Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/e67781-171d-40d7-9037-1baa83c8a036/1/WnMRox5rU6F10ZE1sryZOh-5hLE.mft
File: WnMRox5rU6F10ZE1sryZOh-5hLE.mft (raw, json)
Hash identifier: pqPJCHO9635Xb569V2LTk/EmXLrE8tl/W9Btti7ZqLE=
Subject key identifier: 55:88:F5:7E:09:2C:08:EE:91:73:5E:C9:DB:A3:99:CB:71:12:40:E4
Authority key identifier: 5A:73:11:A3:1E:6B:53:A1:75:D1:91:35:B2:BC:99:3A:1F:B9:84:B1
Certificate issuer: /CN=5a7311a31e6b53a175d19135b2bc993a1fb984b1
Certificate serial: 019CAAC653BFF58DC8F918E9E89D7C52FDB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WnMRox5rU6F10ZE1sryZOh-5hLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/e67781-171d-40d7-9037-1baa83c8a036/1/WnMRox5rU6F10ZE1sryZOh-5hLE.mft
Manifest number: 166B
Signing time: Sun 01 Mar 2026 19:00:49 +0000
Manifest this update: Sun 01 Mar 2026 19:00:49 +0000
Manifest next update: Mon 02 Mar 2026 19:00:49 +0000
Files and hashes: 1: WnMRox5rU6F10ZE1sryZOh-5hLE.crl (hash: vCFwppxaT8vx7VOJDFtX7xOaX5Eit5rTHCfojF06JLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/e67781-171d-40d7-9037-1baa83c8a036/1/WnMRox5rU6F10ZE1sryZOh-5hLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/e67781-171d-40d7-9037-1baa83c8a036/1/WnMRox5rU6F10ZE1sryZOh-5hLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/WnMRox5rU6F10ZE1sryZOh-5hLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:53:bf:f5:8d:c8:f9:18:e9:e8:9d:7c:52:fd:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a7311a31e6b53a175d19135b2bc993a1fb984b1
Validity
Not Before: Mar 1 19:00:49 2026 GMT
Not After : Mar 2 19:00:49 2026 GMT
Subject: CN=5588f57e092c08ee91735ec9dba399cb711240e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:17:50:70:6c:b7:9e:e6:31:f2:8a:49:e6:50:
a9:3e:f6:90:93:74:05:de:cb:c1:2c:19:48:18:73:
b4:af:2e:d4:5b:bc:be:da:dc:65:9c:f8:da:e7:07:
83:0b:bb:48:f6:4f:c8:eb:98:bd:ae:66:20:59:7a:
0d:be:65:09:7d:ed:9c:65:cb:9a:00:1e:f9:ab:59:
51:b4:c9:4f:2d:c7:ef:20:4d:e0:e9:2e:15:be:6a:
9e:19:23:e0:83:dc:76:a6:4c:7b:b7:04:72:93:87:
cd:3e:f5:7d:94:d6:85:5a:6c:74:ef:78:86:20:3b:
a2:af:5f:4b:52:17:cf:0c:11:b4:3e:a7:6d:5c:4e:
3e:fd:52:36:ec:4e:77:23:06:63:43:61:aa:65:c0:
2b:59:68:8f:21:2e:20:2b:6b:b6:6e:e8:f8:ae:4f:
66:ad:cb:f2:77:95:e5:bd:55:bd:fd:83:24:80:b3:
a0:bb:6a:9d:4a:9f:42:80:e6:c5:07:4e:fe:6d:8e:
dc:7b:6d:9d:f2:dd:c0:23:a1:16:43:75:c0:e6:d4:
1f:af:07:97:cc:cc:2d:73:02:0a:72:c1:45:fa:f4:
a0:ea:06:c4:a9:7a:c1:d4:5d:dc:82:0f:9a:7a:b1:
a1:72:d3:12:0f:a3:ae:a0:6c:de:e0:84:f1:b1:07:
bd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:88:F5:7E:09:2C:08:EE:91:73:5E:C9:DB:A3:99:CB:71:12:40:E4
X509v3 Authority Key Identifier:
