Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
File: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft (raw, json)
Hash identifier: xK9PegSXxZ9c/bDyP7Q69rUnIFOa2iVqyEaEXOgpjTc=
Subject key identifier: 40:9D:67:01:4D:42:86:2B:FC:B7:EC:4A:04:50:BE:FD:4E:58:97:67
Authority key identifier: AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
Certificate issuer: /CN=ae7f187c12782fc4d844762235993329c4563a0d
Certificate serial: 019D9A3EEB57DE741DCF790CFA4CA1836D2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
Manifest number: 0EDF
Signing time: Fri 17 Apr 2026 07:01:47 +0000
Manifest this update: Fri 17 Apr 2026 07:01:47 +0000
Manifest next update: Sat 18 Apr 2026 07:01:47 +0000
Files and hashes: 1: p8Q1T6owao0UtFaI0uzL9fVOIDk.roa (hash: ETVPkMleWg5Tmk9ZZqBQNGmyAM72infgVzIH2DgSiBI=)
2: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl (hash: EfXCNgfu9CYcguH1vzAZ8pV2VhM9d8v6wDt3v+ljb+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:eb:57:de:74:1d:cf:79:0c:fa:4c:a1:83:6d:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f187c12782fc4d844762235993329c4563a0d
Validity
Not Before: Apr 17 07:01:47 2026 GMT
Not After : Apr 18 07:01:47 2026 GMT
Subject: CN=409d67014d42862bfcb7ec4a0450befd4e589767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1e:66:a6:7f:b0:0a:a1:b7:24:29:fa:de:01:
74:f4:9a:5d:f7:9f:cc:df:12:7c:45:20:e0:e3:ba:
1f:2c:24:bc:f4:76:cf:b8:42:fc:2c:24:3b:09:15:
01:82:1c:3f:e2:f9:f9:a4:f6:d6:e6:09:07:a1:27:
14:7b:60:0a:32:1e:71:cd:6b:4f:fd:eb:c8:aa:3a:
26:75:b9:df:30:9e:f2:9c:d4:db:0f:6b:9d:4e:d3:
6b:20:2c:97:0a:6f:bd:00:b8:56:72:a2:27:8c:98:
92:e7:b5:65:52:d9:40:1d:b6:20:0d:7f:06:89:4f:
1f:cf:f0:05:e0:9b:ff:33:32:5c:44:f9:41:82:b1:
c1:fe:79:2e:28:26:bd:99:b2:04:db:d9:26:68:95:
58:34:2f:5d:a8:f4:a2:b2:ef:84:f5:99:0d:44:5b:
58:10:f9:b3:e7:e2:42:45:c6:23:d9:a1:2a:0e:8b:
dd:d7:1b:b9:92:69:0e:e5:1e:43:ce:bc:11:0c:2c:
5c:bb:90:e8:9d:da:f0:65:9a:48:9a:42:ea:34:ac:
70:42:b3:c7:be:b2:66:7d:9e:37:40:e8:27:c4:96:
f0:94:69:c6:6c:cb:20:f8:5f:06:c3:77:72:fb:7d:
17:41:ee:4e:69:96:25:1d:80:21:0d:37:44:95:d8:
58:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:9D:67:01:4D:42:86:2B:FC:B7:EC:4A:04:50:BE:FD:4E:58:97:67
X509v3 Authority Key Identifier:
keyid:AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:d9:6b:bb:aa:c3:b3:33:43:86:f7:b5:b7:78:c8:62:dc:02:
cc:40:f8:6f:ef:b7:fd:f7:28:25:95:92:5c:8a:68:bc:89:f1:
