Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
File: AaVsQu18uWPyhVA87AYG1g0Ks4c.mft (raw, json)
Hash identifier: xNmzvh3hp89O11X28pWE4WevzkZiexTgtpdAA55LfpU=
Subject key identifier: 26:9B:D1:92:3A:1B:E9:E3:EA:1F:67:52:3C:C7:96:5F:DC:20:04:B8
Authority key identifier: 01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
Certificate issuer: /CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Certificate serial: 019D9AAC301C9251CD8D0C11E83FE067937A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
Manifest number: 118E
Signing time: Fri 17 Apr 2026 09:01:08 +0000
Manifest this update: Fri 17 Apr 2026 09:01:08 +0000
Manifest next update: Sat 18 Apr 2026 09:01:08 +0000
Files and hashes: 1: AaVsQu18uWPyhVA87AYG1g0Ks4c.crl (hash: hpjflqRQYJ2wr9xxmjYjlZuXh5yJw1ShLxvxyNZRpJw=)
2: NSYoMgdv_GgQV27_GIPye5U9jPQ.roa (hash: 4AlK45WxtVu086BCXSG5HnwL06CQHoIesX5EAX9HMxU=)
3: RQ8JIGxsT6j17dfeEPWw2-YRi2c.roa (hash: qbacCBbHQjk4PtD2GWcsUuyb/kcc9ZQ6pfK2TjjwNeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ac:30:1c:92:51:cd:8d:0c:11:e8:3f:e0:67:93:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Validity
Not Before: Apr 17 09:01:08 2026 GMT
Not After : Apr 18 09:01:08 2026 GMT
Subject: CN=269bd1923a1be9e3ea1f67523cc7965fdc2004b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:85:7b:59:e8:9a:a1:58:7c:87:31:30:72:76:
a1:1e:d6:d2:8d:24:45:0d:bb:3a:a7:71:2a:45:ee:
43:5a:0a:9b:56:aa:29:e3:1c:cf:ab:6a:c3:c3:c9:
5c:2e:e2:49:ce:ab:eb:52:7b:55:b3:c9:c8:ab:99:
48:3b:59:f0:aa:dc:bb:ad:35:e0:9d:87:43:f4:24:
de:b8:9f:be:c3:38:b8:8d:87:8e:4c:c8:c2:bb:7b:
43:ba:ed:e6:cf:16:e0:0c:04:a0:57:b7:6c:9d:88:
51:00:de:a4:03:bc:71:42:fe:39:ab:61:26:9a:b7:
e6:d1:68:02:6b:86:b0:a2:b3:66:ae:05:f6:a1:44:
47:0c:0d:9d:d5:9b:b8:a8:bf:96:0a:7c:dd:e4:7b:
34:2a:30:04:56:1b:31:e3:e2:05:34:ec:82:fd:e5:
d5:27:b3:47:48:95:c8:98:ba:f0:18:a9:78:31:81:
ac:1c:7b:61:bc:b2:15:3a:08:cc:a6:25:15:a5:99:
3b:46:21:fb:72:bc:24:18:02:fa:31:12:07:a7:55:
ec:f3:38:9d:79:a1:3b:7f:1a:a2:88:e6:df:20:e2:
61:1c:cd:4c:55:e9:3a:78:58:18:7c:c7:ba:0d:09:
2d:19:55:53:c4:b7:9e:d6:61:8b:0e:a9:75:00:ec:
67:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:9B:D1:92:3A:1B:E9:E3:EA:1F:67:52:3C:C7:96:5F:DC:20:04:B8
X509v3 Authority Key Identifier:
keyid:01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:a3:6c:77:7d:ec:c0:e6:aa:d6:c6:8d:f2:7e:e5:56:31:45:
84:b5:9d:0c:68:52:d5:81:15:17:45:70:17:1c:50:c2:29:79:
c1:48:72:2d:c5:f4:93:6e:48:7f:ea:00:5c:d6:37:e5:13:4a:
94:a3:7c:ce:a8:27:fd:63:6a:50:b8:3f:a8:82:34:87:b6:2d:
8a:78:0b:42:aa:11:09:e8:2f:a6:cb:74:ce:d3:7c:24:b8:7a:
90:22:10:43:a8:0e:62:4f:38:ba:5a:1c:16:c6:47:4b:cd:0a:
57:0a:e9:2d:a7:89:2f:6b:8d:20:25:29:dc:b0:ba:a6:d2:3b:
17:2e:58:8b:38:32:e9:94:90:84:5e:be:25:6c:10:f4:6c:65:
07:cb:12:1e:e1:07:f1:68:9e:e0:21:46:0a:55:ca:57:f5:56:
eb:0b:1a:a9:a5:69:50:cc:77:dc:b3:7d:e8:9e:f2:2d:1c:77:
72:cc:05:ab:d8:ec:e8:4d:6a:51:e8:25:71:28:81:a8:df:be:
cd:ba:ef:63:bf:4b:3f:cb:1b:31:53:a1:c9:8e:24:f9:25:16:
d6:1e:c0:a1:20:52:84:6a:11:6e:e6:0f:6d:a2:04:7e:5a:71:
1f:07:2b:39:6b:ec:70:4f:53:01:f2:57:ad:ec:bd:65:8b:0d:
f2:2e:d1:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2arDAcklHNjQwR6D/gZ5N6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxYTU2YzQyZWQ3Y2I5NjNmMjg1NTAzY2VjMDYwNmQ2MGQw
YWIzODcwHhcNMjYwNDE3MDkwMTA4WhcNMjYwNDE4MDkwMTA4WjAzMTEwLwYDVQQD
EygyNjliZDE5MjNhMWJlOWUzZWExZjY3NTIzY2M3OTY1ZmRjMjAwNGI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYV7WeiaoVh8hzEwcnahHtbSjSRF
Dbs6p3EqRe5DWgqbVqop4xzPq2rDw8lcLuJJzqvrUntVs8nIq5lIO1nwqty7rTXg
nYdD9CTeuJ++wzi4jYeOTMjCu3tDuu3mzxbgDASgV7dsnYhRAN6kA7xxQv45q2Em
mrfm0WgCa4aworNmrgX2oURHDA2d1Zu4qL+WCnzd5Hs0KjAEVhsx4+IFNOyC/eXV
J7NHSJXImLrwGKl4MYGsHHthvLIVOgjMpiUVpZk7RiH7crwkGAL6MRIHp1Xs8zid
eaE7fxqiiObfIOJhHM1MVek6eFgYfMe6DQktGVVTxLee1mGLDql1AOxn8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCab0ZI6G+nj6h9nUjzHll/cIAS4MB8GA1UdIwQY
MBaAFAGlbELtfLlj8oVQPOwGBtYNCrOHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC85OWNmZTUtNGIzNS00OWM3LTlhNzMt
ZWQwN2Y1Y2FkNmQ3LzEvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC85OWNmZTUtNGIzNS00OWM3LTlhNzMtZWQwN2Y1Y2FkNmQ3
LzEvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqqNsd33s
wOaq1saN8n7lVjFFhLWdDGhS1YEVF0VwFxxQwil5wUhyLcX0k25If+oAXNY35RNK
lKN8zqgn/WNqULg/qII0h7YtingLQqoRCegvpst0ztN8JLh6kCIQQ6gOYk84uloc
FsZHS80KVwrpLaeJL2uNICUp3LC6ptI7Fy5Yizgy6ZSQhF6+JWwQ9GxlB8sSHuEH
8Wie4CFGClXKV/VW6wsaqaVpUMx33LN96J7yLRx3cswFq9js6E1qUeglcSiBqN++
zbrvY79LP8sbMVOhyY4k+SUW1h7AoSBShGoRbuYPbaIEflpxHwcrOWvscE9TAfJX
rey9ZYsN8i7Rdg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:02:10 2026 by rpki-client