Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
File: tSU8JVLUQD9DuDwl52IjjfEtroE.mft (raw, json)
Hash identifier: wKj2aQQx6pd/2UOYHUZvvwkKKlCX2UlQWvQAn2QdjQA=
Subject key identifier: 36:33:CB:82:E2:33:44:55:56:9B:FE:1D:9E:70:E5:43:BD:6D:20:9C
Authority key identifier: B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
Certificate issuer: /CN=b5253c2552d4403f43b83c25e762238df12dae81
Certificate serial: 019CABD9B12656D49A659A00CA0842A2E42B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
Manifest number: 092A
Signing time: Mon 02 Mar 2026 00:01:36 +0000
Manifest this update: Mon 02 Mar 2026 00:01:36 +0000
Manifest next update: Tue 03 Mar 2026 00:01:36 +0000
Files and hashes: 1: A7blUAR8M2twO1WZriuysPCl_Ns.roa (hash: LBRnuKsEeUakJqD77ZNf+zyWsZ1gWUpfDWeWrVr+1Oc=)
2: tSU8JVLUQD9DuDwl52IjjfEtroE.crl (hash: hg6XIdVoYF9OGixSLS7Zu321nk8+7N0gZZIrN6VksYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:b1:26:56:d4:9a:65:9a:00:ca:08:42:a2:e4:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5253c2552d4403f43b83c25e762238df12dae81
Validity
Not Before: Mar 2 00:01:36 2026 GMT
Not After : Mar 3 00:01:36 2026 GMT
Subject: CN=3633cb82e2334455569bfe1d9e70e543bd6d209c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1f:29:36:32:af:7d:d4:37:43:85:4a:51:cb:
62:1f:24:41:f3:a3:a4:c9:49:ed:9a:80:67:32:22:
59:56:ed:21:dc:c7:19:0a:3b:62:f0:41:7e:99:7c:
06:77:41:a6:44:3b:e0:02:7e:ed:24:e2:0a:57:e7:
45:8f:fc:dc:3a:5e:d1:3f:f6:0d:b7:d1:93:cd:8c:
45:cf:ff:e8:2b:e0:01:70:45:0c:07:ef:6a:c1:29:
52:17:e9:e2:f5:a6:0e:8b:3a:de:92:c1:f4:d6:9a:
3b:69:62:34:bf:63:60:de:8e:70:7f:fd:99:3f:11:
40:2b:e7:8d:19:fc:c2:7e:e7:6b:cd:4e:b6:8e:44:
63:da:6b:20:3b:68:62:f1:5d:26:3f:73:6b:3a:bf:
e9:0e:f0:7c:b0:63:b9:1e:eb:68:72:c2:7d:3c:b9:
25:e8:ae:23:c4:36:08:12:33:69:c0:d9:02:b9:53:
36:b9:9b:05:e3:ef:d8:6a:01:ef:d9:34:3e:78:ac:
7b:e1:1e:c6:ea:a9:d9:ef:f5:2d:42:d0:09:1d:6d:
d7:2b:b3:ab:c2:51:03:40:72:35:f6:3b:66:86:17:
ab:28:63:8e:d3:a5:23:de:2b:59:cf:d7:84:13:69:
64:7a:3f:c6:78:50:a6:c1:ce:f4:e0:09:cb:f7:12:
47:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:33:CB:82:E2:33:44:55:56:9B:FE:1D:9E:70:E5:43:BD:6D:20:9C
X509v3 Authority Key Identifier:
keyid:B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:f3:22:8b:4a:08:5f:7f:2a:02:45:bf:7e:a6:04:2a:09:62:
ef:86:c8:8a:78:aa:89:58:84:40:51:78:9c:ce:33:9e:56:7a:
