Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft
File: u41koNwhmWscmeaMyVFpTik-3v4.mft (raw, json)
Hash identifier: l4z/BWMTzJQH72+4KREE4KD38xCd4EVf/AZVkYM0eSM=
Subject key identifier: 69:9B:38:C9:E5:0F:3E:50:6F:C9:FF:A9:BA:D5:2F:75:C9:54:75:E9
Authority key identifier: BB:8D:64:A0:DC:21:99:6B:1C:99:E6:8C:C9:51:69:4E:29:3E:DE:FE
Certificate issuer: /CN=bb8d64a0dc21996b1c99e68cc951694e293edefe
Certificate serial: 019D273B2E771859E59BD7F8844E3310251C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft
Manifest number: 1890
Signing time: Wed 25 Mar 2026 23:01:22 +0000
Manifest this update: Wed 25 Mar 2026 23:01:22 +0000
Manifest next update: Thu 26 Mar 2026 23:01:22 +0000
Files and hashes: 1: 6wCR-IXi-d6mFq9coQKBvKcWKb8.roa (hash: 3CTCR/QkDS3QC7l1TMcETE6DIffI4EDmk47oroP7Oco=)
2: Wve6Gpo7jKUoWkkK-ID2jmyV7c4.roa (hash: 1lWZa+k/0zeWIBYNmCvAje+cs/RGX75v0KzNg1cs52k=)
3: u41koNwhmWscmeaMyVFpTik-3v4.crl (hash: j5qUGBPMI9iUAr+8T3bkoRAEOzLQdfP7hZUuQEzJeUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft
rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:2e:77:18:59:e5:9b:d7:f8:84:4e:33:10:25:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8d64a0dc21996b1c99e68cc951694e293edefe
Validity
Not Before: Mar 25 23:01:22 2026 GMT
Not After : Mar 26 23:01:22 2026 GMT
Subject: CN=699b38c9e50f3e506fc9ffa9bad52f75c95475e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fa:44:54:29:81:9e:77:96:3f:bd:80:5d:82:
46:0b:1e:f5:ad:d5:12:e7:15:83:52:44:0f:d9:14:
22:8d:c1:b1:65:49:94:15:00:52:a4:85:16:20:7c:
6e:22:dd:c7:34:1c:2b:a3:6e:01:a3:b9:18:6e:1f:
df:05:90:3a:82:b3:66:03:28:46:e3:17:0a:fb:25:
21:60:cb:3f:a5:4f:f8:a6:d4:f6:18:13:2f:a9:16:
8b:29:74:08:bf:59:f0:ef:38:7a:0d:08:f9:1c:13:
3e:90:fd:3a:f2:c7:a5:38:a7:6b:86:e2:72:11:a2:
c5:27:34:85:0f:0e:5a:58:e0:81:a4:c2:a0:0f:0d:
62:4b:4b:4e:7d:2f:a1:f6:42:4a:55:89:a9:76:8a:
74:6e:2d:af:df:bc:97:b5:5d:10:5a:24:ee:75:07:
9c:18:19:e0:9f:1a:ab:0a:a0:83:90:71:80:8d:97:
23:3a:e3:e9:81:db:3f:8e:2f:0d:d1:e1:d8:13:ec:
d0:41:da:c0:8f:64:48:a4:50:d8:a5:17:5c:2c:81:
4b:08:92:e5:6d:af:dc:d1:fe:07:cc:36:58:cc:30:
4e:e4:2c:5d:88:16:80:a3:56:21:95:d0:f1:06:82:
60:8a:af:1c:b1:ba:98:8f:44:73:db:d5:a7:de:51:
c2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:9B:38:C9:E5:0F:3E:50:6F:C9:FF:A9:BA:D5:2F:75:C9:54:75:E9
X509v3 Authority Key Identifier:
keyid:BB:8D:64:A0:DC:21:99:6B:1C:99:E6:8C:C9:51:69:4E:29:3E:DE:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:72:a5:40:c1:cf:45:11:ec:e3:17:a6:ac:ea:a8:6e:d7:74:
