Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.mft
File: tOiC9xca9tzczJzXn5jexnV_4Yk.mft (raw, json)
Hash identifier: u9PwtybVYmb6A1eUN2ITqg/WThmWkC2kA8v0JS12/bk=
Subject key identifier: DE:1A:C0:33:C3:0B:02:04:8E:F5:4C:D8:AB:37:33:2F:6D:D8:03:96
Authority key identifier: B4:E8:82:F7:17:1A:F6:DC:DC:CC:9C:D7:9F:98:DE:C6:75:7F:E1:89
Certificate issuer: /CN=b4e882f7171af6dcdccc9cd79f98dec6757fe189
Certificate serial: 019CABD94B2A6A97BAAD0D4FD70D2C5BEBAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOiC9xca9tzczJzXn5jexnV_4Yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.mft
Manifest number: 1844
Signing time: Mon 02 Mar 2026 00:01:10 +0000
Manifest this update: Mon 02 Mar 2026 00:01:10 +0000
Manifest next update: Tue 03 Mar 2026 00:01:10 +0000
Files and hashes: 1: mRAbVrC4vL4GmozrjHi2i0Iaytw.roa (hash: vC24nQiiHK47q4YRBJHF/HkE+eYaEpAw6ZvG99eAnwU=)
2: tOiC9xca9tzczJzXn5jexnV_4Yk.crl (hash: VAMkbNSWvzYQw762S1wucYjaXN3/qb3el4lIV14cWOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tOiC9xca9tzczJzXn5jexnV_4Yk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:4b:2a:6a:97:ba:ad:0d:4f:d7:0d:2c:5b:eb:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e882f7171af6dcdccc9cd79f98dec6757fe189
Validity
Not Before: Mar 2 00:01:10 2026 GMT
Not After : Mar 3 00:01:10 2026 GMT
Subject: CN=de1ac033c30b02048ef54cd8ab37332f6dd80396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e9:37:b5:57:9f:a6:a7:94:c7:55:e6:6e:da:
f6:f7:11:38:be:fa:da:c3:52:f2:5f:e1:9a:dc:d1:
30:e7:1d:7c:db:82:09:e2:cf:fa:f6:66:22:1a:4a:
9a:e6:ca:46:c5:b0:ef:47:40:f4:34:2c:14:5e:56:
03:bb:b3:8c:ab:19:0f:cc:9d:a2:3e:69:df:9b:a5:
94:e6:1a:98:00:a6:3e:7d:64:dd:38:9e:e9:a4:27:
6c:e6:06:2b:c2:0c:47:67:23:7f:7e:f2:f2:6d:9a:
ff:b8:e8:5f:3e:ca:15:7f:7b:b1:96:48:8c:f1:66:
2e:47:1a:89:5f:84:5e:9c:da:b8:7b:83:7b:4c:6d:
15:81:5d:28:e3:7a:4c:dd:5c:e5:5d:07:ee:b5:1c:
6d:d5:39:87:91:d1:b4:58:97:c2:70:32:5e:2a:6f:
53:38:2d:75:49:9c:fc:17:11:27:2a:e8:fc:28:48:
ae:56:cf:2c:2a:76:d4:6a:57:67:0d:04:bf:12:17:
48:eb:d4:ad:6a:69:f8:8a:bc:4c:03:64:d5:d5:3d:
be:f3:e3:c4:58:e5:24:ea:77:54:35:3f:a2:0e:9c:
56:1d:64:1a:7c:9d:8e:5b:e3:62:e1:59:9f:f1:3a:
24:86:21:ed:92:40:8e:59:28:99:45:46:13:5c:5e:
d6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:1A:C0:33:C3:0B:02:04:8E:F5:4C:D8:AB:37:33:2F:6D:D8:03:96
X509v3 Authority Key Identifier:
keyid:B4:E8:82:F7:17:1A:F6:DC:DC:CC:9C:D7:9F:98:DE:C6:75:7F:E1:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOiC9xca9tzczJzXn5jexnV_4Yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:37:f8:72:63:a3:8c:a3:16:a5:ad:7a:84:cc:21:2c:fd:a5:
34:30:52:46:5e:de:64:79:e1:42:5f:8f:9e:ac:f9:4c:98:10:
a7:ce:96:62:9a:65:5b:1c:bc:5c:74:32:1d:29:f0:7f:c0:ee:
40:bf:a5:8b:e3:02:bd:ce:a0:f1:ad:45:b8:5f:c0:b2:27:ac:
0a:16:c1:8b:ce:8e:ae:b5:c0:b9:be:9c:4f:63:9e:04:19:99:
28:76:11:51:d1:d5:38:4d:aa:da:e0:51:ed:fa:43:32:82:eb:
e1:75:fc:69:fe:0e:f9:d1:88:2b:16:2d:cf:75:e3:55:42:a7:
bd:39:99:96:7d:11:27:04:c9:54:5c:2a:ef:fd:98:74:67:5f:
83:86:15:2d:48:ce:57:66:ef:f6:7d:63:55:13:19:b7:00:c1:
5f:98:a8:45:f7:00:d8:d7:61:14:79:d0:b5:1e:c2:02:3e:34:
2e:bc:fd:f6:88:ff:4d:a6:ab:61:d4:23:f1:a3:79:41:14:67:
08:7b:d1:61:65:48:e2:be:2a:d4:d8:e2:04:f3:f7:f8:93:a4:
ea:79:8f:56:4d:0b:12:ef:f7:2f:25:58:0c:57:92:a7:44:d3:
4b:8b:29:9a:3a:c2:0e:b2:a3:b5:02:3a:27:e8:4b:31:87:35:
bd:cd:48:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2Usqape6rQ1P1w0sW+uuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0ZTg4MmY3MTcxYWY2ZGNkY2NjOWNkNzlmOThkZWM2NzU3
ZmUxODkwHhcNMjYwMzAyMDAwMTEwWhcNMjYwMzAzMDAwMTEwWjAzMTEwLwYDVQQD
EyhkZTFhYzAzM2MzMGIwMjA0OGVmNTRjZDhhYjM3MzMyZjZkZDgwMzk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+k3tVefpqeUx1Xmbtr29xE4vvra
w1LyX+Ga3NEw5x1824IJ4s/69mYiGkqa5spGxbDvR0D0NCwUXlYDu7OMqxkPzJ2i
Pmnfm6WU5hqYAKY+fWTdOJ7ppCds5gYrwgxHZyN/fvLybZr/uOhfPsoVf3uxlkiM
8WYuRxqJX4RenNq4e4N7TG0VgV0o43pM3VzlXQfutRxt1TmHkdG0WJfCcDJeKm9T
OC11SZz8FxEnKuj8KEiuVs8sKnbUaldnDQS/EhdI69Stamn4irxMA2TV1T2+8+PE
WOUk6ndUNT+iDpxWHWQafJ2OW+Ni4Vmf8TokhiHtkkCOWSiZRUYTXF7WUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN4awDPDCwIEjvVM2Ks3My9t2AOWMB8GA1UdIwQY
MBaAFLTogvcXGvbc3Myc15+Y3sZ1f+GJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdE9pQzl4Y2E5dHpjekp6WG41amV4blZfNFlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My81ZjViYzgtZTVmMy00MjFkLTlmYTAt
ZmVmZThlMzQwMDZjLzEvdE9pQzl4Y2E5dHpjekp6WG41amV4blZfNFlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My81ZjViYzgtZTVmMy00MjFkLTlmYTAtZmVmZThlMzQwMDZj
LzEvdE9pQzl4Y2E5dHpjekp6WG41amV4blZfNFlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmjf4cmOj
jKMWpa16hMwhLP2lNDBSRl7eZHnhQl+Pnqz5TJgQp86WYpplWxy8XHQyHSnwf8Du
QL+li+MCvc6g8a1FuF/AsiesChbBi86OrrXAub6cT2OeBBmZKHYRUdHVOE2q2uBR
7fpDMoLr4XX8af4O+dGIKxYtz3XjVUKnvTmZln0RJwTJVFwq7/2YdGdfg4YVLUjO
V2bv9n1jVRMZtwDBX5ioRfcA2NdhFHnQtR7CAj40Lrz99oj/TaarYdQj8aN5QRRn
CHvRYWVI4r4q1NjiBPP3+JOk6nmPVk0LEu/3LyVYDFeSp0TTS4spmjrCDrKjtQI6
J+hLMYc1vc1IRA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:45:07 2026 by rpki-client