Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json)
Hash identifier: HJsYPJYQ4KM1qIeHS6b8t7Yc3VsBBPnQOZ9ONJdvj7U=
Subject key identifier: 53:BC:53:2D:32:0C:F6:FD:7B:4B:B3:AF:49:1D:54:E2:72:00:C9:6D
Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Certificate serial: 019D9E1AC554B5EE622421606E0C1D95B578
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
Manifest number: 12AF
Signing time: Sat 18 Apr 2026 01:00:47 +0000
Manifest this update: Sat 18 Apr 2026 01:00:47 +0000
Manifest next update: Sun 19 Apr 2026 01:00:47 +0000
Files and hashes: 1: 0RKDNEhHY3U7JF4bDR-bWWyiJjU.roa (hash: 49fHIUMiegzFY7JDd1vv16iA2bhJSfLTshnAhqZJFTQ=)
2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: zwXvsAiX36OesUkkFMlMgODt4ShZFd5VugYsAY7X9/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9e:1a:c5:54:b5:ee:62:24:21:60:6e:0c:1d:95:b5:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Validity
Not Before: Apr 18 01:00:47 2026 GMT
Not After : Apr 19 01:00:47 2026 GMT
Subject: CN=53bc532d320cf6fd7b4bb3af491d54e27200c96d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:15:4b:47:f7:a2:b5:a8:9b:ab:36:90:22:85:
89:df:be:ee:43:ca:e2:51:2f:b7:09:64:f4:7f:c7:
70:7a:96:c9:80:33:cc:a6:2f:c8:3e:13:46:34:11:
d4:ca:24:50:98:c4:5b:d3:d5:88:e5:98:4f:90:17:
bd:6a:79:a9:35:71:72:a5:d3:00:4f:a8:f7:9a:f7:
ac:0b:de:7f:43:5b:5b:69:2f:42:27:dd:ac:2b:0d:
15:73:29:07:9d:5b:c2:05:67:7a:db:dc:dc:f1:85:
db:97:c1:0c:53:8b:19:20:e2:b0:17:a8:ba:a9:7a:
00:3f:8e:f4:96:97:38:92:67:b2:5a:f9:84:eb:2f:
ae:01:94:66:69:96:0c:11:55:36:dc:b1:c5:07:4c:
13:1c:b8:e1:cf:9d:4e:dd:ac:51:f4:45:f8:61:57:
fc:91:a0:df:6a:ec:6a:e0:c2:6d:f0:21:05:11:27:
0c:66:3f:e5:9c:ec:36:e9:75:61:ec:41:e5:0c:41:
02:08:97:c2:c3:55:a8:92:43:04:a6:78:3a:ff:67:
45:c7:7e:4d:25:e1:69:73:9f:44:ce:2b:36:8d:e3:
0f:ef:7e:f9:38:0d:36:3f:e7:fe:85:e5:28:aa:f7:
fd:49:31:c2:c4:1e:29:38:58:d2:8b:f9:98:1f:63:
6a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BC:53:2D:32:0C:F6:FD:7B:4B:B3:AF:49:1D:54:E2:72:00:C9:6D
X509v3 Authority Key Identifier:
keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:d6:24:0b:8d:9d:b7:2e:6c:2d:44:cb:f8:81:13:44:7f:73:
fd:42:e1:e1:d2:7b:72:6d:a5:28:d3:7f:ca:59:3c:e4:74:7b:
57:81:a9:ec:6a:ad:da:78:57:96:e0:54:bb:19:0a:72:51:c1:
2d:74:79:c1:2a:d8:66:1b:32:a0:3d:69:dc:4c:7a:f6:b5:13:
63:22:b3:f8:b0:aa:25:a8:d9:a3:ff:31:b4:81:cb:f4:55:4a:
3e:39:1b:2d:c2:fc:89:23:6c:b4:df:1d:d3:83:59:3f:fb:30:
89:bf:17:66:21:8d:3c:e3:15:77:95:42:6b:fa:ef:ca:d1:0c:
3b:30:10:5b:6a:97:2b:73:08:e5:c6:d9:c3:50:d4:6c:90:75:
b3:7c:90:8b:3e:5c:00:c9:13:e0:ca:c2:23:6c:a9:38:85:54:
f1:14:d6:de:f2:65:e9:98:25:b3:ca:03:6e:29:69:a2:87:e9:
aa:69:53:e6:05:7d:04:9a:9e:95:5b:e9:b7:74:ef:59:d2:8c:
5d:b1:0e:26:30:7d:51:0f:5e:fa:88:56:f5:d8:67:bc:35:0a:
72:9e:4d:27:43:f8:2c:6f:56:d0:16:36:da:89:17:ab:d5:70:
f9:df:b0:c0:7e:a5:84:0e:f9:05:96:6c:60:12:2c:91:93:67:
95:07:74:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2eGsVUte5iJCFgbgwdlbV4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0MzRlZGJlMWI0MTAxYjI4YWJlMjMyZjJiY2YyYTAxNDg5
NzgyNWEwHhcNMjYwNDE4MDEwMDQ3WhcNMjYwNDE5MDEwMDQ3WjAzMTEwLwYDVQQD
Eyg1M2JjNTMyZDMyMGNmNmZkN2I0YmIzYWY0OTFkNTRlMjcyMDBjOTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxVLR/eitaibqzaQIoWJ377uQ8ri
US+3CWT0f8dwepbJgDPMpi/IPhNGNBHUyiRQmMRb09WI5ZhPkBe9anmpNXFypdMA
T6j3mvesC95/Q1tbaS9CJ92sKw0VcykHnVvCBWd629zc8YXbl8EMU4sZIOKwF6i6
qXoAP470lpc4kmeyWvmE6y+uAZRmaZYMEVU23LHFB0wTHLjhz51O3axR9EX4YVf8
kaDfauxq4MJt8CEFEScMZj/lnOw26XVh7EHlDEECCJfCw1WokkMEpng6/2dFx35N
JeFpc59Ezis2jeMP7375OA02P+f+heUoqvf9STHCxB4pOFjSi/mYH2NqVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFO8Uy0yDPb9e0uzr0kdVOJyAMltMB8GA1UdIwQY
MBaAFEQ07b4bQQGyir4jLyvPKgFIl4JaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC82MzlmNjQtMWRmMS00NmQ1LWFkZDkt
MTBjYWY1NDk4NmZmLzEvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC82MzlmNjQtMWRmMS00NmQ1LWFkZDktMTBjYWY1NDk4NmZm
LzEvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOdYkC42d
ty5sLUTL+IETRH9z/ULh4dJ7cm2lKNN/ylk85HR7V4Gp7Gqt2nhXluBUuxkKclHB
LXR5wSrYZhsyoD1p3Ex69rUTYyKz+LCqJajZo/8xtIHL9FVKPjkbLcL8iSNstN8d
04NZP/swib8XZiGNPOMVd5VCa/rvytEMOzAQW2qXK3MI5cbZw1DUbJB1s3yQiz5c
AMkT4MrCI2ypOIVU8RTW3vJl6Zgls8oDbilpoofpqmlT5gV9BJqelVvpt3TvWdKM
XbEOJjB9UQ9e+ohW9dhnvDUKcp5NJ0P4LG9W0BY22okXq9Vw+d+wwH6lhA75BZZs
YBIskZNnlQd0Fg==
-----END CERTIFICATE-----
Generated at Sat Apr 18 05:01:56 2026 by rpki-client