Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6bf90c-97d5-44c6-acda-c370ad298ca3/1/5CI8HxzaGbmTW0jH_c8gVcKWICg.mft
File: 5CI8HxzaGbmTW0jH_c8gVcKWICg.mft (raw, json)
Hash identifier: QTUAuzLfCpH8/MkYu0/CfNLi1pNcUvkq0yl+gVJmD0Y=
Subject key identifier: 3D:A6:4A:0B:A1:BE:8E:14:B9:54:8D:BC:3D:44:7D:99:B7:38:7E:17
Authority key identifier: E4:22:3C:1F:1C:DA:19:B9:93:5B:48:C7:FD:CF:20:55:C2:96:20:28
Certificate issuer: /CN=e4223c1f1cda19b9935b48c7fdcf2055c2962028
Certificate serial: 019D322C2B25FB01A5EB2A6AC36C90084BDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5CI8HxzaGbmTW0jH_c8gVcKWICg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6bf90c-97d5-44c6-acda-c370ad298ca3/1/5CI8HxzaGbmTW0jH_c8gVcKWICg.mft
Manifest number: F7
Signing time: Sat 28 Mar 2026 02:00:48 +0000
Manifest this update: Sat 28 Mar 2026 02:00:48 +0000
Manifest next update: Sun 29 Mar 2026 02:00:48 +0000
Files and hashes: 1: 5CI8HxzaGbmTW0jH_c8gVcKWICg.crl (hash: qtIe9aw/YBwk8+o12dyag47tYJu7Wqu+tC3Y/ok6Pcs=)
2: xuYEpRaA_BbVvcRMwj6GF8dzFtk.roa (hash: +oo5HVPSdE5F0vnX0GJbLJAscp8MlST1lOFf6d/1Nz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/6bf90c-97d5-44c6-acda-c370ad298ca3/1/5CI8HxzaGbmTW0jH_c8gVcKWICg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/6bf90c-97d5-44c6-acda-c370ad298ca3/1/5CI8HxzaGbmTW0jH_c8gVcKWICg.mft
rsync://rpki.ripe.net/repository/DEFAULT/5CI8HxzaGbmTW0jH_c8gVcKWICg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 02:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:2c:2b:25:fb:01:a5:eb:2a:6a:c3:6c:90:08:4b:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4223c1f1cda19b9935b48c7fdcf2055c2962028
Validity
Not Before: Mar 28 02:00:48 2026 GMT
Not After : Mar 29 02:00:48 2026 GMT
Subject: CN=3da64a0ba1be8e14b9548dbc3d447d99b7387e17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:23:7d:72:43:b3:43:5c:55:58:db:75:a5:7e:
f9:0d:9e:83:75:10:08:ed:eb:db:22:95:ab:a8:18:
9d:52:bb:73:e7:3b:ce:aa:3e:bb:dc:25:01:6c:d1:
61:ec:60:e8:e5:5d:de:ae:1e:92:42:95:05:98:a7:
c9:90:c0:b3:3b:8c:ba:84:d8:0c:0f:b1:e1:13:2f:
cf:80:40:de:bd:20:69:de:f4:c7:e5:02:70:77:2f:
c9:2f:39:fc:d5:fa:c3:39:4e:9b:d7:78:6b:2a:d3:
56:03:b4:0f:c0:8a:ee:80:a9:78:01:a7:60:d9:c4:
3f:8d:5e:fa:88:37:78:05:74:c5:7a:ff:e6:32:bb:
d8:ba:6d:35:ff:09:91:c5:b0:36:40:3e:af:80:55:
8a:06:bb:c4:f2:0d:16:04:59:b4:a9:1f:93:56:86:
e1:81:75:e1:9b:a7:8d:56:c8:ce:34:59:70:06:5c:
80:e1:9b:08:fe:2e:6e:b1:f3:c1:df:a4:ab:c3:19:
d4:b8:43:0b:fc:22:1f:c3:68:0e:b8:57:c8:c3:1c:
0c:ed:c3:8b:bd:8b:af:15:47:3a:79:62:c8:16:81:
9e:b9:a7:b6:4c:3a:86:e8:c4:e3:26:e6:7c:c3:e6:
91:46:03:9a:d3:fc:91:3d:2d:74:5f:cb:35:15:67:
04:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A6:4A:0B:A1:BE:8E:14:B9:54:8D:BC:3D:44:7D:99:B7:38:7E:17
X509v3 Authority Key Identifier:
keyid:E4:22:3C:1F:1C:DA:19:B9:93:5B:48:C7:FD:CF:20:55:C2:96:20:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5CI8HxzaGbmTW0jH_c8gVcKWICg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6bf90c-97d5-44c6-acda-c370ad298ca3/1/5CI8HxzaGbmTW0jH_c8gVcKWICg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6bf90c-97d5-44c6-acda-c370ad298ca3/1/5CI8HxzaGbmTW0jH_c8gVcKWICg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:2d:e1:93:77:4f:6f:1a:9a:46:28:7f:25:9b:42:20:fc:35:
a5:6a:20:1c:6c:31:81:46:8e:88:ca:fe:b2:78:f4:9e:71:ee:
ea:41:4a:11:b9:e1:af:b8:d0:01:0b:85:ec:38:21:ae:1a:b5:
bb:d6:78:77:4e:99:0a:4e:17:dd:67:9b:8f:5e:1c:01:e1:37:
05:3b:c7:cf:9f:b0:f5:4a:5a:67:e7:ec:ec:3a:11:a6:22:00:
07:42:f6:7f:e3:2d:c0:fc:62:24:44:c2:19:d5:ea:65:21:1b:
f7:93:7c:fb:a5:cf:c9:a0:0f:69:71:11:96:89:05:21:8e:49:
04:de:01:6c:cc:f4:17:c1:a5:ae:9e:63:1e:d3:df:25:4f:68:
ae:4a:28:ec:51:4a:d0:4c:8c:98:39:8d:92:98:3e:a5:9f:a2:
9b:b1:19:8c:82:85:8c:53:e8:8d:ab:c0:b0:ef:04:7f:8e:3e:
fc:75:55:4b:ca:f4:6b:1d:e8:52:65:30:70:a4:08:b6:0e:bc:
d4:1d:94:57:44:e4:6c:32:3f:e6:5e:3f:2a:4e:2b:fa:4c:a6:
b7:98:87:04:b0:23:19:1c:f3:76:04:d7:02:66:8e:06:50:b6:
ef:c2:af:0a:9b:cf:4b:bd:61:1f:4a:ae:e0:d9:9a:86:ba:ab:
cd:d1:f3:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0yLCsl+wGl6ypqw2yQCEvdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0MjIzYzFmMWNkYTE5Yjk5MzViNDhjN2ZkY2YyMDU1YzI5
NjIwMjgwHhcNMjYwMzI4MDIwMDQ4WhcNMjYwMzI5MDIwMDQ4WjAzMTEwLwYDVQQD
EygzZGE2NGEwYmExYmU4ZTE0Yjk1NDhkYmMzZDQ0N2Q5OWI3Mzg3ZTE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyN9ckOzQ1xVWNt1pX75DZ6DdRAI
7evbIpWrqBidUrtz5zvOqj673CUBbNFh7GDo5V3erh6SQpUFmKfJkMCzO4y6hNgM
D7HhEy/PgEDevSBp3vTH5QJwdy/JLzn81frDOU6b13hrKtNWA7QPwIrugKl4Aadg
2cQ/jV76iDd4BXTFev/mMrvYum01/wmRxbA2QD6vgFWKBrvE8g0WBFm0qR+TVobh
gXXhm6eNVsjONFlwBlyA4ZsI/i5usfPB36SrwxnUuEML/CIfw2gOuFfIwxwM7cOL
vYuvFUc6eWLIFoGeuae2TDqG6MTjJuZ8w+aRRgOa0/yRPS10X8s1FWcEMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD2mSguhvo4UuVSNvD1EfZm3OH4XMB8GA1UdIwQY
MBaAFOQiPB8c2hm5k1tIx/3PIFXCliAoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUNJOEh4emFHYm1UVzBqSF9jOGdWY0tXSUNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS82YmY5MGMtOTdkNS00NGM2LWFjZGEt
YzM3MGFkMjk4Y2EzLzEvNUNJOEh4emFHYm1UVzBqSF9jOGdWY0tXSUNnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS82YmY5MGMtOTdkNS00NGM2LWFjZGEtYzM3MGFkMjk4Y2Ez
LzEvNUNJOEh4emFHYm1UVzBqSF9jOGdWY0tXSUNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABC3hk3dP
bxqaRih/JZtCIPw1pWogHGwxgUaOiMr+snj0nnHu6kFKEbnhr7jQAQuF7Dghrhq1
u9Z4d06ZCk4X3Webj14cAeE3BTvHz5+w9UpaZ+fs7DoRpiIAB0L2f+MtwPxiJETC
GdXqZSEb95N8+6XPyaAPaXERlokFIY5JBN4BbMz0F8Glrp5jHtPfJU9orkoo7FFK
0EyMmDmNkpg+pZ+im7EZjIKFjFPojavAsO8Ef44+/HVVS8r0ax3oUmUwcKQItg68
1B2UV0TkbDI/5l4/Kk4r+kymt5iHBLAjGRzzdgTXAmaOBlC278KvCpvPS71hH0qu
4NmahrqrzdHzZQ==
-----END CERTIFICATE-----
Generated at Sat Mar 28 11:39:33 2026 by rpki-client