Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json)
Hash identifier: 1Cw3WcOz167iQ3DCRNzpZWRqpG6wmHswqYlZNmILZy8=
Subject key identifier: 23:6F:E5:F7:78:80:45:70:6F:B4:24:DB:A1:3F:DE:3F:80:AA:94:1C
Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea
Certificate serial: 019D996278CF8375E1CEE7EE7AEADD38CF56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
Manifest number: 0EC3
Signing time: Fri 17 Apr 2026 03:01:00 +0000
Manifest this update: Fri 17 Apr 2026 03:01:00 +0000
Manifest next update: Sat 18 Apr 2026 03:01:00 +0000
Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: ajkKp7m5Lp89xivVST3/ohqm2l26KFIH4G0ZWM9vLEs=)
2: CdfLb6TofkWtReh_YXLGBpk_g6c.roa (hash: wzdkGkKknbVJYDWx/Ffoau27HnZpYfEves1fyMYu134=)
3: fqd_p4Wrb6OXddN1aeuYEJC8YH4.asa (hash: jmbRwKrDPkjso/zUasnqP+cDaGWkVpbGq+nQ2VGiSLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:78:cf:83:75:e1:ce:e7:ee:7a:ea:dd:38:cf:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea
Validity
Not Before: Apr 17 03:01:00 2026 GMT
Not After : Apr 18 03:01:00 2026 GMT
Subject: CN=236fe5f7788045706fb424dba13fde3f80aa941c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ba:c7:26:53:ef:53:1c:a6:f9:bf:5e:76:9d:
7d:b4:10:7a:95:67:15:5f:58:8d:7e:d6:ce:68:09:
ab:b8:26:15:62:84:b3:3a:47:d4:ec:c6:63:0a:70:
4c:b4:7a:86:6c:e2:5f:78:05:d2:c6:5f:42:e3:74:
90:56:0d:8a:27:41:66:b1:e1:6a:84:cd:ad:5e:6e:
fb:54:c7:d0:28:8a:16:de:59:93:96:c0:35:87:41:
cb:a2:3b:c5:f7:f0:09:f2:a6:a1:a6:03:5c:41:68:
87:5d:1a:25:6f:0e:26:68:d0:28:63:5d:5d:65:8d:
56:c4:d3:4e:3b:23:3b:fd:e9:f3:96:a7:5b:a0:f7:
f2:db:49:7b:94:e9:ca:fc:9e:78:ce:c0:b2:32:32:
c9:74:8b:36:86:67:fa:8d:fa:7b:50:6b:27:79:8e:
2a:7e:b1:0d:eb:43:ca:a1:63:38:a1:92:ea:9c:e5:
df:2c:e7:be:83:cd:c6:72:a5:99:41:29:64:74:a7:
49:9a:a2:92:79:d8:f8:8c:23:3a:38:15:53:3d:37:
04:d9:af:79:ef:39:1e:c9:d6:8e:9b:dd:8b:fe:0e:
c4:03:b1:f0:e5:6e:51:69:77:cb:bb:32:83:a6:86:
a5:ad:30:24:3a:f7:d6:07:7b:11:44:8e:df:f6:9c:
73:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:6F:E5:F7:78:80:45:70:6F:B4:24:DB:A1:3F:DE:3F:80:AA:94:1C
X509v3 Authority Key Identifier:
keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:c1:67:ff:43:6a:d6:40:84:09:25:57:da:7b:a8:a9:6b:1d:
07:2a:bc:70:7f:e1:33:1a:7a:c0:8b:9c:fe:66:d9:c5:c6:fd:
bf:48:8e:01:de:b4:b1:5d:c6:d0:cf:7a:0e:b1:51:72:eb:ca:
f3:14:85:77:af:3f:b6:2a:67:df:f5:e9:d2:d7:93:22:63:71:
ae:f0:c7:ff:52:e9:78:be:de:57:75:42:61:1a:e2:2d:c7:6d:
4b:18:99:09:3f:35:74:66:2c:93:52:07:34:6d:05:f9:d5:ad:
b0:43:28:2c:6c:f5:5a:18:2f:3c:08:b4:75:42:d3:39:84:e9:
68:2e:6e:e2:04:7c:c2:9c:6d:2f:73:d3:cf:fd:8f:25:4d:1c:
3a:ea:e6:42:a4:23:b4:35:47:df:04:78:3d:af:5e:25:26:84:
47:ca:7a:06:42:2c:98:b2:61:48:ea:cb:2c:23:ba:f1:bd:a0:
6e:44:62:c4:27:99:11:e3:73:3f:3d:8d:98:66:a3:d0:1b:1c:
a5:f1:c1:e7:89:92:f0:6f:90:c6:f7:8f:d2:17:65:5a:8c:ea:
1c:d5:86:f7:bd:d9:5c:14:69:73:3c:92:78:0c:3c:b2:5f:9d:
a9:3b:79:0b:fb:2c:06:8e:49:c2:5b:03:e8:2d:04:65:61:02:
9d:2d:5a:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZYnjPg3XhzufueurdOM9WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwNjdhN2I5ZGU3NjdlYjk3ZGI2NGU1MTY0Nzg0OTQ2MzNi
ZDU0ZWEwHhcNMjYwNDE3MDMwMTAwWhcNMjYwNDE4MDMwMTAwWjAzMTEwLwYDVQQD
EygyMzZmZTVmNzc4ODA0NTcwNmZiNDI0ZGJhMTNmZGUzZjgwYWE5NDFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7rHJlPvUxym+b9edp19tBB6lWcV
X1iNftbOaAmruCYVYoSzOkfU7MZjCnBMtHqGbOJfeAXSxl9C43SQVg2KJ0FmseFq
hM2tXm77VMfQKIoW3lmTlsA1h0HLojvF9/AJ8qahpgNcQWiHXRolbw4maNAoY11d
ZY1WxNNOOyM7/enzlqdboPfy20l7lOnK/J54zsCyMjLJdIs2hmf6jfp7UGsneY4q
frEN60PKoWM4oZLqnOXfLOe+g83GcqWZQSlkdKdJmqKSedj4jCM6OBVTPTcE2a95
7zkeydaOm92L/g7EA7Hw5W5RaXfLuzKDpoalrTAkOvfWB3sRRI7f9pxzaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCNv5fd4gEVwb7Qk26E/3j+AqpQcMB8GA1UdIwQY
MBaAFOBnp7nedn65fbZOUWR4SUYzvVTqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9kNTIwYzQtZGViNC00MzhiLTkzYmYt
NzY4ZjNkNmVlMTllLzEvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9kNTIwYzQtZGViNC00MzhiLTkzYmYtNzY4ZjNkNmVlMTll
LzEvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFcFn/0Nq
1kCECSVX2nuoqWsdByq8cH/hMxp6wIuc/mbZxcb9v0iOAd60sV3G0M96DrFRcuvK
8xSFd68/tipn3/Xp0teTImNxrvDH/1LpeL7eV3VCYRriLcdtSxiZCT81dGYsk1IH
NG0F+dWtsEMoLGz1WhgvPAi0dULTOYTpaC5u4gR8wpxtL3PTz/2PJU0cOurmQqQj
tDVH3wR4Pa9eJSaER8p6BkIsmLJhSOrLLCO68b2gbkRixCeZEeNzPz2NmGaj0Bsc
pfHB54mS8G+QxveP0hdlWozqHNWG973ZXBRpczySeAw8sl+dqTt5C/ssBo5JwlsD
6C0EZWECnS1ayg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 09:27:32 2026 by rpki-client