Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: HjosDw2ER9IAy4W5Dt+PgIERWnEdcXwDCXlpkdlErLA=
Subject key identifier: 81:20:1D:81:1F:86:68:6B:04:A7:16:C6:05:5D:07:76:C2:C3:EF:3E
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 019DA378634320DE7D54CF3BBF76490BAB54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 08F0
Signing time: Sun 19 Apr 2026 02:01:09 +0000
Manifest this update: Sun 19 Apr 2026 02:01:09 +0000
Manifest next update: Mon 20 Apr 2026 02:01:09 +0000
Files and hashes: 1: QHXSRTuQ2wXN4fBaqbTGI2do0QM.roa (hash: 6/Lj3vL/L1J4PjbZ1lCMZ4grKgrWI3SnlcnhAkor32k=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: Zgq9+tHUhqr69wx8aC496TG23lzDetPVet3y2cLFYdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:78:63:43:20:de:7d:54:cf:3b:bf:76:49:0b:ab:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Apr 19 02:01:09 2026 GMT
Not After : Apr 20 02:01:09 2026 GMT
Subject: CN=81201d811f86686b04a716c6055d0776c2c3ef3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4e:9e:77:c5:5e:65:6d:50:e9:39:0c:af:98:
d1:5f:e8:1f:96:bb:31:b6:39:72:ef:d1:d0:2c:77:
11:19:b6:d3:9c:7f:73:4f:3f:f9:32:46:eb:5a:a9:
4a:84:1e:ad:78:1d:be:04:13:0c:a1:ab:5e:e3:22:
b0:73:37:03:9c:1f:12:92:6a:e1:71:43:bc:70:a7:
7a:51:e1:1b:de:ed:ec:d2:0c:f2:7f:e3:06:43:96:
e9:54:54:59:81:3c:f2:25:4d:dc:e1:03:f0:55:60:
17:76:f9:c6:0c:c0:98:cd:d9:1b:87:91:ed:c3:71:
22:36:06:61:05:36:36:b8:99:df:75:62:33:05:d5:
b4:46:66:34:f2:60:6f:23:ed:02:a9:71:2d:38:19:
77:74:c9:ae:32:18:21:6e:ef:e1:cd:08:db:07:96:
b1:88:37:27:40:a8:2f:48:bc:02:a7:68:a0:75:7a:
5e:a4:db:83:7f:5d:8b:bc:dc:ac:79:b8:32:fc:2b:
cf:cc:04:a5:33:01:c1:b3:f2:5f:b3:6d:4f:85:9a:
54:2e:f2:7d:e9:5c:32:0b:9c:1f:0d:db:d6:33:0d:
76:e6:a9:db:8f:ad:d6:c8:70:0d:d4:28:f7:ad:e8:
1b:5d:21:57:13:2e:b6:fe:ab:27:60:1c:fc:d9:9d:
b4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:20:1D:81:1F:86:68:6B:04:A7:16:C6:05:5D:07:76:C2:C3:EF:3E
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:2d:f8:ba:0f:46:89:3b:8a:a2:f1:03:5c:bc:98:9b:55:b2:
52:41:93:95:38:a9:0d:07:69:7f:b3:7f:11:3c:d7:fd:23:54:
0a:e8:61:26:31:af:d2:fe:f2:cf:1f:a9:58:83:f9:39:58:eb:
b5:e5:ac:8c:ff:9f:8a:17:93:8c:78:42:07:b8:75:e1:e3:dd:
84:c1:53:1c:31:b9:0b:a9:19:70:6d:dd:f0:22:b9:d7:00:73:
a3:6b:46:9a:72:d0:3c:6b:91:51:eb:61:a5:60:2c:90:b5:82:
4c:06:ae:44:f8:37:1e:e2:df:b2:e6:79:28:03:2f:65:6b:15:
c1:b6:f4:e6:cc:9c:b4:9f:63:ec:41:e1:6f:1f:56:ef:9a:87:
59:bd:db:9a:61:bf:32:48:b4:4b:52:c7:ff:ee:a9:b8:f9:40:
0d:da:4f:f3:75:26:5b:a9:cf:03:62:85:0a:31:58:69:a1:1d:
4c:01:a6:2f:44:e0:e4:89:4f:f1:e9:01:2c:ee:cb:15:43:87:
db:d4:5d:5c:65:c3:2c:56:bd:39:de:d4:89:49:85:7e:73:a4:
1a:53:96:56:85:57:67:ae:45:a1:e1:6c:30:1e:fb:10:9a:bc:
4e:71:3a:0e:91:8a:46:57:29:5c:63:79:63:29:a8:6f:80:e2:
e1:e2:51:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2jeGNDIN59VM87v3ZJC6tUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiM2U1OTZhMjRkNDM2NTBjYjYwZThmY2M5ZTQ0ZDZmOGM5
MjlkMzUwHhcNMjYwNDE5MDIwMTA5WhcNMjYwNDIwMDIwMTA5WjAzMTEwLwYDVQQD
Eyg4MTIwMWQ4MTFmODY2ODZiMDRhNzE2YzYwNTVkMDc3NmMyYzNlZjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA306ed8VeZW1Q6TkMr5jRX+gflrsx
tjly79HQLHcRGbbTnH9zTz/5MkbrWqlKhB6teB2+BBMMoate4yKwczcDnB8Skmrh
cUO8cKd6UeEb3u3s0gzyf+MGQ5bpVFRZgTzyJU3c4QPwVWAXdvnGDMCYzdkbh5Ht
w3EiNgZhBTY2uJnfdWIzBdW0RmY08mBvI+0CqXEtOBl3dMmuMhghbu/hzQjbB5ax
iDcnQKgvSLwCp2igdXpepNuDf12LvNysebgy/CvPzASlMwHBs/Jfs21PhZpULvJ9
6VwyC5wfDdvWMw125qnbj63WyHAN1Cj3regbXSFXEy62/qsnYBz82Z20GwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIEgHYEfhmhrBKcWxgVdB3bCw+8+MB8GA1UdIwQY
MBaAFEs+WWok1DZQy2Do/MnkTW+Mkp01MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3o1WmFpVFVObERMWU9qOHllUk5iNHlTblRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My80YjJmYjItYzBhYi00ZWVjLThkMDEt
MzNkMThiZjZkZjU1LzEvU3o1WmFpVFVObERMWU9qOHllUk5iNHlTblRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My80YjJmYjItYzBhYi00ZWVjLThkMDEtMzNkMThiZjZkZjU1
LzEvU3o1WmFpVFVObERMWU9qOHllUk5iNHlTblRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANS34ug9G
iTuKovEDXLyYm1WyUkGTlTipDQdpf7N/ETzX/SNUCuhhJjGv0v7yzx+pWIP5OVjr
teWsjP+fiheTjHhCB7h14ePdhMFTHDG5C6kZcG3d8CK51wBzo2tGmnLQPGuRUeth
pWAskLWCTAauRPg3HuLfsuZ5KAMvZWsVwbb05syctJ9j7EHhbx9W75qHWb3bmmG/
Mki0S1LH/+6puPlADdpP83UmW6nPA2KFCjFYaaEdTAGmL0Tg5IlP8ekBLO7LFUOH
29RdXGXDLFa9Od7UiUmFfnOkGlOWVoVXZ65FoeFsMB77EJq8TnE6DpGKRlcpXGN5
Yymob4Di4eJRbg==
-----END CERTIFICATE-----
Generated at Sun Apr 19 08:47:23 2026 by rpki-client