Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
File: ISApS0bJAtk8B5wWhs_kW7ozGMs.mft (raw, json)
Hash identifier: IozPU9hwWw7AJ9agdQKAXTNqFhwXaZyGcpO//XfYzWs=
Subject key identifier: 9A:87:16:46:5F:3B:09:A3:80:4D:10:D6:9E:99:36:37:EA:CD:AC:58
Authority key identifier: 21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
Certificate issuer: /CN=2120294b46c902d93c079c1686cfe45bba3318cb
Certificate serial: 019D98F4505E3DF16F62E1B0173C19C59D76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
Manifest number: 1057
Signing time: Fri 17 Apr 2026 01:00:41 +0000
Manifest this update: Fri 17 Apr 2026 01:00:41 +0000
Manifest next update: Sat 18 Apr 2026 01:00:41 +0000
Files and hashes: 1: ISApS0bJAtk8B5wWhs_kW7ozGMs.crl (hash: aTq0qHxSEGDbcmWryYTVlKXKolZ97BJko10ODSCjrIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:50:5e:3d:f1:6f:62:e1:b0:17:3c:19:c5:9d:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2120294b46c902d93c079c1686cfe45bba3318cb
Validity
Not Before: Apr 17 01:00:41 2026 GMT
Not After : Apr 18 01:00:41 2026 GMT
Subject: CN=9a8716465f3b09a3804d10d69e993637eacdac58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:cc:05:86:5e:3c:a7:9e:de:45:4a:53:58:9f:
92:02:f6:01:21:ba:5d:60:48:72:f3:66:5a:3d:50:
d8:7f:30:65:2a:dd:8d:87:c9:10:58:0e:8a:f8:45:
0e:12:c1:2a:7f:f0:8a:e6:5d:45:f2:49:94:6f:a2:
e4:c8:63:2e:9f:98:27:17:34:21:b3:88:26:4a:85:
16:c3:ce:40:f4:31:58:78:84:7d:57:32:23:76:78:
68:93:73:ea:3d:60:ce:f5:a2:4d:07:6c:b6:9b:79:
5b:0f:d1:0e:7f:9c:d6:8f:81:43:07:2f:d0:a0:4d:
dc:82:c0:4a:5b:b2:9b:ad:f1:55:ca:00:19:25:01:
8c:21:e3:3e:67:53:2d:30:ad:2b:fb:9b:b5:6f:ea:
5b:35:22:b8:b2:91:71:d3:03:ab:75:01:29:4a:7b:
bf:6e:ca:36:5a:09:b1:31:99:d5:fe:bf:d2:b4:44:
69:cd:9b:17:e4:81:b1:d5:c0:59:3c:10:b5:e7:9c:
ad:9d:e5:25:77:83:47:a3:77:24:84:5a:00:b4:3c:
8f:eb:9f:37:e1:57:fb:88:7a:82:37:fa:56:d2:51:
2c:0b:a3:98:e2:55:bb:44:c8:07:de:32:83:dc:23:
da:d1:b2:40:8a:43:5e:ea:9a:83:fc:39:74:d5:88:
e0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:87:16:46:5F:3B:09:A3:80:4D:10:D6:9E:99:36:37:EA:CD:AC:58
X509v3 Authority Key Identifier:
keyid:21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:07:6f:c8:0e:f0:9e:a2:c0:1b:bd:1c:61:5e:94:04:bd:fc:
ec:3e:15:4d:6a:3e:7d:19:8b:5f:75:c2:ae:10:68:d1:4e:aa:
aa:80:0e:bc:ef:5d:43:16:af:a1:7a:d4:1b:82:51:1f:95:a5:
47:02:5b:6b:b3:94:05:8b:a5:08:cd:b0:d3:82:78:85:90:e6:
c6:9b:85:7f:05:a0:14:c2:e9:4e:34:37:9b:41:ab:3c:fd:c5:
dd:fc:e4:e0:08:e4:88:ef:5a:19:47:2b:7d:f9:3d:ad:08:e7:
ed:27:21:52:88:54:08:c7:4b:88:d6:c9:1a:5c:2f:ad:6f:d8:
11:56:fb:6b:de:bb:55:81:ca:0a:91:4a:8b:9c:f4:56:4e:35:
b1:1a:6b:a9:63:e2:3d:78:15:d1:e4:73:c9:74:84:7a:05:4c:
88:5e:61:03:35:7a:e3:31:4a:13:51:e4:ea:89:15:72:3a:e0:
98:24:6f:9a:36:b1:ce:72:25:66:41:28:ca:12:2e:1f:07:34:
3b:a6:6b:1d:78:23:65:fc:52:c2:c2:6c:96:bb:c9:a9:c8:9b:
a0:b6:4a:54:a7:8e:75:6a:2c:e8:ed:5b:09:55:8b:89:22:d6:
39:06:fe:e5:47:36:5b:a8:5e:65:f8:c1:b2:6f:98:01:05:a6:
b2:43:0a:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9FBePfFvYuGwFzwZxZ12MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMjAyOTRiNDZjOTAyZDkzYzA3OWMxNjg2Y2ZlNDViYmEz
MzE4Y2IwHhcNMjYwNDE3MDEwMDQxWhcNMjYwNDE4MDEwMDQxWjAzMTEwLwYDVQQD
Eyg5YTg3MTY0NjVmM2IwOWEzODA0ZDEwZDY5ZTk5MzYzN2VhY2RhYzU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+8wFhl48p57eRUpTWJ+SAvYBIbpd
YEhy82ZaPVDYfzBlKt2Nh8kQWA6K+EUOEsEqf/CK5l1F8kmUb6LkyGMun5gnFzQh
s4gmSoUWw85A9DFYeIR9VzIjdnhok3PqPWDO9aJNB2y2m3lbD9EOf5zWj4FDBy/Q
oE3cgsBKW7KbrfFVygAZJQGMIeM+Z1MtMK0r+5u1b+pbNSK4spFx0wOrdQEpSnu/
bso2WgmxMZnV/r/StERpzZsX5IGx1cBZPBC155ytneUld4NHo3ckhFoAtDyP6583
4Vf7iHqCN/pW0lEsC6OY4lW7RMgH3jKD3CPa0bJAikNe6pqD/Dl01YjgcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJqHFkZfOwmjgE0Q1p6ZNjfqzaxYMB8GA1UdIwQY
MBaAFCEgKUtGyQLZPAecFobP5Fu6MxjLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVNBcFMwYkpBdGs4QjV3V2hzX2tXN296R01zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9kN2JjYjctOTRmMi00OTA4LTk3N2Qt
YTIwZGE1NmM0MTg0LzEvSVNBcFMwYkpBdGs4QjV3V2hzX2tXN296R01zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS9kN2JjYjctOTRmMi00OTA4LTk3N2QtYTIwZGE1NmM0MTg0
LzEvSVNBcFMwYkpBdGs4QjV3V2hzX2tXN296R01zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQAdvyA7w
nqLAG70cYV6UBL387D4VTWo+fRmLX3XCrhBo0U6qqoAOvO9dQxavoXrUG4JRH5Wl
RwJba7OUBYulCM2w04J4hZDmxpuFfwWgFMLpTjQ3m0GrPP3F3fzk4AjkiO9aGUcr
ffk9rQjn7SchUohUCMdLiNbJGlwvrW/YEVb7a967VYHKCpFKi5z0Vk41sRprqWPi
PXgV0eRzyXSEegVMiF5hAzV64zFKE1Hk6okVcjrgmCRvmjaxznIlZkEoyhIuHwc0
O6ZrHXgjZfxSwsJslrvJqciboLZKVKeOdWos6O1bCVWLiSLWOQb+5Uc2W6heZfjB
sm+YAQWmskMKOQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:45:17 2026 by rpki-client