Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json)
Hash identifier: sJymEorslVJqcKf3BB7sgjunaDSKt8ZKY15xXocNyNo=
Subject key identifier: E1:F9:00:D9:1E:B1:00:51:E7:7B:55:35:72:BB:D6:78:02:95:45:9B
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 019D39779A8894F7E2250607A27BCC9DB494
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
Manifest number: 051A
Signing time: Sun 29 Mar 2026 12:00:32 +0000
Manifest this update: Sun 29 Mar 2026 12:00:32 +0000
Manifest next update: Mon 30 Mar 2026 12:00:32 +0000
Files and hashes: 1: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: 8gWZhxlHoKc6tlL6OInx+Tuh6P0WGvf+dvELNo+zzX8=)
2: N3bXffW8yKFqU5UMm7fvxG-jz6A.roa (hash: bdRoY8TZDQQa0PscQFcX1AU8tV8n2oKXvuQ9ADHxYzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:9a:88:94:f7:e2:25:06:07:a2:7b:cc:9d:b4:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: Mar 29 12:00:32 2026 GMT
Not After : Mar 30 12:00:32 2026 GMT
Subject: CN=e1f900d91eb10051e77b553572bbd6780295459b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:73:13:59:a5:60:dc:fa:3d:0f:c8:a6:b8:0d:
b1:e8:66:40:af:52:a6:76:5e:cc:9a:e3:78:39:ce:
7f:0f:11:e8:63:6d:5f:ee:55:b2:0d:55:1a:e5:e1:
c3:98:bc:ee:20:93:09:46:e6:3c:3f:c1:f4:f0:11:
d6:de:c5:50:2d:6f:60:42:79:3a:98:98:da:f9:47:
c0:6d:87:46:11:15:8a:23:e2:e8:26:a9:5d:72:ff:
d5:cf:da:34:eb:5c:3e:b8:db:3a:60:7e:e3:84:b7:
e2:4c:64:d4:da:c9:b5:0d:0c:29:89:f2:85:d5:b8:
85:cb:41:af:aa:bc:4f:da:70:56:b3:62:8e:26:31:
54:23:ee:41:da:68:f6:46:44:d8:ad:26:81:69:2a:
13:af:ab:87:25:32:c7:6f:8a:18:fb:05:c8:6f:3d:
72:06:42:dd:45:71:96:25:28:18:84:69:c9:9d:fd:
49:b4:b7:f7:aa:ac:95:2a:fe:de:92:dd:bb:f3:f0:
5b:51:81:db:bd:72:36:99:55:e8:97:59:07:1c:b2:
b0:66:97:10:09:4d:ad:b7:ff:63:88:3a:14:f4:be:
66:6c:a4:52:f9:1f:3e:bd:9a:d1:70:55:9b:75:e0:
c7:3f:09:b3:75:c5:00:d7:c2:b8:88:21:0c:01:8c:
5d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F9:00:D9:1E:B1:00:51:E7:7B:55:35:72:BB:D6:78:02:95:45:9B
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:18:bd:07:fa:1b:a6:45:99:e1:c8:dc:6a:8d:e6:1f:7b:2d:
7d:93:d0:ae:2d:c6:53:93:1e:fe:bc:1c:c8:af:64:13:ee:cb:
92:03:2e:45:25:12:57:43:3d:8a:a1:13:3b:2e:5f:b3:d2:9e:
4f:c7:d9:94:62:9c:fe:72:eb:44:20:d3:10:2e:d2:3c:d2:13:
58:9c:ba:99:57:3e:85:f6:c1:8d:3b:0b:71:7b:cb:a3:a0:1b:
e4:97:aa:e4:a6:3f:d6:a2:d8:34:2a:14:3a:a2:3b:5b:db:2d:
14:bb:e2:b1:ce:85:ff:bf:6d:aa:06:6c:ad:0c:0b:32:e1:da:
7a:d5:74:97:6c:98:69:02:1e:73:98:5b:d6:a1:5c:72:de:bd:
05:ce:97:cc:5a:a6:0b:3c:31:00:99:42:8e:68:3a:f4:fa:ca:
72:87:24:bb:54:74:1c:ba:cf:1f:32:d2:b2:d5:f8:de:bf:50:
c1:2c:0d:2b:a9:33:91:79:4c:82:69:25:1a:73:b5:60:75:d9:
d3:6b:2a:00:e1:11:ae:95:bf:b5:86:67:bb:33:25:47:63:d7:
3e:ed:a6:37:75:24:1f:55:78:ac:67:2e:fc:fa:ff:9a:a2:e4:
40:5b:c0:04:e4:c6:b6:f6:75:34:1b:a8:06:a2:09:b1:fd:8b:
56:13:85:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05d5qIlPfiJQYHonvMnbSUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmYThmYjUzOTlhMjdhNDMwYWU3MjdjNTMyY2QyMjQ5OTll
ODg2NGYwHhcNMjYwMzI5MTIwMDMyWhcNMjYwMzMwMTIwMDMyWjAzMTEwLwYDVQQD
EyhlMWY5MDBkOTFlYjEwMDUxZTc3YjU1MzU3MmJiZDY3ODAyOTU0NTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnMTWaVg3Po9D8imuA2x6GZAr1Km
dl7MmuN4Oc5/DxHoY21f7lWyDVUa5eHDmLzuIJMJRuY8P8H08BHW3sVQLW9gQnk6
mJja+UfAbYdGERWKI+LoJqldcv/Vz9o061w+uNs6YH7jhLfiTGTU2sm1DQwpifKF
1biFy0GvqrxP2nBWs2KOJjFUI+5B2mj2RkTYrSaBaSoTr6uHJTLHb4oY+wXIbz1y
BkLdRXGWJSgYhGnJnf1JtLf3qqyVKv7ekt278/BbUYHbvXI2mVXol1kHHLKwZpcQ
CU2tt/9jiDoU9L5mbKRS+R8+vZrRcFWbdeDHPwmzdcUA18K4iCEMAYxd6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOH5ANkesQBR53tVNXK71ngClUWbMB8GA1UdIwQY
MBaAFA+o+1OZonpDCucnxTLNIkmZ6IZPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDZqN1U1bWlla01LNXlmRk1zMGlTWm5vaGs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zODZmODEtYjEzOS00OGFmLWJjZWEt
YTcxZmI0NjM1MDY1LzEvRDZqN1U1bWlla01LNXlmRk1zMGlTWm5vaGs4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8zODZmODEtYjEzOS00OGFmLWJjZWEtYTcxZmI0NjM1MDY1
LzEvRDZqN1U1bWlla01LNXlmRk1zMGlTWm5vaGs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMRi9B/ob
pkWZ4cjcao3mH3stfZPQri3GU5Me/rwcyK9kE+7LkgMuRSUSV0M9iqETOy5fs9Ke
T8fZlGKc/nLrRCDTEC7SPNITWJy6mVc+hfbBjTsLcXvLo6Ab5Jeq5KY/1qLYNCoU
OqI7W9stFLvisc6F/79tqgZsrQwLMuHaetV0l2yYaQIec5hb1qFcct69Bc6XzFqm
CzwxAJlCjmg69PrKcocku1R0HLrPHzLSstX43r9QwSwNK6kzkXlMgmklGnO1YHXZ
02sqAOERrpW/tYZnuzMlR2PXPu2mN3UkH1V4rGcu/Pr/mqLkQFvABOTGtvZ1NBuo
BqIJsf2LVhOFBA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:04:05 2026 by rpki-client