Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
File: RK3etuoTlfaY9C51Qa70kkJiX2I.mft (raw, json)
Hash identifier: 9NyNnSSmOsiKLDEAa206XvR3XxJqZome1ATivrTRzow=
Subject key identifier: 28:A1:F2:F7:08:21:E6:0D:A1:42:56:CB:90:84:E4:BA:27:69:86:90
Authority key identifier: 44:AD:DE:B6:EA:13:95:F6:98:F4:2E:75:41:AE:F4:92:42:62:5F:62
Certificate issuer: /CN=44addeb6ea1395f698f42e7541aef49242625f62
Certificate serial: 019D98BD6A5813527E887509AB47524406D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
Manifest number: 18BE
Signing time: Fri 17 Apr 2026 00:00:43 +0000
Manifest this update: Fri 17 Apr 2026 00:00:43 +0000
Manifest next update: Sat 18 Apr 2026 00:00:43 +0000
Files and hashes: 1: RK3etuoTlfaY9C51Qa70kkJiX2I.crl (hash: ppUHxSnii0w0vv8ZUTVA+9NYiUh9cmsoP1V8MBeBKw0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 00:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:6a:58:13:52:7e:88:75:09:ab:47:52:44:06:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44addeb6ea1395f698f42e7541aef49242625f62
Validity
Not Before: Apr 17 00:00:43 2026 GMT
Not After : Apr 18 00:00:43 2026 GMT
Subject: CN=28a1f2f70821e60da14256cb9084e4ba27698690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cf:f8:48:99:23:b1:f5:87:a5:a3:99:46:3d:
65:12:64:18:9e:f2:8b:68:c7:d0:59:ef:5c:7d:3d:
37:3d:c4:6e:7b:35:4e:0e:db:7c:58:cd:9c:46:da:
6c:e4:a6:73:4f:9b:1b:23:91:16:af:0f:7e:82:07:
ab:7d:6c:1a:cb:bb:a8:5d:b2:9e:f3:d6:a3:16:8c:
ad:d6:28:03:6c:ff:85:16:96:38:0e:85:aa:b1:a8:
2f:23:47:62:cf:19:cb:0c:09:45:dd:d2:b8:8a:91:
29:4f:03:85:5d:98:44:4a:4b:cc:71:c7:ed:41:b9:
de:a8:c0:9d:88:b4:d8:2a:dd:7e:8c:7e:5d:3d:a2:
74:fc:0b:4d:66:00:a8:24:ef:20:ba:74:2c:ff:33:
da:cb:4e:7e:a4:06:05:0f:08:ad:68:e6:a5:a1:c1:
0a:3b:cf:58:b2:ea:fc:03:7d:0e:26:67:c3:e7:46:
51:cc:50:5b:4b:a1:b1:49:aa:57:e7:33:75:bc:fa:
a2:c3:30:a4:b4:81:cd:84:8d:0a:0e:7c:fc:2d:ef:
04:0f:c0:1c:6b:78:4e:2b:8b:18:25:c1:e3:01:18:
f6:1b:96:5a:57:fa:22:cb:ee:37:75:06:9c:dc:9e:
14:cc:41:c9:d8:09:25:a5:b0:c3:5a:c0:c6:e2:63:
a0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:A1:F2:F7:08:21:E6:0D:A1:42:56:CB:90:84:E4:BA:27:69:86:90
X509v3 Authority Key Identifier:
keyid:44:AD:DE:B6:EA:13:95:F6:98:F4:2E:75:41:AE:F4:92:42:62:5F:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:28:b1:9a:f3:ef:39:3b:4c:f6:c2:25:20:46:be:87:a2:cf:
b0:71:ab:67:3a:84:f4:b9:14:82:3a:2e:8a:30:d4:e9:73:16:
