Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
File: UFzWGp9t6drMDTySFwbffVCvvW8.mft (raw, json)
Hash identifier: s0F+aOqp3nmDNiVSjXArCRy3t6OzXvaCoGU5g29QHjk=
Subject key identifier: E2:1A:1A:0C:1C:C7:86:1E:42:21:16:92:49:87:C5:07:5B:4F:51:C9
Authority key identifier: 50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
Certificate issuer: /CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Certificate serial: 019D98BD51110F011FDE34A7C30FFBAAC262
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
Manifest number: 0F15
Signing time: Fri 17 Apr 2026 00:00:36 +0000
Manifest this update: Fri 17 Apr 2026 00:00:36 +0000
Manifest next update: Sat 18 Apr 2026 00:00:36 +0000
Files and hashes: 1: KYZm_9MuL_c9ERWs0Td3tSLq0RM.roa (hash: fei8OCGwkyhg3dv3nNRDFJMFMNR03cAB020hgr7s0HQ=)
2: UFzWGp9t6drMDTySFwbffVCvvW8.crl (hash: bO5yJUS2Hesu4XbVncirNB/Y6OqrJThnP0XbzS9pl68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:51:11:0f:01:1f:de:34:a7:c3:0f:fb:aa:c2:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Validity
Not Before: Apr 17 00:00:36 2026 GMT
Not After : Apr 18 00:00:36 2026 GMT
Subject: CN=e21a1a0c1cc7861e422116924987c5075b4f51c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:40:2d:99:d0:7d:a7:98:00:e0:b7:59:37:a0:
9f:d9:69:33:dc:2e:c9:f1:9c:00:2d:00:af:da:ef:
d6:c3:45:a7:25:fc:7a:0b:82:63:23:87:18:29:02:
0f:9a:4c:3c:eb:4d:fd:53:24:d5:39:a3:11:03:19:
62:87:53:b6:62:bb:ee:fa:82:7f:7b:42:2b:b6:0f:
23:dc:0b:09:00:4f:34:62:22:34:32:37:0b:fe:0f:
cf:6f:97:35:38:af:c4:a3:4f:db:3b:45:12:58:31:
61:8a:06:79:34:b2:20:36:93:70:50:d3:bd:1e:2a:
1b:18:6f:8e:e6:79:85:17:c2:40:8e:b6:e3:3e:03:
a4:6e:db:6a:3a:29:91:5b:ab:d4:5b:30:16:d5:79:
b4:e8:17:f9:58:22:6d:b8:b8:9b:cf:5a:f3:e9:d6:
0e:fe:4e:d7:89:31:f0:51:23:14:8f:d0:1d:9f:76:
e1:e0:4d:8a:90:17:b1:8f:6c:a5:bd:ee:11:8e:ec:
38:f5:38:59:60:55:e0:59:9e:4b:7d:5b:82:78:7d:
14:c8:e8:36:7d:71:c8:e7:b8:a1:09:bb:03:28:03:
d0:ad:f6:52:3a:a0:53:12:2f:fe:0e:14:88:5b:c9:
a7:17:dc:9d:7a:75:2b:b2:07:d0:d0:8f:3a:82:ea:
2d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:1A:1A:0C:1C:C7:86:1E:42:21:16:92:49:87:C5:07:5B:4F:51:C9
X509v3 Authority Key Identifier:
keyid:50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:f6:f7:d7:f4:8b:03:d0:94:10:58:f1:5f:a4:32:23:fb:26:
b2:fd:11:ba:14:a3:f3:86:2d:65:94:96:1c:41:55:42:51:85:
