Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
File: mq5G4hNZMNomjAZNzlrbtjoM7DY.mft (raw, json)
Hash identifier: k3PXAAVkG34Up9AsZl6aFRAJ8iYxX87mxsIkPuAmXLw=
Subject key identifier: AD:79:AA:17:6A:AB:A6:AF:41:E7:49:4B:37:3D:94:A4:B2:BE:58:05
Authority key identifier: 9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36
Certificate issuer: /CN=9aae46e2135930da268c064dce5adbb63a0cec36
Certificate serial: 019D382EAE741A39959ADD5AE99B8DEE44A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
Manifest number: 125A
Signing time: Sun 29 Mar 2026 06:01:16 +0000
Manifest this update: Sun 29 Mar 2026 06:01:16 +0000
Manifest next update: Mon 30 Mar 2026 06:01:16 +0000
Files and hashes: 1: Hs3ktAK06Dj681LT3K6I_ytQOww.roa (hash: wbOb5BXeVE4ZTQ/ou2jyGYitrKnVaEx90HF7mvuSF08=)
2: mq5G4hNZMNomjAZNzlrbtjoM7DY.crl (hash: j6Yr5manGsSERv9tU5UeQ7SVlmv57KeCrsn5FCvoZo4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:ae:74:1a:39:95:9a:dd:5a:e9:9b:8d:ee:44:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aae46e2135930da268c064dce5adbb63a0cec36
Validity
Not Before: Mar 29 06:01:16 2026 GMT
Not After : Mar 30 06:01:16 2026 GMT
Subject: CN=ad79aa176aaba6af41e7494b373d94a4b2be5805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f8:f1:f6:d3:2c:bb:5a:4d:ed:29:d7:7a:a4:
ab:4d:cc:f1:61:d1:2d:a4:e6:0b:4d:45:6f:5c:26:
73:8e:3e:cb:79:d2:93:a6:e0:20:b4:71:64:66:a7:
10:62:80:66:77:d2:bc:5a:4f:57:67:93:3e:37:af:
e3:e8:7d:92:2c:99:d9:86:46:9b:19:5e:05:fa:b3:
73:bf:41:64:5c:ac:ef:db:b8:d7:e0:cb:01:df:b6:
5c:42:48:5a:03:4e:69:95:2b:fd:5e:61:29:f1:da:
7c:83:d0:fc:d1:d1:08:15:86:dd:fa:f2:a3:9e:dd:
6e:78:6f:68:de:df:9e:63:10:7b:77:04:1c:14:2b:
35:79:88:be:38:e5:f0:af:26:63:a1:da:dd:78:bc:
8b:de:b4:2f:dd:5b:9b:d0:3b:fa:5b:72:0f:02:40:
a8:47:5c:a6:03:01:55:99:cb:d9:02:39:f2:68:38:
fb:93:16:17:a8:c0:06:65:28:81:ea:7e:d3:3d:2b:
af:ad:ca:aa:18:82:1c:c7:61:f2:2c:5c:98:ad:7e:
3d:0e:9b:5f:c0:96:30:1a:88:32:3b:03:71:d3:5f:
79:54:bb:af:f3:69:38:fd:03:3f:f2:25:51:5b:12:
e7:6c:c4:00:61:dd:ba:27:05:72:fa:df:ed:ca:c6:
43:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:79:AA:17:6A:AB:A6:AF:41:E7:49:4B:37:3D:94:A4:B2:BE:58:05
X509v3 Authority Key Identifier:
keyid:9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:15:84:41:0a:dc:ec:f2:4a:b3:06:3a:12:1a:c3:e7:33:cd:
7c:ff:7f:1a:06:29:7b:8f:7d:9d:43:17:22:ed:ef:30:0a:c9:
