Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
File: S5o7nhAjIJXBjSZERAzlxYoTizU.mft (raw, json)
Hash identifier: QCwPL0UwhVBPnqrBUp1Xx5PkGYeZ2qG7K/LpilCGkfs=
Subject key identifier: D1:AF:74:77:16:8F:E0:7C:ED:B5:6D:8E:29:80:3B:CA:AB:2C:27:AF
Authority key identifier: 4B:9A:3B:9E:10:23:20:95:C1:8D:26:44:44:0C:E5:C5:8A:13:8B:35
Certificate issuer: /CN=4b9a3b9e10232095c18d2644440ce5c58a138b35
Certificate serial: 019D39AE56340C3174CA633FE63B20469B78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
Manifest number: 1028
Signing time: Sun 29 Mar 2026 13:00:19 +0000
Manifest this update: Sun 29 Mar 2026 13:00:19 +0000
Manifest next update: Mon 30 Mar 2026 13:00:19 +0000
Files and hashes: 1: S5o7nhAjIJXBjSZERAzlxYoTizU.crl (hash: 2QQ5+KRP6kG8REiN1Im/L+B8xJ61CRY/wVYtoNaQkAc=)
2: _T6zV2ELZWjUdtaXJfX-mXC7l2M.roa (hash: Di+3zjNxD4VBkQkrMYOgpBTt4aXpGzdYOnM8KOhwPZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:56:34:0c:31:74:ca:63:3f:e6:3b:20:46:9b:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b9a3b9e10232095c18d2644440ce5c58a138b35
Validity
Not Before: Mar 29 13:00:19 2026 GMT
Not After : Mar 30 13:00:19 2026 GMT
Subject: CN=d1af7477168fe07cedb56d8e29803bcaab2c27af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:46:d7:6b:fe:49:8c:31:77:d8:9d:c4:4e:09:
63:d5:2e:53:7b:bd:1f:f6:08:29:92:2b:52:9e:8c:
e2:d9:a0:1a:8f:c1:ef:1c:5e:b2:08:50:f8:41:c5:
d3:2e:77:f5:69:d4:87:a6:46:dc:e4:5d:35:7c:8a:
66:a7:b0:fa:ea:e5:d1:da:12:07:f4:b6:bb:12:6a:
b5:65:86:56:78:ba:80:af:06:05:da:8b:e1:0f:4e:
ae:14:16:16:24:71:87:57:ef:da:95:6e:00:78:28:
d3:ff:20:86:d8:1a:4c:62:f9:41:38:3d:ca:50:8a:
e6:6f:fe:ad:f7:6a:14:97:d9:62:a8:67:ce:21:ec:
41:fe:80:d8:30:60:b9:a7:06:be:8d:c0:54:dd:23:
ad:da:90:24:9d:42:1c:51:92:ca:e8:0a:47:76:99:
bc:0f:f3:c9:e3:95:1c:98:78:da:d0:b0:28:c3:4a:
66:53:87:2d:02:63:7f:93:e1:10:ac:01:53:a7:b4:
a6:10:8f:b8:6e:90:63:9e:62:e9:99:bb:38:f6:ba:
65:26:27:80:1e:24:b3:33:29:bf:57:84:e9:25:3f:
0c:fd:73:c4:0d:22:7e:19:4e:0c:5b:d9:79:4d:01:
32:6b:57:cf:8e:d4:16:e9:e1:3a:25:04:b6:6a:ce:
ee:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:AF:74:77:16:8F:E0:7C:ED:B5:6D:8E:29:80:3B:CA:AB:2C:27:AF
X509v3 Authority Key Identifier:
keyid:4B:9A:3B:9E:10:23:20:95:C1:8D:26:44:44:0C:E5:C5:8A:13:8B:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:31:52:85:a1:91:3a:d8:0c:5f:6b:9a:3a:a7:75:4f:7e:58:
56:b1:b5:50:5f:34:0c:1a:63:ca:49:d9:0b:bb:dd:32:c3:5c:
7a:eb:b1:fe:04:d1:c6:61:19:7f:06:82:ff:8d:7d:b5:6a:9f:
08:b3:74:cb:96:f2:fd:1f:b9:6b:bf:c7:08:dc:1e:48:d3:d2:
ea:a4:57:94:6a:62:8d:2b:d5:4f:6e:b1:b2:f0:6e:26:ad:34:
1d:38:94:c1:96:c9:91:19:d1:d0:27:a2:d1:a5:a7:80:27:d8:
74:34:e6:98:37:8d:64:e0:db:3f:7b:b1:d3:2f:4b:04:74:92:
22:67:29:e3:46:af:87:06:01:a3:de:5b:d0:15:e4:5a:d9:26:
78:8d:fa:e6:51:ad:2c:d0:01:d6:80:ab:45:1b:c9:10:4c:bd:
d0:97:71:0a:65:de:25:6c:75:02:c4:e9:15:9e:70:a4:6a:11:
96:a5:cc:e5:83:55:81:5f:bd:51:d6:8e:9d:13:8d:33:f8:e3:
6d:7e:60:e4:98:e3:68:dc:e0:26:86:85:c9:59:38:13:be:23:
94:ed:67:57:fb:77:7d:73:a4:ce:53:59:6a:f5:4c:21:bc:29:
67:d8:61:d5:28:3b:14:89:ee:71:26:cd:8c:42:1b:f5:31:29:
d0:a0:ea:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05rlY0DDF0ymM/5jsgRpt4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiOWEzYjllMTAyMzIwOTVjMThkMjY0NDQ0MGNlNWM1OGEx
MzhiMzUwHhcNMjYwMzI5MTMwMDE5WhcNMjYwMzMwMTMwMDE5WjAzMTEwLwYDVQQD
EyhkMWFmNzQ3NzE2OGZlMDdjZWRiNTZkOGUyOTgwM2JjYWFiMmMyN2FmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUbXa/5JjDF32J3ETglj1S5Te70f
9ggpkitSnozi2aAaj8HvHF6yCFD4QcXTLnf1adSHpkbc5F01fIpmp7D66uXR2hIH
9La7Emq1ZYZWeLqArwYF2ovhD06uFBYWJHGHV+/alW4AeCjT/yCG2BpMYvlBOD3K
UIrmb/6t92oUl9liqGfOIexB/oDYMGC5pwa+jcBU3SOt2pAknUIcUZLK6ApHdpm8
D/PJ45UcmHja0LAow0pmU4ctAmN/k+EQrAFTp7SmEI+4bpBjnmLpmbs49rplJieA
HiSzMym/V4TpJT8M/XPEDSJ+GU4MW9l5TQEya1fPjtQW6eE6JQS2as7uWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNGvdHcWj+B87bVtjimAO8qrLCevMB8GA1UdIwQY
MBaAFEuaO54QIyCVwY0mREQM5cWKE4s1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzVvN25oQWpJSlhCalNaRVJBemx4WW9UaXpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS9mMjFlZTAtZDczMC00NWRiLTk3YmQt
YzM0YmUwM2MxNWRiLzEvUzVvN25oQWpJSlhCalNaRVJBemx4WW9UaXpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS9mMjFlZTAtZDczMC00NWRiLTk3YmQtYzM0YmUwM2MxNWRi
LzEvUzVvN25oQWpJSlhCalNaRVJBemx4WW9UaXpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdjFShaGR
OtgMX2uaOqd1T35YVrG1UF80DBpjyknZC7vdMsNceuux/gTRxmEZfwaC/419tWqf
CLN0y5by/R+5a7/HCNweSNPS6qRXlGpijSvVT26xsvBuJq00HTiUwZbJkRnR0Cei
0aWngCfYdDTmmDeNZODbP3ux0y9LBHSSImcp40avhwYBo95b0BXkWtkmeI365lGt
LNAB1oCrRRvJEEy90JdxCmXeJWx1AsTpFZ5wpGoRlqXM5YNVgV+9UdaOnRONM/jj
bX5g5JjjaNzgJoaFyVk4E74jlO1nV/t3fXOkzlNZavVMIbwpZ9hh1Sg7FInucSbN
jEIb9TEp0KDqKQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:06 2026 by rpki-client