Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
File: ruCNkzby5s0WXrcwKX_m0gyDw5o.mft (raw, json)
Hash identifier: 5ayeD8OCPviZjU1n8m8enuaCfSV3MhMh5SakgrJ0gY4=
Subject key identifier: 7C:57:43:AD:BA:AA:05:C1:12:FB:25:E4:E0:15:55:71:1D:90:73:C0
Authority key identifier: AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
Certificate issuer: /CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Certificate serial: 019D3940CF50366890494FF8F929677D002A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
Manifest number: 15DB
Signing time: Sun 29 Mar 2026 11:00:41 +0000
Manifest this update: Sun 29 Mar 2026 11:00:41 +0000
Manifest next update: Mon 30 Mar 2026 11:00:41 +0000
Files and hashes: 1: 123WXGbRTZdeisXrE-k_3g3EMvk.roa (hash: PVrjq81b7ONxfTHO259I9HIBssHsthuK6wCJzCfRRBw=)
2: 3JLEaN47mFd4AJ1ulcTajHwX46Q.roa (hash: 7nuv0xJK6J/Wz9ZBABmkHA68zDZCu6LbMkw8k4JA0aY=)
3: 3m4ZcWe4AoRitpxIdoHTfvPCTz4.roa (hash: R1IDNKkyr2PRIrfMe44b/uoEQJhofAwIdcVDkSZ0J1s=)
4: ktGWBH_rz8CZASP_zJHcbXXlp7Y.roa (hash: WQj8sJ8bysuFkPbFG5oVPz6oUf8fVBbz+1mkOQXAzAY=)
5: qmwlU-LpszPGm_f_AiX4jfEipIU.roa (hash: eBcbl11HwyKBKgKCJIYPrcRxwRYlzqQyOytUqmTgqj8=)
6: ruCNkzby5s0WXrcwKX_m0gyDw5o.crl (hash: THFpDAuY5y0ze05zZV32mMaVDjt8RneGdyimmp75AGw=)
7: wwateRuj040-ENpDYQ6qLA2XVl0.roa (hash: NH6PZI4atftudx1FEvFD8kdIjwc++XEY3pey7kw2zFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:cf:50:36:68:90:49:4f:f8:f9:29:67:7d:00:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Validity
Not Before: Mar 29 11:00:41 2026 GMT
Not After : Mar 30 11:00:41 2026 GMT
Subject: CN=7c5743adbaaa05c112fb25e4e01555711d9073c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:82:9a:de:b6:a4:74:5b:5b:10:76:7d:ec:00:
ac:7d:79:9f:ad:f5:02:e2:fe:d9:b4:d1:41:66:72:
bf:97:d6:32:39:8a:b5:c5:cf:bb:17:58:d1:c7:39:
32:54:89:c9:09:cf:c5:94:5d:29:97:8b:37:ea:d9:
bc:6d:34:3b:48:3f:58:18:71:4e:9d:6b:f7:f1:73:
9d:de:62:78:3a:c7:5b:60:7f:e4:5b:39:a8:e4:b8:
b0:1b:eb:f5:6d:9d:be:90:71:3e:bb:6c:4c:c1:9e:
3f:7e:96:a9:3e:ed:f9:da:a7:b9:60:48:9c:e5:41:
52:e5:3e:ed:4c:0e:c5:dc:a9:45:d3:a8:4c:a6:1e:
a6:f5:a7:3c:69:64:0a:cf:d5:66:f6:3d:ec:20:1d:
08:63:10:88:4d:82:95:c3:e3:36:86:46:17:2e:ff:
41:56:ed:fc:7f:76:a6:d7:49:43:d7:2b:3f:a2:e8:
f6:9f:e3:92:a7:0f:7b:0e:b4:ca:b4:78:1f:d5:f9:
e6:7e:cd:8b:9d:0f:25:aa:b9:d0:20:0c:29:c1:88:
cb:c5:76:38:b2:36:48:a9:50:23:19:86:cb:50:c7:
84:ce:97:ff:2d:3e:51:44:76:7a:b8:b9:36:e0:ff:
59:21:14:db:b5:05:e2:31:fd:da:01:bb:a0:35:21:
de:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:57:43:AD:BA:AA:05:C1:12:FB:25:E4:E0:15:55:71:1D:90:73:C0