e7:6a:1f:0e:5a:80:d4:53:5f:d5:9d:07:b1:1e:21:d0:ef:d1:
d0:17:e8:57:43:6e:49:15:52:66:cb:06:fb:3f:61:7b:28:94:
fd:8b:58:f5:81:15:30:d8:21:9d:c7:c0:81:d0:65:ca:7b:e3:
2a:ae:59:10:ef:70:42:c9:5f:34:3a:7d:45:62:16:c3:27:7c:
82:ba:cf:af:40:92:13:51:ad:d0:4a:61:eb:72:ef:7b:4e:a3:
58:d8:90:63:86:d7:22:00:2b:24:ff:58:52:c6:46:de:a2:57:
a6:2e:0c:ed:54:c2:a5:ef:49:41:02:d0:c6:dc:d6:24:f5:39:
bc:e3:89:76:3c:72:86:b6:46:f7:3b:d3:e2:cb:80:4d:30:48:
15:1f:52:04:ee:86:dc:3a:10:a7:74:1e:94:c1:99:3a:d2:36:
ff:b0:97:6b:f9:36:56:32:2b:ec:6f:1d:e6:5f:eb:e4:7c:37:
35:c4:58:d8:f8:42:df:63:b2:f6:86:72:4b:19:35:21:2c:87:
38:ed:df:0d:fb:c6:c1:d1:5e:77:b1:94:16:77:fd:cf:e2:87:
b1:56:80:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2bEmVtSaZZoAyghCouQrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1MjUzYzI1NTJkNDQwM2Y0M2I4M2MyNWU3NjIyMzhkZjEy
ZGFlODEwHhcNMjYwMzAyMDAwMTM2WhcNMjYwMzAzMDAwMTM2WjAzMTEwLwYDVQQD
EygzNjMzY2I4MmUyMzM0NDU1NTY5YmZlMWQ5ZTcwZTU0M2JkNmQyMDljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArB8pNjKvfdQ3Q4VKUctiHyRB86Ok
yUntmoBnMiJZVu0h3McZCjti8EF+mXwGd0GmRDvgAn7tJOIKV+dFj/zcOl7RP/YN
t9GTzYxFz//oK+ABcEUMB+9qwSlSF+ni9aYOizreksH01po7aWI0v2Ng3o5wf/2Z
PxFAK+eNGfzCfudrzU62jkRj2msgO2hi8V0mP3NrOr/pDvB8sGO5HutocsJ9PLkl
6K4jxDYIEjNpwNkCuVM2uZsF4+/YagHv2TQ+eKx74R7G6qnZ7/UtQtAJHW3XK7Or
wlEDQHI19jtmhherKGOO06Uj3itZz9eEE2lkej/GeFCmwc704AnL9xJH/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDYzy4LiM0RVVpv+HZ5w5UO9bSCcMB8GA1UdIwQY
MBaAFLUlPCVS1EA/Q7g8JediI43xLa6BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFNVOEpWTFVRRDlEdUR3bDUySWpqZkV0cm9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS84MjA5OGItMGM1My00ZGYyLThhMzIt
ZmJjMWUzZjdlOTJiLzEvdFNVOEpWTFVRRDlEdUR3bDUySWpqZkV0cm9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS84MjA5OGItMGM1My00ZGYyLThhMzItZmJjMWUzZjdlOTJi
LzEvdFNVOEpWTFVRRDlEdUR3bDUySWpqZkV0cm9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGPMii0oI
X38qAkW/fqYEKgli74bIiniqiViEQFF4nM4znlZ652ofDlqA1FNf1Z0HsR4h0O/R
0BfoV0NuSRVSZssG+z9heyiU/YtY9YEVMNghncfAgdBlynvjKq5ZEO9wQslfNDp9
RWIWwyd8grrPr0CSE1Gt0Eph63Lve06jWNiQY4bXIgArJP9YUsZG3qJXpi4M7VTC
pe9JQQLQxtzWJPU5vOOJdjxyhrZG9zvT4suATTBIFR9SBO6G3DoQp3QelMGZOtI2
/7CXa/k2VjIr7G8d5l/r5Hw3NcRY2PhC32Oy9oZySxk1ISyHOO3fDfvGwdFed7GU
Fnf9z+KHsVaAqw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:17:47 2026 by rpki-client