Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
File: hyELNM4ALjCgpU-r-ivKxG36cig.mft (raw, json)
Hash identifier: vrnMJXxSsv8/EKVs59HbRcThGT96YPfnOT5A+Pu4c7E=
Subject key identifier: 77:9A:3B:B1:F4:BE:45:F8:0B:54:80:7A:7A:09:40:C4:37:49:4D:EF
Authority key identifier: 87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28
Certificate issuer: /CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228
Certificate serial: 019D99D08F57B4CA170899A28490D2C0F850
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
Manifest number: 06E0
Signing time: Fri 17 Apr 2026 05:01:15 +0000
Manifest this update: Fri 17 Apr 2026 05:01:15 +0000
Manifest next update: Sat 18 Apr 2026 05:01:15 +0000
Files and hashes: 1: OMhZqYIdlbW6MwJAX5hoXZbZs2s.roa (hash: Fz6GaOA6LETuiDcthzdYWCgbQdrzncp3eZt1aOMvmKA=)
2: hyELNM4ALjCgpU-r-ivKxG36cig.crl (hash: Q5gY/YmcFFpOgSZq7fU+Wx5yjeahFTt6WBfBWmsByNI=)
3: wOUhGVesCisY2HnfnAjl6Jnr-xg.roa (hash: M8DXDaBoO3oUhqazgEAtDmfaFAvLdpC11jKkFsNS9mI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:8f:57:b4:ca:17:08:99:a2:84:90:d2:c0:f8:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228
Validity
Not Before: Apr 17 05:01:15 2026 GMT
Not After : Apr 18 05:01:15 2026 GMT
Subject: CN=779a3bb1f4be45f80b54807a7a0940c437494def
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:95:89:7a:26:4a:c7:7f:ef:d8:3f:5a:b6:65:
7f:19:fa:bd:56:e2:79:db:26:18:f7:79:a8:b6:59:
4a:1a:da:c0:33:df:31:7f:fe:e0:2b:ac:d2:76:9b:
0a:ed:96:9e:24:2c:1f:88:64:96:1d:74:f4:ca:c1:
3a:bc:ed:09:fe:eb:43:2a:6e:f2:49:d1:f0:25:af:
5c:21:34:03:4a:69:fa:4f:30:3b:39:14:d1:4e:c7:
88:b5:70:59:00:11:6f:fd:21:73:b8:7d:bf:bd:f5:
77:f8:b6:7b:bb:7e:50:dd:a7:e3:99:a0:8c:53:76:
91:36:58:0f:40:a9:8f:bd:b6:06:cb:a4:1b:01:45:
ac:d2:28:40:95:c9:0f:e9:54:fc:b5:86:d6:88:a6:
11:1a:37:ad:be:48:39:30:25:ac:33:c9:88:cd:8a:
94:81:cc:27:37:50:92:24:fd:c6:9c:17:d6:3e:56:
4e:80:b4:b3:35:ad:19:fc:87:e9:06:f2:e8:63:53:
4c:67:c6:73:6c:15:3d:f2:c8:ec:39:bf:ae:84:6c:
e5:fd:ec:0c:49:29:e0:5c:46:94:c6:01:d1:30:ad:
12:d3:41:18:21:c6:5a:b3:26:e4:99:f9:34:e1:d9:
06:79:4f:95:38:1b:28:74:1a:88:ac:ae:ba:a5:82:
de:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:9A:3B:B1:F4:BE:45:F8:0B:54:80:7A:7A:09:40:C4:37:49:4D:EF
X509v3 Authority Key Identifier:
keyid:87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:0c:31:2c:61:84:09:65:8e:e0:43:57:55:8a:10:b8:36:a2:
