Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
File: aNLCXQU0pAJ8aVViqM5PABzVOW8.mft (raw, json)
Hash identifier: /2kz9StuIHDlhUOFrnTpD3XzCG0oNWsD8Fvmdp+rKVA=
Subject key identifier: 58:28:5E:5A:3F:B3:46:75:64:F3:DD:64:76:AD:B1:DB:52:FE:48:DF
Authority key identifier: 68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
Certificate issuer: /CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Certificate serial: 019D9BBE85629929CF6DC353EC775E1C3BDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
Manifest number: 1516
Signing time: Fri 17 Apr 2026 14:00:47 +0000
Manifest this update: Fri 17 Apr 2026 14:00:47 +0000
Manifest next update: Sat 18 Apr 2026 14:00:47 +0000
Files and hashes: 1: URwUlX1aGUQjALJuv2b7NQZnlQY.roa (hash: tfOWykptTnti4HmolEIB0RYCOL60/EO4faOftMz4e/U=)
2: aNLCXQU0pAJ8aVViqM5PABzVOW8.crl (hash: zNKHmlirsSylYWM8tFPIyf+AAxrnRzlvWHrPy94Qsm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:85:62:99:29:cf:6d:c3:53:ec:77:5e:1c:3b:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Validity
Not Before: Apr 17 14:00:47 2026 GMT
Not After : Apr 18 14:00:47 2026 GMT
Subject: CN=58285e5a3fb3467564f3dd6476adb1db52fe48df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1b:5d:cd:b4:ec:be:4c:d6:ee:95:8e:68:74:
9c:c5:60:6c:f8:8f:27:ff:1f:cc:f6:64:ff:80:64:
71:a1:07:c7:5c:17:64:9f:f6:26:67:d9:49:82:b9:
b4:fc:57:cd:46:2a:58:03:69:fc:15:de:ef:70:31:
44:19:40:22:92:be:fe:91:9f:d0:89:0e:39:12:85:
06:1d:46:d1:1b:61:48:31:94:cf:39:0e:8f:0e:ed:
b5:51:c2:2b:21:d8:8a:70:8d:f2:db:41:4b:a3:5e:
c5:70:c1:39:26:78:3a:1a:ba:07:1c:9e:6a:0e:79:
f1:3d:00:ea:31:af:aa:65:f6:da:32:a1:8c:fe:4b:
9e:64:9b:7b:7a:3d:8f:d4:06:e5:02:49:b9:f8:66:
4f:ba:1c:60:8c:c0:b0:8f:22:98:61:98:ef:ad:16:
c0:38:cc:b1:f1:4e:08:53:0e:13:4c:da:4f:78:1e:
7d:74:29:98:3f:bd:56:c6:0b:18:44:04:80:05:82:
08:2f:48:71:ad:5e:7c:3d:c0:1c:bd:fa:97:9a:49:
f6:ca:dc:e6:70:b6:3d:8f:f8:27:c6:bb:82:4b:39:
f4:04:48:ad:e2:c2:5a:69:58:df:44:e7:d2:9e:02:
36:e1:7f:af:51:0a:b5:d6:7f:c8:fb:39:d8:6b:68:
fe:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:28:5E:5A:3F:B3:46:75:64:F3:DD:64:76:AD:B1:DB:52:FE:48:DF
X509v3 Authority Key Identifier:
keyid:68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:c6:57:e9:91:2c:fa:d6:a8:dd:8a:91:71:2f:49:fa:13:41:
8f:f4:ee:62:7c:69:dd:f2:62:34:95:4a:28:65:d4:f3:f4:fc:
ce:af:0c:73:49:9d:4b:4f:5d:e6:4f:75:97:b9:3f:28:c1:cd:
f9:5e:5a:08:ad:14:46:70:97:f6:ac:96:fd:fd:7a:a0:f6:4f:
a0:1f:a1:6c:ad:47:e0:a5:9d:37:e1:a4:fe:11:a7:fd:f9:ef:
7a:54:35:e6:39:74:12:d6:c5:d6:21:12:c9:46:28:34:68:21:
60:f1:89:91:e7:ec:1b:79:4a:69:b0:e3:4c:72:1e:8a:57:54:
19:26:78:88:89:ad:8e:b2:04:8b:47:11:96:17:12:db:76:68:
4b:68:67:1d:b0:18:91:c9:61:50:05:89:b3:13:7a:4f:48:80:
61:ef:95:40:08:15:13:74:67:11:ed:54:53:ff:b6:d8:eb:af:
d0:e0:06:9c:f4:fa:1e:06:be:6f:ea:57:63:ff:0f:40:a4:21:
2f:f6:61:a2:95:17:17:61:99:0d:0e:2a:66:ed:7e:8d:cf:93:
bc:92:7a:53:f0:bd:d6:6f:9b:e8:77:61:c3:bd:df:5e:b8:03:
b0:22:f2:cd:17:73:05:5f:da:65:29:99:b6:71:2b:56:9e:3c:
e1:79:a3:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bvoVimSnPbcNT7HdeHDveMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZDJjMjVkMDUzNGE0MDI3YzY5NTU2MmE4Y2U0ZjAwMWNk
NTM5NmYwHhcNMjYwNDE3MTQwMDQ3WhcNMjYwNDE4MTQwMDQ3WjAzMTEwLwYDVQQD
Eyg1ODI4NWU1YTNmYjM0Njc1NjRmM2RkNjQ3NmFkYjFkYjUyZmU0OGRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRtdzbTsvkzW7pWOaHScxWBs+I8n
/x/M9mT/gGRxoQfHXBdkn/YmZ9lJgrm0/FfNRipYA2n8Fd7vcDFEGUAikr7+kZ/Q
iQ45EoUGHUbRG2FIMZTPOQ6PDu21UcIrIdiKcI3y20FLo17FcME5Jng6GroHHJ5q
DnnxPQDqMa+qZfbaMqGM/kueZJt7ej2P1AblAkm5+GZPuhxgjMCwjyKYYZjvrRbA
OMyx8U4IUw4TTNpPeB59dCmYP71WxgsYRASABYIIL0hxrV58PcAcvfqXmkn2ytzm
cLY9j/gnxruCSzn0BEit4sJaaVjfROfSngI24X+vUQq11n/I+znYa2j+fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFgoXlo/s0Z1ZPPdZHatsdtS/kjfMB8GA1UdIwQY
MBaAFGjSwl0FNKQCfGlVYqjOTwAc1TlvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9hZDk3NTYtODRkMS00YWI5LTk2ZTEt
MTQ3OTdlYWM1MjJlLzEvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9hZDk3NTYtODRkMS00YWI5LTk2ZTEtMTQ3OTdlYWM1MjJl
LzEvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAecZX6ZEs
+tao3YqRcS9J+hNBj/TuYnxp3fJiNJVKKGXU8/T8zq8Mc0mdS09d5k91l7k/KMHN
+V5aCK0URnCX9qyW/f16oPZPoB+hbK1H4KWdN+Gk/hGn/fnvelQ15jl0EtbF1iES
yUYoNGghYPGJkefsG3lKabDjTHIeildUGSZ4iImtjrIEi0cRlhcS23ZoS2hnHbAY
kclhUAWJsxN6T0iAYe+VQAgVE3RnEe1UU/+22Ouv0OAGnPT6Hga+b+pXY/8PQKQh
L/ZhopUXF2GZDQ4qZu1+jc+TvJJ6U/C91m+b6Hdhw73fXrgDsCLyzRdzBV/aZSmZ
tnErVp484XmjWQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 20:53:57 2026 by rpki-client