Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
File: 5oClYQES3yA5h_MvDl4VrTXnENI.mft (raw, json)
Hash identifier: XE2w1/yn3fpIKFpDbFuAKz9trHQZDXqGkW3ly8o8Nwk=
Subject key identifier: 98:01:30:CB:04:50:D7:AF:A7:8B:89:AD:A2:19:58:45:C1:47:53:F7
Authority key identifier: E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2
Certificate issuer: /CN=e680a5610112df203987f32f0e5e15ad35e710d2
Certificate serial: 019CAE6C081E6AE34BD981B2135C3769FCD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
Manifest number: 0822
Signing time: Mon 02 Mar 2026 12:00:41 +0000
Manifest this update: Mon 02 Mar 2026 12:00:41 +0000
Manifest next update: Tue 03 Mar 2026 12:00:41 +0000
Files and hashes: 1: 5oClYQES3yA5h_MvDl4VrTXnENI.crl (hash: Qf0epHr+8zyvhb5xdX2rykaMJg4w7bTpT7p1MKlDK4M=)
2: HALUJ8HMBpoHzskaJCYqZgHex5U.roa (hash: cOZhNR9S9Fv/MNqYDNuqDaMlzhNl0rBxxMK0bBBrUJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6c:08:1e:6a:e3:4b:d9:81:b2:13:5c:37:69:fc:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e680a5610112df203987f32f0e5e15ad35e710d2
Validity
Not Before: Mar 2 12:00:41 2026 GMT
Not After : Mar 3 12:00:41 2026 GMT
Subject: CN=980130cb0450d7afa78b89ada2195845c14753f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1a:ec:89:49:ba:c2:fe:7a:1d:eb:9e:7f:03:
5b:d1:4d:62:1b:7d:3c:42:25:a8:3a:35:0b:50:49:
25:65:07:f4:36:8e:fb:6b:1f:e0:42:53:8c:61:3f:
b7:00:aa:e8:a3:23:60:b4:90:24:77:1b:ac:c5:19:
1d:ae:ff:be:26:8a:be:4c:38:2d:34:54:0f:83:5e:
24:8e:c4:d1:6f:ac:c3:29:85:77:32:50:bc:12:22:
32:cd:63:07:88:3a:ee:86:db:97:19:85:4c:bc:ef:
a7:6e:09:9a:b9:6b:08:5f:e3:cd:e2:8f:44:4c:23:
b4:7e:c0:95:3d:36:25:ec:2b:b4:b9:c2:77:67:24:
0c:6c:a4:d7:e6:84:77:47:c4:34:45:51:fe:eb:e3:
ec:c9:16:7e:e9:42:33:09:8f:e5:35:d8:50:19:d7:
72:cc:c2:34:98:b7:f1:d2:bd:09:ae:0c:d0:ef:da:
e8:0c:d5:ca:b4:ed:3f:8f:24:f1:97:d3:1b:22:56:
d9:48:9f:ba:c2:4a:5c:3f:5c:0d:f4:2e:b0:f4:ce:
9a:44:d9:77:a5:a5:9f:f5:95:65:cc:a7:6d:b0:b8:
d2:47:5b:f2:24:9f:1f:58:dc:9f:3b:6d:6d:47:00:
40:22:2a:88:08:9b:c2:a4:b1:46:3c:c1:c1:36:36:
a5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:01:30:CB:04:50:D7:AF:A7:8B:89:AD:A2:19:58:45:C1:47:53:F7
X509v3 Authority Key Identifier:
keyid:E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:52:78:27:1d:e6:aa:8b:6a:96:89:7c:5c:72:f8:ee:2b:92:
66:bd:dd:52:c4:d0:32:3f:55:28:3e:ff:07:55:45:85:56:51:
