Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/5NozpY-0djTWFOwJpomN4PWABv4.mft
File: 5NozpY-0djTWFOwJpomN4PWABv4.mft (raw, json)
Hash identifier: 8NzuOwiW0y4gORRtD3Vs4ZbNVkRqqct+sypLUXgi2wI=
Subject key identifier: 59:C0:61:07:A4:76:D1:25:8D:7F:7E:4D:D7:D0:E0:48:1F:9A:69:3C
Authority key identifier: E4:DA:33:A5:8F:B4:76:34:D6:14:EC:09:A6:89:8D:E0:F5:80:06:FE
Certificate issuer: /CN=e4da33a58fb47634d614ec09a6898de0f58006fe
Certificate serial: 019D37F720B895C370156D0F23C151D45B21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NozpY-0djTWFOwJpomN4PWABv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/5NozpY-0djTWFOwJpomN4PWABv4.mft
Manifest number: 0F66
Signing time: Sun 29 Mar 2026 05:00:35 +0000
Manifest this update: Sun 29 Mar 2026 05:00:35 +0000
Manifest next update: Mon 30 Mar 2026 05:00:35 +0000
Files and hashes: 1: 5NozpY-0djTWFOwJpomN4PWABv4.crl (hash: qldONakVBQzLjkrPHTl9ehISUmMNNc1/o5lmxfIEDTQ=)
2: X3KSPRpScg7W0Ns5vBLAW7YVOAY.roa (hash: gCWNoXRiXdqXJ9sAUoBn9JpM+1ZIHNyGOsBQSFKX4Lc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/5NozpY-0djTWFOwJpomN4PWABv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/5NozpY-0djTWFOwJpomN4PWABv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5NozpY-0djTWFOwJpomN4PWABv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:20:b8:95:c3:70:15:6d:0f:23:c1:51:d4:5b:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4da33a58fb47634d614ec09a6898de0f58006fe
Validity
Not Before: Mar 29 05:00:35 2026 GMT
Not After : Mar 30 05:00:35 2026 GMT
Subject: CN=59c06107a476d1258d7f7e4dd7d0e0481f9a693c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:95:32:de:6d:49:2d:39:bf:81:b3:14:97:d4:
f3:6f:df:86:5a:37:48:2f:5e:50:e0:e0:f9:12:fc:
76:5a:33:85:0c:f6:e6:22:07:7d:79:09:e6:15:6a:
70:aa:e3:44:ce:00:a2:cb:f7:f8:38:77:dc:03:85:
3d:7c:b6:81:6a:23:bc:f2:a6:6d:1c:d5:16:fb:13:
b6:30:2c:db:d6:fd:0f:0b:9a:0d:ca:de:e1:d4:33:
ba:11:41:e2:79:0d:1f:9c:2d:36:b1:62:ef:b8:4f:
6e:8e:c6:0e:ab:ff:fc:fc:8c:56:13:c1:ad:6d:d3:
28:40:b2:40:92:1e:ee:69:d8:21:c5:64:25:ca:22:
8f:58:3e:2e:1d:24:b1:41:37:42:e7:75:5f:ea:62:
2c:3a:ec:d6:44:71:42:90:ec:e1:3d:ff:cd:95:bf:
2a:3c:05:a7:9f:88:84:78:0e:54:d2:24:8e:cb:62:
49:a9:d1:0c:aa:6d:cc:6d:8e:43:e4:47:70:f7:8c:
cf:d0:f3:33:df:e2:b9:6b:d4:ae:98:56:e8:e5:23:
80:2f:ff:74:04:5f:c4:cf:b3:59:85:da:22:26:c4:
0b:09:c4:ea:52:4c:60:c2:36:8d:10:2b:3c:c4:13:
f5:e3:e5:15:d3:6c:47:fc:bb:74:5e:3d:70:cb:42:
ad:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C0:61:07:A4:76:D1:25:8D:7F:7E:4D:D7:D0:E0:48:1F:9A:69:3C
X509v3 Authority Key Identifier:
keyid:E4:DA:33:A5:8F:B4:76:34:D6:14:EC:09:A6:89:8D:E0:F5:80:06:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NozpY-0djTWFOwJpomN4PWABv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/5NozpY-0djTWFOwJpomN4PWABv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/5NozpY-0djTWFOwJpomN4PWABv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:70:b3:2e:28:51:70:e8:ac:04:6b:b8:30:eb:de:fd:b9:2a:
8a:2e:b2:3b:4e:63:20:12:b5:e1:1c:ea:4e:00:64:e3:84:4f:
a2:6f:29:46:1d:50:49:54:af:fe:2d:6f:4b:28:58:bb:bf:f5:
d7:10:e9:ac:c1:91:65:10:c0:d8:91:33:86:7b:eb:28:e7:a9:
14:dd:8e:aa:c4:da:39:11:5c:60:b3:86:d3:65:b4:d3:8a:29:
17:7c:df:78:08:38:89:1d:19:f3:de:0c:f2:79:a9:9e:d9:fb:
fe:61:d8:ab:4d:a6:58:ed:ce:2a:2a:ca:a0:b6:c3:86:09:b5:
60:ba:63:b9:a5:bd:60:a9:bb:50:fb:e7:96:7a:43:d3:b5:31:
01:db:11:d5:2b:33:54:9b:83:1c:fb:9b:68:e8:03:3a:91:f2:
74:47:d6:e2:f7:05:75:4b:b6:cc:80:cc:8e:aa:13:4c:70:7c:
3d:6b:a3:97:77:12:fe:78:73:d6:5f:25:15:b2:6f:cd:66:c2:
9b:9e:f1:a5:80:28:65:10:d1:27:8f:6b:d4:4c:ef:da:82:34:
8b:8c:ee:8b:8c:22:fc:8d:06:33:37:36:9a:9d:32:34:f9:78:
a6:4f:32:2b:58:2a:d7:99:4e:7d:f5:09:36:08:e9:bb:4d:12:
3f:92:02:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ039yC4lcNwFW0PI8FR1FshMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ZGEzM2E1OGZiNDc2MzRkNjE0ZWMwOWE2ODk4ZGUwZjU4
MDA2ZmUwHhcNMjYwMzI5MDUwMDM1WhcNMjYwMzMwMDUwMDM1WjAzMTEwLwYDVQQD
Eyg1OWMwNjEwN2E0NzZkMTI1OGQ3ZjdlNGRkN2QwZTA0ODFmOWE2OTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo5Uy3m1JLTm/gbMUl9Tzb9+GWjdI
L15Q4OD5Evx2WjOFDPbmIgd9eQnmFWpwquNEzgCiy/f4OHfcA4U9fLaBaiO88qZt
HNUW+xO2MCzb1v0PC5oNyt7h1DO6EUHieQ0fnC02sWLvuE9ujsYOq//8/IxWE8Gt
bdMoQLJAkh7uadghxWQlyiKPWD4uHSSxQTdC53Vf6mIsOuzWRHFCkOzhPf/Nlb8q
PAWnn4iEeA5U0iSOy2JJqdEMqm3MbY5D5Edw94zP0PMz3+K5a9SumFbo5SOAL/90
BF/Ez7NZhdoiJsQLCcTqUkxgwjaNECs8xBP14+UV02xH/Lt0Xj1wy0KtnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFnAYQekdtEljX9+TdfQ4Egfmmk8MB8GA1UdIwQY
MBaAFOTaM6WPtHY01hTsCaaJjeD1gAb+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNU5venBZLTBkalRXRk93SnBvbU40UFdBQnY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8yZDBjYTItOGMzZS00ZjhjLTkwNmMt
NmNlNjAyMjZhOWU4LzEvNU5venBZLTBkalRXRk93SnBvbU40UFdBQnY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC8yZDBjYTItOGMzZS00ZjhjLTkwNmMtNmNlNjAyMjZhOWU4
LzEvNU5venBZLTBkalRXRk93SnBvbU40UFdBQnY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi3CzLihR
cOisBGu4MOve/bkqii6yO05jIBK14RzqTgBk44RPom8pRh1QSVSv/i1vSyhYu7/1
1xDprMGRZRDA2JEzhnvrKOepFN2OqsTaORFcYLOG02W004opF3zfeAg4iR0Z894M
8nmpntn7/mHYq02mWO3OKirKoLbDhgm1YLpjuaW9YKm7UPvnlnpD07UxAdsR1Ssz
VJuDHPubaOgDOpHydEfW4vcFdUu2zIDMjqoTTHB8PWujl3cS/nhz1l8lFbJvzWbC
m57xpYAoZRDRJ49r1Ezv2oI0i4zui4wi/I0GMzc2mp0yNPl4pk8yK1gq15lOffUJ
Ngjpu00SP5ICUw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:15 2026 by rpki-client