e8:45:fd:ea:f9:0f:aa:13:e3:ec:6f:b4:94:97:b4:c7:47:55:
ee:dc:f6:c8:44:73:42:e5:d7:2e:a5:5e:24:22:a0:07:f4:3d:
78:11:46:fd:39:61:8a:17:ca:d0:5c:78:f3:a5:20:27:25:b8:
12:83:5a:c1:b9:dc:82:a7:8c:11:03:c8:57:4a:bf:48:59:a2:
bb:86:05:5f:f8:78:f5:65:42:4a:55:83:d1:3b:47:14:af:19:
dc:cc:db:43:36:e6:b4:bd:ce:35:c0:d2:58:50:71:6a:15:83:
12:f2:c1:1f:d3:bf:ef:91:3c:68:38:a0:a8:39:4f:c2:31:a8:
26:8e:d7:b9:35:d0:c3:32:d8:0e:73:e3:fe:7c:ae:2a:a6:1d:
74:d6:fc:a1:1c:53:4f:f6:71:c5:43:61:90:e6:d6:a3:eb:20:
d1:2a:1e:70:fa:f7:b1:69:ef:01:9d:26:e3:87:c2:28:1c:a0:
20:45:91:5e:df:48:d8:8f:22:18:a8:ac:04:f7:2b:e7:d0:75:
9b:16:a5:f6:a3:bc:0d:93:19:b7:cf:df:44:48:9e:54:fe:96:
8b:1d:cb:60:9b:5c:ab:78:81:bc:5d:36:15:89:17:51:05:21:
51:af:f8:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Z0I9XtMoXCJmihJDSwPhQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MjEwYjM0Y2UwMDJlMzBhMGE1NGZhYmZhMmJjYWM0NmRm
YTcyMjgwHhcNMjYwNDE3MDUwMTE1WhcNMjYwNDE4MDUwMTE1WjAzMTEwLwYDVQQD
Eyg3NzlhM2JiMWY0YmU0NWY4MGI1NDgwN2E3YTA5NDBjNDM3NDk0ZGVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJWJeiZKx3/v2D9atmV/Gfq9VuJ5
2yYY93motllKGtrAM98xf/7gK6zSdpsK7ZaeJCwfiGSWHXT0ysE6vO0J/utDKm7y
SdHwJa9cITQDSmn6TzA7ORTRTseItXBZABFv/SFzuH2/vfV3+LZ7u35Q3afjmaCM
U3aRNlgPQKmPvbYGy6QbAUWs0ihAlckP6VT8tYbWiKYRGjetvkg5MCWsM8mIzYqU
gcwnN1CSJP3GnBfWPlZOgLSzNa0Z/IfpBvLoY1NMZ8ZzbBU98sjsOb+uhGzl/ewM
SSngXEaUxgHRMK0S00EYIcZasybkmfk04dkGeU+VOBsodBqIrK66pYLexQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHeaO7H0vkX4C1SAenoJQMQ3SU3vMB8GA1UdIwQY
MBaAFIchCzTOAC4woKVPq/orysRt+nIoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHlFTE5NNEFMakNncFUtci1pdkt4RzM2Y2lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS8yOWEwZGMtMjBhZi00MzdlLTk4NzAt
MzY2OWQxYjU2OWQ2LzEvaHlFTE5NNEFMakNncFUtci1pdkt4RzM2Y2lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS8yOWEwZGMtMjBhZi00MzdlLTk4NzAtMzY2OWQxYjU2OWQ2
LzEvaHlFTE5NNEFMakNncFUtci1pdkt4RzM2Y2lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxAwxLGGE
CWWO4ENXVYoQuDai6EX96vkPqhPj7G+0lJe0x0dV7tz2yERzQuXXLqVeJCKgB/Q9
eBFG/TlhihfK0Fx486UgJyW4EoNawbncgqeMEQPIV0q/SFmiu4YFX/h49WVCSlWD
0TtHFK8Z3MzbQzbmtL3ONcDSWFBxahWDEvLBH9O/75E8aDigqDlPwjGoJo7XuTXQ
wzLYDnPj/nyuKqYddNb8oRxTT/ZxxUNhkObWo+sg0SoecPr3sWnvAZ0m44fCKByg
IEWRXt9I2I8iGKisBPcr59B1mxal9qO8DZMZt8/fREieVP6Wix3LYJtcq3iBvF02
FYkXUQUhUa/41Q==
-----END CERTIFICATE-----
Generated at Fri Apr 17 13:19:21 2026 by rpki-client