Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
File: 8u5baEnIyB9adjWVWIprpoIedns.mft (raw, json)
Hash identifier: z+G/FeWghvuqpU5x4ETG5FeXioAYyM+sHyermRMX8DA=
Subject key identifier: CB:39:25:6F:BB:53:4B:98:C0:CC:B0:BD:AC:A5:3E:77:54:59:CB:68
Authority key identifier: F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
Certificate issuer: /CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Certificate serial: 019D389BF691580257A4B33E137EA8070FC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
Manifest number: 0895
Signing time: Sun 29 Mar 2026 08:00:38 +0000
Manifest this update: Sun 29 Mar 2026 08:00:38 +0000
Manifest next update: Mon 30 Mar 2026 08:00:38 +0000
Files and hashes: 1: 2GTvWzpclUq6kJYm-wsP_GwJPLY.roa (hash: fYmZ9Cu3/ER+umCuIKfV6emnqQD55csuls9mkFBGOE4=)
2: 5oF3V0rjeL1pJ5lHiFSxxXlRiqk.roa (hash: MY4vTmIm6iMkCfXRGy7HULVmNJlJMi1dSNNh0tuV34c=)
3: 69uCRF0gJPayfWhDtOPkNyE4RrA.roa (hash: zk+4O7C/kwm21uLUwHJKUDfYHP0XyuVnc9Gjvk0nfWs=)
4: 8u5baEnIyB9adjWVWIprpoIedns.crl (hash: bWfoOoQNJPi78OMvU+e3juIrP3Q55r9MqWrVlpVL3x4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:f6:91:58:02:57:a4:b3:3e:13:7e:a8:07:0f:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Validity
Not Before: Mar 29 08:00:38 2026 GMT
Not After : Mar 30 08:00:38 2026 GMT
Subject: CN=cb39256fbb534b98c0ccb0bdaca53e775459cb68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:17:a4:9c:96:1a:c4:65:83:81:0c:bf:3b:2c:
f2:d1:37:c4:ef:a6:10:70:3d:71:76:00:0b:31:36:
fa:b5:8b:6b:65:a2:ee:71:ca:fc:e1:c1:c7:22:4a:
05:90:0f:fc:c2:3c:ce:45:9c:48:e4:5b:ff:da:07:
f0:1d:23:cc:65:4e:7b:d9:08:09:49:a7:24:f2:e0:
a8:e5:9d:cf:c2:1b:fc:9f:50:81:d8:66:3a:8a:1e:
d5:ed:ae:c6:89:61:71:8c:e2:c9:d2:99:12:fd:69:
4a:41:88:35:44:a0:04:5e:bb:f3:2d:63:27:40:5e:
6d:98:f7:36:ee:39:c1:c9:51:fc:ce:53:a3:fc:1e:
2d:85:96:24:8e:1e:53:3e:1f:87:74:5a:30:14:24:
85:83:16:a5:86:93:8b:cd:65:9e:de:15:99:ca:a3:
b7:9e:49:a2:4b:3c:9f:82:28:d1:98:a0:24:a5:c6:
2d:67:bf:1a:10:d9:5f:8e:6c:e9:6d:88:3a:91:5c:
71:26:b9:cf:57:15:ce:7c:75:a9:c9:df:06:5b:f0:
11:56:d0:64:e2:dc:49:5c:15:71:f6:e9:fb:25:e7:
2a:21:d9:fb:f5:66:e8:19:a5:e5:3b:cf:46:f5:41:
c1:95:bb:6d:c5:7e:64:1f:4c:5b:4e:60:75:9c:01:
36:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:39:25:6F:BB:53:4B:98:C0:CC:B0:BD:AC:A5:3E:77:54:59:CB:68
X509v3 Authority Key Identifier:
keyid:F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:ac:da:52:7f:e2:c7:ba:60:a5:a0:02:de:bf:ba:8d:7b:cc:
71:1c:c9:60:5c:ac:c9:5f:7c:ed:33:42:84:43:92:d3:12:d9:
ec:70:6c:46:cd:35:6e:cc:6b:52:96:fc:9e:de:8c:16:12:76:
70:1e:a2:27:f2:9b:35:da:bd:b9:1f:c0:71:a3:13:55:e8:17:
d6:e2:2f:c3:e8:10:8b:27:e6:fc:86:e3:1f:d1:b0:c8:e4:9c:
dc:9c:3a:a5:c2:9b:26:ac:f0:06:68:60:4f:29:ba:ac:38:19:
f1:07:e4:0f:84:66:88:01:0a:6b:47:b2:19:3b:73:f4:36:54:
33:a9:d5:44:be:96:c6:17:b3:b3:60:fc:cc:02:de:2e:8a:01:
3b:a6:9c:a6:2f:8b:6c:0b:10:06:9b:3c:c9:e2:46:44:f8:68:
2e:9d:57:58:e9:7a:4d:0b:f2:34:08:0c:74:d5:15:b7:e2:d4:
94:dc:6a:94:d5:26:c5:3e:3c:c4:e2:77:92:fd:ae:b9:12:e9:
df:d4:d0:fe:c1:72:d4:10:6c:07:7c:32:a6:c2:80:65:c3:61:
8f:e8:99:9f:74:31:21:05:37:62:d3:a9:57:86:03:07:40:b8:
3e:fa:db:9b:ed:bc:eb:83:e7:9a:11:3a:9d:c6:96:ad:06:b6:
d9:02:de:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04m/aRWAJXpLM+E36oBw/DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyZWU1YjY4NDljOGM4MWY1YTc2MzU5NTU4OGE2YmE2ODIx
ZTc2N2IwHhcNMjYwMzI5MDgwMDM4WhcNMjYwMzMwMDgwMDM4WjAzMTEwLwYDVQQD
EyhjYjM5MjU2ZmJiNTM0Yjk4YzBjY2IwYmRhY2E1M2U3NzU0NTljYjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+xeknJYaxGWDgQy/Oyzy0TfE76YQ
cD1xdgALMTb6tYtrZaLuccr84cHHIkoFkA/8wjzORZxI5Fv/2gfwHSPMZU572QgJ
Sack8uCo5Z3Pwhv8n1CB2GY6ih7V7a7GiWFxjOLJ0pkS/WlKQYg1RKAEXrvzLWMn
QF5tmPc27jnByVH8zlOj/B4thZYkjh5TPh+HdFowFCSFgxalhpOLzWWe3hWZyqO3
nkmiSzyfgijRmKAkpcYtZ78aENlfjmzpbYg6kVxxJrnPVxXOfHWpyd8GW/ARVtBk
4txJXBVx9un7JecqIdn79WboGaXlO89G9UHBlbttxX5kH0xbTmB1nAE2ZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMs5JW+7U0uYwMywvaylPndUWctoMB8GA1UdIwQY
MBaAFPLuW2hJyMgfWnY1lViKa6aCHnZ7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHU1YmFFbkl5QjlhZGpXVldJcHJwb0llZG5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8wMDJhODgtM2E4NS00NzZmLWI0NTIt
NjBhMDM5ZGQxYmNhLzEvOHU1YmFFbkl5QjlhZGpXVldJcHJwb0llZG5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS8wMDJhODgtM2E4NS00NzZmLWI0NTItNjBhMDM5ZGQxYmNh
LzEvOHU1YmFFbkl5QjlhZGpXVldJcHJwb0llZG5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtqzaUn/i
x7pgpaAC3r+6jXvMcRzJYFysyV987TNChEOS0xLZ7HBsRs01bsxrUpb8nt6MFhJ2
cB6iJ/KbNdq9uR/AcaMTVegX1uIvw+gQiyfm/IbjH9GwyOSc3Jw6pcKbJqzwBmhg
Tym6rDgZ8QfkD4RmiAEKa0eyGTtz9DZUM6nVRL6Wxhezs2D8zALeLooBO6acpi+L
bAsQBps8yeJGRPhoLp1XWOl6TQvyNAgMdNUVt+LUlNxqlNUmxT48xOJ3kv2uuRLp
39TQ/sFy1BBsB3wypsKAZcNhj+iZn3QxIQU3YtOpV4YDB0C4Pvrbm+2864PnmhE6
ncaWrQa22QLeCw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:26:44 2026 by rpki-client