqNdL+0dS
AbQE79KFhp7/cqPXMdu0w9V0v5d/XUEeK5lbxf1Kz7nM/48vShcxsnOM5wfrGKuJ
hF9Gujz5mxtWTPG4BW2ZLsBBZZJGGL7V03l1iAY6sOxoyvaKEOTNUrDErv8R1NUN
btmpfO1HsoV6WEHa+m7syigMBKL09XKBH7te75WHiaGEQEhH6EiCyZpRrYECBAQa
8T1FB0UICJE0U037kICyJ9HsINrUCdPquq96YCKyskCyvoZaiM3t487dv9QvZkXt
X2k2pge9ZloU2Ifz5bH0eg+X2p/kuGiLVFCY7hUIUhzzUOe1j/rFaQdRyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCgPF6gHC8PEDofNdAjn7vb6i15oMB8GA1UdIwQY
MBaAFHfAcdmJ5TCaw8s8CwjTrLJSERK2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDhCeDJZbmxNSnJEeXp3TENOT3NzbElSRXJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi84NDRiZmUtZWMxOC00MTdlLThmNWEt
NWNjNGRlZDlhN2QyLzEvZDhCeDJZbmxNSnJEeXp3TENOT3NzbElSRXJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi84NDRiZmUtZWMxOC00MTdlLThmNWEtNWNjNGRlZDlhN2Qy
LzEvZDhCeDJZbmxNSnJEeXp3TENOT3NzbElSRXJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgDFRAaGh
TDJj9KN/37L5fYohKbaJtXejIo8XIrzxyWyvP/53ncbnfQ3yWUDVzmAPU1HpxNAS
80yzxRH3EopCN5nw/4jyzguXQSwhhp1P00Lyi9occbJnt+a923pwXe8h4fn5lMxa
BeLRJzISBj9qppB/mo0v2MNVKwrFVb4aDzMeutrXuhCEq1zIFY6XBLmqBnq38p/8
nhxiNQWHJsb4dVOiIjLA5hm7vtssAyPuIY4zaXbTRvLR1Mr1a8ysFwSRYztYhZMH
fBI+gs8SSRxW/5/T+1eo0PE56mI5vWlSp6t3J3roKV3LWIKRgFSrIQ38LzoVXdSu
HSNurViCl6iVfw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 04:57:57 2026 by rpki-client