Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
File: lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft (raw, json)
Hash identifier: qc2SvAMdG68gjhnA3Ki4HvGwQEDenxSPmjtKbq1SZOo=
Subject key identifier: 91:13:FC:C5:49:10:0A:E5:FB:4D:11:28:1D:9C:BF:91:38:83:FA:E0
Authority key identifier: 94:F8:BF:9F:30:55:27:52:15:08:69:7E:2E:AA:3B:E1:C7:A1:84:54
Certificate issuer: /CN=94f8bf9f305527521508697e2eaa3be1c7a18454
Certificate serial: 019D9B8761D9946F7FA07ADF1D3E62270FA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
Manifest number: 034E
Signing time: Fri 17 Apr 2026 13:00:34 +0000
Manifest this update: Fri 17 Apr 2026 13:00:34 +0000
Manifest next update: Sat 18 Apr 2026 13:00:34 +0000
Files and hashes: 1: P3bBBi_YBaE4cV_VtfNF8i696oo.roa (hash: y1a/3A3vOIwmjOY1TgiM92LxR/aRkfoi3hKdkrKBG6Q=)
2: ZXdyEyK3SaId4Xur9UCKxGCjI8c.roa (hash: zQ+cgbxBxeFyJgysTpnSUkOVuSjMGCgEsR1NJ1pLGCk=)
3: h-YNMPYuWy1o5GqwyMkM1NJmUSM.roa (hash: us18JsIOMphnH0kNot1ftkzW7XzyNG9dxD+IeSBCYOM=)
4: lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl (hash: Cm/tIT1LfdfK02z9ryFqkk6isxBezqWZcCOEhFNq6RY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:61:d9:94:6f:7f:a0:7a:df:1d:3e:62:27:0f:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94f8bf9f305527521508697e2eaa3be1c7a18454
Validity
Not Before: Apr 17 13:00:34 2026 GMT
Not After : Apr 18 13:00:34 2026 GMT
Subject: CN=9113fcc549100ae5fb4d11281d9cbf913883fae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f9:32:7f:0d:72:12:3a:56:29:61:f6:30:24:
ff:8d:e1:86:ce:07:0b:9e:99:d2:fc:02:eb:c9:e4:
aa:75:4f:54:b0:2f:16:66:83:72:94:3d:bf:fb:54:
fc:56:7d:48:c8:df:ee:f7:3e:38:60:71:6d:99:9b:
5a:a9:fc:09:ef:b0:9c:c2:0f:d2:8f:08:33:f6:17:
59:bc:89:08:9b:90:65:e2:38:a4:d5:b2:dd:ae:0a:
77:6b:db:47:48:4c:73:4e:6a:f6:55:cd:a0:ff:19:
ca:b5:c8:13:be:aa:98:24:02:72:80:1d:2d:36:1d:
01:b1:71:7b:d2:32:6a:7d:39:b8:d4:e3:65:e6:f6:
d7:ce:35:0e:ab:5e:1d:16:45:ce:c6:cb:dd:b0:bb:
d9:ce:1b:bb:c3:80:0e:4c:e8:e3:09:f8:0c:ce:ad:
38:64:ee:77:a0:23:16:3b:4c:d2:d7:57:ac:2a:e6:
7c:6a:cd:20:d9:d4:eb:47:0a:30:ca:c5:9a:75:19:
05:ac:85:cf:76:82:86:b7:14:f4:f8:d6:ee:73:78:
1d:98:fc:2f:94:ad:8d:7f:9f:f0:69:7a:3a:c3:68:
85:26:9c:bb:ea:47:94:24:63:41:3f:77:df:17:32:
80:b6:6e:7a:af:70:b2:cc:55:81:d7:a0:5c:2c:09:
81:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:13:FC:C5:49:10:0A:E5:FB:4D:11:28:1D:9C:BF:91:38:83:FA:E0
X509v3 Authority Key Identifier:
keyid:94:F8:BF:9F:30:55:27:52:15:08:69:7E:2E:AA:3B:E1:C7:A1:84:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e73e95-c3c9-49ae-a2d9-a7b85460f366/1/lPi_nzBVJ1IVCGl-Lqo74cehhFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:92:9e:49:bb:82:bc:51:a8:24:f5:bb:cb:db:7a:dc:3a:c1:
86:0a:23:bd:31:fa:51:6a:3e:60:e3:e4:94:b7:14:21:55:d8:
5a:9e:5a:f1:4f:21:47:0d:7a:82:c3:e6:db:fc:1d:8c:27:64:
c4:5c:30:97:3c:1d:e3:00:85:88:34:1d:2b:86:ec:5f:f7:44:
7c:85:97:ac:4a:9f:1a:e8:4c:7e:64:1a:4f:e0:d1:48:5e:10:
30:b7:77:ec:86:dd:72:ae:f0:4b:e4:a1:44:1c:22:f5:e0:a5:
b1:e1:39:47:5e:3d:13:e1:4b:13:28:a8:d6:32:3f:d3:09:6a:
d8:17:61:51:b4:f4:92:f1:97:83:d1:40:f9:32:2c:e6:c9:55:
e1:d8:08:c9:83:98:24:cb:1c:41:23:68:2e:75:81:5c:e0:ff:
a4:fb:ea:ec:0c:79:64:0a:75:d0:98:9b:25:1a:5b:4e:35:b4:
c2:75:b6:0a:75:5d:e1:d9:6e:9e:0a:e2:72:c9:3e:ce:13:12:
99:d7:82:35:0f:f2:ac:77:c4:15:29:54:54:b4:9d:72:53:35:
91:75:45:48:91:b3:ff:96:84:32:1d:2a:1a:b5:b8:a6:e5:db:
89:1f:47:aa:16:8b:51:4c:6d:ef:d5:fd:33:c0:f7:4b:57:91:
1c:b3:5a:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bh2HZlG9/oHrfHT5iJw+jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0ZjhiZjlmMzA1NTI3NTIxNTA4Njk3ZTJlYWEzYmUxYzdh
MTg0NTQwHhcNMjYwNDE3MTMwMDM0WhcNMjYwNDE4MTMwMDM0WjAzMTEwLwYDVQQD
Eyg5MTEzZmNjNTQ5MTAwYWU1ZmI0ZDExMjgxZDljYmY5MTM4ODNmYWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/kyfw1yEjpWKWH2MCT/jeGGzgcL
npnS/ALryeSqdU9UsC8WZoNylD2/+1T8Vn1IyN/u9z44YHFtmZtaqfwJ77Ccwg/S
jwgz9hdZvIkIm5Bl4jik1bLdrgp3a9tHSExzTmr2Vc2g/xnKtcgTvqqYJAJygB0t
Nh0BsXF70jJqfTm41ONl5vbXzjUOq14dFkXOxsvdsLvZzhu7w4AOTOjjCfgMzq04
ZO53oCMWO0zS11esKuZ8as0g2dTrRwowysWadRkFrIXPdoKGtxT0+Nbuc3gdmPwv
lK2Nf5/waXo6w2iFJpy76keUJGNBP3ffFzKAtm56r3CyzFWB16BcLAmB/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJET/MVJEArl+00RKB2cv5E4g/rgMB8GA1UdIwQY
MBaAFJT4v58wVSdSFQhpfi6qO+HHoYRUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFBpX256QlZKMUlWQ0dsLUxxbzc0Y2VoaEZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lNzNlOTUtYzNjOS00OWFlLWEyZDkt
YTdiODU0NjBmMzY2LzEvbFBpX256QlZKMUlWQ0dsLUxxbzc0Y2VoaEZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9lNzNlOTUtYzNjOS00OWFlLWEyZDktYTdiODU0NjBmMzY2
LzEvbFBpX256QlZKMUlWQ0dsLUxxbzc0Y2VoaEZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE5KeSbuC
vFGoJPW7y9t63DrBhgojvTH6UWo+YOPklLcUIVXYWp5a8U8hRw16gsPm2/wdjCdk
xFwwlzwd4wCFiDQdK4bsX/dEfIWXrEqfGuhMfmQaT+DRSF4QMLd37Ibdcq7wS+Sh
RBwi9eClseE5R149E+FLEyio1jI/0wlq2BdhUbT0kvGXg9FA+TIs5slV4dgIyYOY
JMscQSNoLnWBXOD/pPvq7Ax5ZAp10JibJRpbTjW0wnW2CnVd4dlungricsk+zhMS
mdeCNQ/yrHfEFSlUVLSdclM1kXVFSJGz/5aEMh0qGrW4puXbiR9HqhaLUUxt79X9
M8D3S1eRHLNa2A==
-----END CERTIFICATE-----
Generated at Fri Apr 17 16:33:39 2026 by rpki-client