Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
File: rWUjcvDl0WnCAPfR0IDoVw_-23E.mft (raw, json)
Hash identifier: ZVTkUJxQHURuwHbS7oVY4e1R9vTBhg50PQXwW+2Nt6I=
Subject key identifier: 29:D6:33:8C:C2:F5:90:92:48:30:AE:19:10:8A:37:AA:AC:6E:25:B3
Authority key identifier: AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
Certificate issuer: /CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Certificate serial: 019D19ED326A7DF16ED12DD3EF1A15F37D55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
Manifest number: 05EB
Signing time: Mon 23 Mar 2026 09:01:08 +0000
Manifest this update: Mon 23 Mar 2026 09:01:08 +0000
Manifest next update: Tue 24 Mar 2026 09:01:08 +0000
Files and hashes: 1: TVDGXyDJKjGf9M2l61hPydz0GW8.roa (hash: GPBRCtJGeJYsInHOu3V8vVubHvszvLhmWvGPlsGdKsk=)
2: rWUjcvDl0WnCAPfR0IDoVw_-23E.crl (hash: vxMxsVyetUODWzCvbwtdW256rRZmqHv47R2exri1CkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 24 Mar 2026 09:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:19:ed:32:6a:7d:f1:6e:d1:2d:d3:ef:1a:15:f3:7d:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Validity
Not Before: Mar 23 09:01:08 2026 GMT
Not After : Mar 24 09:01:08 2026 GMT
Subject: CN=29d6338cc2f590924830ae19108a37aaac6e25b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:11:a8:fc:25:0d:8f:44:6f:43:f8:59:5f:6a:
c8:3a:1d:e7:a2:d6:5e:d7:ee:6d:11:14:0c:28:e2:
72:e7:37:fd:11:2f:80:fc:32:54:64:5b:08:20:bb:
73:ee:6e:c3:19:78:d8:5f:6c:cb:fd:52:64:a6:84:
29:77:b9:3e:0e:9a:03:5a:93:7b:93:dd:2e:8b:91:
59:2d:34:c4:c1:33:09:4d:e7:7f:35:b2:7f:31:c3:
33:b4:cf:a8:ea:57:d1:65:95:f4:43:7d:9b:7f:75:
e0:0a:d9:82:89:bd:74:c7:40:84:f7:3e:56:a6:d7:
69:eb:87:6e:4a:fd:5a:f7:01:f3:6e:c2:52:87:25:
ce:37:c7:0d:41:43:e5:db:3e:db:fe:a7:4a:c5:0a:
68:bc:f0:59:3d:11:7a:b2:e9:d0:89:7a:16:bc:9d:
75:13:64:d0:82:83:ed:d4:9e:d2:f1:c7:d3:07:b3:
05:ab:9b:14:79:5a:c3:ab:9c:c9:4d:08:04:a9:2f:
63:29:6c:75:95:d2:0d:ad:6a:48:94:d5:2d:c1:17:
38:27:92:a1:31:4f:b3:bc:15:60:38:4c:00:8c:8f:
0d:0b:ac:46:c0:95:80:64:a4:0e:1f:64:69:1a:46:
0b:3f:c6:91:37:6e:99:91:f2:c2:3c:2f:25:03:ba:
3e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D6:33:8C:C2:F5:90:92:48:30:AE:19:10:8A:37:AA:AC:6E:25:B3
X509v3 Authority Key Identifier:
keyid:AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:44:ea:66:fa:c3:70:88:00:e2:73:54:86:c1:06:d5:3a:ab:
51:a5:d4:c2:24:14:cf:d8:f0:e3:78:ec:dd:44:91:87:c2:02:
