Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
File: tSU8JVLUQD9DuDwl52IjjfEtroE.mft (raw, json)
Hash identifier: /xejwPzerVHPlmKCDcRL+AkM4bpFRbbcld1U/pUvBcs=
Subject key identifier: 6C:D7:40:61:25:87:6F:E7:9E:F0:07:BE:8F:23:A0:9E:3E:60:88:B1
Authority key identifier: B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
Certificate issuer: /CN=b5253c2552d4403f43b83c25e762238df12dae81
Certificate serial: 019D27720704DE0B6CB974D3A372D8B6F0C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
Manifest number: 096A
Signing time: Thu 26 Mar 2026 00:01:17 +0000
Manifest this update: Thu 26 Mar 2026 00:01:17 +0000
Manifest next update: Fri 27 Mar 2026 00:01:17 +0000
Files and hashes: 1: A7blUAR8M2twO1WZriuysPCl_Ns.roa (hash: LBRnuKsEeUakJqD77ZNf+zyWsZ1gWUpfDWeWrVr+1Oc=)
2: tSU8JVLUQD9DuDwl52IjjfEtroE.crl (hash: t3oXdRlig1/P8ekE72+D0eU8Dil9UTLGJYZlMd/4lgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:07:04:de:0b:6c:b9:74:d3:a3:72:d8:b6:f0:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5253c2552d4403f43b83c25e762238df12dae81
Validity
Not Before: Mar 26 00:01:17 2026 GMT
Not After : Mar 27 00:01:17 2026 GMT
Subject: CN=6cd7406125876fe79ef007be8f23a09e3e6088b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e9:bb:9d:15:fa:45:a1:96:e5:34:fc:29:91:
ed:e2:cd:e2:9b:40:18:2e:d5:80:de:cc:a3:1a:5c:
e0:88:4b:bd:14:da:57:07:2c:7e:67:f3:58:46:a7:
48:00:f2:95:29:6b:b5:16:b0:6e:38:b5:99:cb:b4:
58:75:f1:c4:9c:7b:84:32:a5:41:0c:ce:7a:6f:4d:
5b:2d:62:1c:cd:e7:41:7a:cb:c6:dc:89:6f:87:d6:
a0:11:b9:46:e6:d5:85:bb:99:3b:4e:d4:06:d4:58:
46:3c:97:b8:38:54:77:55:84:b8:5e:61:fe:18:ac:
09:d5:cc:cc:51:24:b2:81:27:71:d8:34:36:14:dd:
07:14:17:33:c2:b5:be:ab:14:de:45:a4:5b:c2:5a:
31:9d:fe:ba:e9:b2:5e:fa:5a:10:60:0f:dd:af:a6:
ca:c7:e7:37:b3:72:db:9e:60:69:58:59:64:99:eb:
4c:ab:99:f7:2a:eb:e6:4d:7b:34:c4:fd:ef:4d:78:
35:3e:b6:df:28:6d:24:7b:a7:41:0f:a3:07:2b:29:
39:8a:f8:69:04:8c:0a:0e:75:85:4f:50:91:f5:54:
bc:8d:5d:bb:c1:e5:98:64:d1:16:a7:44:1e:12:71:
cf:e9:99:cf:e0:4d:89:08:6c:4a:b2:0a:a1:56:70:
c2:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D7:40:61:25:87:6F:E7:9E:F0:07:BE:8F:23:A0:9E:3E:60:88:B1
X509v3 Authority Key Identifier:
keyid:B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:43:64:fc:5a:73:86:77:46:97:67:3a:31:6c:9f:8a:15:3e:
40:db:c5:f1:e3:ae:86:ce:3b:b4:56:e5:11:65:4c:f7:00:9f:
ab:8c:8b:52:23:2e:24:3c:d8:82:1c:de:12:b3:73:03:4b:1c:
9a:cc:8c:d7:ac:0e:78:8b:be:5d:05:b8:bb:3d:85:17:36:5c:
72:c0:35:1d:dc:06:33:db:82:d7:2a:23:fb:a2:98:9a:a1:30:
3f:37:9f:f1:a7:32:b7:cf:58:11:bd:94:97:25:0c:b1:4b:16:
b6:b6:d0:79:4f:45:ff:28:95:8a:f4:bb:49:55:58:20:43:5a:
66:b7:b6:2a:91:74:3e:89:03:a3:d7:66:8a:f6:b6:eb:fc:11:
27:41:dd:d4:64:4f:06:b3:34:17:88:00:de:0f:1e:1d:c5:24:
93:8e:75:5b:4e:6d:92:4d:23:30:67:21:15:de:95:47:bd:c1:
60:ee:4c:15:6c:b6:d0:7a:bd:e1:09:a2:e0:51:b6:9a:ca:dc:
41:70:26:4f:b4:3e:ad:4a:ea:b8:05:4d:b6:da:48:54:84:de:
2b:c9:12:0e:02:fc:0d:9a:5f:91:86:3a:e8:2f:25:d9:48:7e:
5d:5f:94:4f:d9:a7:a8:8a:0b:f1:55:58:ea:80:8a:3b:1f:6c:
25:d6:13:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ncgcE3gtsuXTTo3LYtvDEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1MjUzYzI1NTJkNDQwM2Y0M2I4M2MyNWU3NjIyMzhkZjEy
ZGFlODEwHhcNMjYwMzI2MDAwMTE3WhcNMjYwMzI3MDAwMTE3WjAzMTEwLwYDVQQD
Eyg2Y2Q3NDA2MTI1ODc2ZmU3OWVmMDA3YmU4ZjIzYTA5ZTNlNjA4OGIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkOm7nRX6RaGW5TT8KZHt4s3im0AY
LtWA3syjGlzgiEu9FNpXByx+Z/NYRqdIAPKVKWu1FrBuOLWZy7RYdfHEnHuEMqVB
DM56b01bLWIczedBesvG3Ilvh9agEblG5tWFu5k7TtQG1FhGPJe4OFR3VYS4XmH+
GKwJ1czMUSSygSdx2DQ2FN0HFBczwrW+qxTeRaRbwloxnf666bJe+loQYA/dr6bK
x+c3s3LbnmBpWFlkmetMq5n3KuvmTXs0xP3vTXg1PrbfKG0ke6dBD6MHKyk5ivhp
BIwKDnWFT1CR9VS8jV27weWYZNEWp0QeEnHP6ZnP4E2JCGxKsgqhVnDCSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGzXQGElh2/nnvAHvo8joJ4+YIixMB8GA1UdIwQY
MBaAFLUlPCVS1EA/Q7g8JediI43xLa6BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFNVOEpWTFVRRDlEdUR3bDUySWpqZkV0cm9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS84MjA5OGItMGM1My00ZGYyLThhMzIt
ZmJjMWUzZjdlOTJiLzEvdFNVOEpWTFVRRDlEdUR3bDUySWpqZkV0cm9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS84MjA5OGItMGM1My00ZGYyLThhMzItZmJjMWUzZjdlOTJi
LzEvdFNVOEpWTFVRRDlEdUR3bDUySWpqZkV0cm9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABkNk/Fpz
hndGl2c6MWyfihU+QNvF8eOuhs47tFblEWVM9wCfq4yLUiMuJDzYghzeErNzA0sc
msyM16wOeIu+XQW4uz2FFzZccsA1HdwGM9uC1yoj+6KYmqEwPzef8acyt89YEb2U
lyUMsUsWtrbQeU9F/yiVivS7SVVYIENaZre2KpF0PokDo9dmiva26/wRJ0Hd1GRP
BrM0F4gA3g8eHcUkk451W05tkk0jMGchFd6VR73BYO5MFWy20Hq94Qmi4FG2msrc
QXAmT7Q+rUrquAVNttpIVITeK8kSDgL8DZpfkYY66C8l2Uh+XV+UT9mnqIoL8VVY
6oCKOx9sJdYTQQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:28:57 2026 by rpki-client