Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
File: CFr4G5nr9ILzxrU1Hiniii4gs5g.mft (raw, json)
Hash identifier: Scna/7RSzY02VH8YMR9a0ffK1v1tBViteiknSm/a5AA=
Subject key identifier: A5:64:9C:25:A8:0A:39:F4:89:C6:64:AC:F8:71:4D:A8:EA:4E:0A:49
Authority key identifier: 08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98
Certificate issuer: /CN=085af81b99ebf482f3c6b5351e29e28a2e20b398
Certificate serial: 019E1C0FC031B602C901CA5C2D76F5BD0A7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
Manifest number: 06B4
Signing time: Tue 12 May 2026 12:00:54 +0000
Manifest this update: Tue 12 May 2026 12:00:54 +0000
Manifest next update: Wed 13 May 2026 12:00:54 +0000
Files and hashes: 1: 4PSqkbn4bMtBeCnSBAdphuD0N68.roa (hash: 7WdKS6f+17GrfB54aQeANA2RWiVlXakknw1q0Gpsn4w=)
2: CFr4G5nr9ILzxrU1Hiniii4gs5g.crl (hash: o0hYaS/MV7rbDswZHCaj1WsBrfxvtdZeHyx7nL6D9SI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:0f:c0:31:b6:02:c9:01:ca:5c:2d:76:f5:bd:0a:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=085af81b99ebf482f3c6b5351e29e28a2e20b398
Validity
Not Before: May 12 12:00:54 2026 GMT
Not After : May 13 12:00:54 2026 GMT
Subject: CN=a5649c25a80a39f489c664acf8714da8ea4e0a49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9c:8c:24:dd:15:70:23:b5:ff:76:f4:f7:a3:
01:7d:32:67:75:30:ad:e7:fd:5c:bd:8f:0d:79:34:
a0:41:9e:0c:0c:1c:c3:43:d4:68:09:c3:ae:35:a0:
a2:0c:d9:95:17:19:ba:7b:cf:4a:16:6a:08:ed:c7:
f8:98:45:d6:b5:48:88:fd:81:86:9d:c8:44:14:d7:
76:eb:7e:d3:ca:85:26:7b:4c:d2:72:2c:c7:3e:7b:
fa:f6:40:84:64:06:a3:6e:bf:59:72:1d:63:cd:5f:
bc:72:58:9a:4f:da:d0:fc:e1:f6:00:21:62:51:4f:
89:ef:d5:4f:fa:42:37:61:da:80:6a:b6:06:62:57:
23:87:29:41:f9:6e:4a:16:7b:ab:e5:0d:8e:71:46:
5e:3d:f2:67:7f:50:9b:69:3e:28:53:c4:ae:ff:ce:
56:e5:5b:68:2d:63:51:e4:ff:56:d3:df:18:23:b2:
43:73:a3:9a:8d:db:ab:d7:e2:1a:c3:24:d3:08:35:
96:d5:12:ae:2f:0c:93:4b:5b:56:59:85:ca:de:42:
03:7e:a8:b8:38:52:4e:ad:89:38:a6:bf:0f:d5:10:
98:5c:aa:34:dc:5a:b9:e3:8a:68:e3:76:39:fb:1b:
01:e1:a4:c7:84:08:6a:27:2b:be:ce:62:4b:25:a7:
64:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:64:9C:25:A8:0A:39:F4:89:C6:64:AC:F8:71:4D:A8:EA:4E:0A:49
X509v3 Authority Key Identifier:
keyid:08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:f1:da:c0:df:c6:54:71:5e:f2:53:4f:4e:6a:10:78:e1:ff:
ec:4e:48:66:c7:dc:b6:7a:59:4f:13:99:c0:c8:50:fa:7d:4b:
