Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft
File: S5nNYSQguFk0kdhobOTEr4W5CtU.mft (raw, json)
Hash identifier: ei02MIj7uoOP0HQMKB1j1p3rSfPgITChfvw/an+9xEg=
Subject key identifier: 59:B8:9D:0D:DB:6E:51:04:83:5F:E6:E7:9D:08:3F:8B:8D:6A:6E:42
Authority key identifier: 4B:99:CD:61:24:20:B8:59:34:91:D8:68:6C:E4:C4:AF:85:B9:0A:D5
Certificate issuer: /CN=4b99cd612420b8593491d8686ce4c4af85b90ad5
Certificate serial: 019CE523987E0ECACC6F94D77D1E0109F5C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5nNYSQguFk0kdhobOTEr4W5CtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft
Manifest number: 0295
Signing time: Fri 13 Mar 2026 03:00:41 +0000
Manifest this update: Fri 13 Mar 2026 03:00:41 +0000
Manifest next update: Sat 14 Mar 2026 03:00:41 +0000
Files and hashes: 1: 8DpSJKviZ7cSTOBb1JPdqUAWjZI.roa (hash: KJ3gvkRDPvd6FYiFgYbSLnhGd4p7f+DOyl+s6ewmo1Y=)
2: NDIauRSXxmTRxMaMxKWAcWs2hiY.roa (hash: niReydPhxoIGyEf8VzGlx6ngoJ93K3AzsN+453eTTKQ=)
3: S5nNYSQguFk0kdhobOTEr4W5CtU.crl (hash: sj/fVARLRwgIih/uiMxwpI7vl6tz2VvRXtuu5Alum9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S5nNYSQguFk0kdhobOTEr4W5CtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:23:98:7e:0e:ca:cc:6f:94:d7:7d:1e:01:09:f5:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b99cd612420b8593491d8686ce4c4af85b90ad5
Validity
Not Before: Mar 13 03:00:41 2026 GMT
Not After : Mar 14 03:00:41 2026 GMT
Subject: CN=59b89d0ddb6e5104835fe6e79d083f8b8d6a6e42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8f:4d:21:e3:d5:4e:37:2b:ec:cb:3b:4d:10:
28:ed:ee:d6:23:40:30:ce:e9:fa:a8:2b:7d:9b:29:
e9:ed:e7:c9:a2:bf:ba:c9:15:65:b0:98:d5:13:6d:
ea:84:ed:cd:15:8d:65:35:4a:54:5f:7a:a0:28:f0:
58:82:fd:ea:a4:56:1c:95:05:6a:ab:ad:55:6c:22:
45:80:2c:98:86:d9:a0:73:d8:db:aa:fe:8d:de:7f:
91:6d:16:8e:d2:ec:bf:fd:1b:13:dc:9e:0c:31:3f:
40:96:3f:c2:3e:9c:86:41:3e:8c:fa:2e:2e:62:6d:
69:e6:a9:40:30:7c:db:ba:b5:83:2f:6c:45:6c:34:
dd:45:9c:1b:d2:7b:58:f6:7c:04:5e:9d:cf:87:18:
1b:e8:e0:5d:5b:94:47:a2:97:e5:c8:c4:6a:bb:77:
85:c5:a4:b4:d1:a7:40:cf:ef:b0:df:b9:68:b6:53:
f7:01:96:31:e6:59:f3:4f:25:32:3f:56:6a:22:02:
07:f6:87:17:05:49:04:ac:c1:90:d0:a8:28:f5:30:
4b:6e:78:9d:0d:ad:0e:39:e2:c3:7d:85:25:cf:4a:
db:8c:c8:40:dc:91:b1:30:79:f5:03:29:4d:d0:81:
fa:6c:39:c5:92:c5:c7:f8:8b:0e:ad:7c:cf:74:ff:
7e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B8:9D:0D:DB:6E:51:04:83:5F:E6:E7:9D:08:3F:8B:8D:6A:6E:42
X509v3 Authority Key Identifier:
