Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft
File: P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft (raw, json)
Hash identifier: 88xYF6pLzTsYVNSC09YOLV8tb7h/vCc0yEZFlaVsFVs=
Subject key identifier: 15:8B:7D:F7:D6:0F:8A:CB:A4:78:64:0B:E0:2D:9C:DD:42:90:5C:5A
Authority key identifier: 3F:B7:8C:D1:A3:10:C9:9D:63:77:14:0E:52:8A:A3:E6:E0:DC:AB:9F
Certificate issuer: /CN=3fb78cd1a310c99d6377140e528aa3e6e0dcab9f
Certificate serial: 019D38D2DB98C34E02F3F4E4BD9655CC06BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P7eM0aMQyZ1jdxQOUoqj5uDcq58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft
Manifest number: 03C5
Signing time: Sun 29 Mar 2026 09:00:35 +0000
Manifest this update: Sun 29 Mar 2026 09:00:35 +0000
Manifest next update: Mon 30 Mar 2026 09:00:35 +0000
Files and hashes: 1: AjQ9aGrRgiCSMlcEOaQOc1QG7FA.roa (hash: gcQqIdjRrwkMqVcdcn63V2cLzw0R6xsBAxjOG/G39YM=)
2: P7eM0aMQyZ1jdxQOUoqj5uDcq58.crl (hash: VJ6Tv28mq0YlVNpBHNmUM9LKjsT8LxvKrmtgik9w4D4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft
rsync://rpki.ripe.net/repository/DEFAULT/P7eM0aMQyZ1jdxQOUoqj5uDcq58.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:db:98:c3:4e:02:f3:f4:e4:bd:96:55:cc:06:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fb78cd1a310c99d6377140e528aa3e6e0dcab9f
Validity
Not Before: Mar 29 09:00:35 2026 GMT
Not After : Mar 30 09:00:35 2026 GMT
Subject: CN=158b7df7d60f8acba478640be02d9cdd42905c5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:38:4d:34:32:e8:84:d2:db:15:cc:41:26:b1:
b0:88:f1:3d:9e:63:70:f0:66:b5:98:98:a2:2a:03:
38:8a:2d:92:2d:59:aa:0b:91:33:7f:db:12:bd:9e:
74:6d:bc:7f:e1:d2:09:0a:6b:48:80:b0:6e:14:20:
08:ad:d2:6d:e6:9d:1d:84:2d:2b:99:b2:ba:54:99:
65:ed:9c:20:67:ab:cf:ee:f9:f6:8c:e3:46:6b:dc:
56:d4:ab:db:2f:3f:9d:1b:f5:2c:4f:0d:ee:46:1b:
45:1d:31:40:86:a7:bc:33:78:14:f5:d7:75:9d:e2:
fa:b0:15:2b:45:4b:22:36:25:36:12:2a:b5:28:8e:
35:85:60:65:fd:a5:2b:93:cf:d1:b9:09:74:92:26:
8b:52:6f:18:1f:c9:cb:ba:3c:fa:b9:91:24:9e:fa:
0d:0c:c2:b8:92:14:c1:b5:07:db:a1:b2:40:7e:f5:
2c:14:fe:ca:0f:01:e7:e5:35:93:45:4a:f5:a3:cc:
f5:cd:57:ac:62:d6:65:4c:37:9b:9c:3d:ee:22:fb:
3a:58:2e:32:d7:ec:42:22:9b:82:b9:af:b4:89:fe:
8a:44:fb:cf:43:2f:3d:73:8f:d3:4d:df:17:45:3f:
97:fd:dc:f0:11:5b:45:dc:92:af:44:2a:e1:48:b5:
f5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:8B:7D:F7:D6:0F:8A:CB:A4:78:64:0B:E0:2D:9C:DD:42:90:5C:5A
X509v3 Authority Key Identifier:
