Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
File: 05SToXmX0x6NWqbMyaa9dX8VwDA.mft (raw, json)
Hash identifier: WbKQYlNIjboxunL5nr4scxPeqvdjd2J0+CIwdwWg6Q8=
Subject key identifier: 53:D9:DF:89:DD:89:B2:51:9B:9B:76:47:29:F1:D1:BE:60:48:D4:2A
Authority key identifier: D3:94:93:A1:79:97:D3:1E:8D:5A:A6:CC:C9:A6:BD:75:7F:15:C0:30
Certificate issuer: /CN=d39493a17997d31e8d5aa6ccc9a6bd757f15c030
Certificate serial: 019D284DC52518F93C2B1AB24DECDEAAA2E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 04:01:18 +0000
Manifest this update: Thu 26 Mar 2026 04:01:18 +0000
Manifest next update: Fri 27 Mar 2026 04:01:18 +0000
Files and hashes: 1: 05SToXmX0x6NWqbMyaa9dX8VwDA.crl (hash: qcK22Z4NOxdTJom27fRJsuVRvGBqr4PFAGEgRwSWrMg=)
2: GYTJOXM2KAErnG1MoWoHjCRsIK8.roa (hash: x/UFZWfoFFTJcB68KF8XFytGvxdsRxCPtJo/zu08E5g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:c5:25:18:f9:3c:2b:1a:b2:4d:ec:de:aa:a2:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d39493a17997d31e8d5aa6ccc9a6bd757f15c030
Validity
Not Before: Mar 26 04:01:18 2026 GMT
Not After : Mar 27 04:01:18 2026 GMT
Subject: CN=53d9df89dd89b2519b9b764729f1d1be6048d42a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:bd:57:ae:b9:8d:b0:f5:f0:d6:32:99:5f:11:
a6:ba:9f:d5:b5:26:12:51:42:db:4f:e8:bf:32:a4:
db:ea:e8:2e:ee:d0:d0:a9:7d:9c:45:0f:fe:a4:10:
05:88:3b:be:fa:27:c9:d5:61:d8:de:36:bb:49:cd:
a2:5e:f6:58:aa:36:4e:91:83:41:29:35:15:8a:02:
c0:20:1c:81:d6:94:34:91:ec:0f:e1:11:d2:ae:9a:
13:08:a6:63:cb:28:5b:30:91:e8:60:4b:aa:b2:a1:
0c:f6:b3:75:63:b0:6e:f0:f4:0e:de:ac:3a:9d:2f:
66:0a:ce:c7:84:bf:2d:19:8e:99:85:67:ff:e3:85:
7a:0b:1e:e7:9a:a7:30:4a:5d:92:f3:d6:ae:e3:94:
93:85:65:61:e4:ba:1f:8f:59:b8:af:67:16:e7:d8:
92:96:7c:ae:78:92:fa:da:3d:36:2c:47:31:cf:07:
03:0a:1c:53:39:58:7d:5e:83:8e:94:10:d4:0b:f7:
f3:10:3f:14:f8:25:cc:cb:52:ed:2e:81:cf:9c:22:
48:ad:4c:6b:b2:1b:f1:4a:4f:b1:da:0a:f2:87:af:
a3:8a:0e:73:71:6b:ab:1c:1a:91:60:33:7e:bb:7d:
41:0d:33:52:3b:8e:a4:21:96:1f:a6:e5:d2:73:8d:
35:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D9:DF:89:DD:89:B2:51:9B:9B:76:47:29:F1:D1:BE:60:48:D4:2A
X509v3 Authority Key Identifier:
keyid:D3:94:93:A1:79:97:D3:1E:8D:5A:A6:CC:C9:A6:BD:75:7F:15:C0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:cd:58:09:d6:db:24:7a:ec:63:27:9b:06:63:bc:1f:42:07:
75:bc:1c:4d:e0:79:56:75:31:b6:4d:95:41:6d:34:82:37:67:
a7:78:51:db:5e:5f:67:64:c9:b0:e8:a9:73:ed:2f:37:53:8b:
73:ba:30:2e:25:ff:76:52:6f:4c:e2:ec:61:86:16:a0:0b:97:
0d:49:00:9f:d3:ba:42:b9:6a:d5:83:e9:0e:d6:16:89:4c:67:
05:ad:c7:ab:af:6f:80:66:8c:b2:44:57:a0:94:76:3a:a3:7d:
f5:13:ac:a0:0f:08:a2:a1:05:a0:6e:12:66:5e:d8:c9:3d:73:
b8:73:95:b3:26:8d:90:2b:3b:13:99:33:99:5c:85:f4:30:0d:
24:a2:23:61:59:c2:7d:39:50:b0:ea:32:bf:b5:89:29:a2:dc:
66:ab:f4:26:dd:53:ce:b9:32:0a:dc:2e:fa:a5:31:8e:60:a2:
a8:8b:70:ac:13:06:b3:5a:3f:a4:41:0f:3b:67:35:c2:1d:f6:
61:0a:a4:f6:d0:8f:b4:e6:ab:f8:92:20:ec:bd:74:20:20:2f:
20:53:b5:a8:2d:f0:39:87:c7:df:43:c6:61:3f:5c:da:3a:ea:
7e:1f:0c:5e:93:4f:a6:49:8c:a5:5b:5c:7d:8d:45:20:11:1d:
0a:8b:e7:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oTcUlGPk8KxqyTezeqqLhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzOTQ5M2ExNzk5N2QzMWU4ZDVhYTZjY2M5YTZiZDc1N2Yx
NWMwMzAwHhcNMjYwMzI2MDQwMTE4WhcNMjYwMzI3MDQwMTE4WjAzMTEwLwYDVQQD
Eyg1M2Q5ZGY4OWRkODliMjUxOWI5Yjc2NDcyOWYxZDFiZTYwNDhkNDJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA071XrrmNsPXw1jKZXxGmup/VtSYS
UULbT+i/MqTb6ugu7tDQqX2cRQ/+pBAFiDu++ifJ1WHY3ja7Sc2iXvZYqjZOkYNB
KTUVigLAIByB1pQ0kewP4RHSrpoTCKZjyyhbMJHoYEuqsqEM9rN1Y7Bu8PQO3qw6
nS9mCs7HhL8tGY6ZhWf/44V6Cx7nmqcwSl2S89au45SThWVh5Lofj1m4r2cW59iS
lnyueJL62j02LEcxzwcDChxTOVh9XoOOlBDUC/fzED8U+CXMy1LtLoHPnCJIrUxr
shvxSk+x2gryh6+jig5zcWurHBqRYDN+u31BDTNSO46kIZYfpuXSc401iQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFPZ34ndibJRm5t2Rynx0b5gSNQqMB8GA1UdIwQY
MBaAFNOUk6F5l9MejVqmzMmmvXV/FcAwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDVTVG9YbVgweDZOV3FiTXlhYTlkWDhWd0RBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lODA0ZTQtN2YzMC00MDQ5LTk0OGIt
OTc5MjMyOTdjZGE3LzEvMDVTVG9YbVgweDZOV3FiTXlhYTlkWDhWd0RBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lODA0ZTQtN2YzMC00MDQ5LTk0OGItOTc5MjMyOTdjZGE3
LzEvMDVTVG9YbVgweDZOV3FiTXlhYTlkWDhWd0RBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWs1YCdbb
JHrsYyebBmO8H0IHdbwcTeB5VnUxtk2VQW00gjdnp3hR215fZ2TJsOipc+0vN1OL
c7owLiX/dlJvTOLsYYYWoAuXDUkAn9O6Qrlq1YPpDtYWiUxnBa3Hq69vgGaMskRX
oJR2OqN99ROsoA8IoqEFoG4SZl7YyT1zuHOVsyaNkCs7E5kzmVyF9DANJKIjYVnC
fTlQsOoyv7WJKaLcZqv0Jt1TzrkyCtwu+qUxjmCiqItwrBMGs1o/pEEPO2c1wh32
YQqk9tCPtOar+JIg7L10ICAvIFO1qC3wOYfH30PGYT9c2jrqfh8MXpNPpkmMpVtc
fY1FIBEdCovnRw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 12:56:26 2026 by rpki-client