keyid:4B:99:CD:61:24:20:B8:59:34:91:D8:68:6C:E4:C4:AF:85:B9:0A:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5nNYSQguFk0kdhobOTEr4W5CtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:bf:77:da:ac:3f:4a:69:94:b0:58:75:03:a7:4f:85:f1:28:
0d:35:88:13:33:5b:8e:f7:db:b4:b1:eb:e3:15:cb:47:c3:10:
92:95:25:10:40:89:f5:96:52:91:7a:0f:84:ad:06:e2:6e:a8:
ed:7d:09:a0:4f:2d:d8:93:3c:f3:b8:1b:0b:bb:c5:6c:fc:ee:
a1:9d:5a:d8:72:cf:3f:8b:e3:58:d7:61:83:dc:dd:cd:53:19:
ae:3e:d4:38:2e:95:b5:b4:51:a4:dc:ef:44:e0:e6:59:e8:a4:
98:97:d0:19:c1:f9:4b:26:16:af:63:e0:5f:5e:b2:07:39:6a:
dc:8e:cf:ce:50:04:00:dc:c1:89:53:03:e6:45:79:06:96:17:
11:f6:77:0f:dd:8e:cc:80:03:d1:b9:92:d6:42:21:80:ca:f7:
a0:31:96:66:a3:5c:b4:0b:55:9e:90:78:32:fa:9c:9e:05:a0:
c2:a0:1f:28:4e:cf:8c:2a:57:df:44:11:a2:2e:f2:71:9d:b3:
5a:2b:95:96:6e:22:28:c1:4b:29:cf:77:ea:f3:54:5f:b3:b2:
c4:cf:74:36:8b:f7:dc:f2:d5:1a:e0:d3:58:37:12:8f:d1:75:
89:28:c6:b0:2f:11:38:b6:9b:85:61:66:c3:12:2c:01:3d:0e:
09:98:99:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzlI5h+DsrMb5TXfR4BCfXBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiOTljZDYxMjQyMGI4NTkzNDkxZDg2ODZjZTRjNGFmODVi
OTBhZDUwHhcNMjYwMzEzMDMwMDQxWhcNMjYwMzE0MDMwMDQxWjAzMTEwLwYDVQQD
Eyg1OWI4OWQwZGRiNmU1MTA0ODM1ZmU2ZTc5ZDA4M2Y4YjhkNmE2ZTQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtY9NIePVTjcr7Ms7TRAo7e7WI0Aw
zun6qCt9mynp7efJor+6yRVlsJjVE23qhO3NFY1lNUpUX3qgKPBYgv3qpFYclQVq
q61VbCJFgCyYhtmgc9jbqv6N3n+RbRaO0uy//RsT3J4MMT9Alj/CPpyGQT6M+i4u
Ym1p5qlAMHzburWDL2xFbDTdRZwb0ntY9nwEXp3Phxgb6OBdW5RHopflyMRqu3eF
xaS00adAz++w37lotlP3AZYx5lnzTyUyP1ZqIgIH9ocXBUkErMGQ0Kgo9TBLbnid
Da0OOeLDfYUlz0rbjMhA3JGxMHn1AylN0IH6bDnFksXH+IsOrXzPdP9+3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFm4nQ3bblEEg1/m550IP4uNam5CMB8GA1UdIwQY
MBaAFEuZzWEkILhZNJHYaGzkxK+FuQrVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzVuTllTUWd1Rmswa2Rob2JPVEVyNFc1Q3RVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS83YzFiMTctYjdiNS00NDAxLWIwYTct
OTc0NzIwODg5ZmZhLzEvUzVuTllTUWd1Rmswa2Rob2JPVEVyNFc1Q3RVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS83YzFiMTctYjdiNS00NDAxLWIwYTctOTc0NzIwODg5ZmZh
LzEvUzVuTllTUWd1Rmswa2Rob2JPVEVyNFc1Q3RVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP7932qw/
SmmUsFh1A6dPhfEoDTWIEzNbjvfbtLHr4xXLR8MQkpUlEECJ9ZZSkXoPhK0G4m6o
7X0JoE8t2JM887gbC7vFbPzuoZ1a2HLPP4vjWNdhg9zdzVMZrj7UOC6VtbRRpNzv
RODmWeikmJfQGcH5SyYWr2PgX16yBzlq3I7PzlAEANzBiVMD5kV5BpYXEfZ3D92O
zIAD0bmS1kIhgMr3oDGWZqNctAtVnpB4MvqcngWgwqAfKE7PjCpX30QRoi7ycZ2z
WiuVlm4iKMFLKc936vNUX7OyxM90Nov33PLVGuDTWDcSj9F1iSjGsC8ROLabhWFm
wxIsAT0OCZiZVw==
-----END CERTIFICATE-----
Generated at Fri Mar 13 09:27:23 2026 by rpki-client