Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
File: USd7w4wS4ELt31bX519QVjxL0ic.mft (raw, json)
Hash identifier: t2dSUgu+3CiQC8MBNOoRHBN95BLk6ElX0nowBzeYp2E=
Subject key identifier: DB:F7:53:37:7D:EA:1A:58:42:86:9C:56:19:29:10:0C:86:44:62:2F
Authority key identifier: 51:27:7B:C3:8C:12:E0:42:ED:DF:56:D7:E7:5F:50:56:3C:4B:D2:27
Certificate issuer: /CN=51277bc38c12e042eddf56d7e75f50563c4bd227
Certificate serial: 019E1D2293E6706306A86583F7C72072797D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
Manifest number: 1903
Signing time: Tue 12 May 2026 17:01:05 +0000
Manifest this update: Tue 12 May 2026 17:01:05 +0000
Manifest next update: Wed 13 May 2026 17:01:05 +0000
Files and hashes: 1: D4QRrUObCGq3FWyTZQYsdDxIC-Y.asa (hash: f66FrX9VHylFdBsRAbYxdFz6/ASysid9BFIKkasqYLk=)
2: HVAKOChJvzlPOcqJ_ehcMgXUK9o.roa (hash: 2mWGKvxbtg/GycElX7B4p0Awmc5Qwctw5xexjAFCbUI=)
3: USd7w4wS4ELt31bX519QVjxL0ic.crl (hash: JtPgV/v2YR1ENPQplfd6dfi/VsPS2nSPYkRfd9aqaKA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:93:e6:70:63:06:a8:65:83:f7:c7:20:72:79:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51277bc38c12e042eddf56d7e75f50563c4bd227
Validity
Not Before: May 12 17:01:05 2026 GMT
Not After : May 13 17:01:05 2026 GMT
Subject: CN=dbf753377dea1a5842869c561929100c8644622f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0d:6e:59:a9:dc:ef:9d:b3:66:b0:e9:13:bd:
7a:00:dc:e6:1f:41:81:32:39:8f:be:f1:07:81:66:
68:61:18:1c:77:ec:a0:1e:01:80:c0:af:63:5f:43:
e8:0d:17:83:19:79:94:8f:05:49:9e:6a:b0:ae:69:
c4:93:97:c0:eb:c8:e0:78:5e:36:9c:f1:7f:57:04:
31:28:d2:09:93:f7:91:28:05:9a:6b:23:9d:44:96:
c1:e8:ce:68:76:9a:24:ce:77:3e:74:26:98:fc:a7:
80:50:d2:3a:cd:ca:fd:af:35:41:6f:e0:92:5b:10:
b7:45:07:cd:fc:c2:ef:85:0c:67:c6:fb:d5:17:f2:
a4:55:d6:22:04:59:fd:b0:a2:c9:a7:cd:9f:eb:1d:
a7:cd:40:9c:09:2c:ec:17:58:e0:5f:f9:96:19:73:
8e:bb:e1:5f:25:b5:83:0f:dc:ad:e5:30:d7:1e:c7:
09:e2:9d:80:46:9d:de:e4:fb:5c:2b:e7:01:66:4f:
17:43:72:9d:dc:28:3d:60:3b:87:42:9d:32:ff:49:
92:b9:3e:d2:01:a7:0e:50:06:48:8a:7b:bc:e6:6c:
9f:94:61:4d:ae:05:29:7d:db:df:cb:0c:a6:c1:45:
fb:7a:b6:7d:02:50:a3:75:f4:87:b6:25:9b:1b:1a:
8c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:F7:53:37:7D:EA:1A:58:42:86:9C:56:19:29:10:0C:86:44:62:2F
X509v3 Authority Key Identifier:
keyid:51:27:7B:C3:8C:12:E0:42:ED:DF:56:D7:E7:5F:50:56:3C:4B:D2:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:88:9f:6d:a9:1b:f7:e4:da:2b:ec:29:3f:a0:04:48:1b:81:
5c:13:f9:bf:0d:05:98:74:e7:ce:20:97:4b:96:54:d4:59:40:
83:dc:8d:c5:1f:53:bf:fd:7e:73:34:7d:aa:7a:e6:f0:95:33:
0f:da:09:3b:11:0c:da:4b:47:12:c9:ec:89:de:bc:d0:de:a2:
f9:60:74:d7:cc:2b:71:78:1e:50:da:05:43:ff:1e:e6:c8:99:
26:bc:07:93:0d:e2:29:69:2a:4f:44:49:78:fd:8a:30:6f:74:
84:0b:3b:aa:5f:c2:16:b2:56:a8:72:d0:2b:c2:d0:6e:58:f4:
80:35:6e:91:f1:ca:18:d5:8c:e5:92:ae:45:7d:fd:64:8e:6e:
cb:21:60:4c:f1:61:e8:a9:2e:25:88:f9:9c:df:a1:4f:43:ec:
8f:c4:84:c6:b6:00:a6:90:94:33:5a:f3:33:f3:82:cb:d2:c3:
53:04:9d:b1:71:02:0d:0d:fd:37:b6:2c:fd:5d:19:c5:86:71:
43:d8:3a:85:5e:d6:db:82:9a:18:65:5e:51:12:0a:11:11:a2:
98:1c:16:a2:1d:ca:ca:6e:4e:c1:0e:49:43:b2:6b:84:02:4f:
9d:ec:e6:8b:44:20:5a:34:e1:ab:ca:30:37:87:b0:f2:c7:79:
38:01:53:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dIpPmcGMGqGWD98cgcnl9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxMjc3YmMzOGMxMmUwNDJlZGRmNTZkN2U3NWY1MDU2M2M0
YmQyMjcwHhcNMjYwNTEyMTcwMTA1WhcNMjYwNTEzMTcwMTA1WjAzMTEwLwYDVQQD
EyhkYmY3NTMzNzdkZWExYTU4NDI4NjljNTYxOTI5MTAwYzg2NDQ2MjJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApA1uWanc752zZrDpE716ANzmH0GB
MjmPvvEHgWZoYRgcd+ygHgGAwK9jX0PoDReDGXmUjwVJnmqwrmnEk5fA68jgeF42
nPF/VwQxKNIJk/eRKAWaayOdRJbB6M5odpokznc+dCaY/KeAUNI6zcr9rzVBb+CS
WxC3RQfN/MLvhQxnxvvVF/KkVdYiBFn9sKLJp82f6x2nzUCcCSzsF1jgX/mWGXOO
u+FfJbWDD9yt5TDXHscJ4p2ARp3e5PtcK+cBZk8XQ3Kd3Cg9YDuHQp0y/0mSuT7S
AacOUAZIinu85myflGFNrgUpfdvfywymwUX7erZ9AlCjdfSHtiWbGxqMzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNv3Uzd96hpYQoacVhkpEAyGRGIvMB8GA1UdIwQY
MBaAFFEne8OMEuBC7d9W1+dfUFY8S9InMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVNkN3c0d1M0RUx0MzFiWDUxOVFWanhMMGljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS8zYmExNjAtZTk0NS00ZDU2LWIxMjkt
NTJjMTk3NThmYTE1LzEvVVNkN3c0d1M0RUx0MzFiWDUxOVFWanhMMGljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS8zYmExNjAtZTk0NS00ZDU2LWIxMjktNTJjMTk3NThmYTE1
LzEvVVNkN3c0d1M0RUx0MzFiWDUxOVFWanhMMGljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPoifbakb
9+TaK+wpP6AESBuBXBP5vw0FmHTnziCXS5ZU1FlAg9yNxR9Tv/1+czR9qnrm8JUz
D9oJOxEM2ktHEsnsid680N6i+WB018wrcXgeUNoFQ/8e5siZJrwHkw3iKWkqT0RJ
eP2KMG90hAs7ql/CFrJWqHLQK8LQblj0gDVukfHKGNWM5ZKuRX39ZI5uyyFgTPFh
6KkuJYj5nN+hT0Psj8SExrYAppCUM1rzM/OCy9LDUwSdsXECDQ39N7Ys/V0ZxYZx
Q9g6hV7W24KaGGVeURIKERGimBwWoh3Kym5OwQ5JQ7JrhAJPnezmi0QgWjThq8ow
N4ew8sd5OAFTFw==
-----END CERTIFICATE-----
Generated at Tue May 12 21:36:40 2026 by rpki-client