keyid:3F:B7:8C:D1:A3:10:C9:9D:63:77:14:0E:52:8A:A3:E6:E0:DC:AB:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P7eM0aMQyZ1jdxQOUoqj5uDcq58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/323c3f-aab3-4684-81c7-c5815118e52f/1/P7eM0aMQyZ1jdxQOUoqj5uDcq58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:0e:6c:1a:91:d2:d8:07:6e:ac:aa:3a:b8:6a:b8:01:96:aa:
b3:15:2d:1e:02:80:73:eb:d3:cb:58:11:47:17:54:d0:c4:ad:
dd:1d:76:f6:2a:42:76:22:73:c7:31:b4:25:dc:7c:62:20:20:
15:7c:26:a0:31:b0:20:0c:25:b8:b1:aa:73:69:34:6d:87:28:
68:3a:5f:c2:bb:ba:6d:cb:3d:15:bc:68:ef:6e:4f:0c:71:f2:
e3:ef:15:7f:51:ef:96:2f:93:fe:81:a4:fa:ac:53:fa:fc:87:
38:4e:9c:20:c6:5e:df:e5:ab:c7:df:25:fc:3b:a2:89:b8:fc:
74:46:33:6c:3a:72:d1:b2:5c:0b:8a:bd:cd:00:2a:6c:b5:b0:
2d:cf:89:47:03:0e:e1:c8:8f:43:4e:6b:53:47:78:ff:e1:b6:
81:52:a8:a0:09:33:71:5d:89:9e:70:a7:4c:56:d9:62:c8:ce:
81:a1:4a:60:ef:f1:63:24:1b:89:c3:ed:d9:2e:77:51:69:90:
ca:c6:0e:65:25:66:ea:2d:ed:14:24:23:2f:2d:5d:5d:a1:0d:
54:43:0d:6c:ad:a0:2c:f2:b7:dd:91:99:3b:6c:90:84:e1:3d:
27:77:8f:ca:da:40:db:97:07:87:02:9f:2c:a6:e2:1b:c8:ae:
1b:e2:6d:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040tuYw04C8/TkvZZVzAa7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmYjc4Y2QxYTMxMGM5OWQ2Mzc3MTQwZTUyOGFhM2U2ZTBk
Y2FiOWYwHhcNMjYwMzI5MDkwMDM1WhcNMjYwMzMwMDkwMDM1WjAzMTEwLwYDVQQD
EygxNThiN2RmN2Q2MGY4YWNiYTQ3ODY0MGJlMDJkOWNkZDQyOTA1YzVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlThNNDLohNLbFcxBJrGwiPE9nmNw
8Ga1mJiiKgM4ii2SLVmqC5Ezf9sSvZ50bbx/4dIJCmtIgLBuFCAIrdJt5p0dhC0r
mbK6VJll7ZwgZ6vP7vn2jONGa9xW1KvbLz+dG/UsTw3uRhtFHTFAhqe8M3gU9dd1
neL6sBUrRUsiNiU2Eiq1KI41hWBl/aUrk8/RuQl0kiaLUm8YH8nLujz6uZEknvoN
DMK4khTBtQfbobJAfvUsFP7KDwHn5TWTRUr1o8z1zVesYtZlTDebnD3uIvs6WC4y
1+xCIpuCua+0if6KRPvPQy89c4/TTd8XRT+X/dzwEVtF3JKvRCrhSLX1FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBWLfffWD4rLpHhkC+AtnN1CkFxaMB8GA1UdIwQY
MBaAFD+3jNGjEMmdY3cUDlKKo+bg3KufMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDdlTTBhTVF5WjFqZHhRT1VvcWo1dURjcTU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8zMjNjM2YtYWFiMy00Njg0LTgxYzct
YzU4MTUxMThlNTJmLzEvUDdlTTBhTVF5WjFqZHhRT1VvcWo1dURjcTU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi8zMjNjM2YtYWFiMy00Njg0LTgxYzctYzU4MTUxMThlNTJm
LzEvUDdlTTBhTVF5WjFqZHhRT1VvcWo1dURjcTU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWA5sGpHS
2AdurKo6uGq4AZaqsxUtHgKAc+vTy1gRRxdU0MSt3R129ipCdiJzxzG0Jdx8YiAg
FXwmoDGwIAwluLGqc2k0bYcoaDpfwru6bcs9Fbxo725PDHHy4+8Vf1Hvli+T/oGk
+qxT+vyHOE6cIMZe3+Wrx98l/Duiibj8dEYzbDpy0bJcC4q9zQAqbLWwLc+JRwMO
4ciPQ05rU0d4/+G2gVKooAkzcV2JnnCnTFbZYsjOgaFKYO/xYyQbicPt2S53UWmQ
ysYOZSVm6i3tFCQjLy1dXaENVEMNbK2gLPK33ZGZO2yQhOE9J3ePytpA25cHhwKf
LKbiG8iuG+Jt0Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:39:50 2026 by rpki-client