X509v3 Authority Key Identifier:
keyid:AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:ff:bc:60:1b:88:1b:da:65:cb:f4:b6:1d:47:c8:1c:d2:ac:
73:e1:b0:05:c9:d2:7f:cf:e5:9a:b3:26:3d:f4:be:6a:23:02:
67:68:96:6b:cb:e6:b5:c6:05:fb:cc:69:82:32:a9:04:58:ce:
b8:a9:79:2d:79:04:28:c1:00:61:06:bc:a3:4e:02:24:59:c5:
6d:16:45:fe:84:3f:09:68:7a:32:ef:2c:99:ae:cc:ba:ad:14:
89:d9:96:c3:4a:d5:a1:88:6c:30:ef:1a:a9:32:ab:73:a1:67:
c6:f0:2b:64:45:2f:37:bf:87:cd:45:e7:ef:f7:49:ec:16:ee:
39:b6:9c:78:32:67:24:fc:f8:46:58:b9:e5:3c:44:0f:98:6d:
3b:ca:a8:d6:3e:a8:7d:4e:ea:1c:42:3e:44:25:bc:ef:26:7e:
29:77:a1:ba:0c:79:6d:c3:e0:32:d4:bc:47:24:e6:cf:44:54:
50:b3:6e:87:af:e0:0c:2f:54:c5:7f:8e:c4:81:a1:81:f9:f5:
6b:b2:bd:1b:4a:9c:70:eb:52:a9:2a:59:41:a9:9c:de:60:29:
01:2a:7b:9c:99:10:91:55:86:e6:59:83:2c:96:f6:26:09:b2:
ce:cc:2e:fe:e1:e9:46:d7:02:98:e3:2b:49:ed:24:cf:5e:20:
72:94:99:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QM9QNmiQSU/4+SlnfQAqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlZTA4ZDkzMzZmMmU2Y2QxNjVlYjczMDI5N2ZlNmQyMGM4
M2MzOWEwHhcNMjYwMzI5MTEwMDQxWhcNMjYwMzMwMTEwMDQxWjAzMTEwLwYDVQQD
Eyg3YzU3NDNhZGJhYWEwNWMxMTJmYjI1ZTRlMDE1NTU3MTFkOTA3M2MwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYKa3rakdFtbEHZ97ACsfXmfrfUC
4v7ZtNFBZnK/l9YyOYq1xc+7F1jRxzkyVInJCc/FlF0pl4s36tm8bTQ7SD9YGHFO
nWv38XOd3mJ4OsdbYH/kWzmo5LiwG+v1bZ2+kHE+u2xMwZ4/fpapPu352qe5YEic
5UFS5T7tTA7F3KlF06hMph6m9ac8aWQKz9Vm9j3sIB0IYxCITYKVw+M2hkYXLv9B
Vu38f3am10lD1ys/ouj2n+OSpw97DrTKtHgf1fnmfs2LnQ8lqrnQIAwpwYjLxXY4
sjZIqVAjGYbLUMeEzpf/LT5RRHZ6uLk24P9ZIRTbtQXiMf3aAbugNSHe0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHxXQ626qgXBEvsl5OAVVXEdkHPAMB8GA1UdIwQY
MBaAFK7gjZM28ubNFl63MCl/5tIMg8OaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnVDTmt6Ynk1czBXWHJjd0tYX20wZ3lEdzVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9mODUzZjgtMjA3MS00OWRlLWI2YTAt
NDk3YmVkZDcxZWI5LzEvcnVDTmt6Ynk1czBXWHJjd0tYX20wZ3lEdzVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC9mODUzZjgtMjA3MS00OWRlLWI2YTAtNDk3YmVkZDcxZWI5
LzEvcnVDTmt6Ynk1czBXWHJjd0tYX20wZ3lEdzVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhf+8YBuI
G9ply/S2HUfIHNKsc+GwBcnSf8/lmrMmPfS+aiMCZ2iWa8vmtcYF+8xpgjKpBFjO
uKl5LXkEKMEAYQa8o04CJFnFbRZF/oQ/CWh6Mu8sma7Muq0UidmWw0rVoYhsMO8a
qTKrc6FnxvArZEUvN7+HzUXn7/dJ7BbuObaceDJnJPz4Rli55TxED5htO8qo1j6o
fU7qHEI+RCW87yZ+KXehugx5bcPgMtS8RyTmz0RUULNuh6/gDC9UxX+OxIGhgfn1
a7K9G0qccOtSqSpZQamc3mApASp7nJkQkVWG5lmDLJb2Jgmyzswu/uHpRtcCmOMr
Se0kz14gcpSZtQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:10:18 2026 by rpki-client