Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
File: g4heOKx3ysBEgptTyzslq-Yen2Q.mft (raw, json)
Hash identifier: oWZmHQn2bd+OrYBfQNwzPz25UViIaY0zJoRlZA+akUE=
Subject key identifier: 04:8B:71:A6:40:0A:F7:F7:69:07:5A:7A:E9:92:18:35:BA:FC:27:70
Authority key identifier: 83:88:5E:38:AC:77:CA:C0:44:82:9B:53:CB:3B:25:AB:E6:1E:9F:64
Certificate issuer: /CN=83885e38ac77cac044829b53cb3b25abe61e9f64
Certificate serial: 019CAC46F386A79B8C1B70B9C3BD4C0B9F45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
Manifest number: 0859
Signing time: Mon 02 Mar 2026 02:00:56 +0000
Manifest this update: Mon 02 Mar 2026 02:00:56 +0000
Manifest next update: Tue 03 Mar 2026 02:00:56 +0000
Files and hashes: 1: g4heOKx3ysBEgptTyzslq-Yen2Q.crl (hash: XaVea/No3NZBQhuoGE5bV34Xb2pYrkLFNxLK5vrv3WI=)
2: uEbtYSs7oUq_8j5NRnUv73UK0pM.roa (hash: Poyt01XokZPztwUN5koWpemxrQ6OZRRxyOTp253pBsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:f3:86:a7:9b:8c:1b:70:b9:c3:bd:4c:0b:9f:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83885e38ac77cac044829b53cb3b25abe61e9f64
Validity
Not Before: Mar 2 02:00:56 2026 GMT
Not After : Mar 3 02:00:56 2026 GMT
Subject: CN=048b71a6400af7f769075a7ae9921835bafc2770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:18:c1:37:1d:3b:74:f1:28:a6:01:85:58:a3:
e7:2b:2a:8a:9c:46:2c:5f:4f:43:25:c6:60:4b:ea:
59:06:f3:82:07:15:0c:be:89:4e:20:86:b8:24:db:
e8:00:44:25:f1:f9:51:d9:7f:8c:87:ff:bd:1b:02:
76:95:ff:90:eb:fc:9b:64:55:6c:ed:5e:27:b8:87:
2c:df:d0:b3:a8:62:a8:6b:66:83:b7:4c:30:25:ca:
98:ee:8c:2e:bb:d0:ef:b9:a8:ab:fd:56:04:b2:41:
ca:c8:27:30:16:47:2a:2f:d6:e7:2b:ec:d2:69:60:
ef:3a:bb:57:2a:ad:4a:0b:fb:c8:fc:65:b8:52:e0:
a9:f3:fc:34:3a:cd:86:f4:7f:0c:86:60:d3:46:59:
ad:fe:3b:a0:96:32:25:67:07:d5:2b:ba:a6:18:b8:
48:c5:b1:87:9f:53:63:c5:90:a3:3b:fb:c9:96:d0:
ba:33:e7:16:b4:67:7d:59:8f:f6:23:bb:aa:83:df:
54:3e:0e:e4:93:c3:a6:38:d7:c7:f8:31:bf:8c:b3:
7c:aa:b7:13:e7:90:64:29:82:8e:9a:ae:e0:5f:18:
c5:50:ce:96:2a:17:68:91:b4:c6:16:b3:85:e9:7c:
f6:d6:e5:c9:aa:71:06:2d:f5:dc:99:4b:b4:ee:1f:
86:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:8B:71:A6:40:0A:F7:F7:69:07:5A:7A:E9:92:18:35:BA:FC:27:70
X509v3 Authority Key Identifier:
keyid:83:88:5E:38:AC:77:CA:C0:44:82:9B:53:CB:3B:25:AB:E6:1E:9F:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:c6:d0:fa:0c:67:de:12:0e:4e:16:d4:1b:7a:26:78:8c:de:
20:45:40:96:9b:25:6e:79:0d:3a:82:e8:cd:54:eb:c2:a9:bb:
fd:74:9e:45:81:b5:57:5b:e9:fc:99:15:fa:47:a4:a0:75:1f:
8c:35:7b:51:e5:9f:35:09:7a:70:85:80:a8:bb:7a:dc:7a:c5:
7f:db:4e:36:ed:10:43:8a:6c:a7:38:a2:c7:be:ca:7d:86:81:
76:1d:8c:a6:54:51:db:53:34:d9:a7:f4:7a:f4:de:b7:96:b2:
0f:6b:59:90:2c:02:4e:66:ec:f2:96:d8:ad:89:55:1e:5c:63:
c4:69:22:41:7e:d0:8b:03:fc:c0:79:57:9c:b9:a7:55:0e:d0:
84:0a:3d:df:b5:6b:a1:e4:82:6c:17:dc:b7:ee:05:32:01:db:
ac:4d:cc:71:e9:f0:ff:56:38:4a:25:20:87:8b:63:ee:45:ef:
63:36:39:28:a2:47:ff:5e:50:5c:24:9d:cd:ce:ae:00:03:c9:
a4:24:a7:fb:f2:6e:f3:18:6a:32:a9:22:07:33:d0:64:85:21:
cd:c1:a7:46:3b:02:82:cb:68:18:a1:95:76:0d:c7:77:28:aa:
a5:10:d9:2e:10:b1:83:1a:fc:34:d7:e1:fd:55:78:2b:ff:74:
8d:ec:e9:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysRvOGp5uMG3C5w71MC59FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzODg1ZTM4YWM3N2NhYzA0NDgyOWI1M2NiM2IyNWFiZTYx
ZTlmNjQwHhcNMjYwMzAyMDIwMDU2WhcNMjYwMzAzMDIwMDU2WjAzMTEwLwYDVQQD
EygwNDhiNzFhNjQwMGFmN2Y3NjkwNzVhN2FlOTkyMTgzNWJhZmMyNzcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkxjBNx07dPEopgGFWKPnKyqKnEYs
X09DJcZgS+pZBvOCBxUMvolOIIa4JNvoAEQl8flR2X+Mh/+9GwJ2lf+Q6/ybZFVs
7V4nuIcs39CzqGKoa2aDt0wwJcqY7owuu9Dvuair/VYEskHKyCcwFkcqL9bnK+zS
aWDvOrtXKq1KC/vI/GW4UuCp8/w0Os2G9H8MhmDTRlmt/jugljIlZwfVK7qmGLhI
xbGHn1NjxZCjO/vJltC6M+cWtGd9WY/2I7uqg99UPg7kk8OmONfH+DG/jLN8qrcT
55BkKYKOmq7gXxjFUM6WKhdokbTGFrOF6Xz21uXJqnEGLfXcmUu07h+GuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFASLcaZACvf3aQdaeumSGDW6/CdwMB8GA1UdIwQY
MBaAFIOIXjisd8rARIKbU8s7JavmHp9kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzRoZU9LeDN5c0JFZ3B0VHl6c2xxLVllbjJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC80NjM2ODYtY2U0OC00ODdjLWJjM2Qt
YTJmNTllYWU4NmQwLzEvZzRoZU9LeDN5c0JFZ3B0VHl6c2xxLVllbjJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC80NjM2ODYtY2U0OC00ODdjLWJjM2QtYTJmNTllYWU4NmQw
LzEvZzRoZU9LeDN5c0JFZ3B0VHl6c2xxLVllbjJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjsbQ+gxn
3hIOThbUG3omeIzeIEVAlpslbnkNOoLozVTrwqm7/XSeRYG1V1vp/JkV+kekoHUf
jDV7UeWfNQl6cIWAqLt63HrFf9tONu0QQ4pspziix77KfYaBdh2MplRR21M02af0
evTet5ayD2tZkCwCTmbs8pbYrYlVHlxjxGkiQX7QiwP8wHlXnLmnVQ7QhAo937Vr
oeSCbBfct+4FMgHbrE3Mcenw/1Y4SiUgh4tj7kXvYzY5KKJH/15QXCSdzc6uAAPJ
pCSn+/Ju8xhqMqkiBzPQZIUhzcGnRjsCgstoGKGVdg3HdyiqpRDZLhCxgxr8NNfh
/VV4K/90jezpxw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:44:32 2026 by rpki-client