Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
File: i8Wo923xVof4NEHJprVUV48831c.mft (raw, json)
Hash identifier: k81SChfJQU+iDmDe88az1DNfwRKFobvc+ESx5NZvcPk=
Subject key identifier: BC:4E:70:DC:DE:18:21:62:34:B4:63:77:54:50:42:78:69:7C:42:66
Authority key identifier: 8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
Certificate issuer: /CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Certificate serial: 019D38664724963B27CE2B5C7E717A2BC2D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
Manifest number: 052D
Signing time: Sun 29 Mar 2026 07:02:00 +0000
Manifest this update: Sun 29 Mar 2026 07:02:00 +0000
Manifest next update: Mon 30 Mar 2026 07:02:00 +0000
Files and hashes: 1: YmvEy21Oo_K93uY9_6q4yH9waAs.roa (hash: Dd5U/8FlVGfaWd8sQ9wxYRvKK+HxQrbJ5WW1os00xSE=)
2: i8Wo923xVof4NEHJprVUV48831c.crl (hash: NE90UgGukA6TOY3KzJ9QXHJbwhQTNx7TQqnn35SJf0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:47:24:96:3b:27:ce:2b:5c:7e:71:7a:2b:c2:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Validity
Not Before: Mar 29 07:02:00 2026 GMT
Not After : Mar 30 07:02:00 2026 GMT
Subject: CN=bc4e70dcde18216234b4637754504278697c4266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bb:b2:49:92:00:c3:3f:96:17:92:6b:2d:71:
df:01:56:35:80:37:77:89:90:ad:33:fb:7c:76:e2:
b1:b9:bd:94:86:28:fd:b8:b6:16:98:e1:84:db:fa:
ce:fb:7b:e8:a3:41:10:c6:f0:a1:df:b2:1e:7b:b1:
69:06:c2:a3:cf:f6:77:20:02:65:e6:dd:78:9a:93:
32:73:d8:98:c9:eb:c8:19:38:ea:bd:e7:bb:21:39:
e6:25:70:89:06:44:af:20:19:ce:b4:98:5a:e0:af:
77:b7:10:d8:ae:ad:74:ed:8e:9b:99:6b:8f:77:77:
b4:6b:20:be:81:ce:ae:f3:95:d7:18:8b:1e:22:8c:
ca:9a:35:30:18:6f:ef:47:37:ca:2e:24:60:64:74:
1e:aa:87:c5:e5:8a:89:f3:c0:cf:6d:f6:89:1d:3c:
17:04:43:3f:38:5a:65:5a:a5:64:2a:ae:d0:ef:f8:
da:4d:bf:b4:21:f9:0e:50:57:91:8c:d9:3a:25:77:
d9:97:89:8a:0f:84:6c:8a:26:45:2d:96:e3:e2:47:
fb:d3:d8:99:88:6a:8c:c9:85:f9:66:9f:86:83:e3:
cc:75:ce:2f:38:10:b7:d4:f0:6b:9a:7f:89:fe:81:
36:37:32:23:95:1c:66:04:0f:0c:ca:ad:e5:a8:ca:
3c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:4E:70:DC:DE:18:21:62:34:B4:63:77:54:50:42:78:69:7C:42:66
X509v3 Authority Key Identifier:
keyid:8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:0c:1b:ef:29:cf:0f:5f:ff:9a:c2:71:1b:10:90:88:1c:29:
c5:d5:b6:f0:96:fc:d6:68:80:5d:9c:45:47:ae:a4:4a:e0:8a:
41:c7:a2:97:0d:51:50:7c:27:d9:c5:1f:a0:e5:80:c5:86:2e:
02:f6:2b:70:88:5a:7c:a7:b1:86:10:65:23:dd:f0:b7:a1:01:
ed:49:b0:d5:fb:d5:cf:ec:7f:01:60:ed:1f:e4:f2:a5:de:49:
25:ba:4a:31:08:11:df:68:c7:39:24:f1:0f:64:0a:de:f4:a1:
40:3c:72:67:19:4b:c4:9f:96:2b:42:0b:2a:fe:55:cf:41:7f:
8d:c2:da:13:7a:c2:90:91:d6:ca:77:22:1b:9f:bd:7a:fc:4d:
c4:4d:d0:07:a6:b5:29:f4:7a:b4:fc:fa:18:3d:3d:a2:60:57:
2f:0d:db:dc:72:fe:63:0f:67:ae:7d:65:db:c2:06:6d:82:50:
d2:67:73:87:86:bc:03:fc:5e:89:c0:5e:e8:8f:19:3b:d0:63:
71:16:be:69:a5:20:a4:c2:3d:48:59:64:f1:3b:65:23:4e:84:
1a:23:d6:33:b2:ec:a2:92:4f:59:32:73:7f:c1:b4:e8:3a:3a:
3e:eb:98:0b:b7:f5:3f:c3:15:bb:e8:3b:c8:31:d3:d8:a8:b0:
b1:f2:48:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZkckljsnzitcfnF6K8LTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYzVhOGY3NmRmMTU2ODdmODM0NDFjOWE2YjU1NDU3OGYz
Y2RmNTcwHhcNMjYwMzI5MDcwMjAwWhcNMjYwMzMwMDcwMjAwWjAzMTEwLwYDVQQD
EyhiYzRlNzBkY2RlMTgyMTYyMzRiNDYzNzc1NDUwNDI3ODY5N2M0MjY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLuySZIAwz+WF5JrLXHfAVY1gDd3
iZCtM/t8duKxub2Uhij9uLYWmOGE2/rO+3voo0EQxvCh37Iee7FpBsKjz/Z3IAJl
5t14mpMyc9iYyevIGTjqvee7ITnmJXCJBkSvIBnOtJha4K93txDYrq107Y6bmWuP
d3e0ayC+gc6u85XXGIseIozKmjUwGG/vRzfKLiRgZHQeqofF5YqJ88DPbfaJHTwX
BEM/OFplWqVkKq7Q7/jaTb+0IfkOUFeRjNk6JXfZl4mKD4RsiiZFLZbj4kf709iZ
iGqMyYX5Zp+Gg+PMdc4vOBC31PBrmn+J/oE2NzIjlRxmBA8Myq3lqMo8hwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLxOcNzeGCFiNLRjd1RQQnhpfEJmMB8GA1UdIwQY
MBaAFIvFqPdt8VaH+DRByaa1VFePPN9XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaThXbzkyM3hWb2Y0TkVISnByVlVWNDg4MzFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8yNWU4M2QtMjM2NS00MTI2LTlhYTct
OTRiOWNmMmNkMmVmLzEvaThXbzkyM3hWb2Y0TkVISnByVlVWNDg4MzFjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS8yNWU4M2QtMjM2NS00MTI2LTlhYTctOTRiOWNmMmNkMmVm
LzEvaThXbzkyM3hWb2Y0TkVISnByVlVWNDg4MzFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlQwb7ynP
D1//msJxGxCQiBwpxdW28Jb81miAXZxFR66kSuCKQceilw1RUHwn2cUfoOWAxYYu
AvYrcIhafKexhhBlI93wt6EB7Umw1fvVz+x/AWDtH+Typd5JJbpKMQgR32jHOSTx
D2QK3vShQDxyZxlLxJ+WK0ILKv5Vz0F/jcLaE3rCkJHWynciG5+9evxNxE3QB6a1
KfR6tPz6GD09omBXLw3b3HL+Yw9nrn1l28IGbYJQ0mdzh4a8A/xeicBe6I8ZO9Bj
cRa+aaUgpMI9SFlk8TtlI06EGiPWM7LsopJPWTJzf8G06Do6PuuYC7f1P8MVu+g7
yDHT2KiwsfJI+g==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:48:51 2026 by rpki-client