Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
File: rKbwaDzHS63SOoFAw4XxyBziTfc.mft (raw, json)
Hash identifier: QVFQWFhdeoDwdxHEq5mEKi6zaf+CXuEOHz0siphFnRY=
Subject key identifier: 77:7A:8E:4D:40:DD:E5:A2:42:24:3F:7F:05:E7:33:04:22:42:39:28
Authority key identifier: AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
Certificate issuer: /CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Certificate serial: 019D9AE345262C812A968668934DE554EF82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
Manifest number: 0F6B
Signing time: Fri 17 Apr 2026 10:01:18 +0000
Manifest this update: Fri 17 Apr 2026 10:01:18 +0000
Manifest next update: Sat 18 Apr 2026 10:01:18 +0000
Files and hashes: 1: Hl-oGjMEXSHh22tv7GvQWauR6Ls.roa (hash: k0kjDMHyxNG6XHvsH8YWl0QTbYb+WeHWx5ruPE+qWhs=)
2: rKbwaDzHS63SOoFAw4XxyBziTfc.crl (hash: lIjgfLo1huNwNkJP7MV3fMjU83u2n+w+KkvVg4mFdl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:45:26:2c:81:2a:96:86:68:93:4d:e5:54:ef:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Validity
Not Before: Apr 17 10:01:18 2026 GMT
Not After : Apr 18 10:01:18 2026 GMT
Subject: CN=777a8e4d40dde5a242243f7f05e7330422423928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fc:cc:52:e1:09:ea:c1:26:c8:b8:18:a6:24:
64:a7:fe:f4:76:32:6b:8f:c9:22:46:5d:e0:e6:23:
b2:70:46:25:95:75:da:0e:e4:c6:b0:7d:e5:6d:b0:
1f:92:51:cd:8b:4a:29:46:a0:d8:93:ac:29:43:ab:
a5:24:31:d8:88:8a:a5:e6:de:42:4d:ec:95:3c:cd:
82:a2:d1:33:79:2b:9c:4d:be:7f:10:1e:0e:45:71:
bb:6f:5e:b4:76:f6:8d:6a:c6:3c:e1:2a:66:5e:26:
04:47:8a:2d:f1:b0:e2:f1:57:05:7b:37:02:eb:46:
3f:96:6a:65:10:40:85:d9:91:29:be:61:4a:fd:fa:
ef:ac:44:6d:9d:02:0e:ce:03:f3:6b:a6:fb:f7:e8:
59:ec:79:c1:68:28:7a:db:ff:ae:c5:2b:57:83:b4:
31:14:ea:b0:b9:78:73:8d:01:09:3e:e6:2d:dc:85:
fe:6f:12:b7:8f:7d:dd:31:5c:ba:4b:17:26:28:1f:
a0:54:7b:0f:40:7c:4d:17:b2:1f:de:76:10:bd:1a:
39:28:4f:e2:83:85:05:13:fd:43:15:50:e8:22:db:
c8:db:30:06:c5:38:23:de:45:bb:ac:cd:69:d2:2c:
73:0e:f7:71:a8:dc:69:cf:25:48:bf:7f:f5:28:2f:
77:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7A:8E:4D:40:DD:E5:A2:42:24:3F:7F:05:E7:33:04:22:42:39:28
X509v3 Authority Key Identifier:
keyid:AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:f4:d7:e0:96:36:18:72:00:53:6b:fe:4d:5b:84:bf:01:33:
16:f7:1c:fa:63:bf:7d:ed:52:f3:b9:0e:a5:74:4d:0f:e0:3c:
74:ed:8f:d6:c1:fa:c9:1a:60:78:c4:42:ab:36:26:52:1a:44:
a0:dd:65:64:19:71:3e:22:b6:cc:1f:9c:c3:1f:29:48:1b:c3:
d3:bc:16:32:26:60:47:89:1b:1c:b7:03:69:80:81:c7:64:f7:
53:d7:72:e6:e9:8c:c5:f4:d3:36:99:40:2f:5d:4c:3b:ff:e2:
ec:f9:ae:fa:0c:6f:ee:3a:99:31:2f:f3:e5:d0:91:02:40:16:
35:d0:f7:2d:19:77:1c:17:70:46:48:dc:50:0f:c7:de:63:f8:
94:09:e7:52:ce:04:4b:80:94:e6:b8:92:b3:d1:f7:5d:9c:67:
d2:42:1c:b0:bc:98:f9:1f:bc:c8:d9:a1:5f:7c:d8:6f:73:c6:
91:b9:3c:44:d2:2d:5c:ec:01:42:da:57:fc:ba:aa:42:d3:29:
62:e8:63:ec:88:bb:5b:66:b1:d8:75:f9:2a:89:5a:7c:46:fe:
0a:b9:96:72:26:f8:80:67:47:32:1c:f5:f7:ce:bc:34:7b:53:
94:ea:41:ed:96:b1:10:5d:fb:08:73:3c:ad:6d:4b:6c:e7:43:
f8:2a:09:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2a40UmLIEqloZok03lVO+CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjYTZmMDY4M2NjNzRiYWRkMjNhODE0MGMzODVmMWM4MWNl
MjRkZjcwHhcNMjYwNDE3MTAwMTE4WhcNMjYwNDE4MTAwMTE4WjAzMTEwLwYDVQQD
Eyg3NzdhOGU0ZDQwZGRlNWEyNDIyNDNmN2YwNWU3MzMwNDIyNDIzOTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPzMUuEJ6sEmyLgYpiRkp/70djJr
j8kiRl3g5iOycEYllXXaDuTGsH3lbbAfklHNi0opRqDYk6wpQ6ulJDHYiIql5t5C
TeyVPM2CotEzeSucTb5/EB4ORXG7b160dvaNasY84SpmXiYER4ot8bDi8VcFezcC
60Y/lmplEECF2ZEpvmFK/frvrERtnQIOzgPza6b79+hZ7HnBaCh62/+uxStXg7Qx
FOqwuXhzjQEJPuYt3IX+bxK3j33dMVy6SxcmKB+gVHsPQHxNF7If3nYQvRo5KE/i
g4UFE/1DFVDoItvI2zAGxTgj3kW7rM1p0ixzDvdxqNxpzyVIv3/1KC93+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHd6jk1A3eWiQiQ/fwXnMwQiQjkoMB8GA1UdIwQY
MBaAFKym8Gg8x0ut0jqBQMOF8cgc4k33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8yZDQ4MTgtZjE4Mi00YjQ2LTllOGMt
MDgyNzk2MWMwNWUwLzEvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8yZDQ4MTgtZjE4Mi00YjQ2LTllOGMtMDgyNzk2MWMwNWUw
LzEvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqfTX4JY2
GHIAU2v+TVuEvwEzFvcc+mO/fe1S87kOpXRND+A8dO2P1sH6yRpgeMRCqzYmUhpE
oN1lZBlxPiK2zB+cwx8pSBvD07wWMiZgR4kbHLcDaYCBx2T3U9dy5umMxfTTNplA
L11MO//i7Pmu+gxv7jqZMS/z5dCRAkAWNdD3LRl3HBdwRkjcUA/H3mP4lAnnUs4E
S4CU5riSs9H3XZxn0kIcsLyY+R+8yNmhX3zYb3PGkbk8RNItXOwBQtpX/LqqQtMp
Yuhj7Ii7W2ax2HX5KolafEb+CrmWcib4gGdHMhz19868NHtTlOpB7ZaxEF37CHM8
rW1LbOdD+CoJUQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 19:46:12 2026 by rpki-client