Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/338fc0-7025-49ea-a52d-21b034c2f8dc/1/04nufcekvqjSach0bP59NhmNIh4.mft
File: 04nufcekvqjSach0bP59NhmNIh4.mft (raw, json)
Hash identifier: HVf/ooYiINXqG75TkgT11Tal5TFFcIx0uD+IY2o+lbY=
Subject key identifier: B5:2D:62:60:DE:7C:F0:54:94:F6:18:E3:BA:C6:23:FD:A0:8A:76:41
Authority key identifier: D3:89:EE:7D:C7:A4:BE:A8:D2:69:C8:74:6C:FE:7D:36:19:8D:22:1E
Certificate issuer: /CN=d389ee7dc7a4bea8d269c8746cfe7d36198d221e
Certificate serial: 019E28EF8C505C4076A1E3D3AA084FF8C6BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04nufcekvqjSach0bP59NhmNIh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/338fc0-7025-49ea-a52d-21b034c2f8dc/1/04nufcekvqjSach0bP59NhmNIh4.mft
Manifest number: 0137
Signing time: Fri 15 May 2026 00:00:48 +0000
Manifest this update: Fri 15 May 2026 00:00:48 +0000
Manifest next update: Sat 16 May 2026 00:00:48 +0000
Files and hashes: 1: 04nufcekvqjSach0bP59NhmNIh4.crl (hash: B9gVTCtqX7ocNE1IuWBtlvxlZqKKSgKrkX4p5z1hf+s=)
2: DMYjGVXF04RFwUn6UCWXk-mgrnQ.roa (hash: 1IKdEVdxinUDX4GEoCU9iDa0wsb9FYEO+VbnWoVZHRQ=)
3: uldmgPFlTuQeBt-ipePLSPYN-eI.asa (hash: kElPpLT8qkmreugOZZKYSI8vXfLFDf0CKmt+bqNFxbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/338fc0-7025-49ea-a52d-21b034c2f8dc/1/04nufcekvqjSach0bP59NhmNIh4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/338fc0-7025-49ea-a52d-21b034c2f8dc/1/04nufcekvqjSach0bP59NhmNIh4.mft
rsync://rpki.ripe.net/repository/DEFAULT/04nufcekvqjSach0bP59NhmNIh4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 00:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:ef:8c:50:5c:40:76:a1:e3:d3:aa:08:4f:f8:c6:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d389ee7dc7a4bea8d269c8746cfe7d36198d221e
Validity
Not Before: May 15 00:00:48 2026 GMT
Not After : May 16 00:00:48 2026 GMT
Subject: CN=b52d6260de7cf05494f618e3bac623fda08a7641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:6e:ad:37:27:c4:10:53:84:90:98:d6:f4:c2:
0f:e6:22:bd:88:83:f2:86:25:4b:37:e3:62:d5:ea:
d1:1a:99:16:22:e0:82:c7:12:b7:a9:ef:5b:64:b9:
a7:1b:e0:97:ab:2c:7a:cb:54:a5:a9:c0:68:28:2e:
e9:d4:18:80:b9:ea:f9:63:fe:6e:d0:c4:7a:9f:25:
54:07:fd:d1:cd:03:2d:1a:bd:99:bd:7d:83:e8:d6:
fc:67:6c:21:9f:49:9a:87:27:1b:61:f7:f2:84:20:
a9:37:b0:65:d2:1a:38:91:ae:86:04:ec:11:bf:d3:
9c:9b:3a:e6:31:67:93:46:0a:7e:59:62:3b:35:f1:
a4:66:88:e4:3f:e6:e1:13:93:a2:e5:be:1d:0a:99:
3b:c6:54:34:2b:08:db:52:5b:05:8c:51:24:79:0c:
fc:19:d6:13:06:09:45:78:3b:37:9b:5f:25:e8:26:
1c:72:f0:7e:57:ed:e0:bf:33:9e:12:91:1e:de:57:
c3:4f:d7:00:b5:53:98:84:1c:31:e2:7c:54:40:6e:
01:88:15:c3:de:1d:4f:42:5e:b1:eb:5f:56:38:21:
31:a4:6f:72:4c:10:09:73:75:38:9f:f4:15:fc:89:
59:e5:fd:96:8c:22:09:93:bb:3a:19:e6:36:3a:36:
c0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:2D:62:60:DE:7C:F0:54:94:F6:18:E3:BA:C6:23:FD:A0:8A:76:41
X509v3 Authority Key Identifier:
keyid:D3:89:EE:7D:C7:A4:BE:A8:D2:69:C8:74:6C:FE:7D:36:19:8D:22:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04nufcekvqjSach0bP59NhmNIh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/338fc0-7025-49ea-a52d-21b034c2f8dc/1/04nufcekvqjSach0bP59NhmNIh4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/338fc0-7025-49ea-a52d-21b034c2f8dc/1/04nufcekvqjSach0bP59NhmNIh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:41:ac:8d:b4:ae:ed:09:29:b4:64:7f:d4:67:a9:b1:e9:13:
56:44:30:f1:57:4a:f7:15:55:0a:da:ff:86:e5:d1:f8:c4:91:
84:92:35:51:be:25:6c:60:31:16:48:ed:03:a9:f9:9f:1d:86:
7b:5a:59:7f:81:6b:9a:f0:d0:8c:50:4f:af:22:c2:a9:a2:e8:
55:27:c2:bf:5d:60:a0:d7:44:d1:ec:b5:13:f9:c3:a0:1b:6b:
50:87:bd:71:f3:9b:8f:34:4b:04:9a:ff:3a:16:d8:41:36:dd:
c7:97:c6:13:37:5d:38:4a:63:23:76:d5:19:75:78:8e:cb:5f:
f2:ae:91:40:8e:03:1b:69:d1:d6:95:fe:7d:57:7a:11:23:81:
3a:22:96:1e:6a:d5:87:a4:64:54:ab:51:6d:03:98:4f:1a:d9:
b6:28:a6:84:3a:94:07:4d:f3:7d:ae:a1:8e:a3:95:6f:0d:ec:
89:a1:9d:f0:bf:e2:19:7f:96:0f:c9:31:7c:9d:e2:4e:97:dc:
fb:4e:f5:c5:83:f4:1a:d2:ca:0a:e1:ae:c0:56:b0:c6:8f:4c:
32:d6:d6:1c:56:28:d6:5c:40:02:38:38:b3:0d:2c:fa:ff:7a:
28:ad:97:65:5a:a9:d3:85:1d:32:de:9b:e1:6f:1f:11:6e:fc:
9c:ce:aa:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4o74xQXEB2oePTqghP+Ma7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzODllZTdkYzdhNGJlYThkMjY5Yzg3NDZjZmU3ZDM2MTk4
ZDIyMWUwHhcNMjYwNTE1MDAwMDQ4WhcNMjYwNTE2MDAwMDQ4WjAzMTEwLwYDVQQD
EyhiNTJkNjI2MGRlN2NmMDU0OTRmNjE4ZTNiYWM2MjNmZGEwOGE3NjQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4W6tNyfEEFOEkJjW9MIP5iK9iIPy
hiVLN+Ni1erRGpkWIuCCxxK3qe9bZLmnG+CXqyx6y1SlqcBoKC7p1BiAuer5Y/5u
0MR6nyVUB/3RzQMtGr2ZvX2D6Nb8Z2whn0mahycbYffyhCCpN7Bl0ho4ka6GBOwR
v9OcmzrmMWeTRgp+WWI7NfGkZojkP+bhE5Oi5b4dCpk7xlQ0KwjbUlsFjFEkeQz8
GdYTBglFeDs3m18l6CYccvB+V+3gvzOeEpEe3lfDT9cAtVOYhBwx4nxUQG4BiBXD
3h1PQl6x619WOCExpG9yTBAJc3U4n/QV/IlZ5f2WjCIJk7s6GeY2OjbAHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLUtYmDefPBUlPYY47rGI/2ginZBMB8GA1UdIwQY
MBaAFNOJ7n3HpL6o0mnIdGz+fTYZjSIeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDRudWZjZWt2cWpTYWNoMGJQNTlOaG1OSWg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8zMzhmYzAtNzAyNS00OWVhLWE1MmQt
MjFiMDM0YzJmOGRjLzEvMDRudWZjZWt2cWpTYWNoMGJQNTlOaG1OSWg0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS8zMzhmYzAtNzAyNS00OWVhLWE1MmQtMjFiMDM0YzJmOGRj
LzEvMDRudWZjZWt2cWpTYWNoMGJQNTlOaG1OSWg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJEGsjbSu
7QkptGR/1GepsekTVkQw8VdK9xVVCtr/huXR+MSRhJI1Ub4lbGAxFkjtA6n5nx2G
e1pZf4FrmvDQjFBPryLCqaLoVSfCv11goNdE0ey1E/nDoBtrUIe9cfObjzRLBJr/
OhbYQTbdx5fGEzddOEpjI3bVGXV4jstf8q6RQI4DG2nR1pX+fVd6ESOBOiKWHmrV
h6RkVKtRbQOYTxrZtiimhDqUB03zfa6hjqOVbw3siaGd8L/iGX+WD8kxfJ3iTpfc
+071xYP0GtLKCuGuwFawxo9MMtbWHFYo1lxAAjg4sw0s+v96KK2XZVqp04UdMt6b
4W8fEW78nM6qxg==
-----END CERTIFICATE-----
Generated at Fri May 15 06:19:52 2026 by rpki-client