keyid:5A:73:11:A3:1E:6B:53:A1:75:D1:91:35:B2:BC:99:3A:1F:B9:84:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WnMRox5rU6F10ZE1sryZOh-5hLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e67781-171d-40d7-9037-1baa83c8a036/1/WnMRox5rU6F10ZE1sryZOh-5hLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e67781-171d-40d7-9037-1baa83c8a036/1/WnMRox5rU6F10ZE1sryZOh-5hLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:f8:f3:e5:0b:28:99:e4:f2:d7:01:6b:e8:7d:ff:3d:3b:19:
2d:44:4c:53:c6:2c:1b:19:aa:70:14:30:6b:43:e1:59:4e:2a:
da:02:58:96:6a:58:28:85:3a:f9:a3:40:c8:31:df:8e:c6:9d:
2c:f1:d0:32:35:9b:4e:71:7d:ca:e0:ee:3b:43:c4:4e:e7:f0:
0e:67:7e:78:cb:13:24:0a:09:2b:67:49:61:cf:83:a1:68:b1:
98:84:2d:40:c8:b6:c2:5f:ce:a3:e7:5d:79:10:e1:12:f3:0f:
41:2f:ac:7e:ef:9f:2a:5f:79:d2:7b:2e:7e:26:f8:42:76:d2:
7a:d7:cb:4f:64:91:53:70:0a:d3:cb:a2:e8:48:ab:bd:0a:68:
92:a6:ea:fd:f2:c6:43:85:24:92:75:77:6a:cd:4d:47:d2:5f:
00:46:83:eb:09:5c:82:c5:02:23:e8:72:d5:d3:fa:69:33:1e:
98:c8:43:a0:19:56:be:a7:8c:de:9e:ca:6e:50:d3:ac:d6:39:
83:aa:43:a7:a9:59:74:81:59:d8:af:46:aa:65:80:ae:14:37:
eb:da:12:f5:e9:c0:5e:04:e5:b6:78:e1:80:ff:28:28:78:67:
7f:1f:08:b7:89:b3:5e:a7:48:03:b9:f3:9a:b1:a2:91:39:09:
bc:6b:38:18
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqxlO/9Y3I+Rjp6J18Uv2yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhNzMxMWEzMWU2YjUzYTE3NWQxOTEzNWIyYmM5OTNhMWZi
OTg0YjEwHhcNMjYwMzAxMTkwMDQ5WhcNMjYwMzAyMTkwMDQ5WjAzMTEwLwYDVQQD
Eyg1NTg4ZjU3ZTA5MmMwOGVlOTE3MzVlYzlkYmEzOTljYjcxMTI0MGU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xdQcGy3nuYx8opJ5lCpPvaQk3QF
3svBLBlIGHO0ry7UW7y+2txlnPja5weDC7tI9k/I65i9rmYgWXoNvmUJfe2cZcua
AB75q1lRtMlPLcfvIE3g6S4VvmqeGSPgg9x2pkx7twRyk4fNPvV9lNaFWmx073iG
IDuir19LUhfPDBG0PqdtXE4+/VI27E53IwZjQ2GqZcArWWiPIS4gK2u2buj4rk9m
rcvyd5XlvVW9/YMkgLOgu2qdSp9CgObFB07+bY7ce22d8t3AI6EWQ3XA5tQfrweX
zMwtcwIKcsFF+vSg6gbEqXrB1F3cgg+aerGhctMSD6OuoGze4ITxsQe9TQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFWI9X4JLAjukXNeydujmctxEkDkMB8GA1UdIwQY
MBaAFFpzEaMea1OhddGRNbK8mTofuYSxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV25NUm94NXJVNkYxMFpFMXNyeVpPaC01aExFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9lNjc3ODEtMTcxZC00MGQ3LTkwMzct
MWJhYTgzYzhhMDM2LzEvV25NUm94NXJVNkYxMFpFMXNyeVpPaC01aExFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9lNjc3ODEtMTcxZC00MGQ3LTkwMzctMWJhYTgzYzhhMDM2
LzEvV25NUm94NXJVNkYxMFpFMXNyeVpPaC01aExFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQfjz5Qso
meTy1wFr6H3/PTsZLURMU8YsGxmqcBQwa0PhWU4q2gJYlmpYKIU6+aNAyDHfjsad
LPHQMjWbTnF9yuDuO0PETufwDmd+eMsTJAoJK2dJYc+DoWixmIQtQMi2wl/Oo+dd
eRDhEvMPQS+sfu+fKl950nsufib4QnbSetfLT2SRU3AK08ui6EirvQpokqbq/fLG
Q4UkknV3as1NR9JfAEaD6wlcgsUCI+hy1dP6aTMemMhDoBlWvqeM3p7KblDTrNY5
g6pDp6lZdIFZ2K9GqmWArhQ369oS9enAXgTltnjhgP8oKHhnfx8It4mzXqdIA7nz
mrGikTkJvGs4GA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:04:10 2026 by rpki-client