Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
File: t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft (raw, json)
Hash identifier: Nw0g58Lp8hAI3+rlzcvO+AZ5Z3ghfZ1nLKc+xUglzNE=
Subject key identifier: B7:EB:A8:75:2A:D0:C8:2B:C6:70:17:12:14:12:19:7E:4F:4A:5D:2A
Authority key identifier: B7:9D:E9:45:8D:19:0E:63:43:29:F9:DF:15:03:B5:22:2C:16:24:EE
Certificate issuer: /CN=b79de9458d190e634329f9df1503b5222c1624ee
Certificate serial: 019CAA21FBCF2CAB90C29940F91C07FCBDCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
Manifest number: 0A58
Signing time: Sun 01 Mar 2026 16:01:19 +0000
Manifest this update: Sun 01 Mar 2026 16:01:19 +0000
Manifest next update: Mon 02 Mar 2026 16:01:19 +0000
Files and hashes: 1: clFIubjbLQqxbnoigbE4pHEFWAU.roa (hash: 1t4DJkKFGPggpFIGiXnW0fwPm80oShJdtzZrjtLGtZQ=)
2: t53pRY0ZDmNDKfnfFQO1IiwWJO4.crl (hash: +EeZV6HIi2cFpX006jShNWYDMSbUZwY2YzCADkLenVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:fb:cf:2c:ab:90:c2:99:40:f9:1c:07:fc:bd:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b79de9458d190e634329f9df1503b5222c1624ee
Validity
Not Before: Mar 1 16:01:19 2026 GMT
Not After : Mar 2 16:01:19 2026 GMT
Subject: CN=b7eba8752ad0c82bc67017121412197e4f4a5d2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:24:83:0d:1f:cc:2f:83:0d:fb:dc:9f:05:a3:
4c:62:93:c9:de:1f:58:17:2b:dc:18:ad:f1:55:3f:
05:b6:7b:7d:2d:5c:81:b7:2d:7e:30:9d:2b:8f:e2:
9b:2d:ef:bb:e9:aa:88:13:17:75:f8:b4:58:fa:c0:
57:80:31:5f:90:ac:1d:1d:a6:87:af:d3:44:f9:6e:
4a:bf:65:69:cc:5a:36:6d:af:f4:f5:c3:fc:da:83:
e3:37:ee:83:6c:ed:e3:8c:a2:e8:34:97:3b:ad:61:
09:94:a2:ab:c8:7d:74:84:e0:03:db:4b:68:bc:0c:
c9:cb:87:85:2c:bc:f8:77:c8:70:54:92:fc:6d:03:
86:30:67:61:bd:22:d4:72:ba:ff:1c:dc:08:93:a5:
92:02:39:eb:7b:43:a9:77:a3:d6:40:7c:4e:e2:14:
0a:84:6c:6d:66:0b:c4:d6:cf:d1:fc:f8:9a:aa:cb:
bb:9b:1f:0f:ef:1a:1e:40:df:3e:ec:ec:24:e6:62:
1f:a0:c5:f2:5e:64:cd:0d:c3:a9:7c:5d:06:eb:7b:
5e:a0:45:66:26:cc:63:99:9f:61:a0:8d:d7:a1:a6:
a2:c0:d2:a7:cc:dd:85:04:6f:64:2e:88:50:b6:70:
f2:35:2a:1e:82:20:51:62:ac:a0:cb:6f:5e:3a:05:
cd:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:EB:A8:75:2A:D0:C8:2B:C6:70:17:12:14:12:19:7E:4F:4A:5D:2A
X509v3 Authority Key Identifier:
keyid:B7:9D:E9:45:8D:19:0E:63:43:29:F9:DF:15:03:B5:22:2C:16:24:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:b5:b2:3f:cc:a8:1d:0e:f9:16:10:82:eb:00:c3:63:94:bd:
