Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
File: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft (raw, json)
Hash identifier: oYMv3gzRo/jE6q41qr4AmWabA46PmiOC5tlmuzMYgrw=
Subject key identifier: 99:2B:65:AB:40:2C:65:66:4F:00:C9:CB:72:BF:28:76:48:CF:24:68
Authority key identifier: B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9
Certificate issuer: /CN=b393df877bf2f0cf01a9718973eaeee87b0697d9
Certificate serial: 019DA4543FD96235B4BD96CCC4F9CB3BD10C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
Manifest number: 12A6
Signing time: Sun 19 Apr 2026 06:01:17 +0000
Manifest this update: Sun 19 Apr 2026 06:01:17 +0000
Manifest next update: Mon 20 Apr 2026 06:01:17 +0000
Files and hashes: 1: 2zW08BKeRm7D1IDPo_HIO01939Y.roa (hash: 47sX7u1KvuJt0tJls26PNQunkQblcdvkWNhCFldDuVU=)
2: FiLe_I9IP6W7MphiOr_CiL0bjSs.roa (hash: q1TJFvUMkjNyX0aSOs41/td1gkb7//YLN5yBHlFxZC4=)
3: JIIXr3X9vCQszAbNslU1l97JDHE.roa (hash: 1cSDQwO2+YC255/v6AV3wkUxgfk6+iiyEcMIh68CJvY=)
4: LFK2KZYQdm49lMZGq09_QCx1zKM.roa (hash: nYysAfjey6lKN0HP83k5T3J+7jNUAsnWPGq1zi3IPys=)
5: Txc0Y3w5O2MeuabOsp_i0fCstJU.roa (hash: XbbTV+bUv06PJ/qu0aw1RaX6Asirn+MLh6nL3Y4mz7s=)
6: ZQoXdMphcAyX_vSWGtLFp2lvoas.roa (hash: iFh6LchnjC6OiPt1RjLveej4KNPbVSeFQ+5l4ZDpv0s=)
7: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl (hash: QcGaaMOCOz5YGa9dUQRuaOHQ7xhPROTw6StIuuzuuX8=)
8: wDNBjtjhirmC6HysMhN91EuISE4.roa (hash: VJdL+BcRDNdb1Ls5gcb7MknnthUWMMrUmAyuqY4kqkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:54:3f:d9:62:35:b4:bd:96:cc:c4:f9:cb:3b:d1:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b393df877bf2f0cf01a9718973eaeee87b0697d9
Validity
Not Before: Apr 19 06:01:17 2026 GMT
Not After : Apr 20 06:01:17 2026 GMT
Subject: CN=992b65ab402c65664f00c9cb72bf287648cf2468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8d:ac:7e:24:f8:68:6a:49:8a:46:29:89:2f:
9f:49:cc:09:93:8f:03:04:cb:8d:b9:f5:8c:f9:5f:
f7:46:f0:65:db:31:43:87:06:3b:7c:00:b7:02:5a:
6d:5e:23:58:db:5a:50:fc:31:1b:53:36:16:64:e9:
e2:62:3b:fa:41:17:4e:ce:d0:cd:10:b8:60:1c:af:
54:5a:fd:1f:a6:81:2f:e0:67:1c:a5:3f:81:12:fe:
bd:a1:41:1d:d6:76:93:4d:49:93:e4:8d:f1:7e:8f:
88:3c:78:73:98:04:7e:9f:bb:b0:69:d3:4d:e4:54:
37:11:c8:85:37:34:d3:f7:9f:77:25:65:65:00:5f:
c9:cd:e6:26:39:77:fe:f3:dd:42:ce:44:32:db:51:
2e:51:36:4f:d6:b5:bd:d8:bf:b8:a2:26:eb:7e:c4:
aa:d9:18:f6:f0:fb:7b:ba:a5:04:b5:d0:68:45:18:
87:11:ed:25:47:b2:dc:b9:23:cf:02:5a:5b:79:5a:
87:55:70:6a:7a:64:d1:72:9a:f7:9e:37:a9:1a:17:
93:7b:13:5c:63:f9:42:4b:64:97:88:0d:a8:5e:2e:
9d:da:01:04:96:44:94:b9:79:0e:29:91:a4:af:82:
77:90:ee:8f:73:09:b3:db:c9:3d:57:cf:4f:67:ed:
b1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:2B:65:AB:40:2C:65:66:4F:00:C9:CB:72:BF:28:76:48:CF:24:68
X509v3 Authority Key Identifier:
keyid:B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:5e:27:2d:e4:98:20:d3:93:a3:89:f3:d5:d6:4d:0d:37:5f:
e3:4f:b8:e7:39:b5:bf:74:95:8b:5b:5b:1c:97:fe:1c:24:cc:
69:fc:b1:c6:ad:ab:da:19:e5:0e:cf:c6:82:95:64:a9:a2:94:
27:df:6c:53:d1:f1:03:f2:7e:fa:b6:f8:b8:21:e6:2e:b2:d0:
b0:9b:f8:35:e0:a2:51:8a:01:1c:ed:49:07:3e:6f:85:2b:df:
06:7c:5c:99:cf:48:69:b3:5c:f8:d3:8c:2a:ae:f2:d1:6d:d5:
97:82:5c:c8:da:3f:b0:ec:4e:8e:08:d3:e0:a6:ff:50:72:2f:
f5:3a:d2:fb:c2:1c:db:bf:e7:9a:65:06:6a:28:48:17:57:05:
b0:61:78:4c:7d:e9:2a:de:02:f4:9a:40:95:dd:a7:41:88:5e:
04:62:19:82:af:62:7e:65:cc:5a:57:2b:bb:82:a4:57:55:2d:
37:46:23:8c:ec:3b:d1:89:1f:5c:54:4f:3a:f8:d5:bd:17:05:
f9:39:04:b0:ee:d0:57:b3:86:f9:d8:cf:4a:99:64:69:e8:38:
db:14:db:91:5c:69:24:59:e6:6b:1b:31:13:e1:8d:da:7b:9d:
cc:18:a2:08:0c:a5:9b:8a:aa:26:14:88:9f:d6:26:38:a1:d3:
d1:22:2d:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:54:21 2026 by rpki-client