Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.mft
File: hrIjA95LCocPz-e2VWwCT3XHajQ.mft (raw, json)
Hash identifier: /sBj+Wxx+lCvHqrH0/+9xo9bn4MpC/PqcvuzB7yH51g=
Subject key identifier: C3:EA:5D:4E:B6:C0:6E:59:63:48:3D:41:1D:2B:96:0A:10:AD:A4:9F
Authority key identifier: 86:B2:23:03:DE:4B:0A:87:0F:CF:E7:B6:55:6C:02:4F:75:C7:6A:34
Certificate issuer: /CN=86b22303de4b0a870fcfe7b6556c024f75c76a34
Certificate serial: 019D98863C3504ADCC2C7973AB813700B4B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.mft
Manifest number: 13C2
Signing time: Thu 16 Apr 2026 23:00:27 +0000
Manifest this update: Thu 16 Apr 2026 23:00:27 +0000
Manifest next update: Fri 17 Apr 2026 23:00:27 +0000
Files and hashes: 1: PreLEhXrBI_UKFJOTXBGTgHoYF0.roa (hash: YyPA9bxM1XffwGYRaKy9yqFp9gB0LZF+tWz17YqGofw=)
2: fW-vmq3lP_3MyQWkZHy-CbMNL3I.roa (hash: tS5uriJcYFbYG/ALXKZnCG1DLjQm/ccSm8DkPwEWxXI=)
3: hrIjA95LCocPz-e2VWwCT3XHajQ.crl (hash: p5GT52GTOA1aGh9LrrY/tD8eoRDAA6nsV1P2/vqYTkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:3c:35:04:ad:cc:2c:79:73:ab:81:37:00:b4:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86b22303de4b0a870fcfe7b6556c024f75c76a34
Validity
Not Before: Apr 16 23:00:27 2026 GMT
Not After : Apr 17 23:00:27 2026 GMT
Subject: CN=c3ea5d4eb6c06e5963483d411d2b960a10ada49f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ba:8b:a3:d5:01:bf:33:12:bd:cc:be:32:57:
d8:ca:8c:a7:44:ac:96:46:ed:47:a8:5b:59:e8:6a:
ef:d0:34:c1:e7:a0:1c:b9:83:b2:8f:5b:ea:ce:86:
95:2c:bd:b7:c7:bb:c5:95:fd:61:62:40:0a:6b:63:
1d:33:f5:5b:df:79:c4:b9:7e:f3:f6:3a:19:9f:8b:
2f:ec:c4:59:21:16:43:ef:99:ae:b5:e8:5f:17:5d:
b0:61:58:2b:dd:2f:c5:d4:0b:2f:42:2a:f6:3e:a0:
01:79:e5:93:a5:7e:be:27:8b:a0:59:1c:3b:26:d8:
4d:da:4a:64:6e:10:a8:71:a4:d3:eb:4c:51:45:83:
81:2b:95:7d:2e:e7:63:92:f7:14:35:cc:52:79:54:
09:18:80:87:97:46:ab:1a:3a:47:ca:28:98:45:ad:
ea:49:57:b4:7c:ec:58:7d:97:99:1f:80:b4:76:c2:
1d:e0:83:9b:4a:68:96:43:2b:9c:3f:17:1b:b7:aa:
a7:80:8b:66:74:ff:61:2f:b5:02:8d:f8:13:e1:74:
c9:29:ac:a6:ff:b0:39:b3:24:f1:15:42:15:10:c1:
e2:b1:d8:0c:2f:98:a1:08:ac:23:9c:3d:3d:50:54:
d6:76:67:7e:d2:60:6f:4f:a0:08:d4:ea:b9:8f:10:
08:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:EA:5D:4E:B6:C0:6E:59:63:48:3D:41:1D:2B:96:0A:10:AD:A4:9F
X509v3 Authority Key Identifier:
keyid:86:B2:23:03:DE:4B:0A:87:0F:CF:E7:B6:55:6C:02:4F:75:C7:6A:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:67:34:1b:17:34:e5:a2:58:bd:09:5b:6d:63:03:33:79:fd:
