Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
File: kUXq2NPxKEQCtvdWFKhyV1A84bw.mft (raw, json)
Hash identifier: 68MwQ7D/6MggnqFfF2sXq0AdEseb7Gsvi7P9SUVyYuE=
Subject key identifier: 30:86:70:C7:29:55:99:3C:08:FD:23:5C:26:29:8D:28:8D:0A:97:1A
Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
Certificate issuer: /CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Certificate serial: 019D9B50C562EEC6180FDFB62186DBB3FDC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
Manifest number: 167C
Signing time: Fri 17 Apr 2026 12:00:54 +0000
Manifest this update: Fri 17 Apr 2026 12:00:54 +0000
Manifest next update: Sat 18 Apr 2026 12:00:54 +0000
Files and hashes: 1: EA-NEOtP3uDP9jqB_OwjrtlomoQ.roa (hash: f9ettJwQvG7z/vLtWszxNDWQ12P3Qi4WIIeHx0l0KMI=)
2: RUWdvZOnBJK0iIW0niXlms-_ZTE.roa (hash: 2+wMNcHhj5TvnlxNSP9HNjiQphs6X1jHdgsBG2jH8oQ=)
3: dJ99YeIlqHaqk3MFFpF1s00gLYY.roa (hash: 2get34VvGB/+dlsQY7O9iVM7eMGsBo6doetqxUk2mpw=)
4: kUXq2NPxKEQCtvdWFKhyV1A84bw.crl (hash: NRyegmB/ttVOPiPY+hUi2ocUJC7BfQ0FnuagBW4CmVY=)
5: oZzPr194SGFDBoXBt9T9kB-yFLc.roa (hash: Dw3uJz0rcR+PJswxCLk9+YfSwY4+DIuftXl5NNe/QJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:c5:62:ee:c6:18:0f:df:b6:21:86:db:b3:fd:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Validity
Not Before: Apr 17 12:00:54 2026 GMT
Not After : Apr 18 12:00:54 2026 GMT
Subject: CN=308670c72955993c08fd235c26298d288d0a971a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:78:87:08:1e:fd:fe:74:0c:e0:b7:28:2e:ab:
77:e9:2a:4a:19:ba:fa:35:cb:a2:58:45:7b:a8:a9:
df:81:24:b4:b5:2d:f5:11:0f:f3:e3:7b:c4:01:43:
e7:19:fb:61:f0:7e:cc:57:08:8b:57:64:5a:1f:85:
7c:9b:97:70:7d:7a:40:5d:0b:79:93:02:da:42:ed:
0f:d2:1c:a2:5c:a4:be:25:9f:48:66:f0:98:bc:0a:
2d:69:8a:3d:79:16:ef:9f:cb:67:a3:2c:71:3c:46:
7f:a9:8c:a9:c9:81:9a:d4:36:85:cb:6a:21:50:20:
36:c3:f9:fa:9f:09:65:70:01:c2:3f:dd:8e:4e:ce:
40:2c:35:b4:66:85:27:a2:5b:f1:3a:c6:42:c5:a8:
6f:fd:df:42:11:b6:1f:54:8b:51:6a:ef:46:cf:52:
95:dd:8b:39:3a:4f:d7:a2:1c:ee:d1:d5:40:b9:f5:
d6:08:de:60:3a:12:1d:23:52:e2:43:f7:3a:12:80:
76:82:a6:fe:b9:8d:1d:a0:18:d2:20:0e:ab:99:16:
21:d6:71:7c:b9:e3:e2:87:49:d7:89:ee:0a:b6:a3:
47:8f:98:42:4b:9a:cf:a5:64:03:66:5c:c1:1b:53:
01:61:bb:42:3a:1c:10:07:cd:5b:07:f1:9e:fe:1c:
1e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:86:70:C7:29:55:99:3C:08:FD:23:5C:26:29:8D:28:8D:0A:97:1A
X509v3 Authority Key Identifier:
keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:73:f5:0e:23:a3:2a:dd:9c:50:e5:ce:ef:59:54:1e:10:a0:
6a:b5:62:54:b3:5c:2a:1e:eb:9a:e1:97:92:ce:f0:86:d3:f6:
f5:b5:21:0c:80:ce:05:3d:d5:e2:ac:56:70:93:d1:af:b9:0f:
46:f5:d1:e3:70:9c:d8:69:f7:f5:7b:8d:ec:7c:65:52:5a:65:
16:0b:f5:72:d5:51:70:07:08:e9:98:84:c9:56:7f:6e:ba:e2:
cf:df:ef:4c:0b:b8:79:4a:7c:43:e1:a4:20:eb:b8:9a:64:8d:
f8:9d:18:2a:07:39:63:d6:bf:a8:ef:2e:4b:de:fa:57:c7:f6:
11:e1:0f:5f:db:9f:51:15:d4:ae:cb:96:c9:38:ad:16:40:b0:
94:f7:f7:34:ed:0d:69:78:1f:96:44:10:b2:92:20:2a:53:29:
a7:8f:d7:af:34:12:0d:13:f9:de:8f:bf:30:93:7e:40:7f:93:
97:81:0d:41:7c:ec:90:c2:0e:5c:3e:c9:9e:0e:87:55:fe:02:
6d:8d:0d:24:71:aa:cd:f3:50:92:e0:44:35:27:76:27:79:f7:
eb:12:7e:cb:3a:1d:c5:27:63:c3:c9:45:79:dd:11:3f:50:bf:
d3:d4:24:00:71:e5:ea:64:ac:80:f1:ac:a6:a0:93:46:74:91:
05:40:e6:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bUMVi7sYYD9+2IYbbs/3AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxNDVlYWQ4ZDNmMTI4NDQwMmI2Zjc1NjE0YTg3MjU3NTAz
Y2UxYmMwHhcNMjYwNDE3MTIwMDU0WhcNMjYwNDE4MTIwMDU0WjAzMTEwLwYDVQQD
EygzMDg2NzBjNzI5NTU5OTNjMDhmZDIzNWMyNjI5OGQyODhkMGE5NzFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03iHCB79/nQM4LcoLqt36SpKGbr6
NcuiWEV7qKnfgSS0tS31EQ/z43vEAUPnGfth8H7MVwiLV2RaH4V8m5dwfXpAXQt5
kwLaQu0P0hyiXKS+JZ9IZvCYvAotaYo9eRbvn8tnoyxxPEZ/qYypyYGa1DaFy2oh
UCA2w/n6nwllcAHCP92OTs5ALDW0ZoUnolvxOsZCxahv/d9CEbYfVItRau9Gz1KV
3Ys5Ok/Xohzu0dVAufXWCN5gOhIdI1LiQ/c6EoB2gqb+uY0doBjSIA6rmRYh1nF8
uePih0nXie4KtqNHj5hCS5rPpWQDZlzBG1MBYbtCOhwQB81bB/Ge/hweyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDCGcMcpVZk8CP0jXCYpjSiNCpcaMB8GA1UdIwQY
MBaAFJFF6tjT8ShEArb3VhSocldQPOG8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9hNTIzNWYtNjJmYi00YWJiLTgwMzct
MmFkMTk1MjY0YzcyLzEva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9hNTIzNWYtNjJmYi00YWJiLTgwMzctMmFkMTk1MjY0Yzcy
LzEva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP3P1DiOj
Kt2cUOXO71lUHhCgarViVLNcKh7rmuGXks7whtP29bUhDIDOBT3V4qxWcJPRr7kP
RvXR43Cc2Gn39XuN7HxlUlplFgv1ctVRcAcI6ZiEyVZ/brriz9/vTAu4eUp8Q+Gk
IOu4mmSN+J0YKgc5Y9a/qO8uS976V8f2EeEPX9ufURXUrsuWyTitFkCwlPf3NO0N
aXgflkQQspIgKlMpp4/XrzQSDRP53o+/MJN+QH+Tl4ENQXzskMIOXD7Jng6HVf4C
bY0NJHGqzfNQkuBENSd2J3n36xJ+yzodxSdjw8lFed0RP1C/09QkAHHl6mSsgPGs
pqCTRnSRBUDmDw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 17:57:46 2026 by rpki-client