Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.mft
File: CaaG43DW0GCBGe6wBsiq2qsHjSI.mft (raw, json)
Hash identifier: M7jDP61u4JLC/qPiBPTWzUIfh6tCf5Y87TWO31P0U4w=
Subject key identifier: 75:20:C8:A0:5F:A3:7C:01:DF:B3:E8:93:68:B5:55:B7:90:55:B8:FC
Authority key identifier: 09:A6:86:E3:70:D6:D0:60:81:19:EE:B0:06:C8:AA:DA:AB:07:8D:22
Certificate issuer: /CN=09a686e370d6d0608119eeb006c8aadaab078d22
Certificate serial: 019D2AE099CF5A0D41EC4B9B146F08543E58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CaaG43DW0GCBGe6wBsiq2qsHjSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.mft
Manifest number: EE
Signing time: Thu 26 Mar 2026 16:00:55 +0000
Manifest this update: Thu 26 Mar 2026 16:00:55 +0000
Manifest next update: Fri 27 Mar 2026 16:00:55 +0000
Files and hashes: 1: 5b2a6XWxXgUSZDKt5JWqFB4W1Qw.roa (hash: hBPbCPHByhSWsVt7qW7PZzgH1YZH0pwO5Lkd4emW/JQ=)
2: CaaG43DW0GCBGe6wBsiq2qsHjSI.crl (hash: bsBNVef8ofU7vAJ3IGQD0hcJAXtO3dhGbo8qQV4P1DE=)
3: WmlDEUeRJgEuT9FiOgoBRemRFYU.roa (hash: X4+5Ojmd3HzQvP5UtGyFLElK9M6t4MEOrTqB6Wxff40=)
4: mfFzFr77B7li1se7tJF6OJSoedY.roa (hash: qjnquC9Z4QaN1VXTnS5n6C6aJQ2XKB8MHhH5a5KucWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CaaG43DW0GCBGe6wBsiq2qsHjSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e0:99:cf:5a:0d:41:ec:4b:9b:14:6f:08:54:3e:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a686e370d6d0608119eeb006c8aadaab078d22
Validity
Not Before: Mar 26 16:00:55 2026 GMT
Not After : Mar 27 16:00:55 2026 GMT
Subject: CN=7520c8a05fa37c01dfb3e89368b555b79055b8fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5d:fc:18:c9:47:87:d1:42:55:f3:f5:cb:d7:
ef:91:2b:19:f2:fa:a7:2e:29:f8:64:8e:25:e6:18:
eb:51:46:77:c3:67:14:af:7d:62:7f:6f:55:14:69:
5b:cb:11:e0:08:01:6d:89:4f:8e:b8:bb:f4:42:90:
2f:90:1f:9b:fe:9e:d1:ad:46:9a:da:ef:16:4a:97:
e4:66:cc:59:50:d4:76:c1:91:8a:90:a0:b9:bf:29:
82:cf:1c:05:bb:7f:2e:3a:46:b2:0d:49:14:9b:1f:
b8:d1:42:57:3f:9e:4c:be:8d:45:5a:aa:76:85:ab:
58:46:ee:5a:8b:e2:fe:37:a9:22:39:46:8b:8d:fd:
71:3e:18:d7:dc:26:88:33:e5:39:bf:1a:c5:db:c5:
95:08:7f:c8:69:c9:ad:c1:c1:ed:72:8f:03:40:0e:
d8:f9:9b:ac:94:75:c5:df:2e:80:37:60:40:a8:d7:
3d:77:cc:4d:67:f1:ff:ba:dc:e4:fc:1b:b5:d2:66:
53:7b:08:0d:ae:dc:b8:9b:87:88:e0:5e:5e:07:0b:
6b:98:67:4e:3e:cb:0b:23:b8:b4:6e:e3:3b:17:9e:
f3:11:04:db:49:4c:4f:e4:db:50:58:5e:f7:e4:7a:
53:01:97:92:b5:1c:6b:0e:d1:3d:7c:65:8c:8b:d2:
af:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:20:C8:A0:5F:A3:7C:01:DF:B3:E8:93:68:B5:55:B7:90:55:B8:FC
X509v3 Authority Key Identifier:
keyid:09:A6:86:E3:70:D6:D0:60:81:19:EE:B0:06:C8:AA:DA:AB:07:8D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CaaG43DW0GCBGe6wBsiq2qsHjSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:56:f5:03:e2:cf:dd:1f:67:1c:10:60:f5:2a:ec:b5:4a:22:
63:95:4b:97:1d:8d:cb:79:17:97:89:4a:d0:5d:21:63:1a:0c:
01:e8:0f:65:c1:bd:fe:25:d0:02:51:a7:e1:34:6f:dd:d9:e6:
21:97:77:8b:8f:70:ac:05:43:2a:32:76:04:df:fb:ae:84:f0:
2a:26:b8:b9:d7:6e:e8:ff:23:79:4f:53:ad:5e:11:6b:13:17:
f6:4d:1b:ca:64:31:e0:be:75:4f:e8:17:07:b3:aa:92:ce:c7:
3e:11:6d:d5:79:50:89:2c:91:7a:9d:4d:90:a5:53:3e:60:5d:
c4:60:65:79:b6:93:33:d2:42:fe:27:57:d0:dd:cf:a1:7a:19:
64:19:f2:be:db:39:22:1a:10:2b:71:b7:42:a1:3d:7f:a0:b2:
68:60:f6:42:af:b2:37:fa:ba:bc:99:56:81:8d:67:22:ca:f4:
83:ea:76:ae:7f:19:b2:94:5c:c8:9e:86:ba:e2:6f:c4:9a:58:
67:a2:23:84:a3:38:96:bb:fa:26:8a:15:83:a0:3e:b3:a2:fa:
33:81:e1:d4:b6:59:11:d3:bb:ef:fa:a0:00:22:e8:2a:11:a3:
d2:41:c4:2b:92:24:42:6d:fb:fd:f8:a6:6e:51:be:1f:c4:1f:
3e:b2:71:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0q4JnPWg1B7EubFG8IVD5YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5YTY4NmUzNzBkNmQwNjA4MTE5ZWViMDA2YzhhYWRhYWIw
NzhkMjIwHhcNMjYwMzI2MTYwMDU1WhcNMjYwMzI3MTYwMDU1WjAzMTEwLwYDVQQD
Eyg3NTIwYzhhMDVmYTM3YzAxZGZiM2U4OTM2OGI1NTViNzkwNTViOGZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyF38GMlHh9FCVfP1y9fvkSsZ8vqn
Lin4ZI4l5hjrUUZ3w2cUr31if29VFGlbyxHgCAFtiU+OuLv0QpAvkB+b/p7RrUaa
2u8WSpfkZsxZUNR2wZGKkKC5vymCzxwFu38uOkayDUkUmx+40UJXP55Mvo1FWqp2
hatYRu5ai+L+N6kiOUaLjf1xPhjX3CaIM+U5vxrF28WVCH/IacmtwcHtco8DQA7Y
+ZuslHXF3y6AN2BAqNc9d8xNZ/H/utzk/Bu10mZTewgNrty4m4eI4F5eBwtrmGdO
PssLI7i0buM7F57zEQTbSUxP5NtQWF735HpTAZeStRxrDtE9fGWMi9KvjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHUgyKBfo3wB37Pok2i1VbeQVbj8MB8GA1UdIwQY
MBaAFAmmhuNw1tBggRnusAbIqtqrB40iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2FhRzQzRFcwR0NCR2U2d0JzaXEycXNIalNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9kNDI5YjktMzg1ZS00MzBmLWIyYzQt
ODE3NjhjNjBlZTA4LzEvQ2FhRzQzRFcwR0NCR2U2d0JzaXEycXNIalNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My9kNDI5YjktMzg1ZS00MzBmLWIyYzQtODE3NjhjNjBlZTA4
LzEvQ2FhRzQzRFcwR0NCR2U2d0JzaXEycXNIalNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWVb1A+LP
3R9nHBBg9SrstUoiY5VLlx2Ny3kXl4lK0F0hYxoMAegPZcG9/iXQAlGn4TRv3dnm
IZd3i49wrAVDKjJ2BN/7roTwKia4uddu6P8jeU9TrV4RaxMX9k0bymQx4L51T+gX
B7Oqks7HPhFt1XlQiSyRep1NkKVTPmBdxGBlebaTM9JC/idX0N3PoXoZZBnyvts5
IhoQK3G3QqE9f6CyaGD2Qq+yN/q6vJlWgY1nIsr0g+p2rn8ZspRcyJ6GuuJvxJpY
Z6IjhKM4lrv6JooVg6A+s6L6M4Hh1LZZEdO77/qgACLoKhGj0kHEK5IkQm37/fim
blG+H8QfPrJxSQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 20:15:41 2026 by rpki-client