Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
File: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft (raw, json)
Hash identifier: MwNRmX+n8qyzi5oO4ccXQ3psdGMsrT89Cx4gv/NnQhE=
Subject key identifier: FD:04:45:E1:CC:0D:5E:17:6D:A6:EF:05:B8:E5:D8:FA:74:78:CE:3D
Authority key identifier: B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
Certificate issuer: /CN=b56daa6f850414a13f650df094506628a46dc12f
Certificate serial: 019D2583C43A30D9AF2A815B1421D57F0B63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
Manifest number: 1386
Signing time: Wed 25 Mar 2026 15:01:25 +0000
Manifest this update: Wed 25 Mar 2026 15:01:25 +0000
Manifest next update: Thu 26 Mar 2026 15:01:25 +0000
Files and hashes: 1: 9ZDcnSAXCCTAiLQvuYv_ovjLcLM.asa (hash: knmR/uu+sixMgJUWyUdxpL/g/5MBZ8SeapJSPjVWp10=)
2: Dj17YO7HbdYhrlszRZcVGHooOSk.asa (hash: VPbBekLjuZ5VGctqJAL3rNUq/TMi3GHdtgrxOZNiX2M=)
3: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl (hash: fsLJLinaOPLr+7Ov9TG6X5c6vKA9g6FIVULye2E9ICY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:c4:3a:30:d9:af:2a:81:5b:14:21:d5:7f:0b:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56daa6f850414a13f650df094506628a46dc12f
Validity
Not Before: Mar 25 15:01:25 2026 GMT
Not After : Mar 26 15:01:25 2026 GMT
Subject: CN=fd0445e1cc0d5e176da6ef05b8e5d8fa7478ce3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3a:fe:6c:01:15:73:da:fc:9b:aa:3d:35:f3:
21:52:04:1a:89:c0:97:57:19:11:c7:a6:d5:6a:62:
14:70:ff:26:b3:f9:29:97:2d:21:ff:d2:c6:90:ca:
59:59:f5:d8:40:92:26:d5:bf:92:f3:0a:ad:3e:40:
f1:7a:1e:ea:8b:1e:ab:72:6f:b4:3e:5a:f8:d9:1f:
c6:ab:b4:66:04:ce:36:e4:48:1e:f3:e5:2c:23:22:
b0:2a:2d:38:aa:82:7f:a7:35:2a:9b:9f:6a:7c:fb:
1e:06:4c:d9:b1:18:8a:ba:43:e3:6f:8d:25:ff:3b:
0b:62:c6:e5:5c:b1:39:4e:dc:6c:0f:3b:23:9c:be:
de:a8:a7:8f:a7:dc:b5:2c:59:e7:54:64:81:00:2a:
7f:83:74:9c:96:44:cc:3a:e3:2e:9f:68:8a:36:2c:
04:28:b1:4b:06:3b:70:07:cc:0f:be:83:75:4a:07:
b5:05:2c:35:37:6b:3f:18:a6:d7:c7:31:38:ba:bb:
8d:2f:8d:d0:13:45:df:07:01:19:0f:dc:f1:ff:b2:
ac:35:f5:c2:b8:5e:c6:71:c9:d2:d3:dd:8f:bd:56:
07:b3:2f:55:58:58:5a:1e:f7:7e:48:a1:27:c1:79:
5e:ce:27:b4:1c:0f:a3:25:13:95:f7:28:cd:3b:1f:
d5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:04:45:E1:CC:0D:5E:17:6D:A6:EF:05:B8:E5:D8:FA:74:78:CE:3D
X509v3 Authority Key Identifier:
keyid:B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:72:ba:8d:52:aa:c0:aa:c5:61:cc:0f:0d:12:b6:e9:37:df:
42:57:f7:89:91:a8:ed:44:cf:3d:70:8c:b6:ee:cf:9b:6f:fe:
93:8e:0e:0d:ef:87:d1:c1:22:a0:04:f9:7a:0d:a9:e7:97:0f:
23:e4:b2:12:71:1c:40:08:ab:2a:c3:72:63:e8:10:0d:01:d5:
c9:fe:40:76:f9:46:73:53:36:6f:52:45:ee:64:27:9b:de:11:
10:54:11:06:31:76:1a:a7:29:f4:7c:b0:3a:a1:3e:4c:07:58:
48:fa:e0:cd:79:05:e7:0b:be:1e:52:81:8f:e1:e6:13:e2:d5:
f1:7c:b2:12:b2:17:a4:c8:75:2b:19:b5:c2:1d:6d:62:0c:f0:
37:a0:a0:d7:96:ee:8f:5c:6b:d3:0b:03:09:ca:cd:03:26:97:
37:88:2e:5a:60:a7:ae:8a:9e:76:cc:67:88:1f:a0:52:88:9b:
4f:a4:25:51:38:5a:3d:c5:89:67:a6:5e:e4:44:90:f7:88:1e:
2d:4f:ff:6a:ab:d7:f7:b4:94:60:69:07:96:e3:a6:27:72:d6:
1c:45:b9:fe:1d:5f:6a:91:15:2a:aa:9e:a8:1f:eb:35:40:21:
52:65:b8:4f:1b:7c:ac:27:39:20:6d:9d:0e:b8:37:ee:c0:30:
e0:6e:cb:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0lg8Q6MNmvKoFbFCHVfwtjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NmRhYTZmODUwNDE0YTEzZjY1MGRmMDk0NTA2NjI4YTQ2
ZGMxMmYwHhcNMjYwMzI1MTUwMTI1WhcNMjYwMzI2MTUwMTI1WjAzMTEwLwYDVQQD
EyhmZDA0NDVlMWNjMGQ1ZTE3NmRhNmVmMDViOGU1ZDhmYTc0NzhjZTNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyDr+bAEVc9r8m6o9NfMhUgQaicCX
VxkRx6bVamIUcP8ms/kply0h/9LGkMpZWfXYQJIm1b+S8wqtPkDxeh7qix6rcm+0
Plr42R/Gq7RmBM425Ege8+UsIyKwKi04qoJ/pzUqm59qfPseBkzZsRiKukPjb40l
/zsLYsblXLE5TtxsDzsjnL7eqKePp9y1LFnnVGSBACp/g3SclkTMOuMun2iKNiwE
KLFLBjtwB8wPvoN1Sge1BSw1N2s/GKbXxzE4uruNL43QE0XfBwEZD9zx/7KsNfXC
uF7GccnS092PvVYHsy9VWFhaHvd+SKEnwXlezie0HA+jJROV9yjNOx/VvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP0EReHMDV4XbabvBbjl2Pp0eM49MB8GA1UdIwQY
MBaAFLVtqm+FBBShP2UN8JRQZiikbcEvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFcycWI0VUVGS0VfWlEzd2xGQm1LS1J0d1M4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8zYmVlMDEtMWZiOC00N2UyLWI3NjYt
ZmUwYTJhYzA4NjlmLzEvdFcycWI0VUVGS0VfWlEzd2xGQm1LS1J0d1M4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi8zYmVlMDEtMWZiOC00N2UyLWI3NjYtZmUwYTJhYzA4Njlm
LzEvdFcycWI0VUVGS0VfWlEzd2xGQm1LS1J0d1M4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYXK6jVKq
wKrFYcwPDRK26TffQlf3iZGo7UTPPXCMtu7Pm2/+k44ODe+H0cEioAT5eg2p55cP
I+SyEnEcQAirKsNyY+gQDQHVyf5AdvlGc1M2b1JF7mQnm94REFQRBjF2Gqcp9Hyw
OqE+TAdYSPrgzXkF5wu+HlKBj+HmE+LV8XyyErIXpMh1Kxm1wh1tYgzwN6Cg15bu
j1xr0wsDCcrNAyaXN4guWmCnroqedsxniB+gUoibT6QlUThaPcWJZ6Ze5ESQ94ge
LU//aqvX97SUYGkHluOmJ3LWHEW5/h1fapEVKqqeqB/rNUAhUmW4Txt8rCc5IG2d
Drg37sAw4G7LUQ==
-----END CERTIFICATE-----
Generated at Wed Mar 25 21:25:39 2026 by rpki-client