Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
File: hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft (raw, json)
Hash identifier: qhYgRtyBTPFsVuETYuOF1NbFAF2b2pnUKggKESwFNu0=
Subject key identifier: 0F:E0:25:EC:9A:7A:B1:7F:71:54:9E:1C:10:15:BA:52:BA:F8:52:C2
Authority key identifier: 85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C
Certificate issuer: /CN=856350305f11387500f03c5a06ff73aa13592f1c
Certificate serial: 019D9B514EB5104A03B7CA1EA5EFAD4C1046
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
Manifest number: 18BE
Signing time: Fri 17 Apr 2026 12:01:29 +0000
Manifest this update: Fri 17 Apr 2026 12:01:29 +0000
Manifest next update: Sat 18 Apr 2026 12:01:29 +0000
Files and hashes: 1: hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl (hash: krPvieQdiXrUb8xdPmy7jMbGiZSVmRxH0D28FkSGdEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:51:4e:b5:10:4a:03:b7:ca:1e:a5:ef:ad:4c:10:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856350305f11387500f03c5a06ff73aa13592f1c
Validity
Not Before: Apr 17 12:01:29 2026 GMT
Not After : Apr 18 12:01:29 2026 GMT
Subject: CN=0fe025ec9a7ab17f71549e1c1015ba52baf852c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f1:12:bd:1f:d2:69:27:05:42:a1:e1:59:ed:
81:53:bc:07:27:65:85:f9:5f:82:0e:b2:1b:0c:d6:
b2:b5:3b:0c:fb:16:98:18:6a:03:52:2f:4a:21:9e:
44:90:19:8f:07:b2:71:cc:89:79:8f:6d:48:dc:c1:
49:90:80:d0:cb:8e:fb:46:94:29:38:6e:6b:63:5d:
59:9a:9a:b2:52:2d:28:c2:af:a1:73:2a:fd:e4:01:
d7:72:33:45:41:83:3d:27:b0:fd:6a:3b:a0:ad:8b:
c4:29:a9:62:f7:ef:31:e6:c3:a0:22:86:23:4d:56:
70:89:0d:7c:66:3f:78:fd:b7:05:81:a2:42:78:80:
58:2b:11:b5:e1:65:b6:c4:ab:df:f1:88:e1:2b:d0:
68:71:ba:aa:02:ee:e1:8a:dc:e0:69:2c:7f:9d:27:
76:14:c6:aa:84:df:03:28:ef:bb:ec:74:76:58:b9:
83:1a:31:5b:19:a3:45:b6:fc:78:84:44:bf:08:8c:
fe:ce:ca:1b:5a:d0:96:72:61:28:aa:30:1a:32:59:
4e:7b:e1:24:61:c6:28:58:8b:82:65:61:65:8b:a3:
7f:7e:d4:b7:99:f6:21:77:97:42:42:b0:0f:89:8d:
d8:39:b8:e6:e5:ca:7a:84:ec:11:10:38:67:10:c4:
54:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E0:25:EC:9A:7A:B1:7F:71:54:9E:1C:10:15:BA:52:BA:F8:52:C2
X509v3 Authority Key Identifier:
keyid:85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:5e:2f:0c:6c:94:ef:0b:75:89:15:80:ac:e4:5e:e9:5c:2c:
91:fc:47:36:77:7b:d9:2a:6c:99:78:c8:cc:da:86:7f:32:cc:
32:ea:4f:e3:bf:04:eb:32:73:68:15:07:32:5c:64:c0:94:a1:
cf:05:f6:2f:56:a4:d0:95:ad:e6:b2:e0:a8:0f:3f:63:5e:e4:
83:20:f0:d7:e2:2b:ae:4f:82:4c:c2:86:3b:96:57:99:7d:06:
39:a2:4d:16:e2:56:f3:f4:40:48:50:5f:5b:23:3c:35:dc:c5:
6b:b8:c5:a5:1b:00:01:b6:23:b1:4e:ea:4f:71:a7:4e:51:14:
f4:02:9f:cd:be:76:a0:d8:8f:9f:55:28:79:43:66:69:dc:6b:
06:60:c4:85:8a:73:6a:b5:b7:43:f4:3c:11:71:d5:94:98:b4:
0f:20:b2:71:22:8c:3b:3e:7c:10:36:41:fd:de:5c:f5:0a:fc:
eb:99:2b:00:00:e2:43:b6:73:66:0e:7b:22:37:ab:13:cc:70:
a5:74:1f:12:80:80:23:bc:a8:fb:47:1b:c5:97:df:be:ec:34:
9f:36:d0:22:78:ad:55:c1:c0:ef:0c:e5:6d:ff:11:5c:c6:14:
51:04:dd:fc:2f:46:7a:c6:0a:f6:c4:2f:e2:50:5f:c5:09:7d:
44:38:b6:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bUU61EEoDt8oepe+tTBBGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1NjM1MDMwNWYxMTM4NzUwMGYwM2M1YTA2ZmY3M2FhMTM1
OTJmMWMwHhcNMjYwNDE3MTIwMTI5WhcNMjYwNDE4MTIwMTI5WjAzMTEwLwYDVQQD
EygwZmUwMjVlYzlhN2FiMTdmNzE1NDllMWMxMDE1YmE1MmJhZjg1MmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvESvR/SaScFQqHhWe2BU7wHJ2WF
+V+CDrIbDNaytTsM+xaYGGoDUi9KIZ5EkBmPB7JxzIl5j21I3MFJkIDQy477RpQp
OG5rY11ZmpqyUi0owq+hcyr95AHXcjNFQYM9J7D9ajugrYvEKali9+8x5sOgIoYj
TVZwiQ18Zj94/bcFgaJCeIBYKxG14WW2xKvf8YjhK9BocbqqAu7hitzgaSx/nSd2
FMaqhN8DKO+77HR2WLmDGjFbGaNFtvx4hES/CIz+zsobWtCWcmEoqjAaMllOe+Ek
YcYoWIuCZWFli6N/ftS3mfYhd5dCQrAPiY3YObjm5cp6hOwREDhnEMRUgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA/gJeyaerF/cVSeHBAVulK6+FLCMB8GA1UdIwQY
MBaAFIVjUDBfETh1APA8Wgb/c6oTWS8cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFdOUU1GOFJPSFVBOER4YUJ2OXpxaE5aTHh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC83MTI5ZTctODI0Ny00YmJkLWIwMTct
ZWNlYzFiMmVkYjU5LzEvaFdOUU1GOFJPSFVBOER4YUJ2OXpxaE5aTHh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC83MTI5ZTctODI0Ny00YmJkLWIwMTctZWNlYzFiMmVkYjU5
LzEvaFdOUU1GOFJPSFVBOER4YUJ2OXpxaE5aTHh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbl4vDGyU
7wt1iRWArORe6VwskfxHNnd72SpsmXjIzNqGfzLMMupP478E6zJzaBUHMlxkwJSh
zwX2L1ak0JWt5rLgqA8/Y17kgyDw1+Irrk+CTMKGO5ZXmX0GOaJNFuJW8/RASFBf
WyM8NdzFa7jFpRsAAbYjsU7qT3GnTlEU9AKfzb52oNiPn1UoeUNmadxrBmDEhYpz
arW3Q/Q8EXHVlJi0DyCycSKMOz58EDZB/d5c9Qr865krAADiQ7ZzZg57IjerE8xw
pXQfEoCAI7yo+0cbxZffvuw0nzbQInitVcHA7wzlbf8RXMYUUQTd/C9GesYK9sQv
4lBfxQl9RDi2ug==
-----END CERTIFICATE-----
Generated at Fri Apr 17 20:46:52 2026 by rpki-client