a9:ed:93:cb:6b:05:40:03:49:b3:5a:aa:fe:90:09:b1:6f:2c:
23:92:cb:91:dd:83:8a:ab:45:e5:8c:89:15:a6:c6:35:0b:b0:
00:56:b1:0d:68:23:fd:39:19:0d:ad:f9:0a:00:db:49:3d:00:
52:fa:d6:64:6d:5d:de:85:b8:b2:80:50:90:8c:0f:5a:93:5d:
dc:07:c1:83:d2:77:fa:b8:8f:26:ff:9b:46:61:dc:9e:33:e6:
ef:72:da:79:1b:67:e6:f1:3d:69:fc:ff:cf:6a:19:16:f6:20:
b1:a0:09:30:b6:30:79:34:39:b3:00:38:06:59:81:67:9d:03:
49:2d:1f:34:48:0c:90:aa:93:f7:0e:ab:df:f1:43:e6:3d:8d:
c3:8c:5a:2d:96:5b:9f:69:ab:b9:fa:04:74:49:14:3a:47:d4:
6c:47:bf:25:97:58:57:21:ff:67:9a:83:11:a2:37:dd:96:b4:
17:55:c1:c4:74:3e:db:30:4e:68:c4:9b:03:46:1d:ae:85:be:
08:63:e6:6e:69:b7:9f:b0:90:11:26:94:eb:d0:b4:d7:b2:00:
13:01:21:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0Z7TJqffFu0S3T7xoV831VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkNjUyMzcyZjBlNWQxNjljMjAwZjdkMWQwODBlODU3MGZm
ZWRiNzEwHhcNMjYwMzIzMDkwMTA4WhcNMjYwMzI0MDkwMTA4WjAzMTEwLwYDVQQD
EygyOWQ2MzM4Y2MyZjU5MDkyNDgzMGFlMTkxMDhhMzdhYWFjNmUyNWIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthGo/CUNj0RvQ/hZX2rIOh3notZe
1+5tERQMKOJy5zf9ES+A/DJUZFsIILtz7m7DGXjYX2zL/VJkpoQpd7k+DpoDWpN7
k90ui5FZLTTEwTMJTed/NbJ/McMztM+o6lfRZZX0Q32bf3XgCtmCib10x0CE9z5W
ptdp64duSv1a9wHzbsJShyXON8cNQUPl2z7b/qdKxQpovPBZPRF6sunQiXoWvJ11
E2TQgoPt1J7S8cfTB7MFq5sUeVrDq5zJTQgEqS9jKWx1ldINrWpIlNUtwRc4J5Kh
MU+zvBVgOEwAjI8NC6xGwJWAZKQOH2RpGkYLP8aRN26ZkfLCPC8lA7o+8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCnWM4zC9ZCSSDCuGRCKN6qsbiWzMB8GA1UdIwQY
MBaAFK1lI3Lw5dFpwgD30dCA6FcP/ttxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcldVamN2RGwwV25DQVBmUjBJRG9Wd18tMjNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9iZDk4YzktZmNlMy00YmJhLWI0OWIt
NGNhZTMyNWMwZTI4LzEvcldVamN2RGwwV25DQVBmUjBJRG9Wd18tMjNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9iZDk4YzktZmNlMy00YmJhLWI0OWItNGNhZTMyNWMwZTI4
LzEvcldVamN2RGwwV25DQVBmUjBJRG9Wd18tMjNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtUTqZvrD
cIgA4nNUhsEG1TqrUaXUwiQUz9jw43js3USRh8ICqe2Ty2sFQANJs1qq/pAJsW8s
I5LLkd2DiqtF5YyJFabGNQuwAFaxDWgj/TkZDa35CgDbST0AUvrWZG1d3oW4soBQ
kIwPWpNd3AfBg9J3+riPJv+bRmHcnjPm73LaeRtn5vE9afz/z2oZFvYgsaAJMLYw
eTQ5swA4BlmBZ50DSS0fNEgMkKqT9w6r3/FD5j2Nw4xaLZZbn2mrufoEdEkUOkfU
bEe/JZdYVyH/Z5qDEaI33Za0F1XBxHQ+2zBOaMSbA0YdroW+CGPmbmm3n7CQESaU
69C017IAEwEh0A==
-----END CERTIFICATE-----
Generated at Mon Mar 23 15:22:48 2026 by rpki-client