Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
File: shna0BUe3wUqLxyX34hKWoeotfU.mft (raw, json)
Hash identifier: Ii05E9M/g8+6rsVNGiLPtABMjJx3MF4TE7lJkXSgfyQ=
Subject key identifier: 13:87:A7:C4:EB:4A:18:1E:CB:07:31:72:94:9E:05:3E:A6:96:DF:CC
Authority key identifier: B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
Certificate issuer: /CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Certificate serial: 019D25830E492C932E99ACAD6DDB57FE94E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
Manifest number: 0A29
Signing time: Wed 25 Mar 2026 15:00:38 +0000
Manifest this update: Wed 25 Mar 2026 15:00:38 +0000
Manifest next update: Thu 26 Mar 2026 15:00:38 +0000
Files and hashes: 1: R-F3hbGJdOvhvuAeQIMq8EoAnjw.roa (hash: No6c9/YWn9MVmL5hiJnLaMWWeQF2lOi/cgCUTWRZ78g=)
2: shna0BUe3wUqLxyX34hKWoeotfU.crl (hash: Et17s2VCa4Y5cm4lyhC21xbXROYyPSXhpo5geNmam/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:0e:49:2c:93:2e:99:ac:ad:6d:db:57:fe:94:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Validity
Not Before: Mar 25 15:00:38 2026 GMT
Not After : Mar 26 15:00:38 2026 GMT
Subject: CN=1387a7c4eb4a181ecb073172949e053ea696dfcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1c:39:6e:a9:0b:b8:dc:6a:7b:d8:19:7d:13:
ce:5e:2b:dc:f7:73:e3:0c:44:78:42:8b:c1:14:40:
24:0a:bf:dd:2b:03:5f:68:02:33:eb:76:96:35:39:
69:75:2e:06:a5:a4:d1:77:67:73:e0:4c:9d:b1:e2:
cf:c5:fa:69:f0:49:7b:f4:67:18:cd:67:13:ec:f8:
c3:b6:5a:61:2d:44:c1:8e:3d:fa:f1:1e:fe:99:9a:
80:9a:3e:83:f0:58:d8:69:c1:9b:af:a8:80:ee:35:
81:bf:a2:74:18:f9:b5:d8:39:32:26:e8:30:81:6d:
e4:16:90:a0:5c:c6:f9:52:b2:e2:f6:81:39:a4:bc:
0c:22:c3:ef:79:ee:3f:23:7e:d0:4e:a6:1f:dc:ec:
4d:6e:43:dc:b3:c8:66:61:de:26:e4:88:b2:bb:3c:
46:6e:1b:d4:49:88:68:d9:33:b4:97:0a:83:11:a3:
d1:69:f1:23:70:4a:ba:98:29:cb:5b:f9:fd:c6:28:
0e:11:84:4b:17:bc:6a:f7:8e:a6:23:e1:05:f8:50:
78:ef:ae:cb:4a:54:a0:04:2e:4e:25:fa:42:47:74:
87:86:b3:38:d2:f5:e8:e3:f0:90:40:4b:cd:5f:a7:
81:a4:c9:10:35:d5:00:cf:22:2a:9c:36:b4:e2:e2:
99:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:87:A7:C4:EB:4A:18:1E:CB:07:31:72:94:9E:05:3E:A6:96:DF:CC
X509v3 Authority Key Identifier:
keyid:B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:42:37:29:02:35:06:75:91:54:68:7c:31:97:e8:3a:2c:38:
08:e2:7e:bf:ba:b6:42:e8:3d:8c:1e:1d:bd:13:d0:c8:56:bc:
