Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft
File: soehvthfaZtS-gaqGeUc8liPFLk.mft (raw, json)
Hash identifier: EJWnMxzEkSxr3b3zzOm4LU3ZlT3jon7sm2/QQiWjnCk=
Subject key identifier: 11:B4:BE:16:7E:D6:D6:B5:DF:9A:6F:E2:6B:BD:93:AF:E6:2D:7A:99
Authority key identifier: B2:87:A1:BE:D8:5F:69:9B:52:FA:06:AA:19:E5:1C:F2:58:8F:14:B9
Certificate issuer: /CN=b287a1bed85f699b52fa06aa19e51cf2588f14b9
Certificate serial: 019DA48A876182B97D5573140EC3BC3E02DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soehvthfaZtS-gaqGeUc8liPFLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft
Manifest number: 1369
Signing time: Sun 19 Apr 2026 07:00:35 +0000
Manifest this update: Sun 19 Apr 2026 07:00:35 +0000
Manifest next update: Mon 20 Apr 2026 07:00:35 +0000
Files and hashes: 1: soehvthfaZtS-gaqGeUc8liPFLk.crl (hash: s3g7qltC6gE2wo17gOjbZbMgY5aguBOk4Z8G82GcpwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft
rsync://rpki.ripe.net/repository/DEFAULT/soehvthfaZtS-gaqGeUc8liPFLk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8a:87:61:82:b9:7d:55:73:14:0e:c3:bc:3e:02:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b287a1bed85f699b52fa06aa19e51cf2588f14b9
Validity
Not Before: Apr 19 07:00:35 2026 GMT
Not After : Apr 20 07:00:35 2026 GMT
Subject: CN=11b4be167ed6d6b5df9a6fe26bbd93afe62d7a99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ee:15:8a:1e:b7:61:03:0d:87:00:f8:83:c3:
0b:e7:c9:9e:f4:09:3a:50:d6:5d:bb:e6:1c:31:97:
4f:35:1b:9d:8f:59:7b:f6:da:92:d8:c9:6e:47:de:
a0:e0:f7:74:d4:dc:20:f5:cb:13:c6:3d:f1:49:b3:
25:5a:ec:ce:1a:33:31:79:8f:49:52:da:48:32:d0:
20:21:d8:b5:76:ec:5e:6c:b8:ed:05:d2:1e:6f:a0:
15:fe:c5:6f:4e:63:47:9f:13:02:ca:97:d0:40:52:
cd:7b:b5:17:6a:02:30:60:97:a1:01:50:55:92:ce:
65:fd:b2:02:64:0d:fa:e4:24:e6:90:f8:7c:7f:4f:
d5:7a:4a:d1:ed:22:2f:c5:4d:3e:2a:22:46:6f:ca:
88:02:e8:5c:fc:4d:f7:ba:f6:67:b3:a8:76:e3:1d:
43:3f:92:ba:9d:0d:65:b9:03:27:b8:79:26:de:a4:
8f:c3:0e:6c:bf:6e:df:0d:d4:53:b8:43:77:bd:cb:
a1:d4:eb:5b:7d:5d:99:33:4d:ad:1c:73:88:be:bf:
e0:92:43:de:51:88:2d:f2:79:a3:2f:a5:0d:fa:ff:
83:47:a7:50:41:a9:cb:af:d1:bd:29:b9:64:c7:e5:
06:3c:55:c8:35:d8:7c:25:07:7d:49:f4:b2:2f:75:
f8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B4:BE:16:7E:D6:D6:B5:DF:9A:6F:E2:6B:BD:93:AF:E6:2D:7A:99
X509v3 Authority Key Identifier:
keyid:B2:87:A1:BE:D8:5F:69:9B:52:FA:06:AA:19:E5:1C:F2:58:8F:14:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soehvthfaZtS-gaqGeUc8liPFLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:1f:ee:57:34:33:cf:59:6b:5b:be:b9:d0:97:d4:3a:b9:9b:
