Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
File: h4R32LYtCfmui_29gSpT-X7UxXY.mft (raw, json)
Hash identifier: mteDKua+r2DmSico9pQ5ZDNm+et0lbDN7iXUrJGzP0U=
Subject key identifier: EE:10:28:56:03:CB:32:9F:C8:BF:E1:1B:25:BB:7C:65:02:2C:91:E5
Authority key identifier: 87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
Certificate issuer: /CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Certificate serial: 019CAA8FA9A73F030759CD050456F108727B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
Manifest number: 066E
Signing time: Sun 01 Mar 2026 18:01:07 +0000
Manifest this update: Sun 01 Mar 2026 18:01:07 +0000
Manifest next update: Mon 02 Mar 2026 18:01:07 +0000
Files and hashes: 1: VK_z4Ar4ArJujXib0iTDaTWfTUo.roa (hash: 7jC4P8FePKMkGfygUtuv427FEEIelby1i3hhTi94LOw=)
2: h4R32LYtCfmui_29gSpT-X7UxXY.crl (hash: QedyOMlWqDpiX1M+CrFnEyiZTqpPZeoUfGnkzHH4HKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:a9:a7:3f:03:07:59:cd:05:04:56:f1:08:72:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Validity
Not Before: Mar 1 18:01:07 2026 GMT
Not After : Mar 2 18:01:07 2026 GMT
Subject: CN=ee10285603cb329fc8bfe11b25bb7c65022c91e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e3:64:5c:4a:5f:e6:42:d8:12:3f:9e:04:5e:
f2:ef:c6:be:89:71:86:32:6b:40:df:f4:66:10:f5:
50:1c:30:26:98:ed:e3:25:28:3f:95:ac:33:79:19:
a9:d5:ea:18:96:1f:64:80:e5:0d:0f:0c:47:f4:0f:
6e:da:27:88:23:0b:3e:69:cf:70:db:83:46:59:e7:
5e:6e:b5:86:ea:ee:80:17:4e:a2:ae:70:38:5c:2f:
22:25:05:e8:71:f7:9d:ae:47:69:29:8d:71:54:f1:
bc:15:ac:01:11:e7:85:8c:5a:73:39:60:6c:6b:64:
11:1c:3a:59:8b:e8:33:4d:80:5c:cd:c9:ec:03:dc:
0e:c3:f9:dc:6c:fb:05:a5:d8:62:27:c1:de:96:3c:
78:99:e7:1b:39:e6:fd:6d:e4:2a:27:84:e7:35:21:
e0:66:02:6a:22:83:1f:98:30:0d:5a:48:b3:1b:f5:
c8:d8:b6:a8:59:23:99:33:dd:1a:d4:1c:b2:9c:ee:
b9:59:5c:25:4d:33:fa:02:7d:98:3f:b4:fe:94:4e:
e5:ec:81:f5:23:8a:3f:db:83:bf:40:a7:46:98:0a:
6d:e7:0f:8e:e2:b5:53:b2:dd:40:93:e4:e5:b3:69:
8b:2c:eb:47:07:18:ae:c7:8f:1b:fb:cd:e8:d0:ac:
1d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:10:28:56:03:CB:32:9F:C8:BF:E1:1B:25:BB:7C:65:02:2C:91:E5
X509v3 Authority Key Identifier:
keyid:87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:c6:ff:c3:aa:ec:47:25:9b:88:91:7b:74:fc:ad:68:a5:b3:
04:d4:34:5c:f3:54:01:0f:c1:8d:1c:57:33:27:72:a3:ef:6b:
af:d8:ea:ac:37:fb:82:fe:ac:80:43:b1:56:46:4f:75:b2:73:
ae:00:eb:19:71:30:a9:df:f4:a1:e6:7f:39:c7:8e:b5:b5:9a:
cb:80:63:31:ea:f8:24:d4:7e:41:df:5d:14:6c:f5:09:51:05:
aa:d2:03:c3:0a:7c:69:be:29:12:c2:33:ab:b3:91:46:59:16:
77:bc:f3:1d:a5:cc:15:c7:d2:9e:51:ae:ac:f8:8a:2f:aa:ca:
13:3f:7c:09:bd:18:18:3e:1e:f1:d9:30:31:ac:d2:a1:ad:6e:
96:dc:01:97:03:cf:d7:a2:48:65:fb:e3:40:78:c4:ff:a9:e5:
03:81:9e:d0:e2:49:5c:18:a1:e1:1e:af:aa:33:9f:dc:76:c1:
0a:61:95:b8:18:83:84:f2:8e:18:28:54:6c:72:34:f4:39:a5:
99:c1:2a:e8:c7:1d:f4:7f:24:25:6a:27:12:e5:50:e7:31:ef:
15:5f:e7:3d:2b:f2:50:01:0e:13:e6:71:cd:83:a3:88:7b:64:
f1:ef:df:d7:ea:0f:c4:e2:a7:14:47:78:1a:ac:eb:34:f7:aa:
55:04:96:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqj6mnPwMHWc0FBFbxCHJ7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ODQ3N2Q4YjYyZDA5ZjlhZThiZmRiZDgxMmE1M2Y5N2Vk
NGM1NzYwHhcNMjYwMzAxMTgwMTA3WhcNMjYwMzAyMTgwMTA3WjAzMTEwLwYDVQQD
EyhlZTEwMjg1NjAzY2IzMjlmYzhiZmUxMWIyNWJiN2M2NTAyMmM5MWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtONkXEpf5kLYEj+eBF7y78a+iXGG
MmtA3/RmEPVQHDAmmO3jJSg/lawzeRmp1eoYlh9kgOUNDwxH9A9u2ieIIws+ac9w
24NGWedebrWG6u6AF06irnA4XC8iJQXocfedrkdpKY1xVPG8FawBEeeFjFpzOWBs
a2QRHDpZi+gzTYBczcnsA9wOw/ncbPsFpdhiJ8Heljx4mecbOeb9beQqJ4TnNSHg
ZgJqIoMfmDANWkizG/XI2LaoWSOZM90a1ByynO65WVwlTTP6An2YP7T+lE7l7IH1
I4o/24O/QKdGmApt5w+O4rVTst1Ak+Tls2mLLOtHBxiux48b+83o0KwdTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO4QKFYDyzKfyL/hGyW7fGUCLJHlMB8GA1UdIwQY
MBaAFIeEd9i2LQn5rov9vYEqU/l+1MV2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9lODNhYzUtNDQ4Yi00ZTQ5LThlYmYt
ODg0MmU1ZWRjZTAyLzEvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9lODNhYzUtNDQ4Yi00ZTQ5LThlYmYtODg0MmU1ZWRjZTAy
LzEvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVcb/w6rs
RyWbiJF7dPytaKWzBNQ0XPNUAQ/BjRxXMydyo+9rr9jqrDf7gv6sgEOxVkZPdbJz
rgDrGXEwqd/0oeZ/OceOtbWay4BjMer4JNR+Qd9dFGz1CVEFqtIDwwp8ab4pEsIz
q7ORRlkWd7zzHaXMFcfSnlGurPiKL6rKEz98Cb0YGD4e8dkwMazSoa1ultwBlwPP
16JIZfvjQHjE/6nlA4Ge0OJJXBih4R6vqjOf3HbBCmGVuBiDhPKOGChUbHI09Dml
mcEq6Mcd9H8kJWonEuVQ5zHvFV/nPSvyUAEOE+ZxzYOjiHtk8e/f1+oPxOKnFEd4
GqzrNPeqVQSWLg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:39:49 2026 by rpki-client