34:0b:73:bd:92:10:7a:5b:70:34:4a:1a:c4:ef:d4:ec:15:02:
51:70:e9:5f:35:4b:77:a6:91:95:fa:31:2d:b0:51:c8:14:05:
16:cc:e8:7c:55:eb:27:e4:24:e5:bb:2b:8f:5e:b4:1c:36:86:
9f:2d:15:69:fe:47:6f:bd:99:55:b1:0e:57:0a:1b:49:68:2c:
20:ea:c8:33:2b:eb:b4:bf:77:94:2d:d6:10:f9:c3:0c:a2:4b:
17:e7:d5:da:f3:ae:31:58:b3:17:4d:e5:7d:6d:c0:5b:bd:26:
e6:4f:97:9a:52:83:cd:be:3c:28:7e:87:be:52:9a:1a:87:97:
30:25:46:11:a3:54:1a:50:54:37:5d:02:d3:1e:e4:ed:3d:50:
9f:08:ee:17:7a:1f:8f:e6:85:55:49:53:07:b1:fe:68:5c:c3:
16:14:c6:54:e5:cc:92:14:01:17:02:9b:e2:64:b5:29:eb:38:
ca:62:34:5f:b0:1e:44:83:87:7a:47:7b:53:b5:32:a3:25:fe:
f7:1e:8e:cc:2e:87:ba:4b:e8:30:fa:4c:d0:21:1f:ff:88:0c:
ef:64:d2:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyubAgeauNL2YGyE1w3afzQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2ODBhNTYxMDExMmRmMjAzOTg3ZjMyZjBlNWUxNWFkMzVl
NzEwZDIwHhcNMjYwMzAyMTIwMDQxWhcNMjYwMzAzMTIwMDQxWjAzMTEwLwYDVQQD
Eyg5ODAxMzBjYjA0NTBkN2FmYTc4Yjg5YWRhMjE5NTg0NWMxNDc1M2Y3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhrsiUm6wv56HeuefwNb0U1iG308
QiWoOjULUEklZQf0No77ax/gQlOMYT+3AKrooyNgtJAkdxusxRkdrv++Joq+TDgt
NFQPg14kjsTRb6zDKYV3MlC8EiIyzWMHiDruhtuXGYVMvO+nbgmauWsIX+PN4o9E
TCO0fsCVPTYl7Cu0ucJ3ZyQMbKTX5oR3R8Q0RVH+6+PsyRZ+6UIzCY/lNdhQGddy
zMI0mLfx0r0JrgzQ79roDNXKtO0/jyTxl9MbIlbZSJ+6wkpcP1wN9C6w9M6aRNl3
paWf9ZVlzKdtsLjSR1vyJJ8fWNyfO21tRwBAIiqICJvCpLFGPMHBNjalFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJgBMMsEUNevp4uJraIZWEXBR1P3MB8GA1UdIwQY
MBaAFOaApWEBEt8gOYfzLw5eFa015xDSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNW9DbFlRRVMzeUE1aF9NdkRsNFZyVFhuRU5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9iNDBkMjUtZjQ0NC00ZjYwLWIxNjIt
ZDE1MDJmN2NmMjM0LzEvNW9DbFlRRVMzeUE1aF9NdkRsNFZyVFhuRU5JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS9iNDBkMjUtZjQ0NC00ZjYwLWIxNjItZDE1MDJmN2NmMjM0
LzEvNW9DbFlRRVMzeUE1aF9NdkRsNFZyVFhuRU5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhFJ4Jx3m
qotqlol8XHL47iuSZr3dUsTQMj9VKD7/B1VFhVZRNAtzvZIQeltwNEoaxO/U7BUC
UXDpXzVLd6aRlfoxLbBRyBQFFszofFXrJ+Qk5bsrj160HDaGny0Vaf5Hb72ZVbEO
VwobSWgsIOrIMyvrtL93lC3WEPnDDKJLF+fV2vOuMVizF03lfW3AW70m5k+XmlKD
zb48KH6HvlKaGoeXMCVGEaNUGlBUN10C0x7k7T1QnwjuF3ofj+aFVUlTB7H+aFzD
FhTGVOXMkhQBFwKb4mS1Kes4ymI0X7AeRIOHekd7U7UyoyX+9x6OzC6HukvoMPpM
0CEf/4gM72TSTw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 14:09:54 2026 by rpki-client