b2:11:dc:70:c6:df:ca:73:1d:5d:14:11:ea:72:eb:11:f8:2e:
16:af:bb:37:cd:79:ce:e7:57:8d:54:5c:30:6d:47:e7:4c:b8:
af:ea:5b:56:b7:86:85:f5:69:21:27:6c:a6:76:18:e1:3e:2f:
91:e3:73:80:63:5d:7e:ac:73:66:5b:55:a7:1b:61:5f:20:b1:
dd:2b:ae:ee:d1:d7:56:1f:14:fc:8e:89:d4:53:38:e5:25:2d:
69:57:b9:60:88:e0:0b:ca:5a:2c:e7:64:ba:f4:f7:11:d2:15:
69:8b:ac:ed:d6:16:a1:f9:05:77:61:b9:53:be:d1:df:e2:2b:
a6:63:6f:f1:fb:67:32:c1:4f:9b:9a:e6:3d:a0:d8:59:0a:38:
9a:91:2a:b8:ab:9d:fa:69:83:c7:e7:14:7a:37:ca:c7:f4:5c:
03:d1:f3:b1:64:bd:ae:9c:e8:bd:ab:69:81:0c:74:03:08:77:
67:97:0d:d3:07:47:55:6f:ad:3e:dd:3f:d5:da:93:8e:01:81:
d6:48:90:4a:79:b6:ff:fc:69:65:a2:8e:ce:e0:d9:12:7a:e7:
7d:f6:a7:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aPutX3nQdz3kM+kyhg20qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlN2YxODdjMTI3ODJmYzRkODQ0NzYyMjM1OTkzMzI5YzQ1
NjNhMGQwHhcNMjYwNDE3MDcwMTQ3WhcNMjYwNDE4MDcwMTQ3WjAzMTEwLwYDVQQD
Eyg0MDlkNjcwMTRkNDI4NjJiZmNiN2VjNGEwNDUwYmVmZDRlNTg5NzY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjB5mpn+wCqG3JCn63gF09Jpd95/M
3xJ8RSDg47ofLCS89HbPuEL8LCQ7CRUBghw/4vn5pPbW5gkHoScUe2AKMh5xzWtP
/evIqjomdbnfMJ7ynNTbD2udTtNrICyXCm+9ALhWcqInjJiS57VlUtlAHbYgDX8G
iU8fz/AF4Jv/MzJcRPlBgrHB/nkuKCa9mbIE29kmaJVYNC9dqPSisu+E9ZkNRFtY
EPmz5+JCRcYj2aEqDovd1xu5kmkO5R5DzrwRDCxcu5DondrwZZpImkLqNKxwQrPH
vrJmfZ43QOgnxJbwlGnGbMsg+F8Gw3dy+30XQe5OaZYlHYAhDTdEldhY5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFECdZwFNQoYr/LfsSgRQvv1OWJdnMB8GA1UdIwQY
MBaAFK5/GHwSeC/E2ER2IjWZMynEVjoNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm44WWZCSjRMOFRZUkhZaU5aa3pLY1JXT2cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9jOGY2NDctZWQ3OS00MmQ5LThkZjYt
MDU4Nzc2MDRhMDFkLzEvcm44WWZCSjRMOFRZUkhZaU5aa3pLY1JXT2cwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9jOGY2NDctZWQ3OS00MmQ5LThkZjYtMDU4Nzc2MDRhMDFk
LzEvcm44WWZCSjRMOFRZUkhZaU5aa3pLY1JXT2cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAptlru6rD
szNDhve1t3jIYtwCzED4b++3/fcoJZWSXIpovInxshHccMbfynMdXRQR6nLrEfgu
Fq+7N815zudXjVRcMG1H50y4r+pbVreGhfVpISdspnYY4T4vkeNzgGNdfqxzZltV
pxthXyCx3Suu7tHXVh8U/I6J1FM45SUtaVe5YIjgC8paLOdkuvT3EdIVaYus7dYW
ofkFd2G5U77R3+IrpmNv8ftnMsFPm5rmPaDYWQo4mpEquKud+mmDx+cUejfKx/Rc
A9HzsWS9rpzovatpgQx0Awh3Z5cN0wdHVW+tPt0/1dqTjgGB1kiQSnm2//xpZaKO
zuDZEnrnffanUQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:40:04 2026 by rpki-client