Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
File: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft (raw, json)
Hash identifier: vLu3uDq3ydA9IDZrik3UMEABzyKaqr41UkgOtG7S1Zc=
Subject key identifier: B6:FF:D4:B9:A9:3E:74:0B:29:70:48:9B:3A:10:36:18:40:B2:AB:AC
Authority key identifier: FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
Certificate issuer: /CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Certificate serial: 019CAC46E90CE34FA2935FBC858652A600D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
Manifest number: 0FBA
Signing time: Mon 02 Mar 2026 02:00:54 +0000
Manifest this update: Mon 02 Mar 2026 02:00:54 +0000
Manifest next update: Tue 03 Mar 2026 02:00:54 +0000
Files and hashes: 1: GY4EnPb_q6Zazu0CJu5dhVQR9FU.roa (hash: cIwRyJ89jjJ0ifkb1iiXIh0uKnfN3IaxGiXjhh7yXZA=)
2: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl (hash: Wc5e3lf6bpd/vuLYSZUPB0eQlMCyRAIfI9JZcQJ2NLs=)
3: pa8B-FlOx--Ut2_es5oAJhA0FCA.roa (hash: ajOY0LcVIPOyQGKjIC9aKFEQAKswVywtezhougW9o5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:e9:0c:e3:4f:a2:93:5f:bc:85:86:52:a6:00:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Validity
Not Before: Mar 2 02:00:54 2026 GMT
Not After : Mar 3 02:00:54 2026 GMT
Subject: CN=b6ffd4b9a93e740b2970489b3a10361840b2abac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:50:2b:6f:97:16:a2:00:6c:c1:df:38:06:38:
95:05:bc:ad:9e:c9:32:da:31:62:7a:b6:e9:f4:23:
c5:38:d9:06:89:c7:29:aa:74:53:b0:a8:a1:81:c8:
dc:ca:a1:e3:06:7c:8a:5c:7f:c0:b4:a5:b2:d1:3e:
60:7e:e6:1c:c2:cf:1c:10:7a:9e:24:3d:19:dd:b6:
92:18:c0:45:5e:be:d6:6a:48:65:84:b9:24:e2:11:
91:d8:4a:f6:90:02:66:44:e6:52:ee:f3:e7:aa:12:
3c:3c:20:c0:ca:86:4c:29:91:06:10:04:cd:87:86:
27:ed:c6:00:a3:7c:0a:98:8c:be:0d:d2:f5:9d:d2:
e5:b9:46:b5:fa:ef:34:b2:56:55:0c:26:6d:20:c0:
f8:76:05:c2:41:20:de:2a:85:d9:2f:81:84:5f:46:
c1:17:a0:40:4b:cb:97:eb:d3:84:1d:99:3d:80:da:
4b:7d:9f:11:e2:26:a7:fe:0e:dc:85:75:cd:d5:a4:
a8:74:8c:cc:18:ae:3f:65:75:14:22:50:0f:47:25:
7b:89:1f:7f:81:dc:82:21:b3:b3:3f:ab:ee:c1:18:
4d:1f:d2:27:8d:7e:24:54:87:9c:42:31:8b:ab:f8:
07:55:58:8d:ba:38:d8:44:69:f1:ab:63:43:1d:ee:
43:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:FF:D4:B9:A9:3E:74:0B:29:70:48:9B:3A:10:36:18:40:B2:AB:AC
X509v3 Authority Key Identifier:
keyid:FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:3e:b3:98:7f:ac:91:27:a2:7f:29:20:43:2a:81:a4:d6:ca:
4f:35:91:46:01:9f:b6:0f:59:d3:8f:d9:2e:21:3e:4b:53:fe:
e5:0c:83:39:c2:33:fe:52:5a:c2:0f:05:23:9b:9b:99:86:6e:
c9:ba:9b:84:93:4b:ae:39:a0:da:64:c8:66:57:20:57:66:48:
41:20:7b:1e:a8:50:3f:31:96:07:af:cd:c8:7f:db:33:5a:5b:
79:c6:26:2e:79:e8:be:54:9d:4a:42:d6:06:7d:42:38:de:54:
35:30:78:9e:aa:ce:c9:48:63:7e:50:91:69:46:98:e8:48:9c:
0a:98:89:75:1b:f8:95:2d:af:75:f9:8a:94:7d:25:f7:56:7c:
75:c4:ed:f7:10:b8:b4:3b:72:53:30:bb:cd:38:36:8a:92:72:
60:ac:ec:dc:0e:0d:92:69:97:6d:2a:7f:ea:e3:87:3a:a9:f1:
93:fe:77:ad:52:64:bf:22:f1:ae:9b:7c:1e:ef:3a:54:04:bd:
bc:29:e3:57:e6:05:de:db:76:ba:df:49:e6:a7:18:b5:25:7a:
c2:89:47:74:50:45:d2:80:6c:71:44:ed:ee:ff:a7:98:e5:79:
df:95:fe:43:e6:76:a0:6a:57:cd:37:bb:56:88:5f:ae:ee:84:
33:16:15:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysRukM40+ik1+8hYZSpgDXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkMzg1YTYxNjM5OGU0MTZjNzBkY2IzMjI1NjZmOTNlM2Qy
ZmJmMTMwHhcNMjYwMzAyMDIwMDU0WhcNMjYwMzAzMDIwMDU0WjAzMTEwLwYDVQQD
EyhiNmZmZDRiOWE5M2U3NDBiMjk3MDQ4OWIzYTEwMzYxODQwYjJhYmFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk1Arb5cWogBswd84BjiVBbytnsky
2jFierbp9CPFONkGiccpqnRTsKihgcjcyqHjBnyKXH/AtKWy0T5gfuYcws8cEHqe
JD0Z3baSGMBFXr7WakhlhLkk4hGR2Er2kAJmROZS7vPnqhI8PCDAyoZMKZEGEATN
h4Yn7cYAo3wKmIy+DdL1ndLluUa1+u80slZVDCZtIMD4dgXCQSDeKoXZL4GEX0bB
F6BAS8uX69OEHZk9gNpLfZ8R4ian/g7chXXN1aSodIzMGK4/ZXUUIlAPRyV7iR9/
gdyCIbOzP6vuwRhNH9InjX4kVIecQjGLq/gHVViNujjYRGnxq2NDHe5DFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLb/1LmpPnQLKXBImzoQNhhAsqusMB8GA1UdIwQY
MBaAFP04WmFjmOQWxw3LMiVm+T49L78TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8yNTdmZDctYTlmNy00Mjg0LWFjZjMt
MzQzMDRmNWNkYTk4LzEvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8yNTdmZDctYTlmNy00Mjg0LWFjZjMtMzQzMDRmNWNkYTk4
LzEvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARz6zmH+s
kSeifykgQyqBpNbKTzWRRgGftg9Z04/ZLiE+S1P+5QyDOcIz/lJawg8FI5ubmYZu
ybqbhJNLrjmg2mTIZlcgV2ZIQSB7HqhQPzGWB6/NyH/bM1pbecYmLnnovlSdSkLW
Bn1CON5UNTB4nqrOyUhjflCRaUaY6EicCpiJdRv4lS2vdfmKlH0l91Z8dcTt9xC4
tDtyUzC7zTg2ipJyYKzs3A4NkmmXbSp/6uOHOqnxk/53rVJkvyLxrpt8Hu86VAS9
vCnjV+YF3tt2ut9J5qcYtSV6wolHdFBF0oBscUTt7v+nmOV535X+Q+Z2oGpXzTe7
Vohfru6EMxYVQg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:06:09 2026 by rpki-client