Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
File: _RHEZUr3AuWW61DRP6SG202bzgo.mft (raw, json)
Hash identifier: P3F2jhCLnxZZ/C6NDdNzowGBce3CuBACAGKVH/XR1+4=
Subject key identifier: A5:C0:7B:FF:7A:22:23:E3:72:17:4D:FA:22:A8:BA:0D:FE:DE:56:22
Authority key identifier: FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
Certificate issuer: /CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Certificate serial: 019CABD9C4074B6591122E16D7F217258860
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 00:01:41 +0000
Manifest this update: Mon 02 Mar 2026 00:01:41 +0000
Manifest next update: Tue 03 Mar 2026 00:01:41 +0000
Files and hashes: 1: RmRjeHQ5LHoRU1fZMCv-SARJc8c.roa (hash: zv/hPQoqGigtS053rI8GEj09bwC8kZaEZlvkwBWS8G8=)
2: _RHEZUr3AuWW61DRP6SG202bzgo.crl (hash: 8lxr+A4GEYSOpxRgMRXaJJtFrXKSqPJEtV16694p+6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:c4:07:4b:65:91:12:2e:16:d7:f2:17:25:88:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Validity
Not Before: Mar 2 00:01:41 2026 GMT
Not After : Mar 3 00:01:41 2026 GMT
Subject: CN=a5c07bff7a2223e372174dfa22a8ba0dfede5622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a6:b8:61:e7:b8:d7:a4:c6:51:6a:05:96:02:
fc:c8:7f:34:e2:81:30:fb:6f:5f:1f:8b:0f:98:c5:
f6:da:e5:0d:57:40:3c:bb:8b:05:56:cc:f1:27:18:
69:b8:77:51:4b:c0:67:31:ca:d4:c9:9e:96:da:a6:
f6:b6:bb:fc:1a:98:76:2f:14:63:62:55:73:9e:34:
89:e6:dc:b0:3a:15:cd:7e:f7:7b:1f:ac:40:2d:5a:
08:23:f2:4c:a1:ad:ea:c0:91:56:da:0c:f6:49:d7:
b7:c0:38:f2:8d:ae:d6:6b:07:18:18:69:22:dc:66:
21:82:49:2e:ca:72:98:ce:be:c0:df:f5:b4:0d:24:
1a:fa:9b:4f:8e:21:8c:0e:b9:2a:09:e7:18:af:34:
f5:38:0a:41:c5:82:93:49:6f:3c:7b:6f:8c:db:07:
26:b7:5b:0e:2c:aa:cb:ed:3d:06:a5:66:2c:d9:38:
70:d9:35:84:5f:62:b9:e6:d3:12:fe:bd:1f:cf:a8:
10:88:0a:04:36:06:d3:05:68:46:3f:5a:9c:6b:6f:
95:ae:6d:87:5d:2f:24:8f:12:e1:f5:b4:aa:0e:c1:
73:51:8a:33:4b:f1:dc:77:98:6f:f8:97:13:c2:6c:
f8:b4:f4:9a:8c:47:03:c9:38:9f:08:d5:e9:16:3b:
87:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:C0:7B:FF:7A:22:23:E3:72:17:4D:FA:22:A8:BA:0D:FE:DE:56:22
X509v3 Authority Key Identifier:
keyid:FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:1a:5e:0f:46:b1:69:41:0e:a2:02:15:93:cb:55:f7:58:97:
2c:2f:58:88:11:ad:7e:ff:26:c8:6f:3b:3f:1b:c2:dd:c6:86:
63:5f:93:81:12:20:db:c2:b8:49:72:97:60:c1:91:e4:18:40:
6c:cf:91:9d:7d:60:6d:90:88:e5:54:ea:2b:af:e1:3c:c7:d5:
48:35:51:90:91:de:c6:c4:d7:ca:4b:de:5b:39:10:32:89:64:
e6:00:20:96:05:72:8b:30:60:38:78:3c:4c:98:db:a6:26:6c:
75:49:26:8f:51:26:24:73:78:62:9a:1a:39:86:32:d4:f0:68:
3d:0f:3a:f2:07:b2:ba:9f:05:53:3c:9e:6e:b1:93:0a:f4:1c:
a0:12:64:d0:2e:90:4b:18:66:7d:51:f2:b7:09:99:a0:32:ea:
04:54:38:1e:0e:11:4a:e8:18:cb:b5:ec:ab:74:09:23:27:6e:
e4:33:ce:8d:75:57:7f:82:18:22:20:9a:bf:94:8c:d1:21:33:
55:fa:6f:86:f1:2f:b1:c1:79:96:3a:94:92:b3:f7:b1:8a:af:
b1:6e:29:58:f6:f4:51:6d:94:0e:08:ed:2d:65:38:c5:f8:6b:
04:9f:2a:a7:5f:4c:df:57:1e:96:fb:ee:67:90:59:f9:28:e5:
d7:6b:1d:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2cQHS2WREi4W1/IXJYhgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkMTFjNDY1NGFmNzAyZTU5NmViNTBkMTNmYTQ4NmRiNGQ5
YmNlMGEwHhcNMjYwMzAyMDAwMTQxWhcNMjYwMzAzMDAwMTQxWjAzMTEwLwYDVQQD
EyhhNWMwN2JmZjdhMjIyM2UzNzIxNzRkZmEyMmE4YmEwZGZlZGU1NjIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjKa4Yee416TGUWoFlgL8yH804oEw
+29fH4sPmMX22uUNV0A8u4sFVszxJxhpuHdRS8BnMcrUyZ6W2qb2trv8Gph2LxRj
YlVznjSJ5tywOhXNfvd7H6xALVoII/JMoa3qwJFW2gz2Sde3wDjyja7WawcYGGki
3GYhgkkuynKYzr7A3/W0DSQa+ptPjiGMDrkqCecYrzT1OApBxYKTSW88e2+M2wcm
t1sOLKrL7T0GpWYs2Thw2TWEX2K55tMS/r0fz6gQiAoENgbTBWhGP1qca2+Vrm2H
XS8kjxLh9bSqDsFzUYozS/Hcd5hv+JcTwmz4tPSajEcDyTifCNXpFjuHeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKXAe/96IiPjchdN+iKoug3+3lYiMB8GA1UdIwQY
MBaAFP0RxGVK9wLllutQ0T+khttNm84KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1JIRVpVcjNBdVdXNjFEUlA2U0cyMDJiemdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC81ZTMxODUtMzhjNS00YTViLWJmMjQt
Yzk1M2UzMzk4YzYzLzEvX1JIRVpVcjNBdVdXNjFEUlA2U0cyMDJiemdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC81ZTMxODUtMzhjNS00YTViLWJmMjQtYzk1M2UzMzk4YzYz
LzEvX1JIRVpVcjNBdVdXNjFEUlA2U0cyMDJiemdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeRpeD0ax
aUEOogIVk8tV91iXLC9YiBGtfv8myG87PxvC3caGY1+TgRIg28K4SXKXYMGR5BhA
bM+RnX1gbZCI5VTqK6/hPMfVSDVRkJHexsTXykveWzkQMolk5gAglgVyizBgOHg8
TJjbpiZsdUkmj1EmJHN4YpoaOYYy1PBoPQ868geyup8FUzyebrGTCvQcoBJk0C6Q
SxhmfVHytwmZoDLqBFQ4Hg4RSugYy7Xsq3QJIydu5DPOjXVXf4IYIiCav5SM0SEz
VfpvhvEvscF5ljqUkrP3sYqvsW4pWPb0UW2UDgjtLWU4xfhrBJ8qp19M31celvvu
Z5BZ+Sjl12sdeQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:08:25 2026 by rpki-client