Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft
File: 73imvMheyK3m7M6IDuBz1jdweWU.mft (raw, json)
Hash identifier: egxMMndL9zMPM7+qoL+xp4Fme4U1NkV5i6J9gxk7sK8=
Subject key identifier: 55:9F:4C:F2:77:CC:F2:F2:82:E8:53:49:44:FC:34:ED:29:5A:16:FC
Authority key identifier: EF:78:A6:BC:C8:5E:C8:AD:E6:EC:CE:88:0E:E0:73:D6:37:70:79:65
Certificate issuer: /CN=ef78a6bcc85ec8ade6ecce880ee073d637707965
Certificate serial: 019D3909FD5A1F0D78BC1CA14FE97C7E623E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 10:00:49 +0000
Manifest this update: Sun 29 Mar 2026 10:00:49 +0000
Manifest next update: Mon 30 Mar 2026 10:00:49 +0000
Files and hashes: 1: 73imvMheyK3m7M6IDuBz1jdweWU.crl (hash: aitS9CFaqvvhxoWUdSyc4FyULnN53sYUQFnkYxKxW9o=)
2: s3XOS3QA_OLCEJgqKQs1DGSZPSE.roa (hash: zm1kL82qrnuSElGfAwXwitkc6LPDrRud9bFF8MtyuyQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:fd:5a:1f:0d:78:bc:1c:a1:4f:e9:7c:7e:62:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef78a6bcc85ec8ade6ecce880ee073d637707965
Validity
Not Before: Mar 29 10:00:49 2026 GMT
Not After : Mar 30 10:00:49 2026 GMT
Subject: CN=559f4cf277ccf2f282e8534944fc34ed295a16fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:2d:4f:7d:d9:78:5b:52:a8:48:20:f7:47:f1:
88:b4:67:4a:04:12:d1:ee:57:88:16:32:f4:71:5d:
d9:cd:48:8d:02:02:6c:71:b8:0e:3c:27:e5:fb:06:
04:e1:89:c7:9f:3d:8f:30:e0:d8:43:9b:9e:e3:cb:
96:7c:51:cf:ef:d8:3c:f5:d0:2f:0d:8a:12:0e:5c:
d0:c8:fe:13:13:b8:a7:59:c0:e7:c1:48:d7:bf:1c:
fe:4d:3a:b1:28:e0:5d:3c:7d:b1:4d:b8:3a:21:ef:
7d:1f:a0:e6:6c:b8:1a:8e:0e:5d:55:c5:ad:4f:3b:
bf:ea:10:fa:53:bd:65:79:d0:36:81:a4:c6:cf:6c:
64:85:ee:95:e9:b4:aa:fb:48:a6:c7:0f:58:a1:b0:
da:05:15:5b:1b:ca:c3:cf:cb:35:bb:d8:4a:49:dc:
07:b5:b5:71:92:18:a1:92:e1:b6:f9:69:fe:5e:fa:
86:49:7a:a3:1a:13:0d:59:23:8f:14:0f:76:7a:58:
cf:c9:4b:a2:35:cb:d8:81:bf:60:91:47:c0:2c:d6:
21:80:2d:f7:ae:be:a6:3c:b5:47:e6:a1:94:96:ad:
24:43:30:b8:1a:b4:6e:5d:08:71:62:e1:0b:bf:94:
d3:9c:b8:04:1d:9e:8d:87:90:80:4b:a6:63:0c:ea:
73:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:9F:4C:F2:77:CC:F2:F2:82:E8:53:49:44:FC:34:ED:29:5A:16:FC
X509v3 Authority Key Identifier:
keyid:EF:78:A6:BC:C8:5E:C8:AD:E6:EC:CE:88:0E:E0:73:D6:37:70:79:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:fd:0a:12:2b:64:e4:12:73:02:50:1c:04:50:fd:82:4e:84:
3d:e1:cf:a4:18:12:e6:21:a9:9b:a9:b5:16:5c:3f:68:77:a1:
16:66:39:c2:66:94:35:63:bd:cb:53:90:ca:b9:99:b7:cd:fa:
01:fa:25:90:a0:25:5f:83:88:57:12:8e:f7:c5:6c:52:97:08:
c4:42:30:58:47:e6:34:8d:47:cd:8c:a1:a4:0f:93:f1:6d:99:
c2:53:32:5a:51:7e:85:8f:29:f6:36:c7:e4:26:2d:c3:5b:5c:
3a:30:15:64:f1:6a:77:57:03:72:9d:a0:b5:94:1a:e0:5c:ee:
a7:cf:7f:c1:85:03:f8:9f:5c:57:80:40:eb:8b:98:86:9c:7a:
1c:fd:1e:8a:22:45:3f:c3:86:c9:19:a9:40:e8:3a:ce:f8:d6:
26:42:5c:ef:56:09:69:aa:b4:70:98:71:0b:0b:ae:f3:50:19:
97:b9:28:14:a2:99:93:27:90:c0:66:af:6c:0b:cd:2c:5c:b9:
0b:97:f6:26:91:b6:4e:27:2a:05:4e:0d:35:db:fa:83:d7:c5:
1a:35:3d:e9:a1:7f:e8:e0:38:03:8e:53:00:c2:66:a7:a0:c8:
e0:07:af:ad:5c:bc:ef:df:1f:99:a9:bd:f7:0c:a7:d8:83:f6:
a3:f1:f3:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05Cf1aHw14vByhT+l8fmI+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmNzhhNmJjYzg1ZWM4YWRlNmVjY2U4ODBlZTA3M2Q2Mzc3
MDc5NjUwHhcNMjYwMzI5MTAwMDQ5WhcNMjYwMzMwMTAwMDQ5WjAzMTEwLwYDVQQD
Eyg1NTlmNGNmMjc3Y2NmMmYyODJlODUzNDk0NGZjMzRlZDI5NWExNmZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAji1Pfdl4W1KoSCD3R/GItGdKBBLR
7leIFjL0cV3ZzUiNAgJscbgOPCfl+wYE4YnHnz2PMODYQ5ue48uWfFHP79g89dAv
DYoSDlzQyP4TE7inWcDnwUjXvxz+TTqxKOBdPH2xTbg6Ie99H6DmbLgajg5dVcWt
Tzu/6hD6U71ledA2gaTGz2xkhe6V6bSq+0imxw9YobDaBRVbG8rDz8s1u9hKSdwH
tbVxkhihkuG2+Wn+XvqGSXqjGhMNWSOPFA92eljPyUuiNcvYgb9gkUfALNYhgC33
rr6mPLVH5qGUlq0kQzC4GrRuXQhxYuELv5TTnLgEHZ6Nh5CAS6ZjDOpz9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFWfTPJ3zPLyguhTSUT8NO0pWhb8MB8GA1UdIwQY
MBaAFO94przIXsit5uzOiA7gc9Y3cHllMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNzNpbXZNaGV5SzNtN002SUR1QnoxamR3ZVdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80OWFiYTQtZTYzZC00ZTA2LThhMTIt
OTZmMjE2ODkzZGVjLzEvNzNpbXZNaGV5SzNtN002SUR1QnoxamR3ZVdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80OWFiYTQtZTYzZC00ZTA2LThhMTItOTZmMjE2ODkzZGVj
LzEvNzNpbXZNaGV5SzNtN002SUR1QnoxamR3ZVdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApP0KEitk
5BJzAlAcBFD9gk6EPeHPpBgS5iGpm6m1Flw/aHehFmY5wmaUNWO9y1OQyrmZt836
AfolkKAlX4OIVxKO98VsUpcIxEIwWEfmNI1HzYyhpA+T8W2ZwlMyWlF+hY8p9jbH
5CYtw1tcOjAVZPFqd1cDcp2gtZQa4Fzup89/wYUD+J9cV4BA64uYhpx6HP0eiiJF
P8OGyRmpQOg6zvjWJkJc71YJaaq0cJhxCwuu81AZl7koFKKZkyeQwGavbAvNLFy5
C5f2JpG2TicqBU4NNdv6g9fFGjU96aF/6OA4A45TAMJmp6DI4AevrVy8798fmam9
9wyn2IP2o/HzSw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 16:56:09 2026 by rpki-client