73:df:5c:9b:07:12:c9:dd:31:c9:fd:d6:5e:fa:6c:93:57:08:
e7:c7:d2:35:e7:94:90:47:39:4f:da:b1:fd:d5:37:b2:3f:81:
df:80:ea:0c:5a:7b:84:75:2b:15:5d:2a:a9:e6:7e:44:da:ef:
bc:e0:0e:16:4a:3a:58:88:5f:3e:26:0b:42:6b:9c:59:65:6e:
7a:3b:f8:db:f0:ba:75:17:0c:b9:13:92:b4:b5:ca:8b:ec:ce:
c0:28:81:bd:4a:28:68:68:50:94:b9:27:df:6a:b2:b8:c7:a2:
65:a8:d8:f3:3c:c8:06:99:d7:a4:21:fc:8b:fb:39:31:1f:57:
55:07:be:2d:32:3f:25:6d:a1:56:de:09:5c:cd:c9:f1:43:04:
21:e7:26:7d:f8:ee:4d:62:10:04:06:84:b3:ba:6e:f7:88:ec:
c5:72:99:f9:48:73:3e:b2:4d:71:67:5e:83:b4:59:39:9f:56:
43:b4:ce:49:02:ce:b3:2e:6d:e4:70:ce:03:53:99:b4:b2:b3:
82:4a:b0:bb:dd:0e:8b:61:69:39:fe:5d:cb:80:20:0c:f5:16:
a9:d6:b2:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04Lq50GjmVmt1a6ZuN7kSoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhYWU0NmUyMTM1OTMwZGEyNjhjMDY0ZGNlNWFkYmI2M2Ew
Y2VjMzYwHhcNMjYwMzI5MDYwMTE2WhcNMjYwMzMwMDYwMTE2WjAzMTEwLwYDVQQD
EyhhZDc5YWExNzZhYWJhNmFmNDFlNzQ5NGIzNzNkOTRhNGIyYmU1ODA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx/jx9tMsu1pN7SnXeqSrTczxYdEt
pOYLTUVvXCZzjj7LedKTpuAgtHFkZqcQYoBmd9K8Wk9XZ5M+N6/j6H2SLJnZhkab
GV4F+rNzv0FkXKzv27jX4MsB37ZcQkhaA05plSv9XmEp8dp8g9D80dEIFYbd+vKj
nt1ueG9o3t+eYxB7dwQcFCs1eYi+OOXwryZjodrdeLyL3rQv3Vub0Dv6W3IPAkCo
R1ymAwFVmcvZAjnyaDj7kxYXqMAGZSiB6n7TPSuvrcqqGIIcx2HyLFyYrX49Dptf
wJYwGogyOwNx0195VLuv82k4/QM/8iVRWxLnbMQAYd26JwVy+t/tysZDQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK15qhdqq6avQedJSzc9lKSyvlgFMB8GA1UdIwQY
MBaAFJquRuITWTDaJowGTc5a27Y6DOw2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXE1RzRoTlpNTm9takFaTnpscmJ0am9NN0RZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9kOGZjNzgtYTUxYi00M2RjLWI1MGEt
OGFlNDMwODFhYTM2LzEvbXE1RzRoTlpNTm9takFaTnpscmJ0am9NN0RZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9kOGZjNzgtYTUxYi00M2RjLWI1MGEtOGFlNDMwODFhYTM2
LzEvbXE1RzRoTlpNTm9takFaTnpscmJ0am9NN0RZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAThWEQQrc
7PJKswY6EhrD5zPNfP9/GgYpe499nUMXIu3vMArJc99cmwcSyd0xyf3WXvpsk1cI
58fSNeeUkEc5T9qx/dU3sj+B34DqDFp7hHUrFV0qqeZ+RNrvvOAOFko6WIhfPiYL
QmucWWVuejv42/C6dRcMuROStLXKi+zOwCiBvUooaGhQlLkn32qyuMeiZajY8zzI
BpnXpCH8i/s5MR9XVQe+LTI/JW2hVt4JXM3J8UMEIecmffjuTWIQBAaEs7pu94js
xXKZ+UhzPrJNcWdeg7RZOZ9WQ7TOSQLOsy5t5HDOA1OZtLKzgkqwu90Oi2FpOf5d
y4AgDPUWqdayxw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:10:38 2026 by rpki-client