Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json)
Hash identifier: bG4A8GIWTnnw9HMjQe+5bnJIcsNyA20eBm0RrvTQzs4=
Subject key identifier: 9B:77:F7:C5:70:B7:7E:A6:B6:BD:7E:CE:D3:4F:F2:8E:07:13:06:47
Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Certificate serial: 019DCDF4CD1B06D70787702C1863300BBEEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
Manifest number: 0B14
Signing time: Mon 27 Apr 2026 08:01:05 +0000
Manifest this update: Mon 27 Apr 2026 08:01:05 +0000
Manifest next update: Tue 28 Apr 2026 08:01:05 +0000
Files and hashes: 1: Pxtr7Gbm8FoWkqDWUIVtrs362Ec.roa (hash: Hjsu0JAwI6gJ3DPtZLzsxv8mvLUzo+rKbsqMaxC3bYY=)
2: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: vmBqZhlNrUXS5EJlTqVdOHnnpiK5cG5huLXnGj2Cnas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:f4:cd:1b:06:d7:07:87:70:2c:18:63:30:0b:be:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Validity
Not Before: Apr 27 08:01:05 2026 GMT
Not After : Apr 28 08:01:05 2026 GMT
Subject: CN=9b77f7c570b77ea6b6bd7eced34ff28e07130647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:32:ef:4e:39:66:3c:03:74:a8:f9:e3:ef:fd:
73:c2:5e:74:c0:3c:07:81:09:6d:76:8d:1e:bc:3c:
24:b5:e0:11:31:dc:7c:fe:bc:c5:ee:14:55:5a:a7:
3c:14:02:d4:3d:dd:4d:d4:8c:38:60:93:b2:32:98:
d2:32:04:79:ea:2c:c9:da:02:f5:d7:94:15:87:3b:
b7:74:3b:80:5d:d7:a5:61:58:16:3c:1d:50:47:21:
90:11:4c:38:ee:9d:fd:9a:ca:df:3f:7c:5c:db:b2:
91:80:ea:21:0e:e0:4a:00:97:93:db:31:06:b1:9e:
3d:90:3c:16:8b:4b:8c:29:b0:8e:f1:71:d7:94:e9:
ea:1e:52:d9:3f:79:63:9a:35:36:03:3a:41:e4:75:
1e:5e:c3:19:77:9a:bc:04:35:ea:b7:93:e7:2c:0c:
76:1f:b9:79:eb:3f:7a:f8:ac:62:43:ec:7f:33:f2:
bb:64:f9:60:11:b0:77:2d:29:7f:72:45:6d:71:f0:
ba:77:21:8f:e7:1c:87:62:b9:8f:19:59:72:03:92:
8c:ca:23:4a:46:ec:49:0b:1c:99:35:51:47:0b:67:
7d:25:cb:14:53:6f:7d:b8:36:4c:62:71:84:4f:9e:
cb:fe:43:cb:e3:49:f2:14:a3:3b:c3:a7:d1:c2:6b:
b0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:77:F7:C5:70:B7:7E:A6:B6:BD:7E:CE:D3:4F:F2:8E:07:13:06:47
X509v3 Authority Key Identifier:
keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:dc:c5:8c:94:d0:35:50:1d:5a:ba:3a:97:de:67:c2:12:0e:
4f:46:01:cf:58:06:2f:e7:ea:f2:65:33:67:5a:48:ee:d6:e8:
aa:fb:34:c5:92:70:71:e0:7f:8b:2e:5c:97:ad:f2:ec:e8:82:
45:70:1c:a0:eb:86:6d:e7:08:41:17:0b:21:84:ef:35:43:30:
d9:ad:48:ca:c1:0c:15:86:77:bd:04:21:59:75:24:f4:fe:56:
1b:6b:e3:ad:ee:93:88:75:70:e4:9b:7c:f2:2d:13:d6:4f:71:
67:be:73:26:24:4d:22:fe:75:0a:a5:6b:34:7f:8f:f4:32:8c:
6d:73:36:df:40:36:c2:94:b4:62:27:ef:f0:54:c2:02:df:32:
ee:57:fe:c0:cb:c7:5c:f6:f3:d5:49:95:9e:59:1c:33:ae:de:
9a:81:60:96:10:83:bd:65:ea:12:7a:b9:70:1c:ca:11:4b:99:
89:4f:5e:d0:9c:ef:a1:7d:50:29:85:b2:9f:f6:82:f8:16:46:
be:91:da:6e:5f:af:56:94:12:8d:9c:35:da:fa:b1:36:b3:fe:
c6:e5:52:24:18:a7:ba:94:02:ec:82:b4:c1:10:3c:f6:d5:73:
c0:f4:27:27:bd:3b:bf:2f:77:36:db:48:24:de:90:1a:4d:01:
6c:73:aa:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3N9M0bBtcHh3AsGGMwC77vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyYzQ4ZTFiYjY3MmNkYTY4NDY0MDBlOGJmOGQ2ZDY5Njgz
NWQ3YmYwHhcNMjYwNDI3MDgwMTA1WhcNMjYwNDI4MDgwMTA1WjAzMTEwLwYDVQQD
Eyg5Yjc3ZjdjNTcwYjc3ZWE2YjZiZDdlY2VkMzRmZjI4ZTA3MTMwNjQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTLvTjlmPAN0qPnj7/1zwl50wDwH
gQltdo0evDwkteARMdx8/rzF7hRVWqc8FALUPd1N1Iw4YJOyMpjSMgR56izJ2gL1
15QVhzu3dDuAXdelYVgWPB1QRyGQEUw47p39msrfP3xc27KRgOohDuBKAJeT2zEG
sZ49kDwWi0uMKbCO8XHXlOnqHlLZP3ljmjU2AzpB5HUeXsMZd5q8BDXqt5PnLAx2
H7l56z96+KxiQ+x/M/K7ZPlgEbB3LSl/ckVtcfC6dyGP5xyHYrmPGVlyA5KMyiNK
RuxJCxyZNVFHC2d9JcsUU299uDZMYnGET57L/kPL40nyFKM7w6fRwmuwwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJt398Vwt36mtr1+ztNP8o4HEwZHMB8GA1UdIwQY
MBaAFFLEjhu2cs2mhGQA6L+NbWloNde/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzkt
MThlY2UzNjgyNjZmLzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzktMThlY2UzNjgyNjZm
LzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACNzFjJTQ
NVAdWro6l95nwhIOT0YBz1gGL+fq8mUzZ1pI7tboqvs0xZJwceB/iy5cl63y7OiC
RXAcoOuGbecIQRcLIYTvNUMw2a1IysEMFYZ3vQQhWXUk9P5WG2vjre6TiHVw5Jt8
8i0T1k9xZ75zJiRNIv51CqVrNH+P9DKMbXM230A2wpS0Yifv8FTCAt8y7lf+wMvH
XPbz1UmVnlkcM67emoFglhCDvWXqEnq5cBzKEUuZiU9e0JzvoX1QKYWyn/aC+BZG
vpHabl+vVpQSjZw12vqxNrP+xuVSJBinupQC7IK0wRA89tVzwPQnJ707vy93NttI
JN6QGk0BbHOqBA==
-----END CERTIFICATE-----
Generated at Mon Apr 27 16:14:38 2026 by rpki-client