Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
File: 0xryhyw_VQMHOGbf_vSItxeD2rY.mft (raw, json)
Hash identifier: Xq81njDEPHT4Iaeyef0lha/OuoaK0biREoofqKUa1Pk=
Subject key identifier: 9A:98:3B:9C:E3:54:A6:AF:20:C9:BD:5A:98:8F:2A:44:2C:D7:4D:26
Authority key identifier: D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6
Certificate issuer: /CN=d31af2872c3f5503073866dffef488b71783dab6
Certificate serial: 019D371BAB863EC91A8D72EC4A1833AEA136
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
Manifest number: 158E
Signing time: Sun 29 Mar 2026 01:00:53 +0000
Manifest this update: Sun 29 Mar 2026 01:00:53 +0000
Manifest next update: Mon 30 Mar 2026 01:00:53 +0000
Files and hashes: 1: 0xryhyw_VQMHOGbf_vSItxeD2rY.crl (hash: ah69D3N8NylVNEmuxW//PZoizaYxh1gyJ7kJ4cUqyx8=)
2: CrO8u8Oq5BkBEcatDjBKbWW3E7M.roa (hash: imrBuoJmOz69UhOC1sn6VQqSOK7SozDwdVoRAOrOv0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:ab:86:3e:c9:1a:8d:72:ec:4a:18:33:ae:a1:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d31af2872c3f5503073866dffef488b71783dab6
Validity
Not Before: Mar 29 01:00:53 2026 GMT
Not After : Mar 30 01:00:53 2026 GMT
Subject: CN=9a983b9ce354a6af20c9bd5a988f2a442cd74d26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ca:ca:77:27:0d:c1:d9:09:4f:f6:b0:34:18:
4f:cd:e4:37:7f:ab:f9:b7:99:2e:60:69:97:f6:c7:
f3:69:9e:63:8d:61:b3:3d:a4:83:f5:9d:df:8a:87:
6f:08:89:28:23:4b:8f:cd:9a:44:3d:83:43:88:79:
98:bd:01:61:32:9e:cc:54:e9:43:02:5b:8e:8a:34:
a6:91:21:d7:65:af:df:41:95:0d:12:24:18:5c:b5:
4c:ef:9d:e1:cb:3c:2c:81:6f:54:7c:54:26:5d:0f:
32:c1:d3:21:54:d6:fd:62:80:01:19:99:8e:f3:bf:
a5:89:10:b7:32:1d:a4:1a:68:be:0b:8f:5d:09:7d:
e1:0b:51:4c:1e:81:05:d9:17:3c:e9:a3:ee:65:41:
f9:7e:26:57:1b:fe:c2:ec:b3:6d:46:65:43:9b:2d:
00:5c:d5:32:a2:95:1a:07:fc:86:a9:9e:0e:52:3d:
98:3d:b4:1b:3a:3f:28:9f:4c:8b:e5:85:6b:b5:39:
95:b4:3b:41:5f:00:11:f6:d6:df:a9:da:9e:51:f0:
03:0e:c4:c2:21:2a:8d:2c:98:48:96:82:65:fa:26:
55:f6:e6:97:09:8e:8b:21:19:0a:5f:5c:b7:cc:be:
77:97:d7:45:70:8e:1b:37:d1:26:69:45:a0:5b:fe:
ad:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:98:3B:9C:E3:54:A6:AF:20:C9:BD:5A:98:8F:2A:44:2C:D7:4D:26
X509v3 Authority Key Identifier:
keyid:D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:c5:f3:e7:12:c8:91:50:9a:7a:93:9f:bb:47:fd:08:6a:49:
e1:68:07:41:f5:dc:64:79:ba:08:08:eb:fd:81:10:aa:41:16:
56:48:de:42:f6:52:f7:d8:e8:cc:f7:9c:e7:22:ad:2a:41:e3:
4a:d7:4f:69:57:01:e6:a1:e2:97:92:60:5c:70:2e:44:12:c3:
d4:e5:9c:74:4a:c9:c4:55:3b:7e:04:a0:98:d4:24:96:05:72:
31:94:b2:de:bd:59:34:ea:19:4b:20:ba:10:fe:d2:be:09:b0:
7f:82:00:4e:de:81:d3:7f:32:f9:8c:4e:10:17:de:9f:32:be:
ec:23:79:8d:5d:25:ca:90:81:0e:d2:6b:ae:03:a0:4e:03:b7:
8e:17:2e:ec:10:ef:0c:03:a1:42:55:3d:03:05:dc:f4:46:69:
f9:0d:bf:1a:bf:e3:2f:4e:a1:33:96:4d:02:f1:26:00:08:b3:
30:96:ff:aa:8d:69:e0:12:9a:a9:a7:7e:de:c6:d8:15:72:46:
6a:6c:23:42:b5:51:0c:66:12:84:a1:72:60:46:52:fa:b9:ee:
3e:ed:7a:fb:62:0e:2d:86:5b:66:a0:bd:0e:6b:b1:22:a5:36:
1d:c4:cd:33:cc:4b:67:13:c8:19:74:6c:72:2d:21:f1:67:39:
fd:a6:bd:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03G6uGPskajXLsShgzrqE2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzMWFmMjg3MmMzZjU1MDMwNzM4NjZkZmZlZjQ4OGI3MTc4
M2RhYjYwHhcNMjYwMzI5MDEwMDUzWhcNMjYwMzMwMDEwMDUzWjAzMTEwLwYDVQQD
Eyg5YTk4M2I5Y2UzNTRhNmFmMjBjOWJkNWE5ODhmMmE0NDJjZDc0ZDI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnMrKdycNwdkJT/awNBhPzeQ3f6v5
t5kuYGmX9sfzaZ5jjWGzPaSD9Z3fiodvCIkoI0uPzZpEPYNDiHmYvQFhMp7MVOlD
AluOijSmkSHXZa/fQZUNEiQYXLVM753hyzwsgW9UfFQmXQ8ywdMhVNb9YoABGZmO
87+liRC3Mh2kGmi+C49dCX3hC1FMHoEF2Rc86aPuZUH5fiZXG/7C7LNtRmVDmy0A
XNUyopUaB/yGqZ4OUj2YPbQbOj8on0yL5YVrtTmVtDtBXwAR9tbfqdqeUfADDsTC
ISqNLJhIloJl+iZV9uaXCY6LIRkKX1y3zL53l9dFcI4bN9EmaUWgW/6tuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJqYO5zjVKavIMm9WpiPKkQs100mMB8GA1UdIwQY
MBaAFNMa8ocsP1UDBzhm3/70iLcXg9q2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHhyeWh5d19WUU1IT0diZl92U0l0eGVEMnJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS82OGI3NWMtODNkZi00NzRlLWE5ZmUt
MDFiZjFmMTQ1YzI2LzEvMHhyeWh5d19WUU1IT0diZl92U0l0eGVEMnJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS82OGI3NWMtODNkZi00NzRlLWE5ZmUtMDFiZjFmMTQ1YzI2
LzEvMHhyeWh5d19WUU1IT0diZl92U0l0eGVEMnJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGMXz5xLI
kVCaepOfu0f9CGpJ4WgHQfXcZHm6CAjr/YEQqkEWVkjeQvZS99jozPec5yKtKkHj
StdPaVcB5qHil5JgXHAuRBLD1OWcdErJxFU7fgSgmNQklgVyMZSy3r1ZNOoZSyC6
EP7Svgmwf4IATt6B038y+YxOEBfenzK+7CN5jV0lypCBDtJrrgOgTgO3jhcu7BDv
DAOhQlU9AwXc9EZp+Q2/Gr/jL06hM5ZNAvEmAAizMJb/qo1p4BKaqad+3sbYFXJG
amwjQrVRDGYShKFyYEZS+rnuPu16+2IOLYZbZqC9DmuxIqU2HcTNM8xLZxPIGXRs
ci0h8Wc5/aa9LQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:16:33 2026 by rpki-client