a6:dc:70:58:ef:af:9e:c4:12:8e:23:96:06:0b:3c:77:37:51:
25:78:02:9e:04:94:fe:bc:fe:2a:66:74:1f:e1:c1:c9:9d:83:
54:84:72:bb:e9:bc:11:19:ca:ee:ba:3b:31:ee:d2:c8:2d:99:
17:c8:5b:16:fe:16:61:19:8f:dd:a6:13:f1:48:82:69:6b:71:
c2:04:18:3d:93:7e:bf:9e:93:2e:0c:7c:91:7e:8d:80:67:4c:
a7:f5:75:f5:51:75:26:ee:e4:09:96:6e:57:69:c1:16:a0:04:
1b:86:9f:9a:f8:be:27:7b:fc:5d:c0:b7:c7:42:fb:3e:ad:cd:
07:78:c6:0f:be:57:01:08:f3:2e:20:7d:c4:cc:9b:5f:de:78:
39:e7:ca:75:60:41:a7:87:77:8d:6f:56:14:83:46:25:2a:81:
d0:b5:9b:de:0d:fd:bd:2b:1b:03:ce:c7:ba:81:7f:95:01:65:
bf:78:55:a5:81:88:f5:6b:4a:e7:16:75:ac:2e:40:02:ce:9f:
8d:be:74:cb:a8:6d:1c:c9:65:e2:90:b2:aa:6a:ce:7a:d2:35:
86:d1:a2:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2YvVERDwEf3jSnww/7qsJiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNWNkNjFhOWY2ZGU5ZGFjYzBkM2M5MjE3MDZkZjdkNTBh
ZmJkNmYwHhcNMjYwNDE3MDAwMDM2WhcNMjYwNDE4MDAwMDM2WjAzMTEwLwYDVQQD
EyhlMjFhMWEwYzFjYzc4NjFlNDIyMTE2OTI0OTg3YzUwNzViNGY1MWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUAtmdB9p5gA4LdZN6Cf2Wkz3C7J
8ZwALQCv2u/Ww0WnJfx6C4JjI4cYKQIPmkw86039UyTVOaMRAxlih1O2Yrvu+oJ/
e0Irtg8j3AsJAE80YiI0MjcL/g/Pb5c1OK/Eo0/bO0USWDFhigZ5NLIgNpNwUNO9
HiobGG+O5nmFF8JAjrbjPgOkbttqOimRW6vUWzAW1Xm06Bf5WCJtuLibz1rz6dYO
/k7XiTHwUSMUj9Adn3bh4E2KkBexj2ylve4Rjuw49ThZYFXgWZ5LfVuCeH0UyOg2
fXHI57ihCbsDKAPQrfZSOqBTEi/+DhSIW8mnF9ydenUrsgfQ0I86guotAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOIaGgwcx4YeQiEWkkmHxQdbT1HJMB8GA1UdIwQY
MBaAFFBc1hqfbenazA08khcG331Qr71vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUZ6V0dwOXQ2ZHJNRFR5U0Z3YmZmVkN2dlc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9hMzczNWEtZWNjYy00MWQ3LWI3MjMt
ZTAxMjM3YjVmYzEwLzEvVUZ6V0dwOXQ2ZHJNRFR5U0Z3YmZmVkN2dlc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi9hMzczNWEtZWNjYy00MWQ3LWI3MjMtZTAxMjM3YjVmYzEw
LzEvVUZ6V0dwOXQ2ZHJNRFR5U0Z3YmZmVkN2dlc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcvb31/SL
A9CUEFjxX6QyI/smsv0RuhSj84YtZZSWHEFVQlGFptxwWO+vnsQSjiOWBgs8dzdR
JXgCngSU/rz+KmZ0H+HByZ2DVIRyu+m8ERnK7ro7Me7SyC2ZF8hbFv4WYRmP3aYT
8UiCaWtxwgQYPZN+v56TLgx8kX6NgGdMp/V19VF1Ju7kCZZuV2nBFqAEG4afmvi+
J3v8XcC3x0L7Pq3NB3jGD75XAQjzLiB9xMybX954OefKdWBBp4d3jW9WFINGJSqB
0LWb3g39vSsbA87HuoF/lQFlv3hVpYGI9WtK5xZ1rC5AAs6fjb50y6htHMll4pCy
qmrOetI1htGiYg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 03:50:47 2026 by rpki-client