Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
File: wQdbeoGvSd7_tsg1xWCO4LiEMso.mft (raw, json)
Hash identifier: xASlk7j58wNpufBaxNInqT7HPg/JWQt0UA9BGPN2D8w=
Subject key identifier: F4:75:1B:E3:8D:DC:D2:C7:DF:01:63:FC:50:C3:57:99:9F:62:42:70
Authority key identifier: C1:07:5B:7A:81:AF:49:DE:FF:B6:C8:35:C5:60:8E:E0:B8:84:32:CA
Certificate issuer: /CN=c1075b7a81af49deffb6c835c5608ee0b88432ca
Certificate serial: 019D38D2F8F5647D630601395C6D39CDE3F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
Manifest number: 03C0
Signing time: Sun 29 Mar 2026 09:00:43 +0000
Manifest this update: Sun 29 Mar 2026 09:00:43 +0000
Manifest next update: Mon 30 Mar 2026 09:00:43 +0000
Files and hashes: 1: k0b9VtGawXwWdQgfJzcdEYCCg_o.roa (hash: dIXVCTmcfL3HOBzfVAxTvQR3ANPXcc/eVpPbv90sMfE=)
2: wQdbeoGvSd7_tsg1xWCO4LiEMso.crl (hash: k81bT/VaUQ+A0tsiOmAa1R+g9u2xEmXts2ng8eJSxu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:f8:f5:64:7d:63:06:01:39:5c:6d:39:cd:e3:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1075b7a81af49deffb6c835c5608ee0b88432ca
Validity
Not Before: Mar 29 09:00:43 2026 GMT
Not After : Mar 30 09:00:43 2026 GMT
Subject: CN=f4751be38ddcd2c7df0163fc50c357999f624270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c5:00:94:93:d9:29:a1:c1:e7:b0:c4:05:64:
d5:0e:c8:49:ce:88:49:fd:5e:bd:f6:fe:55:9e:46:
4d:73:7c:2e:c3:21:e0:0c:22:35:7a:3d:53:0d:57:
66:5e:ab:5d:e8:c2:ea:9d:8d:19:82:08:5b:87:c0:
4e:41:fd:4f:e8:a4:fc:97:6b:e6:a1:ce:e8:cd:21:
e4:77:db:d8:8c:59:b1:98:9a:bb:7b:c8:36:22:d6:
c0:79:14:2b:85:d4:39:b3:e3:17:a5:2f:14:47:dc:
e0:cc:87:df:c1:dc:e1:c6:eb:b1:98:1f:40:15:5d:
d6:3b:03:12:ad:80:7d:10:19:c1:7b:18:4b:18:4f:
12:9e:57:5d:26:9e:70:9c:d4:46:64:27:31:d5:5c:
93:21:8f:80:a5:38:de:2f:36:63:83:d9:70:a3:2c:
aa:ad:12:57:55:26:09:d3:c5:95:c0:9e:c7:2f:6f:
fe:23:38:88:3e:b0:14:36:71:3c:9f:29:83:a8:21:
2e:7f:e1:f5:e1:91:c4:a7:d6:05:84:b5:91:31:4e:
87:d3:d5:7d:c0:49:09:ff:6a:82:38:d8:f4:d9:f1:
0b:4d:13:0a:0c:0d:43:fe:8d:32:39:7a:97:af:f6:
8e:ca:3c:44:b4:c9:c0:e3:a9:97:aa:f4:6f:79:41:
81:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:75:1B:E3:8D:DC:D2:C7:DF:01:63:FC:50:C3:57:99:9F:62:42:70
X509v3 Authority Key Identifier:
keyid:C1:07:5B:7A:81:AF:49:DE:FF:B6:C8:35:C5:60:8E:E0:B8:84:32:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:49:56:87:f2:d0:b6:af:df:88:28:78:1d:0a:92:cf:dc:4c:
96:5b:93:ef:54:0e:7f:c5:a1:ab:42:46:31:06:fb:e2:d1:1d:
be:e5:ae:53:28:ac:26:6c:93:5b:01:70:e9:13:8a:a4:b2:3e:
18:61:19:60:44:6b:c1:b4:7f:4e:bb:ba:4c:0a:0b:55:27:be:
eb:3d:83:7d:00:1f:58:73:85:43:b2:fa:4a:19:24:e8:6c:ef:
52:f8:f2:bd:f3:75:ad:ec:ba:af:cd:9e:ca:8f:a2:e8:a6:db:
88:bd:fb:fd:69:d4:77:0f:c4:e0:43:6f:7c:0b:2e:ea:3a:31:
38:77:63:6f:29:99:eb:b3:93:7a:3c:73:72:c1:2e:93:bb:8f:
5e:87:3f:fc:39:0e:ab:53:35:cd:8f:f0:7f:d0:bd:89:5c:85:
75:70:49:2d:7c:87:fc:52:fc:84:dc:e1:a6:d2:1c:55:1b:f7:
3c:9e:01:c9:5d:0d:ce:d5:ff:10:a3:2b:f1:89:ad:a8:89:5c:
12:a2:8e:da:98:4c:cd:92:88:b1:f6:9c:85:2b:b6:a1:f6:d2:
b0:94:57:ff:57:11:56:8c:7b:c2:53:95:78:a8:6c:c8:eb:e4:
32:24:4c:0a:77:23:99:ec:d2:33:75:34:a0:a4:20:d9:c2:19:
18:b6:88:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040vj1ZH1jBgE5XG05zePzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMxMDc1YjdhODFhZjQ5ZGVmZmI2YzgzNWM1NjA4ZWUwYjg4
NDMyY2EwHhcNMjYwMzI5MDkwMDQzWhcNMjYwMzMwMDkwMDQzWjAzMTEwLwYDVQQD
EyhmNDc1MWJlMzhkZGNkMmM3ZGYwMTYzZmM1MGMzNTc5OTlmNjI0MjcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8UAlJPZKaHB57DEBWTVDshJzohJ
/V699v5VnkZNc3wuwyHgDCI1ej1TDVdmXqtd6MLqnY0Zgghbh8BOQf1P6KT8l2vm
oc7ozSHkd9vYjFmxmJq7e8g2ItbAeRQrhdQ5s+MXpS8UR9zgzIffwdzhxuuxmB9A
FV3WOwMSrYB9EBnBexhLGE8SnlddJp5wnNRGZCcx1VyTIY+ApTjeLzZjg9lwoyyq
rRJXVSYJ08WVwJ7HL2/+IziIPrAUNnE8nymDqCEuf+H14ZHEp9YFhLWRMU6H09V9
wEkJ/2qCONj02fELTRMKDA1D/o0yOXqXr/aOyjxEtMnA46mXqvRveUGBTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPR1G+ON3NLH3wFj/FDDV5mfYkJwMB8GA1UdIwQY
MBaAFMEHW3qBr0ne/7bINcVgjuC4hDLKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd1FkYmVvR3ZTZDdfdHNnMXhXQ080TGlFTXNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC8yYTgyOWItMzJiMy00OTZhLTgwY2Ut
YTAyNDY3ZjY0MjVmLzEvd1FkYmVvR3ZTZDdfdHNnMXhXQ080TGlFTXNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC8yYTgyOWItMzJiMy00OTZhLTgwY2UtYTAyNDY3ZjY0MjVm
LzEvd1FkYmVvR3ZTZDdfdHNnMXhXQ080TGlFTXNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjUlWh/LQ
tq/fiCh4HQqSz9xMlluT71QOf8Whq0JGMQb74tEdvuWuUyisJmyTWwFw6ROKpLI+
GGEZYERrwbR/Tru6TAoLVSe+6z2DfQAfWHOFQ7L6Shkk6GzvUvjyvfN1rey6r82e
yo+i6KbbiL37/WnUdw/E4ENvfAsu6joxOHdjbymZ67OTejxzcsEuk7uPXoc//DkO
q1M1zY/wf9C9iVyFdXBJLXyH/FL8hNzhptIcVRv3PJ4ByV0NztX/EKMr8YmtqIlc
EqKO2phMzZKIsfachSu2ofbSsJRX/1cRVox7wlOVeKhsyOvkMiRMCncjmezSM3U0
oKQg2cIZGLaIhw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 17:47:33 2026 by rpki-client