Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json)
Hash identifier: FWkqK9Pa1J70/Ue66yD3nsGWUXVrHhaujB20B9RGXjM=
Subject key identifier: C0:49:13:4B:63:39:DF:38:E5:CB:D9:9E:A9:79:2F:DE:8C:5E:CD:1D
Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Certificate serial: 019D9B5162FFA709EB34C2BA345F5B0B9322
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
Manifest number: 0569
Signing time: Fri 17 Apr 2026 12:01:35 +0000
Manifest this update: Fri 17 Apr 2026 12:01:35 +0000
Manifest next update: Sat 18 Apr 2026 12:01:35 +0000
Files and hashes: 1: 2FxreVqUv_iXTp_gEHHtX_RyDvE.roa (hash: 6tKnUYnu6mjtenIrBJhX9fiu65PwuGcfSqr4GAWWO5o=)
2: _Zw3DdPbpFhEYashCBfgGjdy5Ks.roa (hash: +lhpFvFOqbdZln0ZbOMSKO9Dy5jTnI3At67OTUK1JlI=)
3: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: YBKewCH+AkzpnDm1+PuTJ4liGfWjnohWQcC7wKv06cc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:51:62:ff:a7:09:eb:34:c2:ba:34:5f:5b:0b:93:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Validity
Not Before: Apr 17 12:01:35 2026 GMT
Not After : Apr 18 12:01:35 2026 GMT
Subject: CN=c049134b6339df38e5cbd99ea9792fde8c5ecd1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:fa:6a:30:ec:de:1e:10:84:04:aa:85:d5:4f:
d5:ff:50:24:41:57:70:01:c8:8c:b6:24:91:a5:bf:
03:f6:c7:9b:6b:92:b6:10:39:7a:3d:ed:64:37:20:
f5:d5:df:32:91:c1:0c:7d:8b:cc:bf:4d:35:6a:17:
02:b3:68:c6:11:f9:36:ac:49:aa:d5:1a:2e:56:62:
b6:31:96:6b:5e:50:65:8e:6a:5d:82:cc:25:9c:a0:
4c:8b:7d:30:33:d3:c5:8a:68:c2:cc:59:bf:65:6a:
ec:4e:26:f2:cc:14:16:b3:e8:94:ca:9b:57:83:c6:
59:71:27:11:fa:66:cb:e2:70:6c:92:b1:55:21:85:
80:14:58:11:b5:68:87:5e:13:64:bc:68:1c:89:fa:
04:af:98:d4:1f:88:ef:5a:fa:e1:98:15:aa:3f:a4:
b4:71:fa:9c:b0:d8:d0:79:2a:5b:a3:f2:f1:7e:38:
34:1b:83:e1:b1:8b:86:a8:48:19:43:1d:69:83:14:
02:55:12:33:c8:63:65:a5:01:fe:fe:5f:42:9c:db:
33:65:14:5f:21:23:ed:31:12:cb:35:0e:54:fc:d5:
eb:6f:c7:e4:21:3d:52:d3:45:07:28:43:9b:33:7f:
26:2c:60:f2:dc:83:be:be:c2:be:e5:c5:d9:09:82:
71:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:49:13:4B:63:39:DF:38:E5:CB:D9:9E:A9:79:2F:DE:8C:5E:CD:1D
X509v3 Authority Key Identifier:
keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:cc:e3:df:b7:89:bd:19:75:16:a4:b2:18:4e:0b:f1:23:35:
c9:80:86:2d:5e:eb:c1:fd:cc:21:95:75:99:a0:53:16:65:ed:
bc:5d:80:1d:d1:07:59:69:be:ca:60:2a:d9:36:ef:83:98:df:
1d:11:b2:1f:9f:6b:0f:d1:71:54:fd:7e:e0:1f:ba:61:46:fd:
70:36:18:41:ab:c6:92:8f:47:44:c3:a5:55:cd:3f:63:e4:95:
60:c4:58:39:ce:44:33:99:11:b9:40:6d:28:5e:5e:16:fb:2e:
f6:70:08:19:d4:4d:93:23:42:77:8d:2d:87:78:6b:d0:59:e6:
dc:d6:1b:62:d8:ee:f3:45:87:e4:13:7f:40:1e:c9:73:2c:9e:
7a:b2:e2:0d:a6:90:5d:46:50:34:92:bf:76:8c:60:72:47:fb:
0b:0a:7d:16:ba:4b:43:01:a0:8a:db:f1:db:a8:88:29:95:69:
55:85:6d:28:88:6c:8f:75:96:e8:dc:d4:86:48:b6:e8:4f:ef:
5a:d7:93:68:01:4d:59:d3:32:a0:08:66:7a:e8:c7:c8:68:36:
5f:10:8b:41:1d:0b:db:5a:97:55:05:03:01:95:3d:54:d0:8e:
4d:de:db:64:ae:df:7b:0b:2c:d0:7e:0a:3a:14:60:9d:70:38:
99:7e:88:b7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bUWL/pwnrNMK6NF9bC5MiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3OGFiYjI5OTc3YTY1YjE0MGNhY2I2ZTcyYWIyNGNlZGRk
NGU4YzUwHhcNMjYwNDE3MTIwMTM1WhcNMjYwNDE4MTIwMTM1WjAzMTEwLwYDVQQD
EyhjMDQ5MTM0YjYzMzlkZjM4ZTVjYmQ5OWVhOTc5MmZkZThjNWVjZDFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5vpqMOzeHhCEBKqF1U/V/1AkQVdw
AciMtiSRpb8D9seba5K2EDl6Pe1kNyD11d8ykcEMfYvMv001ahcCs2jGEfk2rEmq
1RouVmK2MZZrXlBljmpdgswlnKBMi30wM9PFimjCzFm/ZWrsTibyzBQWs+iUyptX
g8ZZcScR+mbL4nBskrFVIYWAFFgRtWiHXhNkvGgcifoEr5jUH4jvWvrhmBWqP6S0
cfqcsNjQeSpbo/Lxfjg0G4PhsYuGqEgZQx1pgxQCVRIzyGNlpQH+/l9CnNszZRRf
ISPtMRLLNQ5U/NXrb8fkIT1S00UHKEObM38mLGDy3IO+vsK+5cXZCYJxbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMBJE0tjOd845cvZnql5L96MXs0dMB8GA1UdIwQY
MBaAFIeKuymXemWxQMrLbnKrJM7d1OjFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDRxN0taZDZaYkZBeXN0dWNxc2t6dDNVNk1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8wNmI4ZjUtMWE3Ni00NWY4LWI5N2Et
YWM4NjQ3ZDA1NThhLzEvaDRxN0taZDZaYkZBeXN0dWNxc2t6dDNVNk1VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8wNmI4ZjUtMWE3Ni00NWY4LWI5N2EtYWM4NjQ3ZDA1NThh
LzEvaDRxN0taZDZaYkZBeXN0dWNxc2t6dDNVNk1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAw8zj37eJ
vRl1FqSyGE4L8SM1yYCGLV7rwf3MIZV1maBTFmXtvF2AHdEHWWm+ymAq2Tbvg5jf
HRGyH59rD9FxVP1+4B+6YUb9cDYYQavGko9HRMOlVc0/Y+SVYMRYOc5EM5kRuUBt
KF5eFvsu9nAIGdRNkyNCd40th3hr0Fnm3NYbYtju80WH5BN/QB7JcyyeerLiDaaQ
XUZQNJK/doxgckf7Cwp9FrpLQwGgitvx26iIKZVpVYVtKIhsj3WW6NzUhki26E/v
WteTaAFNWdMyoAhmeujHyGg2XxCLQR0L21qXVQUDAZU9VNCOTd7bZK7fewss0H4K
OhRgnXA4mX6Itw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 21:27:18 2026 by rpki-client