Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
File: ds5jfUe3gATQzPrjceaBh2isP6U.mft (raw, json)
Hash identifier: sktnDcP21k/75gVkiOTT7p3KQdcPv/hNCq43eDgxO1A=
Subject key identifier: 8C:68:A6:8C:55:CA:55:70:4E:93:D3:1F:74:B7:8A:25:97:9B:4C:05
Authority key identifier: 76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
Certificate issuer: /CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Certificate serial: 019D9A3E98F66930D4D35FE6487DBC1B2BE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
Manifest number: 16E4
Signing time: Fri 17 Apr 2026 07:01:26 +0000
Manifest this update: Fri 17 Apr 2026 07:01:26 +0000
Manifest next update: Sat 18 Apr 2026 07:01:26 +0000
Files and hashes: 1: ds5jfUe3gATQzPrjceaBh2isP6U.crl (hash: qUc0f8SB/yfEOlwDO7wcW14YWSgMXHW6hlMD37tZBzQ=)
2: huM-GkqhBk0Re8XPHSnKFpnI1VQ.roa (hash: yMEbieQN4mmr0B4PHYgIfIopNkBH4Ovpl20WF2oTeLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:98:f6:69:30:d4:d3:5f:e6:48:7d:bc:1b:2b:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Validity
Not Before: Apr 17 07:01:26 2026 GMT
Not After : Apr 18 07:01:26 2026 GMT
Subject: CN=8c68a68c55ca55704e93d31f74b78a25979b4c05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f4:02:92:47:fe:1b:36:9d:08:65:0d:ec:5c:
0d:94:e5:d7:79:86:bc:63:8b:a3:66:42:07:a1:e2:
0e:aa:f9:88:c2:a2:a3:12:96:ec:f2:14:89:25:4c:
20:42:ad:4e:a8:3d:4a:46:f3:ee:88:53:30:8a:a6:
bb:d2:77:51:18:9d:6a:72:aa:08:b5:3b:81:6b:ea:
bc:62:42:86:81:1f:b3:e5:7c:1d:82:1d:d8:9c:0b:
e5:43:38:a2:2d:7f:53:08:3d:c6:5a:52:44:bb:ec:
f3:f0:08:1a:22:9d:37:6c:a5:13:14:63:14:89:94:
46:4e:5e:d8:04:3e:d1:d3:b5:01:6f:5a:8a:80:20:
4a:9b:10:64:75:d9:45:3b:da:d5:5a:c1:75:73:7f:
60:57:6b:5f:5f:0b:52:72:8c:de:aa:86:0f:54:4d:
4f:a9:95:7a:a9:1a:be:a8:87:d2:d7:c8:6a:9b:b5:
b5:ab:6a:8d:8f:34:91:fa:3a:f0:9f:4a:10:90:54:
ed:ec:31:ef:ba:62:fd:56:4d:96:ba:69:1b:80:d8:
b1:ab:fa:76:2f:ef:de:8e:3b:7d:b6:81:2b:cf:ca:
e9:6c:2b:c5:d1:45:81:99:23:d2:91:2a:89:24:76:
11:3c:9b:c5:51:ea:c6:32:3a:fa:d5:50:92:c6:f1:
fc:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:68:A6:8C:55:CA:55:70:4E:93:D3:1F:74:B7:8A:25:97:9B:4C:05
X509v3 Authority Key Identifier:
keyid:76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:a9:23:78:70:bf:25:3e:58:db:91:97:39:d8:a9:ae:9d:08:
71:11:c4:d0:24:13:53:ce:12:7f:03:86:b5:5c:01:e7:c1:d6:
04:8c:83:73:f9:46:5a:4b:48:85:86:1d:e3:6a:1d:fa:e1:d6:
78:8f:ca:06:27:15:e9:f5:10:3a:39:e7:60:30:fb:5b:d5:7e:
74:3f:bc:aa:f8:4c:b6:01:25:71:2d:28:a4:a4:ca:27:20:b9:
8a:8c:ce:f3:14:be:07:d8:9b:a5:71:62:36:f2:82:b5:05:03:
aa:4b:3f:a3:84:a7:d0:f5:59:ed:82:2b:07:da:83:66:2e:fd:
fc:9b:db:c4:7b:f4:f4:fe:eb:d3:33:cd:b5:9d:0c:f7:32:65:
43:f7:f0:d2:71:f8:18:d2:31:09:2c:e1:fe:37:32:6b:0f:0c:
f9:82:98:ec:d7:d8:47:4a:30:97:1d:d3:8b:0e:25:59:c1:5a:
35:69:da:6b:82:bd:b8:d8:44:9d:24:21:6b:c5:68:d6:c6:1a:
46:4b:9f:61:b2:0d:e6:d3:a6:53:a7:98:df:68:80:0e:b1:be:
40:4d:30:2b:67:86:22:7b:d8:10:b2:ed:fc:ca:5d:62:ff:33:
11:86:21:27:c4:01:7c:65:4f:6f:50:f3:79:6b:a6:26:f1:da:
5f:ea:82:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aPpj2aTDU01/mSH28GyvmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2Y2U2MzdkNDdiNzgwMDRkMGNjZmFlMzcxZTY4MTg3Njhh
YzNmYTUwHhcNMjYwNDE3MDcwMTI2WhcNMjYwNDE4MDcwMTI2WjAzMTEwLwYDVQQD
Eyg4YzY4YTY4YzU1Y2E1NTcwNGU5M2QzMWY3NGI3OGEyNTk3OWI0YzA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqfQCkkf+GzadCGUN7FwNlOXXeYa8
Y4ujZkIHoeIOqvmIwqKjEpbs8hSJJUwgQq1OqD1KRvPuiFMwiqa70ndRGJ1qcqoI
tTuBa+q8YkKGgR+z5Xwdgh3YnAvlQziiLX9TCD3GWlJEu+zz8AgaIp03bKUTFGMU
iZRGTl7YBD7R07UBb1qKgCBKmxBkddlFO9rVWsF1c39gV2tfXwtScozeqoYPVE1P
qZV6qRq+qIfS18hqm7W1q2qNjzSR+jrwn0oQkFTt7DHvumL9Vk2WumkbgNixq/p2
L+/ejjt9toErz8rpbCvF0UWBmSPSkSqJJHYRPJvFUerGMjr61VCSxvH8dwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIxopoxVylVwTpPTH3S3iiWXm0wFMB8GA1UdIwQY
MBaAFHbOY31Ht4AE0Mz643HmgYdorD+lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS83MzA5YTktNDZjOC00MjQwLWFmZWYt
ODQwODgxYTRkMzBkLzEvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS83MzA5YTktNDZjOC00MjQwLWFmZWYtODQwODgxYTRkMzBk
LzEvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALakjeHC/
JT5Y25GXOdiprp0IcRHE0CQTU84SfwOGtVwB58HWBIyDc/lGWktIhYYd42od+uHW
eI/KBicV6fUQOjnnYDD7W9V+dD+8qvhMtgElcS0opKTKJyC5iozO8xS+B9ibpXFi
NvKCtQUDqks/o4Sn0PVZ7YIrB9qDZi79/JvbxHv09P7r0zPNtZ0M9zJlQ/fw0nH4
GNIxCSzh/jcyaw8M+YKY7NfYR0owlx3Tiw4lWcFaNWnaa4K9uNhEnSQha8Vo1sYa
RkufYbIN5tOmU6eY32iADrG+QE0wK2eGInvYELLt/MpdYv8zEYYhJ8QBfGVPb1Dz
eWumJvHaX+qClQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 09:39:20 2026 by rpki-client