Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
File: mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft (raw, json)
Hash identifier: l3Oh/fc5vJ69WVQOkp+EZp8zUJos//KhNtY0fVDyw7E=
Subject key identifier: 53:1E:41:97:7D:77:77:A8:56:6F:58:34:55:0B:5E:8B:02:26:57:28
Authority key identifier: 99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27
Certificate issuer: /CN=996f903f91a85a60c546ee1141348cc3c8036927
Certificate serial: 019D386691C4CCF2DBDB8FCAADA4320C17C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
Manifest number: 1522
Signing time: Sun 29 Mar 2026 07:02:19 +0000
Manifest this update: Sun 29 Mar 2026 07:02:19 +0000
Manifest next update: Mon 30 Mar 2026 07:02:19 +0000
Files and hashes: 1: 1-WzZMCEyc2Rm8WtzI4guv1wbjQc.roa (hash: Zwy/WM9bxRjQKO19XmxHw+6wiCVAQYUUXkLnAumwRps=)
2: mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl (hash: lVgFctYCHUfkRE/U+GhPKk12EHfmeV2RBIFFaN3JRSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:91:c4:cc:f2:db:db:8f:ca:ad:a4:32:0c:17:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996f903f91a85a60c546ee1141348cc3c8036927
Validity
Not Before: Mar 29 07:02:19 2026 GMT
Not After : Mar 30 07:02:19 2026 GMT
Subject: CN=531e41977d7777a8566f5834550b5e8b02265728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:26:79:d5:a0:3d:b5:41:52:96:22:ad:4f:3d:
5c:e7:3f:5e:1a:84:1a:3c:d8:9e:b6:70:e2:dc:8a:
da:00:54:bc:cc:eb:d2:3c:c1:7d:69:e8:9d:61:78:
19:5e:ca:03:0d:e2:a2:9b:52:36:4b:9c:69:b8:22:
f0:0a:ab:fc:17:ef:6a:05:bb:d2:5a:bc:02:13:c6:
ce:c4:76:2c:e8:ab:68:8d:68:7a:f9:15:64:31:e3:
1c:32:45:fd:c3:64:82:3d:ec:0c:26:33:c9:95:ea:
58:07:27:d5:49:42:16:df:a4:04:37:bf:7e:5b:30:
c6:52:43:a7:9d:20:28:19:da:52:06:19:0c:04:6a:
2f:c5:a0:d8:38:75:d3:b5:2c:30:7f:82:dc:3a:d1:
fd:03:70:f8:c0:00:ec:22:88:96:7f:21:7e:70:6f:
6a:fd:90:cb:14:56:1a:ee:82:91:00:63:c2:f1:17:
7f:0c:18:76:95:35:29:71:c2:6f:e6:6d:ce:55:1c:
dc:a8:b5:d0:ca:6b:cd:0d:d9:0c:4d:dd:e6:22:80:
33:e0:2b:15:89:cc:d6:0a:54:a7:99:a3:9f:0f:b7:
03:7e:f1:d1:6d:d1:da:75:f4:02:2c:9a:ec:92:c9:
2e:81:dc:b3:37:29:5b:1b:db:09:a1:3f:ba:e1:06:
2b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:1E:41:97:7D:77:77:A8:56:6F:58:34:55:0B:5E:8B:02:26:57:28
X509v3 Authority Key Identifier:
keyid:99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:b6:b3:e5:07:e2:05:a0:51:62:41:73:a2:09:ba:c8:d1:70:
dc:8d:52:c3:dc:c6:a7:ad:0c:e8:56:44:3c:ab:6b:13:77:5e:
20:9e:31:d2:18:b9:53:45:53:69:bf:9d:11:06:4e:59:68:55:
fd:5a:24:44:d2:6d:41:be:c8:f3:78:65:ed:d3:f2:0c:2b:18:
d9:f5:8e:2b:6b:0d:ed:4e:55:a5:1f:22:69:49:9f:41:8b:4c:
c0:ee:d8:e3:3f:05:26:a2:2a:9e:8f:94:6c:85:e6:97:27:67:
0f:6f:7f:20:8a:42:b2:be:88:29:88:73:1b:fc:5f:80:c6:62:
9e:66:8f:28:b5:a0:6f:75:f4:43:e0:04:1f:fe:c7:6a:a6:1d:
6a:78:05:d6:38:e0:5a:ad:7a:46:6b:ff:7c:77:24:1f:50:19:
7d:62:2e:a5:e8:f1:d9:f1:f3:87:ba:07:be:4f:88:da:3a:32:
1b:b3:cf:52:ee:bf:04:89:6b:4e:62:57:b8:6a:72:c9:dc:50:
6a:f4:ed:18:6f:60:16:b4:b3:d2:7a:ae:d8:65:32:e9:f7:d2:
a4:f1:48:07:0d:c6:e0:d4:95:24:5b:8c:9e:bf:27:02:47:7d:
d9:17:e7:d7:0f:32:5e:a9:a8:3c:5e:3d:43:2b:b7:26:e3:d1:
a8:0a:62:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZpHEzPLb24/KraQyDBfEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5NmY5MDNmOTFhODVhNjBjNTQ2ZWUxMTQxMzQ4Y2MzYzgw
MzY5MjcwHhcNMjYwMzI5MDcwMjE5WhcNMjYwMzMwMDcwMjE5WjAzMTEwLwYDVQQD
Eyg1MzFlNDE5NzdkNzc3N2E4NTY2ZjU4MzQ1NTBiNWU4YjAyMjY1NzI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1SZ51aA9tUFSliKtTz1c5z9eGoQa
PNietnDi3IraAFS8zOvSPMF9aeidYXgZXsoDDeKim1I2S5xpuCLwCqv8F+9qBbvS
WrwCE8bOxHYs6KtojWh6+RVkMeMcMkX9w2SCPewMJjPJlepYByfVSUIW36QEN79+
WzDGUkOnnSAoGdpSBhkMBGovxaDYOHXTtSwwf4LcOtH9A3D4wADsIoiWfyF+cG9q
/ZDLFFYa7oKRAGPC8Rd/DBh2lTUpccJv5m3OVRzcqLXQymvNDdkMTd3mIoAz4CsV
iczWClSnmaOfD7cDfvHRbdHadfQCLJrskskugdyzNylbG9sJoT+64QYrtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFMeQZd9d3eoVm9YNFULXosCJlcoMB8GA1UdIwQY
MBaAFJlvkD+RqFpgxUbuEUE0jMPIA2knMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVctUVA1R29XbURGUnU0UlFUU013OGdEYVNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9hMjAxMDEtMWM5Zi00NGM1LTgwNzct
NTE5MGY3ODY5YTdmLzEvbVctUVA1R29XbURGUnU0UlFUU013OGdEYVNjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS9hMjAxMDEtMWM5Zi00NGM1LTgwNzctNTE5MGY3ODY5YTdm
LzEvbVctUVA1R29XbURGUnU0UlFUU013OGdEYVNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKLaz5Qfi
BaBRYkFzogm6yNFw3I1Sw9zGp60M6FZEPKtrE3deIJ4x0hi5U0VTab+dEQZOWWhV
/VokRNJtQb7I83hl7dPyDCsY2fWOK2sN7U5VpR8iaUmfQYtMwO7Y4z8FJqIqno+U
bIXmlydnD29/IIpCsr6IKYhzG/xfgMZinmaPKLWgb3X0Q+AEH/7HaqYdangF1jjg
Wq16Rmv/fHckH1AZfWIupejx2fHzh7oHvk+I2joyG7PPUu6/BIlrTmJXuGpyydxQ
avTtGG9gFrSz0nqu2GUy6ffSpPFIBw3G4NSVJFuMnr8nAkd92Rfn1w8yXqmoPF49
Qyu3JuPRqApizg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:13 2026 by rpki-client