38:a4:03:c1:7b:ec:d3:a8:a2:14:d1:33:6b:ef:e0:50:be:a2:
06:c3:f0:d5:04:43:b4:d5:0f:33:de:a6:dc:9d:92:de:47:fd:
e5:7f:2b:d0:d5:e1:3f:29:17:e8:a4:2c:31:41:0c:18:3e:ff:
aa:aa:06:ec:1c:a3:d8:4f:d6:47:2a:78:2f:74:19:59:08:85:
f3:ac:d0:41:9f:c9:35:70:95:bb:2f:e2:67:e8:2e:88:51:0b:
06:0c:55:3e:12:ec:a7:d6:62:0d:38:13:b7:ca:18:c2:ad:7e:
ff:a7:76:05:79:56:66:a9:00:ce:11:33:cf:5a:0e:5a:ab:1e:
b5:43:f3:35:3f:98:12:94:5e:35:4a:75:90:cd:1a:0c:f9:bd:
44:09:4f:1d:a4:8c:3b:b6:6c:2f:60:49:4e:e2:c2:2f:3a:69:
7f:73:8d:32:40:fb:74:e1:84:4b:5d:1c:22:56:da:2b:56:b6:
d5:81:e2:e8:47:81:dd:45:6c:79:28:61:d3:92:f1:f8:ec:e2:
5d:0e:11:04:5b:a3:86:00:81:91:0d:ef:51:07:8c:a0:5d:ce:
58:05:e2:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0lgw5JLJMumaytbdtX/pTiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMTlkYWQwMTUxZWRmMDUyYTJmMWM5N2RmODg0YTVhODdh
OGI1ZjUwHhcNMjYwMzI1MTUwMDM4WhcNMjYwMzI2MTUwMDM4WjAzMTEwLwYDVQQD
EygxMzg3YTdjNGViNGExODFlY2IwNzMxNzI5NDllMDUzZWE2OTZkZmNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Bw5bqkLuNxqe9gZfRPOXivc93Pj
DER4QovBFEAkCr/dKwNfaAIz63aWNTlpdS4GpaTRd2dz4EydseLPxfpp8El79GcY
zWcT7PjDtlphLUTBjj368R7+mZqAmj6D8FjYacGbr6iA7jWBv6J0GPm12DkyJugw
gW3kFpCgXMb5UrLi9oE5pLwMIsPvee4/I37QTqYf3OxNbkPcs8hmYd4m5IiyuzxG
bhvUSYho2TO0lwqDEaPRafEjcEq6mCnLW/n9xigOEYRLF7xq946mI+EF+FB4767L
SlSgBC5OJfpCR3SHhrM40vXo4/CQQEvNX6eBpMkQNdUAzyIqnDa04uKZTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBOHp8TrShgeywcxcpSeBT6mlt/MMB8GA1UdIwQY
MBaAFLIZ2tAVHt8FKi8cl9+ISlqHqLX1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2huYTBCVWUzd1VxTHh5WDM0aEtXb2VvdGZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni83NzQ4MmQtNDgzMC00OWY3LWI2YmQt
NzY1MGQ5NzMyYTUyLzEvc2huYTBCVWUzd1VxTHh5WDM0aEtXb2VvdGZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni83NzQ4MmQtNDgzMC00OWY3LWI2YmQtNzY1MGQ5NzMyYTUy
LzEvc2huYTBCVWUzd1VxTHh5WDM0aEtXb2VvdGZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFUI3KQI1
BnWRVGh8MZfoOiw4COJ+v7q2Qug9jB4dvRPQyFa8OKQDwXvs06iiFNEza+/gUL6i
BsPw1QRDtNUPM96m3J2S3kf95X8r0NXhPykX6KQsMUEMGD7/qqoG7Byj2E/WRyp4
L3QZWQiF86zQQZ/JNXCVuy/iZ+guiFELBgxVPhLsp9ZiDTgTt8oYwq1+/6d2BXlW
ZqkAzhEzz1oOWqsetUPzNT+YEpReNUp1kM0aDPm9RAlPHaSMO7ZsL2BJTuLCLzpp
f3ONMkD7dOGES10cIlbaK1a21YHi6EeB3UVseShh05Lx+OziXQ4RBFujhgCBkQ3v
UQeMoF3OWAXiKQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:11 2026 by rpki-client