f4:4d:ac:97:82:80:d6:e4:17:46:9b:1b:06:a6:29:20:b6:68:
89:37:04:f9:2e:10:c5:5a:d5:c2:31:cc:fc:15:72:05:35:9c:
e1:df:97:28:3b:f1:32:9c:bb:c9:32:9c:37:83:cf:3e:17:86:
0e:3a:1b:dd:c5:7b:55:8e:71:56:97:68:02:ac:83:bf:02:6d:
ac:4d:e0:fd:2f:f8:57:96:bb:de:b8:01:e9:ea:85:d1:3f:6f:
c5:d0:1c:d6:3f:a5:f6:f6:4d:7d:73:8c:d1:c9:8f:57:51:91:
34:fa:fa:1f:d2:1d:6e:cd:0c:ed:b0:12:aa:8d:33:58:fa:13:
06:a0:a7:5c:17:61:4e:d1:03:73:3c:a5:ff:05:e2:58:e4:23:
24:38:bf:a6:72:4a:59:4b:a6:48:d7:1e:7c:b7:43:bb:0e:b0:
00:66:36:a8:23:9f:d7:18:d0:7a:36:3e:d5:8e:55:53:29:6e:
85:e9:82:c3:75:24:e7:03:cd:ea:56:70:ee:e7:d8:a4:22:bc:
3e:95:fc:f2:02:dd:2f:aa:12:48:7f:00:1c:2e:9c:aa:87:e4:
81:4b:e5:66:53:3d:f3:14:61:62:7a:31:20:d6:30:8c:cd:6d:
22:e0:0b:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqIfvPLKuQwplA+RwH/L3KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3OWRlOTQ1OGQxOTBlNjM0MzI5ZjlkZjE1MDNiNTIyMmMx
NjI0ZWUwHhcNMjYwMzAxMTYwMTE5WhcNMjYwMzAyMTYwMTE5WjAzMTEwLwYDVQQD
EyhiN2ViYTg3NTJhZDBjODJiYzY3MDE3MTIxNDEyMTk3ZTRmNGE1ZDJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkSSDDR/ML4MN+9yfBaNMYpPJ3h9Y
FyvcGK3xVT8Ftnt9LVyBty1+MJ0rj+KbLe+76aqIExd1+LRY+sBXgDFfkKwdHaaH
r9NE+W5Kv2VpzFo2ba/09cP82oPjN+6DbO3jjKLoNJc7rWEJlKKryH10hOAD20to
vAzJy4eFLLz4d8hwVJL8bQOGMGdhvSLUcrr/HNwIk6WSAjnre0Opd6PWQHxO4hQK
hGxtZgvE1s/R/Piaqsu7mx8P7xoeQN8+7Owk5mIfoMXyXmTNDcOpfF0G63teoEVm
JsxjmZ9hoI3XoaaiwNKnzN2FBG9kLohQtnDyNSoegiBRYqygy29eOgXNtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLfrqHUq0MgrxnAXEhQSGX5PSl0qMB8GA1UdIwQY
MBaAFLed6UWNGQ5jQyn53xUDtSIsFiTuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDUzcFJZMFpEbU5ES2ZuZkZRTzFJaXdXSk80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8zYmU4OTktYTUyZi00M2FkLThlODkt
ZjFjZDlmYTI4Y2M1LzEvdDUzcFJZMFpEbU5ES2ZuZkZRTzFJaXdXSk80Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS8zYmU4OTktYTUyZi00M2FkLThlODktZjFjZDlmYTI4Y2M1
LzEvdDUzcFJZMFpEbU5ES2ZuZkZRTzFJaXdXSk80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi7WyP8yo
HQ75FhCC6wDDY5S99E2sl4KA1uQXRpsbBqYpILZoiTcE+S4QxVrVwjHM/BVyBTWc
4d+XKDvxMpy7yTKcN4PPPheGDjob3cV7VY5xVpdoAqyDvwJtrE3g/S/4V5a73rgB
6eqF0T9vxdAc1j+l9vZNfXOM0cmPV1GRNPr6H9Idbs0M7bASqo0zWPoTBqCnXBdh
TtEDczyl/wXiWOQjJDi/pnJKWUumSNcefLdDuw6wAGY2qCOf1xjQejY+1Y5VUylu
hemCw3Uk5wPN6lZw7ufYpCK8PpX88gLdL6oSSH8AHC6cqofkgUvlZlM98xRhYnox
INYwjM1tIuAL3w==
-----END CERTIFICATE-----
Generated at Mon Mar 2 00:52:34 2026 by rpki-client