Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json)
Hash identifier: bqhRGMSEESspbbU8hgQTgF6V3ERUqE+9pvvhJQTlb7w=
Subject key identifier: 0D:F8:32:7E:E8:A8:A2:C9:1B:B1:22:42:0D:AE:88:E8:D2:36:C6:FB
Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Certificate serial: 019D9818C14E87F460D14AC0B96F6EF57113
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
Manifest number: 056A
Signing time: Thu 16 Apr 2026 21:00:52 +0000
Manifest this update: Thu 16 Apr 2026 21:00:52 +0000
Manifest next update: Fri 17 Apr 2026 21:00:52 +0000
Files and hashes: 1: WmDNL-b0WkRscYpfEnZaGcaTcFM.roa (hash: vFHl+C0H692uAua09x2J70xulx0PssETV1wVHPp2xHA=)
2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: Gmkv23PlJG6XIJTmewQFggo6YNxZk4yUnio512NiRak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:c1:4e:87:f4:60:d1:4a:c0:b9:6f:6e:f5:71:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Validity
Not Before: Apr 16 21:00:52 2026 GMT
Not After : Apr 17 21:00:52 2026 GMT
Subject: CN=0df8327ee8a8a2c91bb122420dae88e8d236c6fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bd:69:ad:50:19:47:87:57:30:bb:70:77:b8:
52:4d:dc:a2:f3:d8:f2:f9:d5:f4:9d:6e:af:aa:37:
54:e6:e2:98:74:32:b3:36:61:8c:78:ed:b0:ae:1e:
44:a0:d1:22:10:89:b5:cd:96:de:2b:37:17:ca:01:
71:84:d2:be:3b:3e:6f:f6:e1:78:b8:47:db:f0:0c:
ce:17:d0:06:fa:e5:2c:32:2d:6a:7e:fb:ab:ac:1c:
ac:7a:3b:69:0f:34:93:4a:3d:38:21:ab:e3:42:e0:
a1:1f:5f:4d:e4:14:e6:b1:4d:58:57:1d:c0:f2:8e:
35:02:d3:b0:1c:79:7d:c0:4f:35:f5:2c:79:99:4a:
a8:b3:b9:09:72:7b:75:47:53:92:5f:d0:f3:5d:cf:
9a:f5:59:74:8d:98:91:ce:ad:51:8b:dc:3b:7b:e9:
c1:87:d0:c4:d3:e7:0c:c6:35:97:84:df:ec:8d:f0:
54:ca:7d:f7:8b:34:f8:a7:a2:68:5f:5d:0b:fc:22:
0f:c9:28:40:ef:e6:4a:13:8f:0f:5b:3f:65:b1:d4:
e0:1e:e5:59:e2:74:62:b2:35:46:c2:d5:5c:8c:dd:
4a:b5:fb:ce:1d:d7:d7:d4:8e:45:a8:18:1f:3d:04:
9d:75:ae:f0:ad:66:80:56:27:80:c1:01:b7:67:ec:
a5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F8:32:7E:E8:A8:A2:C9:1B:B1:22:42:0D:AE:88:E8:D2:36:C6:FB
X509v3 Authority Key Identifier:
keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:32:d2:8a:41:d8:eb:db:7d:3a:c7:e9:42:94:c4:50:70:eb:
05:6d:2c:b0:16:9d:6b:d1:c3:ef:29:1b:a3:d7:90:c9:b9:73:
64:8a:cc:be:10:fa:73:c5:dd:f4:a4:dc:fe:30:5b:55:c1:25:
00:a7:1d:1c:25:92:5d:34:62:3a:bc:c5:10:0f:db:c8:01:7b:
41:70:00:73:39:6e:7f:3a:21:e9:3b:35:34:88:c4:15:fc:99:
27:00:d1:36:7f:93:77:43:9f:b8:35:2c:d7:95:64:6c:87:7c:
f1:e3:f6:2b:6c:45:98:5c:42:39:9e:f5:5b:10:ea:30:a1:ff:
0e:f5:51:87:f4:f1:79:2c:a0:24:38:9b:21:e6:36:bd:0c:a1:
40:28:d5:11:6f:c7:95:f0:68:db:2c:73:42:3c:b7:9a:03:eb:
d6:d0:98:26:c4:13:27:92:80:49:80:47:1e:34:c4:69:f2:40:
d1:a8:e2:0e:b5:55:00:78:9a:04:cc:32:ce:fa:2d:bb:31:3b:
74:aa:5b:92:35:5b:ed:62:04:d1:1f:d2:27:91:0a:a2:52:1e:
91:7f:ea:91:fd:af:1b:67:5f:5d:bb:49:21:81:ca:9c:22:57:
08:4b:02:36:17:50:c4:67:e8:02:8a:4c:09:14:e5:29:9e:70:
e0:dc:62:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2YGMFOh/Rg0UrAuW9u9XETMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyOGVmMWY0Zjg4Mjc4ZjRkZjE5ZTczZTMzODFjZWNkNzhl
MDY5YzEwHhcNMjYwNDE2MjEwMDUyWhcNMjYwNDE3MjEwMDUyWjAzMTEwLwYDVQQD
EygwZGY4MzI3ZWU4YThhMmM5MWJiMTIyNDIwZGFlODhlOGQyMzZjNmZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApL1prVAZR4dXMLtwd7hSTdyi89jy
+dX0nW6vqjdU5uKYdDKzNmGMeO2wrh5EoNEiEIm1zZbeKzcXygFxhNK+Oz5v9uF4
uEfb8AzOF9AG+uUsMi1qfvurrBysejtpDzSTSj04IavjQuChH19N5BTmsU1YVx3A
8o41AtOwHHl9wE819Sx5mUqos7kJcnt1R1OSX9DzXc+a9Vl0jZiRzq1Ri9w7e+nB
h9DE0+cMxjWXhN/sjfBUyn33izT4p6JoX10L/CIPyShA7+ZKE48PWz9lsdTgHuVZ
4nRisjVGwtVcjN1KtfvOHdfX1I5FqBgfPQSdda7wrWaAVieAwQG3Z+ylPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA34Mn7oqKLJG7EiQg2uiOjSNsb7MB8GA1UdIwQY
MBaAFLKO8fT4gnj03xnnPjOBzs144GnBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc283eDlQaUNlUFRmR2VjLU00SE96WGpnYWNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8xZjA1MWItZTczNS00OWI4LWJjNmQt
OWVmMGE1OTkyN2IxLzEvc283eDlQaUNlUFRmR2VjLU00SE96WGpnYWNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS8xZjA1MWItZTczNS00OWI4LWJjNmQtOWVmMGE1OTkyN2Ix
LzEvc283eDlQaUNlUFRmR2VjLU00SE96WGpnYWNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAajLSikHY
69t9OsfpQpTEUHDrBW0ssBada9HD7ykbo9eQyblzZIrMvhD6c8Xd9KTc/jBbVcEl
AKcdHCWSXTRiOrzFEA/byAF7QXAAczlufzoh6Ts1NIjEFfyZJwDRNn+Td0OfuDUs
15VkbId88eP2K2xFmFxCOZ71WxDqMKH/DvVRh/TxeSygJDibIeY2vQyhQCjVEW/H
lfBo2yxzQjy3mgPr1tCYJsQTJ5KASYBHHjTEafJA0ajiDrVVAHiaBMwyzvotuzE7
dKpbkjVb7WIE0R/SJ5EKolIekX/qkf2vG2dfXbtJIYHKnCJXCEsCNhdQxGfoAopM
CRTlKZ5w4NxiaQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:45:47 2026 by rpki-client