Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
File: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft (raw, json)
Hash identifier: jutnE1rPeNKbboUZzbkNpU8rOjVuTBLNN2YSpq/sU4Y=
Subject key identifier: 5E:F7:CB:92:B3:F9:A8:C8:5D:C1:10:B9:C0:09:C7:E4:90:E6:30:D3
Authority key identifier: FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
Certificate issuer: /CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Certificate serial: 019D99D0DF2AC08C1E5B2C48CBF50DF0A5DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
Manifest number: 1035
Signing time: Fri 17 Apr 2026 05:01:35 +0000
Manifest this update: Fri 17 Apr 2026 05:01:35 +0000
Manifest next update: Sat 18 Apr 2026 05:01:35 +0000
Files and hashes: 1: GY4EnPb_q6Zazu0CJu5dhVQR9FU.roa (hash: cIwRyJ89jjJ0ifkb1iiXIh0uKnfN3IaxGiXjhh7yXZA=)
2: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl (hash: x+DUQHFnNROVdpQzSlVZ7bhT+Ddz5+7S0P9qeCR7EQQ=)
3: pa8B-FlOx--Ut2_es5oAJhA0FCA.roa (hash: ajOY0LcVIPOyQGKjIC9aKFEQAKswVywtezhougW9o5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:df:2a:c0:8c:1e:5b:2c:48:cb:f5:0d:f0:a5:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Validity
Not Before: Apr 17 05:01:35 2026 GMT
Not After : Apr 18 05:01:35 2026 GMT
Subject: CN=5ef7cb92b3f9a8c85dc110b9c009c7e490e630d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:48:7e:d1:a4:9b:a7:90:4f:f2:d3:58:59:7e:
c3:74:fa:ad:11:7f:fa:03:3a:79:cb:90:ac:28:49:
9d:10:04:97:12:98:67:19:43:ae:c8:7b:af:a0:7e:
7c:93:82:d2:82:cc:29:1f:fc:89:f4:17:60:f9:d1:
dc:13:70:6a:31:95:f0:2e:fc:49:18:32:54:8d:44:
82:55:74:77:0a:ff:1d:57:71:13:6a:38:14:e2:ac:
7a:3a:05:8f:55:ae:ea:a2:ca:05:5d:60:61:80:b0:
51:11:9c:7d:a8:7b:d2:0c:3d:43:c4:20:6c:21:18:
8f:58:97:dd:6f:fc:d9:ae:dc:da:62:c3:a7:be:a8:
e1:d0:14:1c:0e:66:84:39:b2:4a:c8:34:21:f0:75:
f0:d7:14:e1:92:b0:92:8f:5b:d1:74:53:80:97:41:
f3:ce:d7:65:4c:e5:fd:99:3c:cc:eb:c2:c3:bd:06:
e3:c9:79:eb:9c:43:9c:bc:ad:bf:a1:45:2e:19:c0:
51:8f:bc:39:e6:f0:94:8a:ba:c7:bf:8e:44:c6:b8:
ce:e7:79:f8:56:1e:7b:d2:7e:8e:ff:a0:3c:73:fd:
10:bf:4b:89:49:a4:b6:27:8f:06:42:da:85:50:4d:
65:5a:99:4a:68:21:5a:79:1d:c1:29:a1:94:28:17:
0d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F7:CB:92:B3:F9:A8:C8:5D:C1:10:B9:C0:09:C7:E4:90:E6:30:D3
X509v3 Authority Key Identifier:
keyid:FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:35:c7:a6:c6:46:8f:4d:78:99:1a:fd:2c:7c:51:9c:2d:9f:
62:c0:ed:2e:f4:29:02:6e:37:bc:ad:87:85:ec:1b:a8:99:70:
b8:ac:52:24:5b:eb:2e:7d:80:51:92:f2:19:ee:24:16:f6:63:
61:c1:34:fb:88:25:7c:19:50:47:34:8b:0d:e5:34:f4:8c:b6:
c5:db:d6:ed:5e:06:96:3e:8a:94:74:a5:20:4f:5f:74:63:cf:
f8:cd:92:82:ef:d3:c6:4f:05:4a:43:0f:a7:cd:9e:f9:3b:d0:
7d:5b:fe:a5:b7:cc:03:d8:45:a8:1c:fd:31:09:b4:10:6c:e3:
5b:7b:bb:1b:05:53:58:4e:7b:ef:88:45:5e:3d:1d:0c:c0:ae:
2d:b3:a8:dd:40:71:df:f1:6a:55:29:98:36:ea:91:31:52:6a:
65:ea:d5:38:b1:76:8a:b6:0b:47:c5:be:87:a7:dd:d4:72:ab:
b5:26:d7:86:45:ba:97:a0:98:bb:44:04:54:c6:12:27:8e:9c:
ab:48:5f:35:56:37:77:2f:92:f9:c6:21:ac:8c:98:7c:e5:21:
94:61:4c:7e:81:c6:40:56:d9:ce:8f:d5:1d:b3:bf:b8:15:13:
67:f4:96:3f:84:26:59:4f:0a:58:eb:06:e1:71:d6:4b:5f:0e:
66:12:38:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Z0N8qwIweWyxIy/UN8KXcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkMzg1YTYxNjM5OGU0MTZjNzBkY2IzMjI1NjZmOTNlM2Qy
ZmJmMTMwHhcNMjYwNDE3MDUwMTM1WhcNMjYwNDE4MDUwMTM1WjAzMTEwLwYDVQQD
Eyg1ZWY3Y2I5MmIzZjlhOGM4NWRjMTEwYjljMDA5YzdlNDkwZTYzMGQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEh+0aSbp5BP8tNYWX7DdPqtEX/6
Azp5y5CsKEmdEASXEphnGUOuyHuvoH58k4LSgswpH/yJ9Bdg+dHcE3BqMZXwLvxJ
GDJUjUSCVXR3Cv8dV3ETajgU4qx6OgWPVa7qosoFXWBhgLBREZx9qHvSDD1DxCBs
IRiPWJfdb/zZrtzaYsOnvqjh0BQcDmaEObJKyDQh8HXw1xThkrCSj1vRdFOAl0Hz
ztdlTOX9mTzM68LDvQbjyXnrnEOcvK2/oUUuGcBRj7w55vCUirrHv45ExrjO53n4
Vh570n6O/6A8c/0Qv0uJSaS2J48GQtqFUE1lWplKaCFaeR3BKaGUKBcNvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF73y5Kz+ajIXcEQucAJx+SQ5jDTMB8GA1UdIwQY
MBaAFP04WmFjmOQWxw3LMiVm+T49L78TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8yNTdmZDctYTlmNy00Mjg0LWFjZjMt
MzQzMDRmNWNkYTk4LzEvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8yNTdmZDctYTlmNy00Mjg0LWFjZjMtMzQzMDRmNWNkYTk4
LzEvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJTXHpsZG
j014mRr9LHxRnC2fYsDtLvQpAm43vK2HhewbqJlwuKxSJFvrLn2AUZLyGe4kFvZj
YcE0+4glfBlQRzSLDeU09Iy2xdvW7V4Glj6KlHSlIE9fdGPP+M2Sgu/Txk8FSkMP
p82e+TvQfVv+pbfMA9hFqBz9MQm0EGzjW3u7GwVTWE5774hFXj0dDMCuLbOo3UBx
3/FqVSmYNuqRMVJqZerVOLF2irYLR8W+h6fd1HKrtSbXhkW6l6CYu0QEVMYSJ46c
q0hfNVY3dy+S+cYhrIyYfOUhlGFMfoHGQFbZzo/VHbO/uBUTZ/SWP4QmWU8KWOsG
4XHWS18OZhI4vg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 08:09:13 2026 by rpki-client