Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
File: sUq6i2B0k5NHjoPDYObL110Vb4k.mft (raw, json)
Hash identifier: XBqXNA4a5WamfBPx/6L/NvB7ZpjiVWSn1KJGsdRnOkU=
Subject key identifier: 5E:1E:C6:8A:F5:B3:65:B0:F5:A0:4C:5C:0C:CC:51:FA:7F:3A:9D:49
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 019D38D2E14D3198A05A56535FCC994D497F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
Manifest number: 18A5
Signing time: Sun 29 Mar 2026 09:00:37 +0000
Manifest this update: Sun 29 Mar 2026 09:00:37 +0000
Manifest next update: Mon 30 Mar 2026 09:00:37 +0000
Files and hashes: 1: 078JTG5aC7kT5hpXnvM9TEHYqCs.roa (hash: w5aP29yr0A3HT+G60IqAWj6UVNMXP2SYbaHF/75q+GE=)
2: 4f2DxLMVStxmUYg88VDQQBtlZGE.roa (hash: Uz7D5fgERb2SSzXvqC8vei90mKOO6rRdvCUGo8Z1qrQ=)
3: JFY54QWecCHKfWOIhQ6eHfwQTI8.roa (hash: c6DsCEx7huHmXsJraso36n2V45N6eM42EXKuT1wNzh8=)
4: UaKvatt20WH9gQlIsSy6W-ufg50.roa (hash: sbiiw8/EVICmdfUZZ0B0j5ynOnqwjUcr4uhl+cHCvEs=)
5: W684H9ZjjArniCEjwC9yQkmGBu0.roa (hash: U9JAd0XMmzuPxuOF9oeLFcesJRjPBSGh98hvwqHnhgM=)
6: kCsBaUzl0VJzCqTvefgRf9Ora-Y.roa (hash: xGacFlbxros0DtBMF2AYVgiGm+bKu4KlmyADoX0xnf0=)
7: sUq6i2B0k5NHjoPDYObL110Vb4k.crl (hash: NRFOXxOaoKz8rUR+4cEK2lrZiBINPlYPIseqbEDNC+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:e1:4d:31:98:a0:5a:56:53:5f:cc:99:4d:49:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Mar 29 09:00:37 2026 GMT
Not After : Mar 30 09:00:37 2026 GMT
Subject: CN=5e1ec68af5b365b0f5a04c5c0ccc51fa7f3a9d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:cc:d9:59:84:47:27:46:f0:06:78:32:6e:7e:
bc:74:30:75:8a:b9:0f:00:aa:02:ee:cb:91:84:fa:
e4:7d:8c:50:34:53:39:1e:95:bb:fd:8c:18:3a:e5:
19:ee:73:ae:60:43:75:c3:24:9e:ef:0c:f1:7c:e6:
ac:01:3b:0c:f5:e1:85:1f:95:31:2c:78:95:d3:74:
80:da:dc:98:1f:70:c8:4b:c2:aa:db:c6:0b:74:8e:
73:25:c6:d0:15:4d:45:89:7d:24:7f:98:21:1b:1f:
ff:4b:94:97:3b:28:18:07:1d:8e:a9:54:5a:25:9c:
1e:d5:3c:30:38:4b:81:2d:3d:18:d6:a5:8a:85:dc:
76:d9:f1:24:c0:09:31:34:c0:51:0b:96:cc:56:43:
37:b0:a4:d3:72:50:7f:3a:81:7f:21:4b:94:d7:1a:
95:b5:89:2c:21:16:de:13:6a:7d:8a:c3:b6:8f:61:
32:7a:a3:bc:bd:a6:dd:90:3f:bb:1c:f1:d0:84:f6:
13:1f:0a:b5:98:ce:80:a7:c6:98:61:64:c9:77:4d:
7f:d9:c1:41:96:c6:8b:96:0f:7a:1a:7f:64:21:78:
79:ce:c4:b2:4d:bf:19:2c:d2:eb:0d:c4:55:00:4f:
ee:91:06:c4:99:a0:f2:1b:17:c8:9d:23:ef:a1:da:
57:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:1E:C6:8A:F5:B3:65:B0:F5:A0:4C:5C:0C:CC:51:FA:7F:3A:9D:49
