Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.mft
File: CaaG43DW0GCBGe6wBsiq2qsHjSI.mft (raw, json)
Hash identifier: X2Lh5w+eHC6AmJECViD297UNRyXw/4I93vd182NDDJo=
Subject key identifier: E5:CD:35:1B:77:A6:0A:E3:8B:86:AD:E5:15:63:BD:EC:52:8D:E1:F0
Authority key identifier: 09:A6:86:E3:70:D6:D0:60:81:19:EE:B0:06:C8:AA:DA:AB:07:8D:22
Certificate issuer: /CN=09a686e370d6d0608119eeb006c8aadaab078d22
Certificate serial: 019E1E35B2585DCA26AF907FD0F89EEBD7D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CaaG43DW0GCBGe6wBsiq2qsHjSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.mft
Manifest number: 016C
Signing time: Tue 12 May 2026 22:01:35 +0000
Manifest this update: Tue 12 May 2026 22:01:35 +0000
Manifest next update: Wed 13 May 2026 22:01:35 +0000
Files and hashes: 1: 5b2a6XWxXgUSZDKt5JWqFB4W1Qw.roa (hash: hBPbCPHByhSWsVt7qW7PZzgH1YZH0pwO5Lkd4emW/JQ=)
2: CaaG43DW0GCBGe6wBsiq2qsHjSI.crl (hash: /lNdp4SGP9iujRw7+Qsv3zC+9bb/k25v89X7w+24aN4=)
3: WmlDEUeRJgEuT9FiOgoBRemRFYU.roa (hash: X4+5Ojmd3HzQvP5UtGyFLElK9M6t4MEOrTqB6Wxff40=)
4: mfFzFr77B7li1se7tJF6OJSoedY.roa (hash: qjnquC9Z4QaN1VXTnS5n6C6aJQ2XKB8MHhH5a5KucWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CaaG43DW0GCBGe6wBsiq2qsHjSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:b2:58:5d:ca:26:af:90:7f:d0:f8:9e:eb:d7:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a686e370d6d0608119eeb006c8aadaab078d22
Validity
Not Before: May 12 22:01:35 2026 GMT
Not After : May 13 22:01:35 2026 GMT
Subject: CN=e5cd351b77a60ae38b86ade51563bdec528de1f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:40:c0:e1:cf:a3:7a:fa:98:34:45:1c:e5:ca:
5a:ad:05:15:95:af:90:c9:12:ef:32:d3:8b:e0:3d:
92:f3:14:c2:39:96:2e:6f:95:7e:78:cb:40:ec:4e:
96:1e:2f:bb:10:f3:72:f0:a6:96:c4:3a:0e:9c:8d:
77:02:9c:79:b5:85:5a:6f:be:4f:ea:3f:5f:89:ce:
92:89:78:bb:ba:0c:4c:51:6a:62:c3:e1:52:52:d0:
2f:af:9d:eb:4b:4e:58:c3:33:36:98:43:7c:9c:8c:
0f:f5:f6:59:81:95:0d:be:c2:1b:bb:96:ef:24:8b:
61:fa:a7:78:98:65:91:89:c8:8f:2c:b0:2a:0a:85:
7e:3c:f9:39:cb:a4:03:31:03:59:14:be:5b:63:93:
67:5b:28:d3:b0:af:ec:55:70:e4:51:7c:03:0d:be:
35:22:86:33:e2:fc:09:1a:a8:c4:a3:d1:13:4c:00:
96:3b:35:50:4a:68:e1:13:a8:13:d7:45:28:c5:7a:
df:39:50:f4:c6:4f:72:f9:44:f5:d8:a5:06:1c:e0:
4e:ac:07:77:61:96:be:98:7a:83:43:d3:a5:c5:69:
54:ce:99:27:fa:7a:70:4d:63:bb:e3:39:11:ed:6c:
7b:a7:38:38:ad:f0:56:b9:7a:48:37:10:94:d2:2c:
2d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:CD:35:1B:77:A6:0A:E3:8B:86:AD:E5:15:63:BD:EC:52:8D:E1:F0
X509v3 Authority Key Identifier:
keyid:09:A6:86:E3:70:D6:D0:60:81:19:EE:B0:06:C8:AA:DA:AB:07:8D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CaaG43DW0GCBGe6wBsiq2qsHjSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:86:49:77:42:4d:14:d1:a4:cc:c7:dc:3f:7b:33:6c:83:4a:
9d:89:21:f6:30:f0:2e:24:c5:44:ce:49:91:9e:e1:cc:a9:dc:
a7:03:33:21:a2:74:bf:3e:33:9d:7b:a2:e5:d7:f7:c9:a7:96:
62:b5:f3:16:a1:7f:60:96:c0:c2:00:58:ea:a9:dc:3e:79:1a:
4b:fe:d0:3f:0c:fa:29:f2:af:a6:a6:6a:d2:c1:ff:1c:37:ba:
25:a8:35:26:a6:c9:28:e3:b2:bd:f1:dd:47:7a:f5:8f:6f:d0:
41:44:ff:1d:90:50:c6:28:f5:ad:13:95:6e:52:69:bc:a7:ae:
b8:1a:ac:f3:ea:54:d1:0c:c0:76:e4:56:ee:cc:86:4a:c2:c8:
a4:92:0c:82:6d:32:76:2d:e4:b1:ea:92:cc:46:a0:68:60:38:
e9:6c:43:1e:df:33:28:a3:42:3f:24:a2:0e:f4:b8:bb:2a:00:
cc:15:d7:33:97:e8:ea:9c:6d:3a:5c:a7:6a:d6:31:4a:61:3b:
21:a7:1f:e1:98:94:0c:12:06:36:42:70:96:1c:d6:0b:e5:3d:
8c:3e:02:c4:d5:11:0e:5e:6d:2c:4e:a3:3b:8e:a3:6f:7e:36:
4a:52:9c:fc:4e:75:ac:1f:5f:cc:cd:2d:38:48:d5:03:31:81:
29:50:eb:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eNbJYXcomr5B/0Pie69fQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5YTY4NmUzNzBkNmQwNjA4MTE5ZWViMDA2YzhhYWRhYWIw
NzhkMjIwHhcNMjYwNTEyMjIwMTM1WhcNMjYwNTEzMjIwMTM1WjAzMTEwLwYDVQQD
EyhlNWNkMzUxYjc3YTYwYWUzOGI4NmFkZTUxNTYzYmRlYzUyOGRlMWYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxEDA4c+jevqYNEUc5cparQUVla+Q
yRLvMtOL4D2S8xTCOZYub5V+eMtA7E6WHi+7EPNy8KaWxDoOnI13Apx5tYVab75P
6j9fic6SiXi7ugxMUWpiw+FSUtAvr53rS05YwzM2mEN8nIwP9fZZgZUNvsIbu5bv
JIth+qd4mGWRiciPLLAqCoV+PPk5y6QDMQNZFL5bY5NnWyjTsK/sVXDkUXwDDb41
IoYz4vwJGqjEo9ETTACWOzVQSmjhE6gT10UoxXrfOVD0xk9y+UT12KUGHOBOrAd3
YZa+mHqDQ9OlxWlUzpkn+npwTWO74zkR7Wx7pzg4rfBWuXpINxCU0iwtbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOXNNRt3pgrji4at5RVjvexSjeHwMB8GA1UdIwQY
MBaAFAmmhuNw1tBggRnusAbIqtqrB40iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2FhRzQzRFcwR0NCR2U2d0JzaXEycXNIalNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9kNDI5YjktMzg1ZS00MzBmLWIyYzQt
ODE3NjhjNjBlZTA4LzEvQ2FhRzQzRFcwR0NCR2U2d0JzaXEycXNIalNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My9kNDI5YjktMzg1ZS00MzBmLWIyYzQtODE3NjhjNjBlZTA4
LzEvQ2FhRzQzRFcwR0NCR2U2d0JzaXEycXNIalNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc4ZJd0JN
FNGkzMfcP3szbINKnYkh9jDwLiTFRM5JkZ7hzKncpwMzIaJ0vz4znXui5df3yaeW
YrXzFqF/YJbAwgBY6qncPnkaS/7QPwz6KfKvpqZq0sH/HDe6Jag1JqbJKOOyvfHd
R3r1j2/QQUT/HZBQxij1rROVblJpvKeuuBqs8+pU0QzAduRW7syGSsLIpJIMgm0y
di3kseqSzEagaGA46WxDHt8zKKNCPySiDvS4uyoAzBXXM5fo6pxtOlynatYxSmE7
Iacf4ZiUDBIGNkJwlhzWC+U9jD4CxNURDl5tLE6jO46jb342SlKc/E51rB9fzM0t
OEjVAzGBKVDr6A==
-----END CERTIFICATE-----
Generated at Wed May 13 03:38:39 2026 by rpki-client