f6:f8:39:d5:fc:51:52:7c:6f:c2:f2:95:8f:cb:07:1b:1c:58:
dd:a4:99:81:17:bb:39:d1:29:74:74:24:0a:cc:46:fd:a4:9c:
99:43:7d:54:2f:6e:c3:cd:6e:e9:10:ac:62:8e:63:d7:75:2d:
ac:09:f6:c3:47:1d:e2:47:63:bd:8d:ab:f1:10:2e:dd:dd:2a:
69:c8:1c:58:5f:ce:2a:c3:57:25:19:41:d2:23:15:44:3e:17:
24:9c:79:77:ee:26:ae:60:e8:06:46:db:a0:4c:1b:5a:3a:2e:
f0:ac:e8:1a:13:d9:35:d2:1a:f4:1a:cb:dc:0b:07:a2:e4:69:
88:84:d6:19:3a:39:5b:84:85:92:3b:7c:f6:fb:af:d8:15:4f:
df:8d:5b:1e:5a:e8:21:0d:d0:fc:84:60:e2:1a:b6:50:81:80:
73:d6:52:01:54:f6:dc:50:69:52:cf:10:da:75:b3:ed:be:50:
69:6e:ba:64:75:4f:52:e2:69:43:75:0b:86:fe:e5:06:4d:44:
c6:46:ee:96:e1:6a:3e:58:cd:3b:32:50:e0:a8:ca:c3:d2:22:
9f:ec:90:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2YvWpYE1J+iHUJq0dSRAbVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0YWRkZWI2ZWExMzk1ZjY5OGY0MmU3NTQxYWVmNDkyNDI2
MjVmNjIwHhcNMjYwNDE3MDAwMDQzWhcNMjYwNDE4MDAwMDQzWjAzMTEwLwYDVQQD
EygyOGExZjJmNzA4MjFlNjBkYTE0MjU2Y2I5MDg0ZTRiYTI3Njk4NjkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoc/4SJkjsfWHpaOZRj1lEmQYnvKL
aMfQWe9cfT03PcRuezVODtt8WM2cRtps5KZzT5sbI5EWrw9+ggerfWway7uoXbKe
89ajFoyt1igDbP+FFpY4DoWqsagvI0dizxnLDAlF3dK4ipEpTwOFXZhESkvMccft
QbneqMCdiLTYKt1+jH5dPaJ0/AtNZgCoJO8gunQs/zPay05+pAYFDwitaOalocEK
O89Ysur8A30OJmfD50ZRzFBbS6GxSapX5zN1vPqiwzCktIHNhI0KDnz8Le8ED8Ac
a3hOK4sYJcHjARj2G5ZaV/oiy+43dQac3J4UzEHJ2AklpbDDWsDG4mOgOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCih8vcIIeYNoUJWy5CE5LonaYaQMB8GA1UdIwQY
MBaAFESt3rbqE5X2mPQudUGu9JJCYl9iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkszZXR1b1RsZmFZOUM1MVFhNzBra0ppWDJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC80YTZlZjEtYjRlZS00YTE0LTkzODQt
NDcxNGY5NzFiNzhiLzEvUkszZXR1b1RsZmFZOUM1MVFhNzBra0ppWDJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC80YTZlZjEtYjRlZS00YTE0LTkzODQtNDcxNGY5NzFiNzhi
LzEvUkszZXR1b1RsZmFZOUM1MVFhNzBra0ppWDJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAviixmvPv
OTtM9sIlIEa+h6LPsHGrZzqE9LkUgjouijDU6XMW9vg51fxRUnxvwvKVj8sHGxxY
3aSZgRe7OdEpdHQkCsxG/aScmUN9VC9uw81u6RCsYo5j13UtrAn2w0cd4kdjvY2r
8RAu3d0qacgcWF/OKsNXJRlB0iMVRD4XJJx5d+4mrmDoBkbboEwbWjou8KzoGhPZ
NdIa9BrL3AsHouRpiITWGTo5W4SFkjt89vuv2BVP341bHlroIQ3Q/IRg4hq2UIGA
c9ZSAVT23FBpUs8Q2nWz7b5QaW66ZHVPUuJpQ3ULhv7lBk1ExkbuluFqPljNOzJQ
4KjKw9Iin+yQFw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:02:59 2026 by rpki-client