Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
File: 5YW66mL41gYmJIc4xF370iFzf0w.mft (raw, json)
Hash identifier: WfGjp51ViUTQuB5ArfC2k3ql1nMPExe3nc2YRZmVQcQ=
Subject key identifier: 6B:AF:B7:1A:CB:B8:BB:AA:C0:98:C1:76:35:1A:E7:5C:20:03:65:BA
Authority key identifier: E5:85:BA:EA:62:F8:D6:06:26:24:87:38:C4:5D:FB:D2:21:73:7F:4C
Certificate issuer: /CN=e585baea62f8d60626248738c45dfbd221737f4c
Certificate serial: 019D3A8B108AF99330C2DF7580007A94756B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
Manifest number: 1821
Signing time: Sun 29 Mar 2026 17:01:25 +0000
Manifest this update: Sun 29 Mar 2026 17:01:25 +0000
Manifest next update: Mon 30 Mar 2026 17:01:25 +0000
Files and hashes: 1: 5YW66mL41gYmJIc4xF370iFzf0w.crl (hash: JJ1d1Ri0meIQd0FpOqXM4TNCzGsESHFbp769n9TW2dw=)
2: 8sL7bBvUgTkJCvQisEREV4oTHTY.roa (hash: UVYp1CMTJL6S6Pi+AsLy1eQnDuTmz/e2tO8gZBGHYuI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:8b:10:8a:f9:93:30:c2:df:75:80:00:7a:94:75:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e585baea62f8d60626248738c45dfbd221737f4c
Validity
Not Before: Mar 29 17:01:25 2026 GMT
Not After : Mar 30 17:01:25 2026 GMT
Subject: CN=6bafb71acbb8bbaac098c176351ae75c200365ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:aa:51:e3:ad:9a:79:ae:e0:4a:81:5f:b4:96:
31:53:2b:f9:08:5e:41:65:fa:08:dc:b1:a0:3f:a9:
a8:23:33:2b:30:79:35:ac:01:cf:3e:7f:1c:6b:17:
06:15:0d:59:7b:7d:4c:70:20:f4:44:ea:ac:58:ec:
dc:c1:1e:2a:70:21:e2:28:fb:0c:8f:9d:45:71:73:
4e:f8:4c:b1:2f:dc:c1:44:64:3d:d3:7c:e2:23:a7:
5e:27:0f:47:16:ae:46:ae:ce:74:89:a4:3b:d5:8e:
5d:4d:21:a7:1a:45:81:ac:6f:66:b1:7a:ac:8b:c0:
a3:83:15:0c:3c:b9:32:82:3a:70:a3:46:d2:ac:f8:
51:8d:5a:4f:e8:59:8f:ab:11:6f:12:de:d8:cc:e9:
fa:b7:e4:c4:78:f5:d3:95:14:82:15:8e:f1:e8:2f:
b6:f3:70:39:b9:7c:cb:77:12:f8:82:11:ab:1c:ee:
ec:24:26:2e:2a:11:57:24:e0:c4:24:03:7d:b9:54:
4e:f1:d3:e4:18:8a:f5:1d:fa:d3:6b:9c:fd:7a:aa:
0f:35:75:19:f7:62:0d:cb:40:ca:5f:2c:ab:e6:c7:
66:13:86:6b:21:8b:17:2b:4e:51:d5:88:e3:18:c5:
0e:f7:80:a5:5b:03:1c:f5:53:2f:53:8f:ff:28:ef:
9c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:AF:B7:1A:CB:B8:BB:AA:C0:98:C1:76:35:1A:E7:5C:20:03:65:BA
X509v3 Authority Key Identifier:
keyid:E5:85:BA:EA:62:F8:D6:06:26:24:87:38:C4:5D:FB:D2:21:73:7F:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:b0:bc:9e:7e:42:a9:49:d9:f8:db:5e:b0:6c:fc:10:3b:0b:
e5:4a:8f:48:ac:e0:96:6b:23:5a:ad:37:fb:2d:4b:87:96:a2:
cc:f5:0b:18:45:92:ba:c2:75:37:6e:b7:95:dc:a8:69:db:b9:
fb:e1:62:59:8a:cf:9b:dc:87:e6:e1:14:71:e9:3e:0a:36:d9:
6b:6a:86:77:17:84:07:47:a8:3e:98:ac:c6:d7:59:78:1b:32:
1d:c5:69:37:f1:85:de:90:b0:d2:e8:1e:dd:2a:20:26:c0:bc:
f7:90:2d:20:c4:33:05:09:db:0d:24:05:1e:63:47:67:db:6a:
7f:42:62:19:91:a6:db:49:e6:90:cc:ff:92:de:fc:bb:80:2c:
7a:8f:aa:3a:ff:0a:0e:c6:63:fe:94:03:33:e2:40:e9:24:71:
7c:0c:47:84:68:08:6c:82:f6:8c:87:4f:a9:54:7d:0c:e3:ea:
94:e2:9d:49:9f:bf:4b:ce:d9:5c:28:0e:e2:78:14:f4:db:6e:
69:73:79:4b:df:4f:cc:6c:b5:65:95:a7:1f:fb:4d:44:1e:9b:
01:df:fa:39:3c:dc:3c:6d:ea:31:a6:84:34:c3:f2:e2:6e:fe:
ea:aa:d1:23:a2:49:36:59:41:81:d5:49:c0:c5:1e:65:f8:0c:
cd:a5:1d:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06ixCK+ZMwwt91gAB6lHVrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1ODViYWVhNjJmOGQ2MDYyNjI0ODczOGM0NWRmYmQyMjE3
MzdmNGMwHhcNMjYwMzI5MTcwMTI1WhcNMjYwMzMwMTcwMTI1WjAzMTEwLwYDVQQD
Eyg2YmFmYjcxYWNiYjhiYmFhYzA5OGMxNzYzNTFhZTc1YzIwMDM2NWJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6pR462aea7gSoFftJYxUyv5CF5B
ZfoI3LGgP6moIzMrMHk1rAHPPn8caxcGFQ1Ze31McCD0ROqsWOzcwR4qcCHiKPsM
j51FcXNO+EyxL9zBRGQ903ziI6deJw9HFq5Grs50iaQ71Y5dTSGnGkWBrG9msXqs
i8CjgxUMPLkygjpwo0bSrPhRjVpP6FmPqxFvEt7YzOn6t+TEePXTlRSCFY7x6C+2
83A5uXzLdxL4ghGrHO7sJCYuKhFXJODEJAN9uVRO8dPkGIr1HfrTa5z9eqoPNXUZ
92INy0DKXyyr5sdmE4ZrIYsXK05R1YjjGMUO94ClWwMc9VMvU4//KO+c5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGuvtxrLuLuqwJjBdjUa51wgA2W6MB8GA1UdIwQY
MBaAFOWFuupi+NYGJiSHOMRd+9Ihc39MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVlXNjZtTDQxZ1ltSkljNHhGMzcwaUZ6ZjB3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9iZGEzZWYtNGEyZi00Y2NjLWIyOTUt
YjIyZWI5NDg1MTVjLzEvNVlXNjZtTDQxZ1ltSkljNHhGMzcwaUZ6ZjB3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC9iZGEzZWYtNGEyZi00Y2NjLWIyOTUtYjIyZWI5NDg1MTVj
LzEvNVlXNjZtTDQxZ1ltSkljNHhGMzcwaUZ6ZjB3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATLC8nn5C
qUnZ+NtesGz8EDsL5UqPSKzglmsjWq03+y1Lh5aizPULGEWSusJ1N263ldyoadu5
++FiWYrPm9yH5uEUcek+CjbZa2qGdxeEB0eoPpisxtdZeBsyHcVpN/GF3pCw0uge
3SogJsC895AtIMQzBQnbDSQFHmNHZ9tqf0JiGZGm20nmkMz/kt78u4Aseo+qOv8K
DsZj/pQDM+JA6SRxfAxHhGgIbIL2jIdPqVR9DOPqlOKdSZ+/S87ZXCgO4ngU9Ntu
aXN5S99PzGy1ZZWnH/tNRB6bAd/6OTzcPG3qMaaENMPy4m7+6qrRI6JJNllBgdVJ
wMUeZfgMzaUdGg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:56:44 2026 by rpki-client