Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
File: x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft (raw, json)
Hash identifier: VtpeRFmt/mwQn4UwlFAJMYHFONtav0vqyzK/GAYWbTI=
Subject key identifier: 72:D5:3C:7D:97:25:87:78:A9:73:69:0C:EE:94:DE:04:8A:7F:FF:0E
Authority key identifier: C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC
Certificate issuer: /CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc
Certificate serial: 019D38657048D631B88077162EADD20EEBA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
Manifest number: 156D
Signing time: Sun 29 Mar 2026 07:01:05 +0000
Manifest this update: Sun 29 Mar 2026 07:01:05 +0000
Manifest next update: Mon 30 Mar 2026 07:01:05 +0000
Files and hashes: 1: YYn49ElJf0Sq1r0mfkdIQTwmQdg.roa (hash: QxGuwFKApJYfN3mvWwP7KytzI3pNw7rmnyOPXpRIZcM=)
2: x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl (hash: QLva/acr9vKeFgFWQiyNnZHIq9h06+qrjCrp03Xa2yw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:70:48:d6:31:b8:80:77:16:2e:ad:d2:0e:eb:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc
Validity
Not Before: Mar 29 07:01:05 2026 GMT
Not After : Mar 30 07:01:05 2026 GMT
Subject: CN=72d53c7d97258778a973690cee94de048a7fff0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e7:a7:84:67:72:93:b3:ff:35:74:cc:97:73:
5c:3a:76:11:46:c5:67:21:b6:7a:eb:08:45:dd:f7:
8b:25:51:0c:8d:66:e9:2f:f2:31:0c:58:03:6a:dd:
7b:a3:59:c6:4b:a0:6f:6d:8a:f8:b8:52:d1:8b:4e:
ba:6d:e1:07:29:88:35:de:08:36:63:d1:21:0a:f6:
20:78:36:47:de:bc:72:b7:d2:71:61:99:03:c8:c9:
0c:62:9b:3e:cb:75:47:8c:84:c2:d4:22:36:90:bb:
ff:b9:ea:8d:bf:ca:28:99:55:1e:e5:81:cf:eb:4a:
f7:b0:48:c4:ec:43:15:b9:d1:d3:01:93:a2:74:8c:
a0:29:8e:c3:f4:66:fd:ed:01:ec:51:38:69:d5:1f:
0f:11:db:89:3f:11:32:0b:00:10:63:95:ed:49:7f:
7c:ee:fe:88:81:e0:f7:0a:23:34:27:20:00:d0:4e:
03:86:14:b1:7a:10:d2:13:7e:e1:c7:e9:2b:70:c8:
61:1d:b9:9d:b0:79:dc:4f:01:fd:c9:d8:83:58:1c:
37:1a:15:f1:ab:2c:5d:36:c9:3c:af:5c:f3:83:30:
6a:04:73:e0:7a:70:e9:f8:64:ac:74:b4:09:90:7e:
f5:f6:59:95:03:00:51:b1:7f:39:40:82:24:00:66:
4f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D5:3C:7D:97:25:87:78:A9:73:69:0C:EE:94:DE:04:8A:7F:FF:0E
X509v3 Authority Key Identifier:
keyid:C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:78:f9:11:11:b8:a8:77:63:6a:74:33:ba:a7:c7:ec:34:d6:
52:d6:2f:d9:25:9a:b8:94:f7:f0:cd:27:91:ca:52:d5:db:92:
4e:0d:30:af:3a:cd:35:c9:a3:11:1e:2c:f8:57:1a:b7:9a:ed:
cd:97:66:3e:0d:9f:0d:6a:ac:ea:9d:cd:98:a5:ce:7e:21:1c:
fd:3b:c1:54:d7:93:46:26:a1:d6:14:bb:d6:43:85:4f:f0:10:
d9:da:33:90:96:d5:cb:f9:5f:cf:08:cf:f0:56:36:7e:9c:ff:
f2:7f:1a:be:ce:46:1a:fd:27:c7:3e:f5:bb:fd:18:f3:ec:12:
79:9a:8c:d2:93:a7:6c:a8:c1:33:19:5c:11:21:66:f3:c4:7d:
32:1c:94:ec:55:0c:b1:9d:e8:89:da:24:4f:ed:a8:5e:28:0f:
ad:33:ce:bd:e6:aa:ae:c0:e5:60:a7:80:a4:b5:a2:3e:a0:65:
0b:2b:0c:98:a4:d8:7c:95:5e:af:cc:3c:ec:d7:7a:12:2f:98:
25:76:11:d9:c0:fd:63:6f:dc:78:67:b1:b7:bd:4a:66:2b:1b:
72:3c:f8:9c:ca:95:92:ad:5b:88:b5:cd:d8:a7:e8:21:46:5f:
8f:1f:0f:8a:da:0e:b3:6a:52:51:5e:97:e5:8f:fe:d2:98:74:
00:b7:66:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZXBI1jG4gHcWLq3SDuugMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3OGI1MmRkZmQwYmU1NjFkNDEwY2E4ODQ2ZmM3OTdlMjI5
OGIzY2MwHhcNMjYwMzI5MDcwMTA1WhcNMjYwMzMwMDcwMTA1WjAzMTEwLwYDVQQD
Eyg3MmQ1M2M3ZDk3MjU4Nzc4YTk3MzY5MGNlZTk0ZGUwNDhhN2ZmZjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOenhGdyk7P/NXTMl3NcOnYRRsVn
IbZ66whF3feLJVEMjWbpL/IxDFgDat17o1nGS6BvbYr4uFLRi066beEHKYg13gg2
Y9EhCvYgeDZH3rxyt9JxYZkDyMkMYps+y3VHjITC1CI2kLv/ueqNv8oomVUe5YHP
60r3sEjE7EMVudHTAZOidIygKY7D9Gb97QHsUThp1R8PEduJPxEyCwAQY5XtSX98
7v6IgeD3CiM0JyAA0E4DhhSxehDSE37hx+krcMhhHbmdsHncTwH9ydiDWBw3GhXx
qyxdNsk8r1zzgzBqBHPgenDp+GSsdLQJkH719lmVAwBRsX85QIIkAGZP8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHLVPH2XJYd4qXNpDO6U3gSKf/8OMB8GA1UdIwQY
MBaAFMeLUt39C+Vh1BDKiEb8eX4imLPMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDR0UzNmMEw1V0hVRU1xSVJ2eDVmaUtZczh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy81MjU3MDctMWExMi00MTM4LWFlNDYt
OWY3ZThhNjEyMmEzLzEveDR0UzNmMEw1V0hVRU1xSVJ2eDVmaUtZczh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy81MjU3MDctMWExMi00MTM4LWFlNDYtOWY3ZThhNjEyMmEz
LzEveDR0UzNmMEw1V0hVRU1xSVJ2eDVmaUtZczh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPnj5ERG4
qHdjanQzuqfH7DTWUtYv2SWauJT38M0nkcpS1duSTg0wrzrNNcmjER4s+Fcat5rt
zZdmPg2fDWqs6p3NmKXOfiEc/TvBVNeTRiah1hS71kOFT/AQ2dozkJbVy/lfzwjP
8FY2fpz/8n8avs5GGv0nxz71u/0Y8+wSeZqM0pOnbKjBMxlcESFm88R9MhyU7FUM
sZ3oidokT+2oXigPrTPOveaqrsDlYKeApLWiPqBlCysMmKTYfJVer8w87Nd6Ei+Y
JXYR2cD9Y2/ceGext71KZisbcjz4nMqVkq1biLXN2KfoIUZfjx8PitoOs2pSUV6X
5Y/+0ph0ALdmEA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 16:27:00 2026 by rpki-client