Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
File: MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft (raw, json)
Hash identifier: RRgMzveKsNtC42dER/Xz65ytDuMPexl98M9YDTAGKqE=
Subject key identifier: 0D:E3:03:CC:B2:A1:93:75:4E:22:C8:86:66:9D:96:17:D3:A5:1F:80
Authority key identifier: 31:D7:D9:D2:9C:EC:F8:E5:91:22:23:3D:71:6E:6B:05:0E:71:84:78
Certificate issuer: /CN=31d7d9d29cecf8e59122233d716e6b050e718478
Certificate serial: 019D99626C9C30AF8456E2D0F1933F1103C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
Manifest number: 049E
Signing time: Fri 17 Apr 2026 03:00:57 +0000
Manifest this update: Fri 17 Apr 2026 03:00:57 +0000
Manifest next update: Sat 18 Apr 2026 03:00:57 +0000
Files and hashes: 1: 9jfmZ8bQaVGPFDWRFHvQHmnS8fo.roa (hash: /DXZZnlzFxIqpfLKa2jzn4JOmraJhYpvlatvoWLWvdY=)
2: MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl (hash: VXigGWczce8HZVUm2LbCtziod8F0+p4hIsXk/qd2PDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:6c:9c:30:af:84:56:e2:d0:f1:93:3f:11:03:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d7d9d29cecf8e59122233d716e6b050e718478
Validity
Not Before: Apr 17 03:00:57 2026 GMT
Not After : Apr 18 03:00:57 2026 GMT
Subject: CN=0de303ccb2a193754e22c886669d9617d3a51f80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f2:d4:7f:a0:1f:09:45:5f:25:d8:e9:89:78:
00:89:11:1a:3e:37:04:41:15:c9:3d:42:6a:94:5a:
52:87:44:13:5f:a8:dd:c5:b3:eb:41:83:bd:08:e1:
c6:59:5f:34:7c:3e:b1:e6:7e:f0:d4:d1:7c:52:7e:
fd:4b:3a:23:40:a2:27:33:f6:83:20:12:63:9c:c6:
ee:e3:de:24:82:29:7e:e8:ed:e8:6d:c1:8a:fe:4e:
f3:8d:87:fa:4b:c0:ec:b9:77:27:19:b5:b6:8d:79:
16:4e:ae:6e:0f:74:ea:06:46:c4:0a:e1:bf:f0:df:
6d:75:d1:18:aa:ec:f1:3e:5a:36:29:ea:79:9d:8b:
2e:51:fc:a8:da:7b:25:25:4c:79:16:dd:ef:f7:41:
ab:83:27:8c:2c:b2:61:2d:dc:c2:9e:39:6d:1c:88:
b0:62:91:c0:85:fe:67:16:df:db:af:23:e2:94:9d:
66:95:33:cd:b8:de:49:70:b3:b8:cb:98:11:00:be:
53:ca:e6:64:fa:75:f3:9b:9c:30:cc:59:ac:87:46:
eb:5d:8b:48:79:12:5b:33:f9:4d:bd:af:1a:15:3c:
94:f3:f3:c3:5d:db:17:cd:f8:1a:8d:b7:7e:d5:9f:
5d:b3:7d:e7:7b:3f:47:5d:ed:40:1e:03:b2:04:17:
18:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:E3:03:CC:B2:A1:93:75:4E:22:C8:86:66:9D:96:17:D3:A5:1F:80
X509v3 Authority Key Identifier:
keyid:31:D7:D9:D2:9C:EC:F8:E5:91:22:23:3D:71:6E:6B:05:0E:71:84:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:b0:d8:0b:30:87:e5:cd:6a:22:39:7e:47:3c:bc:ea:70:14:
0c:c6:06:89:80:76:51:b8:00:f0:86:66:a4:bf:27:d9:1c:da:
23:5d:66:59:2d:be:de:eb:c2:02:17:4a:24:ab:8e:c3:80:13:
ab:4e:c1:b7:81:e2:cd:1a:f5:fb:ba:06:bd:6d:8b:ec:0c:39:
06:77:35:56:a1:3c:85:8b:6c:55:e2:be:dd:04:0b:6a:7a:e5:
0d:3f:2b:43:c8:db:e9:be:d9:69:13:83:d4:b8:83:43:86:07:
1a:30:4f:8a:3e:22:32:ea:4b:e9:cd:33:b4:eb:02:37:1a:d1:
fe:8c:95:2a:2c:65:13:fb:ca:fc:dc:d9:45:ee:b4:57:3b:ee:
90:34:ef:5f:24:55:36:2e:da:ee:28:74:44:06:5d:c4:96:38:
21:dc:74:8f:11:48:e6:38:b3:84:5b:c3:cd:c2:e5:59:e9:0d:
62:fc:27:22:d1:13:51:cc:0c:55:66:a6:8e:15:ae:5f:bb:f4:
0c:6a:9b:61:f4:66:4c:0b:a7:4b:49:6e:39:57:fb:1f:c8:f9:
b9:d1:c8:f2:96:2b:d3:20:d6:64:47:de:1f:b0:6e:d4:57:8e:
92:17:63:27:c6:cc:72:87:54:fa:11:2f:1f:ac:fe:64:e0:ef:
05:fa:3e:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZYmycMK+EVuLQ8ZM/EQPGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxZDdkOWQyOWNlY2Y4ZTU5MTIyMjMzZDcxNmU2YjA1MGU3
MTg0NzgwHhcNMjYwNDE3MDMwMDU3WhcNMjYwNDE4MDMwMDU3WjAzMTEwLwYDVQQD
EygwZGUzMDNjY2IyYTE5Mzc1NGUyMmM4ODY2NjlkOTYxN2QzYTUxZjgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzvLUf6AfCUVfJdjpiXgAiREaPjcE
QRXJPUJqlFpSh0QTX6jdxbPrQYO9COHGWV80fD6x5n7w1NF8Un79SzojQKInM/aD
IBJjnMbu494kgil+6O3obcGK/k7zjYf6S8DsuXcnGbW2jXkWTq5uD3TqBkbECuG/
8N9tddEYquzxPlo2Kep5nYsuUfyo2nslJUx5Ft3v90GrgyeMLLJhLdzCnjltHIiw
YpHAhf5nFt/bryPilJ1mlTPNuN5JcLO4y5gRAL5TyuZk+nXzm5wwzFmsh0brXYtI
eRJbM/lNva8aFTyU8/PDXdsXzfgajbd+1Z9ds33nez9HXe1AHgOyBBcYZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA3jA8yyoZN1TiLIhmadlhfTpR+AMB8GA1UdIwQY
MBaAFDHX2dKc7PjlkSIjPXFuawUOcYR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWRmWjBwenMtT1dSSWlNOWNXNXJCUTV4aEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9hZjgzMmItYTY0MS00ZTQ2LWE4MzYt
NDBmNGM2OGU5YTMxLzEvTWRmWjBwenMtT1dSSWlNOWNXNXJCUTV4aEhnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC9hZjgzMmItYTY0MS00ZTQ2LWE4MzYtNDBmNGM2OGU5YTMx
LzEvTWRmWjBwenMtT1dSSWlNOWNXNXJCUTV4aEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjLDYCzCH
5c1qIjl+Rzy86nAUDMYGiYB2UbgA8IZmpL8n2RzaI11mWS2+3uvCAhdKJKuOw4AT
q07Bt4HizRr1+7oGvW2L7Aw5Bnc1VqE8hYtsVeK+3QQLanrlDT8rQ8jb6b7ZaROD
1LiDQ4YHGjBPij4iMupL6c0ztOsCNxrR/oyVKixlE/vK/NzZRe60VzvukDTvXyRV
Ni7a7ih0RAZdxJY4Idx0jxFI5jizhFvDzcLlWekNYvwnItETUcwMVWamjhWuX7v0
DGqbYfRmTAunS0luOVf7H8j5udHI8pYr0yDWZEfeH7Bu1FeOkhdjJ8bMcodU+hEv
H6z+ZODvBfo+9Q==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:04:16 2026 by rpki-client