Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: S6ZoXjrjZTZHE21kqr7xSHxL/mgGBmw7LGje3ZpwIsw=
Subject key identifier: 54:97:AE:2F:72:5F:1E:77:87:E8:22:10:53:23:D5:71:CA:37:BA:7F
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 019DA3E648FF6F2BB0CEC48E7137011E83B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 0A46
Signing time: Sun 19 Apr 2026 04:01:11 +0000
Manifest this update: Sun 19 Apr 2026 04:01:11 +0000
Manifest next update: Mon 20 Apr 2026 04:01:11 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: JxqdFii7yP8ewF9MMoa54eFMlGGPGHU9zpmP9wXfRbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:e6:48:ff:6f:2b:b0:ce:c4:8e:71:37:01:1e:83:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: Apr 19 04:01:11 2026 GMT
Not After : Apr 20 04:01:11 2026 GMT
Subject: CN=5497ae2f725f1e7787e822105323d571ca37ba7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:85:a4:bb:8d:5b:46:57:1b:f8:d3:df:ff:b2:
11:e2:f4:28:15:ff:98:db:c8:f8:ec:8b:24:9e:34:
77:12:e9:50:f1:5e:6c:95:67:48:80:34:f5:7d:c7:
82:11:b2:a4:81:3e:cd:c2:ec:dd:f0:e1:90:82:8a:
03:c5:9e:f3:69:1a:89:37:27:20:fc:dc:36:ca:18:
76:3b:cd:c6:32:21:76:f1:c5:f0:23:51:08:26:17:
a3:35:e7:2d:cd:2e:13:4b:37:8b:c8:33:ad:34:a8:
3d:ab:ae:14:6b:72:eb:69:46:8a:32:d9:20:cd:7e:
7c:03:10:73:7d:a7:49:90:24:68:9d:33:bd:27:ec:
d7:57:3a:77:f0:6a:58:ca:67:47:d5:be:94:7c:e7:
86:20:40:bf:a7:ce:92:bf:b0:9c:bf:69:f5:4d:02:
45:cb:6d:a1:a5:40:c9:f0:e9:28:79:97:ba:c4:56:
29:2d:49:d3:89:6a:d4:23:e1:47:f6:9e:5d:fc:30:
66:aa:7c:4a:fc:6c:32:20:46:b2:57:d6:0f:4f:d8:
30:ec:3d:a3:3f:2e:e3:71:f9:e3:05:c1:97:c4:ee:
42:91:1c:93:1f:3f:7d:38:9b:1d:d2:49:6a:68:96:
ac:5a:fe:53:7c:1c:75:e2:30:30:f1:28:59:57:3d:
a4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:97:AE:2F:72:5F:1E:77:87:E8:22:10:53:23:D5:71:CA:37:BA:7F
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:f5:9d:89:c1:8e:4a:ed:31:22:18:e5:bf:1d:63:5b:5d:0c:
02:42:51:77:2b:4d:55:62:a9:92:12:e4:99:52:8e:f2:ed:ba:
17:a8:41:ba:78:57:de:ac:61:ec:ae:bd:ac:90:ab:a6:f2:9f:
eb:37:c1:69:43:e5:b2:30:95:bb:23:98:92:30:37:11:6c:cb:
02:ff:79:35:66:43:0e:c3:1e:37:ae:92:a2:02:ef:9b:3c:07:
cf:ac:d5:47:12:5a:39:d8:64:95:aa:ff:11:88:fe:9b:78:20:
ab:dd:db:2c:2c:87:66:34:bb:0d:67:db:f5:71:46:97:3c:b7:
ee:d9:76:15:27:ef:07:cc:ca:9c:c7:b3:f7:40:d2:4d:bd:6c:
3d:46:4a:00:a7:a6:a3:80:24:2b:7c:48:bf:c9:6b:41:19:0b:
0b:02:54:5b:5d:4f:c4:01:eb:4e:1d:de:a8:2f:fd:15:a8:a6:
45:dc:57:63:86:a5:49:4f:72:a7:b3:c2:45:23:b2:44:c5:f0:
90:30:54:5f:c3:b1:76:74:83:ae:f7:e9:0b:74:74:cd:0e:e0:
74:e0:ec:b8:14:40:93:c4:1e:88:5e:96:1c:1b:a9:ab:1b:53:
91:b1:b3:e6:80:46:78:1d:37:de:ab:aa:83:ae:d3:c7:82:91:
fe:7f:ca:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2j5kj/byuwzsSOcTcBHoO3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiZDk1MmJkNDBjZTA5NzNmOTEwNDExZjU5MmUzNmU5MDEz
NmMyZWEwHhcNMjYwNDE5MDQwMTExWhcNMjYwNDIwMDQwMTExWjAzMTEwLwYDVQQD
Eyg1NDk3YWUyZjcyNWYxZTc3ODdlODIyMTA1MzIzZDU3MWNhMzdiYTdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA04Wku41bRlcb+NPf/7IR4vQoFf+Y
28j47IsknjR3EulQ8V5slWdIgDT1fceCEbKkgT7Nwuzd8OGQgooDxZ7zaRqJNycg
/Nw2yhh2O83GMiF28cXwI1EIJhejNectzS4TSzeLyDOtNKg9q64Ua3LraUaKMtkg
zX58AxBzfadJkCRonTO9J+zXVzp38GpYymdH1b6UfOeGIEC/p86Sv7Ccv2n1TQJF
y22hpUDJ8OkoeZe6xFYpLUnTiWrUI+FH9p5d/DBmqnxK/GwyIEayV9YPT9gw7D2j
Py7jcfnjBcGXxO5CkRyTHz99OJsd0klqaJasWv5TfBx14jAw8ShZVz2k9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFSXri9yXx53h+giEFMj1XHKN7p/MB8GA1UdIwQY
MBaAFIvZUr1Azglz+RBBH1kuNukBNsLqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTlsU3ZVRE9DWFA1RUVFZldTNDI2UUUyd3VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS8zZWRiOGMtMTg1MC00ODhmLWFmZGYt
NWMyYWJlNTM5NGU2LzEvaTlsU3ZVRE9DWFA1RUVFZldTNDI2UUUyd3VvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS8zZWRiOGMtMTg1MC00ODhmLWFmZGYtNWMyYWJlNTM5NGU2
LzEvaTlsU3ZVRE9DWFA1RUVFZldTNDI2UUUyd3VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHvWdicGO
Su0xIhjlvx1jW10MAkJRdytNVWKpkhLkmVKO8u26F6hBunhX3qxh7K69rJCrpvKf
6zfBaUPlsjCVuyOYkjA3EWzLAv95NWZDDsMeN66SogLvmzwHz6zVRxJaOdhklar/
EYj+m3ggq93bLCyHZjS7DWfb9XFGlzy37tl2FSfvB8zKnMez90DSTb1sPUZKAKem
o4AkK3xIv8lrQRkLCwJUW11PxAHrTh3eqC/9FaimRdxXY4alSU9yp7PCRSOyRMXw
kDBUX8OxdnSDrvfpC3R0zQ7gdODsuBRAk8QeiF6WHBupqxtTkbGz5oBGeB033quq
g67Tx4KR/n/KMw==
-----END CERTIFICATE-----
Generated at Sun Apr 19 08:44:37 2026 by rpki-client