Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft
File: s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft (raw, json)
Hash identifier: I6q5PnkF4FJJQRoqauTODkKDHe/K45tP84Um+ias034=
Subject key identifier: 24:C1:11:10:8D:A2:31:C9:B4:EB:C1:A6:C6:EA:C0:C9:CF:4C:25:B1
Authority key identifier: B3:85:94:14:62:02:E2:F6:C3:45:6B:06:96:FF:18:56:2F:1B:9F:81
Certificate issuer: /CN=b38594146202e2f6c3456b0696ff18562f1b9f81
Certificate serial: 019D37F6F777BAB4616646A386DB0D34D408
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s4WUFGIC4vbDRWsGlv8YVi8bn4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft
Manifest number: 0C18
Signing time: Sun 29 Mar 2026 05:00:25 +0000
Manifest this update: Sun 29 Mar 2026 05:00:25 +0000
Manifest next update: Mon 30 Mar 2026 05:00:25 +0000
Files and hashes: 1: s1mTD9Rddiy89QAF1AtOmO8EmNw.roa (hash: cfZ3H6/jn9OftoW/9a/g+4fCFaBAxSLakZsiEgkr34M=)
2: s4WUFGIC4vbDRWsGlv8YVi8bn4E.crl (hash: nr3dUj8lOsYb2AgXW4C/gXACLN2khatR4sOm++GtqEg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/s4WUFGIC4vbDRWsGlv8YVi8bn4E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:f7:77:ba:b4:61:66:46:a3:86:db:0d:34:d4:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b38594146202e2f6c3456b0696ff18562f1b9f81
Validity
Not Before: Mar 29 05:00:25 2026 GMT
Not After : Mar 30 05:00:25 2026 GMT
Subject: CN=24c111108da231c9b4ebc1a6c6eac0c9cf4c25b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:59:a2:4f:f1:19:92:0b:fd:38:ac:5f:12:cb:
bf:ad:5c:12:71:5e:3f:fb:f7:ff:c1:a6:40:05:63:
eb:bd:34:a9:ef:a1:b2:98:72:db:d3:eb:15:c8:c3:
ea:a7:7b:0b:64:3e:3f:7e:cc:bf:bc:1e:64:d4:9a:
34:f2:19:83:7a:a5:16:ec:1e:93:55:8d:52:aa:b9:
6d:ec:3c:f4:77:73:8e:6f:c0:88:62:fa:f3:34:95:
a7:6f:34:63:1d:0d:b0:af:5e:b9:41:bb:89:69:03:
ed:2d:a0:cd:87:54:5a:ea:73:d4:87:8f:da:30:48:
73:24:42:e4:06:67:db:f1:b6:48:2c:f2:6e:1b:16:
77:ee:8a:30:db:75:3e:f1:52:f7:86:fa:f9:ce:68:
2f:d0:27:28:68:d9:c7:fb:92:33:5d:f9:39:68:74:
90:bf:5d:24:d2:f5:d5:2b:a0:ca:1c:00:fd:41:6b:
4f:aa:ff:b2:6e:49:c5:c1:5c:87:48:fb:0f:df:77:
b8:31:9b:9c:2e:4e:5a:6a:d1:ab:e9:f0:f5:6b:72:
e1:51:ad:8b:44:79:17:47:d4:45:b3:23:24:0f:88:
b4:4e:64:ef:ec:33:0a:11:4c:40:66:93:b9:47:f2:
bc:00:4b:18:f3:51:2a:9a:78:7b:91:40:46:66:ef:
52:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C1:11:10:8D:A2:31:C9:B4:EB:C1:A6:C6:EA:C0:C9:CF:4C:25:B1
X509v3 Authority Key Identifier:
keyid:B3:85:94:14:62:02:E2:F6:C3:45:6B:06:96:FF:18:56:2F:1B:9F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s4WUFGIC4vbDRWsGlv8YVi8bn4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:a8:1a:6c:df:83:79:6a:42:5a:b3:b8:13:15:81:ba:b3:eb:
8d:59:7c:d7:76:aa:a8:06:a6:f0:14:9d:68:54:67:44:b1:24:
e9:3a:c2:56:af:86:0f:ec:c9:63:a4:c6:4e:ad:2a:60:a5:f9:
e8:28:57:3e:d2:6d:f6:4f:fe:c0:ec:5e:e6:13:a8:ec:cf:41:
1f:6b:6f:2b:fe:01:6d:d5:3b:de:fb:50:63:45:d5:13:49:f2:
e5:f1:d4:d5:0e:d7:65:7e:07:88:2f:6b:0f:18:b1:78:86:e2:
10:3d:dd:aa:d2:7f:28:89:bb:b2:d0:73:02:5d:1e:0e:46:e0:
e2:52:21:4f:5f:2e:e6:a0:3e:57:ec:44:be:21:92:48:66:58:
ca:d4:89:87:d7:e1:b8:fc:da:c6:e7:ac:1e:b5:07:f5:a2:d0:
b7:c6:d5:5a:b9:64:7e:71:cd:bf:e0:fb:de:d8:a7:3b:67:c8:
ff:64:81:a6:e5:a1:21:ad:4f:b9:b5:70:7b:32:3a:53:eb:3e:
c6:cc:a6:a1:f3:2f:fb:d9:a6:5f:a6:d6:ee:63:c3:20:64:5d:
5a:ae:20:5e:cf:01:61:52:ca:b8:d2:e5:37:b1:4b:25:0f:00:
aa:92:06:53:b7:45:d3:41:a6:59:27:ad:21:58:b5:10:32:d1:
77:71:35:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ039vd3urRhZkajhtsNNNQIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzODU5NDE0NjIwMmUyZjZjMzQ1NmIwNjk2ZmYxODU2MmYx
YjlmODEwHhcNMjYwMzI5MDUwMDI1WhcNMjYwMzMwMDUwMDI1WjAzMTEwLwYDVQQD
EygyNGMxMTExMDhkYTIzMWM5YjRlYmMxYTZjNmVhYzBjOWNmNGMyNWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAplmiT/EZkgv9OKxfEsu/rVwScV4/
+/f/waZABWPrvTSp76GymHLb0+sVyMPqp3sLZD4/fsy/vB5k1Jo08hmDeqUW7B6T
VY1Sqrlt7Dz0d3OOb8CIYvrzNJWnbzRjHQ2wr165QbuJaQPtLaDNh1Ra6nPUh4/a
MEhzJELkBmfb8bZILPJuGxZ37oow23U+8VL3hvr5zmgv0CcoaNnH+5IzXfk5aHSQ
v10k0vXVK6DKHAD9QWtPqv+ybknFwVyHSPsP33e4MZucLk5aatGr6fD1a3LhUa2L
RHkXR9RFsyMkD4i0TmTv7DMKEUxAZpO5R/K8AEsY81Eqmnh7kUBGZu9S1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCTBERCNojHJtOvBpsbqwMnPTCWxMB8GA1UdIwQY
MBaAFLOFlBRiAuL2w0VrBpb/GFYvG5+BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczRXVUZHSUM0dmJEUldzR2x2OFlWaThibjRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9kMmU4MjYtNWFjYi00N2Q2LTkyYTQt
NDNiYjE5ZjJlNTNiLzEvczRXVUZHSUM0dmJEUldzR2x2OFlWaThibjRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy9kMmU4MjYtNWFjYi00N2Q2LTkyYTQtNDNiYjE5ZjJlNTNi
LzEvczRXVUZHSUM0dmJEUldzR2x2OFlWaThibjRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIqgabN+D
eWpCWrO4ExWBurPrjVl813aqqAam8BSdaFRnRLEk6TrCVq+GD+zJY6TGTq0qYKX5
6ChXPtJt9k/+wOxe5hOo7M9BH2tvK/4BbdU73vtQY0XVE0ny5fHU1Q7XZX4HiC9r
DxixeIbiED3dqtJ/KIm7stBzAl0eDkbg4lIhT18u5qA+V+xEviGSSGZYytSJh9fh
uPzaxuesHrUH9aLQt8bVWrlkfnHNv+D73tinO2fI/2SBpuWhIa1PubVwezI6U+s+
xsymofMv+9mmX6bW7mPDIGRdWq4gXs8BYVLKuNLlN7FLJQ8AqpIGU7dF00GmWSet
IVi1EDLRd3E10w==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:14 2026 by rpki-client