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:64:ab:e1:9d:09:75:94:cd:3a:2e:e7:19:f5:8d:bf:8c:95:
8a:b2:0d:5a:77:cb:eb:db:bd:0d:f9:70:94:30:af:91:9d:84:
01:a6:0e:97:db:e8:0f:51:53:00:7e:af:4d:98:5d:41:1e:42:
f0:a6:41:83:12:c7:7a:f1:82:d8:3b:a5:d6:d5:a7:03:a9:d9:
d7:1b:cc:f4:24:1f:c8:28:37:44:73:be:c2:38:50:34:ce:32:
a3:aa:c0:3d:cc:b2:64:83:5a:3e:55:23:a8:f5:0c:f0:40:c0:
12:f9:65:47:77:a2:2b:ad:2f:c2:6a:37:75:d8:15:2d:ce:81:
d8:fc:b6:f5:a4:ae:53:61:1b:05:24:6e:76:f7:45:20:63:87:
38:1c:2a:36:fe:5b:1e:33:1e:64:0f:a8:79:74:3e:e0:b4:e8:
64:e0:70:d7:af:8e:56:5e:c8:2c:1e:4c:7e:8b:7c:d0:9c:cf:
cb:21:15:39:70:ea:60:44:f9:20:a8:a9:1e:77:1c:30:8e:62:
5e:b9:37:cd:40:2a:d0:46:0e:36:ea:7f:2e:cb:a2:fb:ac:cb:
e0:8d:33:6f:b9:76:e0:c1:6a:60:87:7a:0f:79:3e:c9:7f:2a:
34:d5:26:84:91:47:ac:37:79:e0:6c:89:16:d4:23:b0:4f:67:
d0:fb:ae:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040uFNMZigWlZTX8yZTUl/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNGFiYThiNjA3NDkzOTM0NzhlODNjMzYwZTZjYmQ3NWQx
NTZmODkwHhcNMjYwMzI5MDkwMDM3WhcNMjYwMzMwMDkwMDM3WjAzMTEwLwYDVQQD
Eyg1ZTFlYzY4YWY1YjM2NWIwZjVhMDRjNWMwY2NjNTFmYTdmM2E5ZDQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkMzZWYRHJ0bwBngybn68dDB1irkP
AKoC7suRhPrkfYxQNFM5HpW7/YwYOuUZ7nOuYEN1wySe7wzxfOasATsM9eGFH5Ux
LHiV03SA2tyYH3DIS8Kq28YLdI5zJcbQFU1FiX0kf5ghGx//S5SXOygYBx2OqVRa
JZwe1TwwOEuBLT0Y1qWKhdx22fEkwAkxNMBRC5bMVkM3sKTTclB/OoF/IUuU1xqV
tYksIRbeE2p9isO2j2EyeqO8vabdkD+7HPHQhPYTHwq1mM6Ap8aYYWTJd01/2cFB
lsaLlg96Gn9kIXh5zsSyTb8ZLNLrDcRVAE/ukQbEmaDyGxfInSPvodpXPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF4exor1s2Ww9aBMXAzMUfp/Op1JMB8GA1UdIwQY
MBaAFLFKuotgdJOTR46Dw2Dmy9ddFW+JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi80NjE2ODUtMDczZS00MWFmLTliYjYt
Y2Y2YzMwNTIxMmViLzEvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi80NjE2ODUtMDczZS00MWFmLTliYjYtY2Y2YzMwNTIxMmVi
LzEvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ2Sr4Z0J
dZTNOi7nGfWNv4yVirINWnfL69u9DflwlDCvkZ2EAaYOl9voD1FTAH6vTZhdQR5C
8KZBgxLHevGC2Dul1tWnA6nZ1xvM9CQfyCg3RHO+wjhQNM4yo6rAPcyyZINaPlUj
qPUM8EDAEvllR3eiK60vwmo3ddgVLc6B2Py29aSuU2EbBSRudvdFIGOHOBwqNv5b
HjMeZA+oeXQ+4LToZOBw16+OVl7ILB5Mfot80JzPyyEVOXDqYET5IKipHnccMI5i
Xrk3zUAq0EYONup/Lsui+6zL4I0zb7l24MFqYId6D3k+yX8qNNUmhJFHrDd54GyJ
FtQjsE9n0PuuRA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:06 2026 by rpki-client