Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
File: f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft (raw, json)
Hash identifier: yegQzax1hOPWuMXMmiAHQUBiylKLkpjmxHaqkIxsig4=
Subject key identifier: 6B:0C:B0:0C:49:35:33:7E:D1:7A:7F:D7:63:FF:E4:75:47:62:9F:19
Authority key identifier: 7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
Certificate issuer: /CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Certificate serial: 019D3940A7A006837F4B2C53BD55657AD17F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
Manifest number: 04BE
Signing time: Sun 29 Mar 2026 11:00:31 +0000
Manifest this update: Sun 29 Mar 2026 11:00:31 +0000
Manifest next update: Mon 30 Mar 2026 11:00:31 +0000
Files and hashes: 1: Tcg_tO4TH6VzGp-S2NuzlB5WECE.roa (hash: vf8tQnW7oqoTXI/ZHAP1eVwRqXSdr72IdtoqliIf4Ys=)
2: f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl (hash: 615iSZzvtAO8VcOeZsieeoQxkMbBaoaNhZokeGpuGhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:a7:a0:06:83:7f:4b:2c:53:bd:55:65:7a:d1:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Validity
Not Before: Mar 29 11:00:31 2026 GMT
Not After : Mar 30 11:00:31 2026 GMT
Subject: CN=6b0cb00c4935337ed17a7fd763ffe47547629f19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ff:b8:1b:f1:f0:ad:b5:f7:7c:e4:f7:4c:fc:
78:ad:20:d8:a7:b8:40:48:80:79:22:da:d9:0d:93:
9b:15:ba:7c:d7:1f:41:11:d9:69:bd:dd:7d:0e:ac:
17:00:04:fd:0c:2a:73:97:9a:b1:57:af:a4:43:a2:
31:a7:8a:94:06:9d:3a:65:29:13:f1:03:cf:84:f2:
22:21:3b:bd:a5:9d:c5:ef:ff:43:a7:5c:52:d6:cd:
75:e1:5b:b2:9a:e7:bc:ac:ee:e6:1f:ff:f7:44:d2:
ee:4d:e4:74:35:7c:69:51:b9:da:6f:8c:d0:c6:9f:
3e:3c:d5:e9:8d:37:72:bd:ef:81:ff:7f:85:73:8f:
09:20:46:b6:12:17:9b:e9:a7:dc:47:2c:03:95:da:
8f:69:d9:52:e6:02:34:5f:e6:4c:19:bd:6b:73:62:
88:48:1f:e7:5c:eb:f2:f6:a7:57:4c:38:1d:a8:10:
47:c9:34:cf:de:c0:38:f8:61:76:89:24:2a:54:12:
f0:56:36:52:b3:90:d1:15:1a:ed:54:d9:7b:d9:58:
59:0e:7f:3b:8c:b7:3d:3a:b6:a1:66:d3:4e:d6:53:
8d:b1:7a:78:a6:1f:0f:4d:1d:b4:d5:e3:e6:68:2d:
af:d5:72:6c:4e:6f:36:92:ea:44:b8:cc:53:88:62:
25:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:0C:B0:0C:49:35:33:7E:D1:7A:7F:D7:63:FF:E4:75:47:62:9F:19
X509v3 Authority Key Identifier:
keyid:7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:3c:d3:d9:29:85:7d:16:4b:66:e7:d7:d7:0d:6d:07:26:5b:
ce:ba:85:bc:71:7d:6e:02:ce:ec:52:56:ea:03:27:48:86:09:
f5:d1:51:73:53:0f:5b:4a:61:63:37:a1:aa:ac:45:9d:08:db:
8c:82:7d:c0:a7:ef:d9:de:31:7c:a6:b7:ab:2a:07:40:c2:35:
c2:f8:cd:06:2b:50:a4:0c:fd:91:25:9e:ac:f6:c2:db:bc:0c:
cf:c8:c6:14:fe:15:9d:75:7f:62:a4:a3:bb:86:2e:13:13:c0:
a3:d2:5d:6d:57:4e:ad:dc:1e:a1:2e:ab:a7:4e:59:ce:09:cd:
88:c1:44:24:92:6d:3a:5e:82:19:ad:93:6d:72:64:0c:19:3e:
f3:0f:11:5c:63:9f:d4:c2:66:3d:21:b1:31:22:47:4a:b9:9d:
eb:0d:53:29:ce:60:d7:89:87:47:13:22:ca:6b:d1:77:84:a2:
1d:35:fb:99:2a:c5:50:d5:5a:74:b7:e4:45:6d:8e:e2:19:0b:
63:3d:21:b1:a4:c0:92:4f:ac:75:20:d2:97:00:4c:10:32:e1:
73:cb:59:dd:3f:5f:8a:f3:9d:58:8c:c8:6c:2c:cf:2a:ef:98:
90:03:e8:f1:c3:00:09:57:05:22:d9:70:34:94:7d:43:3a:7d:
70:a5:a8:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QKegBoN/SyxTvVVletF/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmODVlOTkwMzU0Mzk3ZTM2YzBjYTkwM2EwYzYyMGM3NzA5
ZWZkY2QwHhcNMjYwMzI5MTEwMDMxWhcNMjYwMzMwMTEwMDMxWjAzMTEwLwYDVQQD
Eyg2YjBjYjAwYzQ5MzUzMzdlZDE3YTdmZDc2M2ZmZTQ3NTQ3NjI5ZjE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2f+4G/HwrbX3fOT3TPx4rSDYp7hA
SIB5ItrZDZObFbp81x9BEdlpvd19DqwXAAT9DCpzl5qxV6+kQ6Ixp4qUBp06ZSkT
8QPPhPIiITu9pZ3F7/9Dp1xS1s114Vuymue8rO7mH//3RNLuTeR0NXxpUbnab4zQ
xp8+PNXpjTdyve+B/3+Fc48JIEa2Eheb6afcRywDldqPadlS5gI0X+ZMGb1rc2KI
SB/nXOvy9qdXTDgdqBBHyTTP3sA4+GF2iSQqVBLwVjZSs5DRFRrtVNl72VhZDn87
jLc9OrahZtNO1lONsXp4ph8PTR201ePmaC2v1XJsTm82kupEuMxTiGIleQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGsMsAxJNTN+0Xp/12P/5HVHYp8ZMB8GA1UdIwQY
MBaAFH+F6ZA1Q5fjbAypA6DGIMdwnv3NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjRYcGtEVkRsLU5zREtrRG9NWWd4M0NlX2MwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS80YWUxNzUtNTVkMC00ODRkLThkMTEt
OGM5ZDU4MjNiYWQ5LzEvZjRYcGtEVkRsLU5zREtrRG9NWWd4M0NlX2MwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS80YWUxNzUtNTVkMC00ODRkLThkMTEtOGM5ZDU4MjNiYWQ5
LzEvZjRYcGtEVkRsLU5zREtrRG9NWWd4M0NlX2MwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbjzT2SmF
fRZLZufX1w1tByZbzrqFvHF9bgLO7FJW6gMnSIYJ9dFRc1MPW0phYzehqqxFnQjb
jIJ9wKfv2d4xfKa3qyoHQMI1wvjNBitQpAz9kSWerPbC27wMz8jGFP4VnXV/YqSj
u4YuExPAo9JdbVdOrdweoS6rp05ZzgnNiMFEJJJtOl6CGa2TbXJkDBk+8w8RXGOf
1MJmPSGxMSJHSrmd6w1TKc5g14mHRxMiymvRd4SiHTX7mSrFUNVadLfkRW2O4hkL
Yz0hsaTAkk+sdSDSlwBMEDLhc8tZ3T9fivOdWIzIbCzPKu+YkAPo8cMACVcFItlw
NJR9Qzp9cKWo/A==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:50:17 2026 by rpki-client