6e:e4:58:71:13:eb:b5:28:10:b1:21:f2:50:48:ad:70:38:5a:
54:53:af:f5:97:e7:b2:74:ef:f9:2d:fa:0e:62:02:80:72:9b:
08:fe:5f:9d:1c:35:69:23:7b:6e:c8:4a:7d:8f:bc:d0:17:c7:
43:b8:93:3d:cb:67:4f:fe:a5:fb:d8:02:6f:03:17:d6:0e:70:
c7:50:26:38:b5:71:55:5c:23:56:9a:53:1f:26:fa:c2:67:cb:
9f:44:4f:22:d9:8b:49:09:cb:ac:74:0f:b9:a0:49:d6:31:cb:
f8:8a:d1:b6:f5:06:68:c2:10:0b:46:59:87:ec:d8:f7:5c:45:
09:3b:14:d8:5b:fb:a2:cb:8a:f9:2a:6d:3c:06:4f:ad:82:0d:
57:e4:eb:37:13:0e:cf:b2:3c:fa:c9:07:a2:7d:17:98:fd:d1:
ab:5d:ac:08:86:cf:bf:f2:22:54:5c:11:df:d8:02:12:8f:68:
b1:db:b4:fa:ea:4f:69:5a:34:50:1b:47:c1:00:45:49:bd:d1:
4c:3b:88:de:50:6e:87:95:ec:be:ee:47:8c:ef:a1:2c:e5:b7:
78:fa:27:9d:72:81:00:8a:75:ca:54:3a:22:2b:d5:39:c4:18:
9e:97:29:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOy53GFnlm9f4hE4zECUcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiOGQ2NGEwZGMyMTk5NmIxYzk5ZTY4Y2M5NTE2OTRlMjkz
ZWRlZmUwHhcNMjYwMzI1MjMwMTIyWhcNMjYwMzI2MjMwMTIyWjAzMTEwLwYDVQQD
Eyg2OTliMzhjOWU1MGYzZTUwNmZjOWZmYTliYWQ1MmY3NWM5NTQ3NWU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvpEVCmBnneWP72AXYJGCx71rdUS
5xWDUkQP2RQijcGxZUmUFQBSpIUWIHxuIt3HNBwro24Bo7kYbh/fBZA6grNmAyhG
4xcK+yUhYMs/pU/4ptT2GBMvqRaLKXQIv1nw7zh6DQj5HBM+kP068selOKdrhuJy
EaLFJzSFDw5aWOCBpMKgDw1iS0tOfS+h9kJKVYmpdop0bi2v37yXtV0QWiTudQec
GBngnxqrCqCDkHGAjZcjOuPpgds/ji8N0eHYE+zQQdrAj2RIpFDYpRdcLIFLCJLl
ba/c0f4HzDZYzDBO5CxdiBaAo1YhldDxBoJgiq8csbqYj0Rz29Wn3lHCKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGmbOMnlDz5Qb8n/qbrVL3XJVHXpMB8GA1UdIwQY
MBaAFLuNZKDcIZlrHJnmjMlRaU4pPt7+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTQxa29Od2htV3NjbWVhTXlWRnBUaWstM3Y0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8yMjAzMTgtNDZmMS00ZWJmLWE3OTUt
ZGQ0YTIxN2Q2MDZiLzEvdTQxa29Od2htV3NjbWVhTXlWRnBUaWstM3Y0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC8yMjAzMTgtNDZmMS00ZWJmLWE3OTUtZGQ0YTIxN2Q2MDZi
LzEvdTQxa29Od2htV3NjbWVhTXlWRnBUaWstM3Y0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh3KlQMHP
RRHs4xemrOqobtd0buRYcRPrtSgQsSHyUEitcDhaVFOv9ZfnsnTv+S36DmICgHKb
CP5fnRw1aSN7bshKfY+80BfHQ7iTPctnT/6l+9gCbwMX1g5wx1AmOLVxVVwjVppT
Hyb6wmfLn0RPItmLSQnLrHQPuaBJ1jHL+IrRtvUGaMIQC0ZZh+zY91xFCTsU2Fv7
osuK+SptPAZPrYINV+TrNxMOz7I8+skHon0XmP3Rq12sCIbPv/IiVFwR39gCEo9o
sdu0+upPaVo0UBtHwQBFSb3RTDuI3lBuh5Xsvu5HjO+hLOW3ePonnXKBAIp1ylQ6
IivVOcQYnpcpuw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 08:55:55 2026 by rpki-client