Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
File: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft (raw, json)
Hash identifier: 5aCCjedLC1K8xTY/Evl+Tg/kGbTXsVPKfl/+I32zFus=
Subject key identifier: BB:02:CC:4F:D3:B1:11:1D:BD:9F:7A:15:0E:A1:6C:4D:46:AF:3F:1A
Authority key identifier: B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
Certificate issuer: /CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Certificate serial: 019D26CCF3B83DBC659387A58AD364B42CE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
Manifest number: 17EF
Signing time: Wed 25 Mar 2026 21:00:59 +0000
Manifest this update: Wed 25 Mar 2026 21:00:59 +0000
Manifest next update: Thu 26 Mar 2026 21:00:59 +0000
Files and hashes: 1: p64_xVoksOfjBTpAEK-sqxOtfyo.roa (hash: Mpzgzqkjd9r2rYbbw0eBHseWMwAwQ2eJtwJ2+TbcIMI=)
2: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl (hash: LRTyWWOLz5VHbc0qR3AlzBE4UvwBfnO09cf4ZvMaBos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:f3:b8:3d:bc:65:93:87:a5:8a:d3:64:b4:2c:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Validity
Not Before: Mar 25 21:00:59 2026 GMT
Not After : Mar 26 21:00:59 2026 GMT
Subject: CN=bb02cc4fd3b1111dbd9f7a150ea16c4d46af3f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:47:7b:43:a9:55:51:b2:ee:ef:b1:b0:41:ed:
b3:b8:cd:6c:40:5d:b6:15:fc:67:08:bc:3a:81:a1:
a8:e7:86:df:a1:46:91:b6:82:dc:2d:d5:7d:73:50:
16:0e:79:b9:bb:13:c9:51:d3:6d:9e:69:6c:ee:1e:
58:ab:10:f3:8f:6f:0f:bf:04:8f:54:da:a8:da:b6:
e9:4d:66:c8:c2:75:d9:70:bc:11:ff:47:ad:72:93:
19:32:3e:9d:1c:7b:8a:e9:b0:fb:65:c3:8a:89:05:
83:97:94:ad:b1:63:e0:2b:fa:da:b4:b9:df:73:60:
64:26:08:5d:1d:f6:1f:3d:f7:e9:ee:ef:82:db:ce:
dc:e9:fe:e4:ef:f4:a1:bb:94:a1:44:c4:73:19:e1:
33:77:f2:6b:7c:e9:0f:aa:60:b2:8d:d5:5d:64:ec:
96:2b:cc:24:bf:28:e6:a0:73:3e:0d:05:c8:d4:39:
af:59:f0:9a:09:95:00:94:aa:fa:bd:f7:43:7e:57:
d3:19:f0:84:2e:6c:b4:09:a1:8e:a7:bc:a7:23:6f:
a4:8a:f3:bc:a8:28:04:cb:2b:60:e3:0d:97:14:1b:
cd:59:0e:cc:fb:e5:aa:39:8c:2a:c7:ec:a2:8d:cd:
76:a3:ce:7b:ee:d6:ad:70:6c:3f:c7:dc:14:90:f9:
5e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:02:CC:4F:D3:B1:11:1D:BD:9F:7A:15:0E:A1:6C:4D:46:AF:3F:1A
X509v3 Authority Key Identifier:
keyid:B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:19:08:b4:15:9e:6e:6d:5c:da:26:ff:eb:97:53:ea:9f:5d:
2c:72:8d:89:4e:1b:90:0f:a4:d7:10:21:62:1b:38:0f:72:0b:
fb:71:b4:80:43:a1:5d:d7:ea:fa:e1:ec:d6:bb:63:83:43:7b:
1b:d0:e5:bc:6b:64:26:ae:db:77:c3:c0:83:51:2f:35:e8:47:
04:5b:e4:c2:2f:47:3a:a6:30:05:3f:c2:1b:5e:e9:ae:4f:10:
78:fd:87:22:e8:35:62:74:d9:3f:79:ee:a1:db:2a:4a:43:72:
9b:ac:c8:fd:e3:3c:a6:da:51:7b:76:d5:b5:7c:8a:a9:2b:e1:
2c:38:5e:40:60:3e:4d:82:48:10:7a:e5:00:17:96:1b:08:fb:
3e:78:39:94:98:fa:b0:c8:ce:49:f3:44:34:27:45:ea:e2:08:
fc:6a:41:88:81:d8:e3:cf:3a:4d:91:5b:c0:19:61:07:18:92:
3b:19:4e:28:91:77:9d:6e:b9:44:d9:be:8d:11:0b:ac:af:c2:
a8:82:4e:01:34:30:5e:a7:90:86:f9:39:3b:c3:6b:0e:20:79:
1f:5a:1c:a8:90:9e:8c:d1:7d:5e:14:1b:75:b0:82:4d:df:5e:
8a:67:0a:78:8f:e6:ca:71:dd:9f:1a:41:f8:87:86:b1:97:e1:
54:9d:18:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mzPO4Pbxlk4elitNktCzmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMTVjZDhlNmRiMzU0NDE5ODRkOWM3ZGZjOWFmYjY1M2U1
NWRmZjEwHhcNMjYwMzI1MjEwMDU5WhcNMjYwMzI2MjEwMDU5WjAzMTEwLwYDVQQD
EyhiYjAyY2M0ZmQzYjExMTFkYmQ5ZjdhMTUwZWExNmM0ZDQ2YWYzZjFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskd7Q6lVUbLu77GwQe2zuM1sQF22
FfxnCLw6gaGo54bfoUaRtoLcLdV9c1AWDnm5uxPJUdNtnmls7h5YqxDzj28PvwSP
VNqo2rbpTWbIwnXZcLwR/0etcpMZMj6dHHuK6bD7ZcOKiQWDl5StsWPgK/ratLnf
c2BkJghdHfYfPffp7u+C287c6f7k7/Shu5ShRMRzGeEzd/JrfOkPqmCyjdVdZOyW
K8wkvyjmoHM+DQXI1DmvWfCaCZUAlKr6vfdDflfTGfCELmy0CaGOp7ynI2+kivO8
qCgEyytg4w2XFBvNWQ7M++WqOYwqx+yijc12o8577tatcGw/x9wUkPleswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLsCzE/TsREdvZ96FQ6hbE1Grz8aMB8GA1UdIwQY
MBaAFLIVzY5ts1RBmE2cffya+2U+Vd/xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zOGI3OTItMThmYi00YmVkLTk5MGMt
ZTk1MGQ4N2Y4ZTI1LzEvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zOGI3OTItMThmYi00YmVkLTk5MGMtZTk1MGQ4N2Y4ZTI1
LzEvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAERkItBWe
bm1c2ib/65dT6p9dLHKNiU4bkA+k1xAhYhs4D3IL+3G0gEOhXdfq+uHs1rtjg0N7
G9DlvGtkJq7bd8PAg1EvNehHBFvkwi9HOqYwBT/CG17prk8QeP2HIug1YnTZP3nu
odsqSkNym6zI/eM8ptpRe3bVtXyKqSvhLDheQGA+TYJIEHrlABeWGwj7Png5lJj6
sMjOSfNENCdF6uII/GpBiIHY4886TZFbwBlhBxiSOxlOKJF3nW65RNm+jRELrK/C
qIJOATQwXqeQhvk5O8NrDiB5H1ocqJCejNF9XhQbdbCCTd9eimcKeI/mynHdnxpB
+IeGsZfhVJ0YKw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:06 2026 by rpki-client