Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json)
Hash identifier: ANC9lXKwg5xHtH/O64zCQ9qizWU+toWExZRGZuww+x4=
Subject key identifier: 86:A6:D9:AA:86:7E:4C:47:BC:F6:27:E3:1D:A2:E4:82:4B:E7:8C:34
Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Certificate serial: 019E1D22EC4DE9CB610CC6F5F6207D314FA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
Manifest number: 0B3D
Signing time: Tue 12 May 2026 17:01:28 +0000
Manifest this update: Tue 12 May 2026 17:01:28 +0000
Manifest next update: Wed 13 May 2026 17:01:28 +0000
Files and hashes: 1: Pxtr7Gbm8FoWkqDWUIVtrs362Ec.roa (hash: Hjsu0JAwI6gJ3DPtZLzsxv8mvLUzo+rKbsqMaxC3bYY=)
2: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: owJsf2+cXV8lrmVl/yVUAM5Mzj5U4Vj2+GiuNPNUZx4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 17:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:ec:4d:e9:cb:61:0c:c6:f5:f6:20:7d:31:4f:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf
Validity
Not Before: May 12 17:01:28 2026 GMT
Not After : May 13 17:01:28 2026 GMT
Subject: CN=86a6d9aa867e4c47bcf627e31da2e4824be78c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d4:01:50:2b:4a:6f:df:8a:1a:7a:97:ea:a0:
9d:61:4a:d4:5c:f7:e3:4e:cd:dc:8c:40:92:e2:b9:
7a:71:43:17:f7:5a:7e:2f:7d:82:ab:52:e4:d6:63:
3b:7b:13:0d:78:33:26:bd:a9:7b:72:60:fd:37:85:
bf:c1:c6:04:28:a8:61:58:9f:40:2f:fd:a8:4f:b7:
a3:06:42:ad:f6:89:8a:a1:96:7f:3b:a0:20:a3:11:
1c:51:44:6e:de:c5:a6:63:03:2c:0e:44:5d:00:94:
c4:63:b4:de:89:82:f2:2d:dc:fe:3a:1e:12:32:cd:
1f:a6:61:c8:16:2a:7d:fe:ed:ed:2f:08:06:9f:83:
05:61:59:45:df:3a:39:63:c1:6a:50:7a:86:c7:7c:
4e:33:f6:b0:3d:72:97:fc:48:25:ed:c8:28:02:ff:
bf:1d:9e:84:49:09:dd:2e:5e:c2:c0:84:5f:96:d2:
0e:93:7b:64:2d:23:b2:c0:56:76:3a:4b:c0:e7:cc:
15:cb:0b:cf:99:49:2c:9d:63:e5:b1:35:9d:cf:01:
f2:97:cf:28:cc:dc:99:09:6c:2e:61:81:7e:01:5a:
07:e5:84:e5:39:31:fd:7f:ed:64:93:7e:46:4e:40:
c2:a5:97:b0:45:b1:20:8e:97:a1:53:70:4c:80:fd:
cf:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:A6:D9:AA:86:7E:4C:47:BC:F6:27:E3:1D:A2:E4:82:4B:E7:8C:34
X509v3 Authority Key Identifier:
keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:46:d7:8e:6d:fd:c7:fb:b4:6d:96:27:1f:c0:18:10:5a:26:
78:76:19:df:bc:41:1f:91:95:55:f5:17:84:58:d1:1b:9d:16:
b7:9e:f1:d2:b6:2b:f0:b5:f7:47:8c:5e:6d:f9:31:f9:b9:da:
98:b1:91:d6:33:fd:a3:ed:fc:9a:1d:27:bd:3c:05:f8:f2:96:
9f:d6:a6:a6:c9:72:4d:71:2b:f1:a1:c5:e0:ee:9e:f0:78:74:
84:b5:89:f8:d1:5f:2c:af:da:d3:d9:ce:aa:5d:e3:11:b7:ff:
a2:f5:35:af:b4:09:5f:30:87:5d:19:25:13:68:26:83:ad:e2:
ad:11:a2:92:1b:5e:cd:96:26:f2:ef:41:6d:13:39:ea:60:e3:
e7:45:2f:bd:91:d6:11:d9:8e:28:53:01:d1:5b:00:3e:d1:0e:
7f:01:2b:12:22:3a:22:75:f3:51:94:0b:76:8f:9b:d9:79:71:
0c:dc:b7:b4:e9:43:8f:e9:23:93:1c:15:d9:98:45:08:be:f0:
5a:82:b9:76:7f:70:c9:fc:71:7f:c8:df:70:0e:2e:a8:d4:1d:
89:d5:27:f8:b1:db:1f:64:5b:d8:76:63:ff:e1:43:04:4f:0d:
31:e9:15:f3:77:41:ee:27:a5:f4:43:6c:2e:a5:7e:f9:b9:19:
29:31:62:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dIuxN6cthDMb19iB9MU+mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyYzQ4ZTFiYjY3MmNkYTY4NDY0MDBlOGJmOGQ2ZDY5Njgz
NWQ3YmYwHhcNMjYwNTEyMTcwMTI4WhcNMjYwNTEzMTcwMTI4WjAzMTEwLwYDVQQD
Eyg4NmE2ZDlhYTg2N2U0YzQ3YmNmNjI3ZTMxZGEyZTQ4MjRiZTc4YzM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9QBUCtKb9+KGnqX6qCdYUrUXPfj
Ts3cjECS4rl6cUMX91p+L32Cq1Lk1mM7exMNeDMmval7cmD9N4W/wcYEKKhhWJ9A
L/2oT7ejBkKt9omKoZZ/O6AgoxEcUURu3sWmYwMsDkRdAJTEY7TeiYLyLdz+Oh4S
Ms0fpmHIFip9/u3tLwgGn4MFYVlF3zo5Y8FqUHqGx3xOM/awPXKX/Egl7cgoAv+/
HZ6ESQndLl7CwIRfltIOk3tkLSOywFZ2OkvA58wVywvPmUksnWPlsTWdzwHyl88o
zNyZCWwuYYF+AVoH5YTlOTH9f+1kk35GTkDCpZewRbEgjpehU3BMgP3PXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIam2aqGfkxHvPYn4x2i5IJL54w0MB8GA1UdIwQY
MBaAFFLEjhu2cs2mhGQA6L+NbWloNde/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzkt
MThlY2UzNjgyNjZmLzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzktMThlY2UzNjgyNjZm
LzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArEbXjm39
x/u0bZYnH8AYEFomeHYZ37xBH5GVVfUXhFjRG50Wt57x0rYr8LX3R4xebfkx+bna
mLGR1jP9o+38mh0nvTwF+PKWn9ampslyTXEr8aHF4O6e8Hh0hLWJ+NFfLK/a09nO
ql3jEbf/ovU1r7QJXzCHXRklE2gmg63irRGikhtezZYm8u9BbRM56mDj50UvvZHW
EdmOKFMB0VsAPtEOfwErEiI6InXzUZQLdo+b2XlxDNy3tOlDj+kjkxwV2ZhFCL7w
WoK5dn9wyfxxf8jfcA4uqNQdidUn+LHbH2Rb2HZj/+FDBE8NMekV83dB7iel9ENs
LqV++bkZKTFiTg==
-----END CERTIFICATE-----
Generated at Wed May 13 03:00:46 2026 by rpki-client