Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: M8h9rl7q20bzqTUm788tPs3ClgkWQwsR3mdgMGZvo1U=
Subject key identifier: 0D:AD:86:DF:33:18:CF:5E:6E:E7:42:0B:1F:3B:CC:3D:94:1F:7F:68
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 019D38D2F8EACFABF67E6F615988ED8E58C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 05AC
Signing time: Sun 29 Mar 2026 09:00:43 +0000
Manifest this update: Sun 29 Mar 2026 09:00:43 +0000
Manifest next update: Mon 30 Mar 2026 09:00:43 +0000
Files and hashes: 1: 8Qo74UQPSqvugCWFfb9DBf7wKqE.roa (hash: M/pOvg/hdX2EdZ83UmfDv3mPILFnj+u5MLVly1CyGXs=)
2: NZYrDqHNM7w06ZqIbetRmQuvkI8.roa (hash: aqDX81Tnke9g7oa5zcmS5K2aP4v9bwtCbdPJWZIvsEE=)
3: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: xR7MWLxq7Xo1gMaqvrQNZFc9zB7W3adqdDtwaEQCDfs=)
4: j7E0VOUyJDRGY1mXB_LTgfCHtec.roa (hash: DmIJX6VYUzzGV5IX9wpqM+xTHY2Teuv8gdmzrljcdLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:f8:ea:cf:ab:f6:7e:6f:61:59:88:ed:8e:58:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: Mar 29 09:00:43 2026 GMT
Not After : Mar 30 09:00:43 2026 GMT
Subject: CN=0dad86df3318cf5e6ee7420b1f3bcc3d941f7f68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0a:15:bb:5e:4e:97:73:fd:fa:03:81:7f:65:
36:32:c6:69:7a:40:2e:97:f8:11:e5:b3:f7:ad:04:
32:ea:41:33:43:91:45:bd:0a:9b:d2:ea:4a:d3:5c:
8e:8b:42:b3:9e:34:77:70:27:34:b0:b0:9b:dd:65:
71:91:b4:1a:13:57:ad:a8:ca:94:7d:52:9b:8f:97:
ae:1d:8d:8f:fe:84:83:92:8e:44:14:64:d3:08:0f:
8c:04:0b:29:8a:7f:5f:b2:10:11:86:dc:63:ba:59:
7a:05:93:aa:62:35:fa:57:d2:81:c3:f3:4d:ca:42:
5d:6f:07:e7:60:fa:89:52:54:9f:1e:e3:fe:a2:75:
f0:b5:ef:38:53:66:73:70:be:63:2c:7e:aa:a5:17:
64:49:e4:94:68:42:ca:28:dc:e2:33:e4:dc:c0:35:
8b:4a:a5:e0:b2:fe:1e:d8:d8:9e:b1:a3:59:d6:a2:
5c:72:67:42:f5:d2:54:45:32:74:08:13:83:22:98:
79:2a:64:be:40:fd:d0:e5:fd:1e:87:db:7c:8f:eb:
7c:29:9b:85:a0:f4:5f:33:96:84:0c:75:9e:b3:54:
52:22:43:2b:7d:96:00:f4:6d:74:79:68:29:10:86:
74:dd:8f:c9:4c:49:a9:2b:c4:b1:30:73:e3:54:45:
25:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:AD:86:DF:33:18:CF:5E:6E:E7:42:0B:1F:3B:CC:3D:94:1F:7F:68
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:fe:53:5e:b4:18:eb:bf:09:24:54:2c:04:ae:b8:78:45:96:
84:8d:a5:62:ca:13:3c:a3:d6:e4:80:ac:80:11:40:b2:24:29:
14:30:8a:89:30:a6:22:d8:42:7e:d6:bb:57:d2:17:ff:f2:b7:
9e:04:74:95:83:25:3b:99:5b:aa:e3:fb:2b:f9:a1:fd:38:9e:
92:9d:79:5a:97:78:10:df:c4:04:9e:ee:c1:7b:21:64:66:48:
2d:41:fc:7d:2a:2f:e7:74:32:47:91:2a:76:ba:c9:b0:75:54:
f0:4c:72:1f:f2:3e:a6:bf:18:0d:81:08:48:cc:5c:79:48:cf:
68:12:1d:c9:1d:92:c8:7b:ca:52:a3:80:f9:66:9a:4e:bc:99:
c9:bf:fa:3f:81:0d:2b:41:03:f3:16:58:2e:00:69:e1:88:71:
bf:47:f7:58:19:d5:1f:ba:9a:6b:10:f8:b4:9c:fa:83:e7:eb:
6f:f9:15:9c:6a:ff:97:76:d4:21:54:85:1c:9d:67:d8:63:73:
08:7c:1e:79:73:8b:10:bf:42:c1:e1:91:b3:37:8f:c9:f0:d9:
a8:6e:10:d6:d0:61:26:5f:56:90:99:00:09:af:ea:2d:17:c9:
1f:a4:19:d3:bd:85:d3:a5:a4:b3:98:e4:49:dc:bf:cd:90:43:
6e:b3:ba:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040vjqz6v2fm9hWYjtjljDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3MmY3MDM1YzI4OTNiMjhjZDA0ZmQxYTliM2NhY2QyNDI4
YzhkZmQwHhcNMjYwMzI5MDkwMDQzWhcNMjYwMzMwMDkwMDQzWjAzMTEwLwYDVQQD
EygwZGFkODZkZjMzMThjZjVlNmVlNzQyMGIxZjNiY2MzZDk0MWY3ZjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwoVu15Ol3P9+gOBf2U2MsZpekAu
l/gR5bP3rQQy6kEzQ5FFvQqb0upK01yOi0KznjR3cCc0sLCb3WVxkbQaE1etqMqU
fVKbj5euHY2P/oSDko5EFGTTCA+MBAspin9fshARhtxjull6BZOqYjX6V9KBw/NN
ykJdbwfnYPqJUlSfHuP+onXwte84U2ZzcL5jLH6qpRdkSeSUaELKKNziM+TcwDWL
SqXgsv4e2NiesaNZ1qJccmdC9dJURTJ0CBODIph5KmS+QP3Q5f0eh9t8j+t8KZuF
oPRfM5aEDHWes1RSIkMrfZYA9G10eWgpEIZ03Y/JTEmpK8SxMHPjVEUlxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA2tht8zGM9ebudCCx87zD2UH39oMB8GA1UdIwQY
MBaAFHcvcDXCiTsozQT9Gps8rNJCjI39MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi80MWVhZTAtNmI3Mi00NjI0LTljMjQt
ODMwMzVhZmU0YTM3LzEvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi80MWVhZTAtNmI3Mi00NjI0LTljMjQtODMwMzVhZmU0YTM3
LzEvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuv5TXrQY
678JJFQsBK64eEWWhI2lYsoTPKPW5ICsgBFAsiQpFDCKiTCmIthCfta7V9IX//K3
ngR0lYMlO5lbquP7K/mh/Tiekp15Wpd4EN/EBJ7uwXshZGZILUH8fSov53QyR5Eq
drrJsHVU8ExyH/I+pr8YDYEISMxceUjPaBIdyR2SyHvKUqOA+WaaTryZyb/6P4EN
K0ED8xZYLgBp4Yhxv0f3WBnVH7qaaxD4tJz6g+frb/kVnGr/l3bUIVSFHJ1n2GNz
CHweeXOLEL9CweGRszePyfDZqG4Q1tBhJl9WkJkACa/qLRfJH6QZ072F06Wks5jk
Sdy/zZBDbrO6Sg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:30 2026 by rpki-client