d7:54:1a:ba:23:c8:04:de:9c:de:47:06:b3:52:4d:1d:f9:26:
e0:95:16:4a:e8:4f:d0:c1:81:7b:66:af:38:7e:a8:80:01:a8:
55:08:8f:1a:22:e9:ab:25:ac:46:55:b9:9d:0a:46:0b:e8:e6:
6d:39:0e:d5:65:41:03:8c:5c:8a:83:11:cd:7f:03:92:9c:24:
01:e5:d0:65:de:64:df:29:f1:17:96:99:e7:c8:a7:3f:33:65:
00:35:b6:2a:33:97:c4:9f:56:44:cb:40:33:e1:5e:b9:8a:fc:
63:23:b8:eb:40:77:86:66:b9:b1:6c:15:3d:b5:03:35:30:bc:
71:ec:9c:0f:e1:0c:10:c2:6d:0e:ef:a2:67:10:62:6d:53:8f:
0b:6d:57:8c:ce:e6:1a:7f:fb:59:bf:b1:6d:5b:d8:1f:b7:44:
93:6a:32:85:73:77:09:be:3f:90:2c:c4:51:b6:5c:90:52:6b:
a5:20:45:92:65:0e:7a:7f:eb:6e:f0:67:92:ec:9d:a2:5e:59:
53:61:98:73:e3:42:0f:d5:1a:fa:6d:62:e4:a5:90:e9:5b:63:
f6:4c:a1:95:44:4e:87:9a:61:03:e7:e1:8b:52:bf:4f:05:3a:
a9:69:5b:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2kiodhgrl9VXMUDsO8PgLfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyODdhMWJlZDg1ZjY5OWI1MmZhMDZhYTE5ZTUxY2YyNTg4
ZjE0YjkwHhcNMjYwNDE5MDcwMDM1WhcNMjYwNDIwMDcwMDM1WjAzMTEwLwYDVQQD
EygxMWI0YmUxNjdlZDZkNmI1ZGY5YTZmZTI2YmJkOTNhZmU2MmQ3YTk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+4Vih63YQMNhwD4g8ML58me9Ak6
UNZdu+YcMZdPNRudj1l79tqS2MluR96g4Pd01Nwg9csTxj3xSbMlWuzOGjMxeY9J
UtpIMtAgIdi1duxebLjtBdIeb6AV/sVvTmNHnxMCypfQQFLNe7UXagIwYJehAVBV
ks5l/bICZA365CTmkPh8f0/VekrR7SIvxU0+KiJGb8qIAuhc/E33uvZns6h24x1D
P5K6nQ1luQMnuHkm3qSPww5sv27fDdRTuEN3vcuh1OtbfV2ZM02tHHOIvr/gkkPe
UYgt8nmjL6UN+v+DR6dQQanLr9G9Kblkx+UGPFXINdh8JQd9SfSyL3X4rQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBG0vhZ+1ta135pv4mu9k6/mLXqZMB8GA1UdIwQY
MBaAFLKHob7YX2mbUvoGqhnlHPJYjxS5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc29laHZ0aGZhWnRTLWdhcUdlVWM4bGlQRkxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wYTI3N2UtMDY1Ni00Y2ZlLWE4YTgt
MDJlM2Q5ZTAyZWVjLzEvc29laHZ0aGZhWnRTLWdhcUdlVWM4bGlQRkxrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8wYTI3N2UtMDY1Ni00Y2ZlLWE4YTgtMDJlM2Q5ZTAyZWVj
LzEvc29laHZ0aGZhWnRTLWdhcUdlVWM4bGlQRkxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYB/uVzQz
z1lrW7650JfUOrmb11QauiPIBN6c3kcGs1JNHfkm4JUWSuhP0MGBe2avOH6ogAGo
VQiPGiLpqyWsRlW5nQpGC+jmbTkO1WVBA4xcioMRzX8DkpwkAeXQZd5k3ynxF5aZ
58inPzNlADW2KjOXxJ9WRMtAM+FeuYr8YyO460B3hma5sWwVPbUDNTC8ceycD+EM
EMJtDu+iZxBibVOPC21XjM7mGn/7Wb+xbVvYH7dEk2oyhXN3Cb4/kCzEUbZckFJr
pSBFkmUOen/rbvBnkuydol5ZU2GYc+NCD9Ua+m1i5KWQ6Vtj9kyhlUROh5phA+fh
i1K/TwU6qWlbZw==
-----END CERTIFICATE-----
Generated at Sun Apr 19 11:16:01 2026 by rpki-client