ce:88:23:4c:92:64:91:20:aa:f1:21:c2:c6:6d:bc:61:92:58:
45:46:44:01:42:19:18:15:61:62:e9:1e:79:33:7f:4f:d9:63:
a4:7d:9a:e1:67:04:71:f3:d8:f8:9c:d4:1b:ef:e1:de:ed:24:
15:f8:6e:41:df:56:9a:80:2a:08:64:32:b2:28:96:1f:a7:d0:
6a:6a:bc:79:56:0a:0d:f8:ff:37:5b:ab:a8:22:89:93:ea:97:
37:49:48:a0:52:0a:31:33:e6:db:92:77:53:2a:f7:52:cf:f4:
21:e2:bb:2f:b0:7c:4a:50:bb:e0:c4:45:2d:27:de:b4:62:a0:
37:31:d6:97:10:e9:5d:76:01:0b:a3:fe:83:30:1f:ec:f2:c8:
4c:aa:0e:ff:40:45:50:ed:51:6d:e3:05:f8:ff:c9:c1:65:61:
32:e0:56:5c:f7:4a:53:28:c6:ad:7e:61:f7:75:cb:12:df:39:
a7:b8:b0:4f:20:6c:d0:55:72:e6:a9:43:73:d6:a2:0e:70:4f:
85:82:8d:c1:32:37:4c:b0:61:51:92:17:70:18:1a:86:9a:75:
0b:00:1b:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4cD8AxtgLJAcpcLXb1vQp6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4NWFmODFiOTllYmY0ODJmM2M2YjUzNTFlMjllMjhhMmUy
MGIzOTgwHhcNMjYwNTEyMTIwMDU0WhcNMjYwNTEzMTIwMDU0WjAzMTEwLwYDVQQD
EyhhNTY0OWMyNWE4MGEzOWY0ODljNjY0YWNmODcxNGRhOGVhNGUwYTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA05yMJN0VcCO1/3b096MBfTJndTCt
5/1cvY8NeTSgQZ4MDBzDQ9RoCcOuNaCiDNmVFxm6e89KFmoI7cf4mEXWtUiI/YGG
nchEFNd2637TyoUme0zScizHPnv69kCEZAajbr9Zch1jzV+8cliaT9rQ/OH2ACFi
UU+J79VP+kI3YdqAarYGYlcjhylB+W5KFnur5Q2OcUZePfJnf1CbaT4oU8Su/85W
5VtoLWNR5P9W098YI7JDc6Oajdur1+IawyTTCDWW1RKuLwyTS1tWWYXK3kIDfqi4
OFJOrYk4pr8P1RCYXKo03Fq544po43Y5+xsB4aTHhAhqJyu+zmJLJadkcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKVknCWoCjn0icZkrPhxTajqTgpJMB8GA1UdIwQY
MBaAFAha+BuZ6/SC88a1NR4p4oouILOYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0ZyNEc1bnI5SUx6eHJVMUhpbmlpaTRnczVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8wODQwZTktNzE5OS00ZTAzLTg0ZmQt
YzI4ZDE0YzdiNzMxLzEvQ0ZyNEc1bnI5SUx6eHJVMUhpbmlpaTRnczVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8wODQwZTktNzE5OS00ZTAzLTg0ZmQtYzI4ZDE0YzdiNzMx
LzEvQ0ZyNEc1bnI5SUx6eHJVMUhpbmlpaTRnczVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYvHawN/G
VHFe8lNPTmoQeOH/7E5IZsfctnpZTxOZwMhQ+n1LzogjTJJkkSCq8SHCxm28YZJY
RUZEAUIZGBVhYukeeTN/T9ljpH2a4WcEcfPY+JzUG+/h3u0kFfhuQd9WmoAqCGQy
siiWH6fQamq8eVYKDfj/N1urqCKJk+qXN0lIoFIKMTPm25J3Uyr3Us/0IeK7L7B8
SlC74MRFLSfetGKgNzHWlxDpXXYBC6P+gzAf7PLITKoO/0BFUO1RbeMF+P/JwWVh
MuBWXPdKUyjGrX5h93XLEt85p7iwTyBs0FVy5qlDc9aiDnBPhYKNwTI3TLBhUZIX
cBgahpp1CwAbfg==
-----END CERTIFICATE-----
Generated at Tue May 12 21:14:39 2026 by rpki-client