0e:74:e0:02:7e:22:2d:30:d8:1e:5a:59:5a:ae:8b:76:e3:3a:
0f:2f:9c:f7:8c:b4:59:76:dc:21:09:ee:3b:88:11:b4:1f:bc:
28:7b:e7:83:33:2b:64:de:af:d3:29:9a:61:f9:63:22:4e:ae:
c1:72:6c:af:c3:9f:e5:ac:c7:0e:af:cf:39:16:59:c0:0f:09:
6c:ba:69:de:f8:ca:63:4f:1a:5c:54:f4:1c:3c:5d:11:d9:33:
21:b5:2e:97:24:67:fe:95:33:f2:34:40:9b:36:95:34:7c:42:
8c:11:8e:95:e8:30:68:e7:eb:66:4f:39:fd:e7:07:42:5c:65:
3b:26:43:26:03:ba:65:52:a7:0d:fd:d6:60:7a:b0:5f:67:64:
f0:bf:2d:0c:68:73:5f:80:c4:54:22:82:f3:dc:4d:0a:e6:a3:
a8:8b:9f:30:64:b3:30:80:7a:5d:33:54:59:cc:2b:94:18:8a:
c2:2a:4b:de:19:59:2e:86:d0:ab:0a:7a:2a:7f:ca:2c:0e:3d:
a7:99:b8:d4:99:6b:ea:75:8f:73:58:f6:c1:ad:f9:70:7b:dc:
b8:1b:1f:35:e5:85:f5:1c:87:0d:b1:44:be:13:15:3d:e8:c0:
57:7d:c1:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Yhjw1BK3MLHlzq4E3ALSyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2YjIyMzAzZGU0YjBhODcwZmNmZTdiNjU1NmMwMjRmNzVj
NzZhMzQwHhcNMjYwNDE2MjMwMDI3WhcNMjYwNDE3MjMwMDI3WjAzMTEwLwYDVQQD
EyhjM2VhNWQ0ZWI2YzA2ZTU5NjM0ODNkNDExZDJiOTYwYTEwYWRhNDlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm7qLo9UBvzMSvcy+MlfYyoynRKyW
Ru1HqFtZ6Grv0DTB56AcuYOyj1vqzoaVLL23x7vFlf1hYkAKa2MdM/Vb33nEuX7z
9joZn4sv7MRZIRZD75mutehfF12wYVgr3S/F1AsvQir2PqABeeWTpX6+J4ugWRw7
JthN2kpkbhCocaTT60xRRYOBK5V9LudjkvcUNcxSeVQJGICHl0arGjpHyiiYRa3q
SVe0fOxYfZeZH4C0dsId4IObSmiWQyucPxcbt6qngItmdP9hL7UCjfgT4XTJKaym
/7A5syTxFUIVEMHisdgML5ihCKwjnD09UFTWdmd+0mBvT6AI1Oq5jxAI/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMPqXU62wG5ZY0g9QR0rlgoQraSfMB8GA1UdIwQY
MBaAFIayIwPeSwqHD8/ntlVsAk91x2o0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHJJakE5NUxDb2NQei1lMlZXd0NUM1hIYWpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC9hZmQ3MGYtYzMwMC00OWNiLWI3Mjkt
NzJhYjU5ODdmNjA5LzEvaHJJakE5NUxDb2NQei1lMlZXd0NUM1hIYWpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC9hZmQ3MGYtYzMwMC00OWNiLWI3MjktNzJhYjU5ODdmNjA5
LzEvaHJJakE5NUxDb2NQei1lMlZXd0NUM1hIYWpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF2c0Gxc0
5aJYvQlbbWMDM3n9DnTgAn4iLTDYHlpZWq6LduM6Dy+c94y0WXbcIQnuO4gRtB+8
KHvngzMrZN6v0ymaYfljIk6uwXJsr8Of5azHDq/PORZZwA8JbLpp3vjKY08aXFT0
HDxdEdkzIbUulyRn/pUz8jRAmzaVNHxCjBGOlegwaOfrZk85/ecHQlxlOyZDJgO6
ZVKnDf3WYHqwX2dk8L8tDGhzX4DEVCKC89xNCuajqIufMGSzMIB6XTNUWcwrlBiK
wipL3hlZLobQqwp6Kn/KLA49p5m41Jlr6nWPc1j2wa35cHvcuBsfNeWF9RyHDbFE
vhMVPejAV33BjA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:04:46 2026 by rpki-client