Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
File: UW2UBk9zhVXozjZaGVfWnnaICcQ.mft (raw, json)
Hash identifier: k0j9zxwezIS25w4SG2hWknwJ1qSJEdTu5AglhPbeGjY=
Subject key identifier: 89:04:FD:5B:86:69:41:51:ED:6B:B6:97:7D:26:73:06:2E:60:FC:59
Authority key identifier: 51:6D:94:06:4F:73:85:55:E8:CE:36:5A:19:57:D6:9E:76:88:09:C4
Certificate issuer: /CN=516d94064f738555e8ce365a1957d69e768809c4
Certificate serial: 019D9AE33594AB71FA459721E96B50F70AE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
Manifest number: 08A3
Signing time: Fri 17 Apr 2026 10:01:14 +0000
Manifest this update: Fri 17 Apr 2026 10:01:14 +0000
Manifest next update: Sat 18 Apr 2026 10:01:14 +0000
Files and hashes: 1: UW2UBk9zhVXozjZaGVfWnnaICcQ.crl (hash: DWtX1t4yYFToE10Utrfs8LB4CruvcoSPl/h96jnB/CI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:35:94:ab:71:fa:45:97:21:e9:6b:50:f7:0a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=516d94064f738555e8ce365a1957d69e768809c4
Validity
Not Before: Apr 17 10:01:14 2026 GMT
Not After : Apr 18 10:01:14 2026 GMT
Subject: CN=8904fd5b86694151ed6bb6977d2673062e60fc59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8c:32:31:cd:21:4e:02:01:99:a4:2d:42:ee:
07:f3:01:fd:be:b5:59:2d:f6:43:24:8b:06:f8:c6:
01:71:f5:92:68:84:bc:79:fe:9d:54:66:9f:3c:12:
61:c0:39:2a:6f:61:dc:c9:f3:93:a3:66:ab:b9:43:
6c:91:11:1e:e4:b2:c8:ba:67:28:3d:28:2b:06:60:
5c:1b:e8:fe:ac:9f:cc:c9:30:4f:40:52:89:ba:b9:
e4:b8:47:6c:6d:0f:c6:f1:99:bd:44:f5:22:d5:5e:
1e:1b:02:82:99:7c:5b:5e:c1:42:ca:5f:3f:19:69:
2f:94:c6:b6:05:57:f0:42:d8:22:03:fd:3c:d3:62:
6b:2a:99:e0:be:14:37:c2:79:b4:6a:3d:c4:9c:c6:
25:0d:ea:92:70:b2:e1:0c:a3:e3:b8:91:0d:19:78:
39:fc:d2:86:de:47:61:d1:e6:8b:b4:87:af:6b:17:
ab:09:35:90:3d:e5:2c:fd:95:7d:69:8e:ef:40:a0:
64:fd:ca:9e:53:05:be:2b:da:fe:42:23:db:29:8e:
0a:0c:45:5c:dd:83:79:6d:af:ce:2d:1d:1a:29:73:
40:6a:63:ff:66:d4:f6:65:f0:ca:6d:56:b4:e9:71:
5b:b7:ac:f7:29:e9:6b:7f:7a:a7:c6:6e:85:5e:bb:
08:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:04:FD:5B:86:69:41:51:ED:6B:B6:97:7D:26:73:06:2E:60:FC:59
X509v3 Authority Key Identifier:
keyid:51:6D:94:06:4F:73:85:55:E8:CE:36:5A:19:57:D6:9E:76:88:09:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:e4:8a:35:60:2c:cd:b0:d5:91:5a:fe:5f:78:9a:c9:b9:74:
fe:1c:54:a3:63:55:10:db:5b:3f:75:97:83:a6:0b:49:e4:d5:
99:2a:55:22:df:29:5a:15:72:68:0e:58:20:df:62:e5:b6:d7:
10:0d:63:c5:20:37:a4:21:67:c5:ba:a5:47:5e:97:5e:20:91:
9f:da:4c:56:c9:2e:e3:70:6b:32:7e:fc:cc:fc:76:41:13:7d:
4a:6f:15:3d:16:50:c0:3f:15:61:21:dd:e5:ab:c4:bc:8f:2d:
02:b5:2e:0b:49:26:d8:53:9b:18:79:a2:24:02:cd:5d:10:21:
e6:11:2c:53:e5:a4:0d:5d:9f:95:9e:fe:35:34:9c:1a:55:f7:
e5:c4:61:8e:2b:98:59:d9:8a:54:50:cc:ec:75:ab:70:e4:0a:
77:99:9c:27:03:1f:76:8f:43:7d:3d:34:5a:8f:5c:b7:a0:a9:
93:c6:87:5c:5b:fb:55:8d:d3:3a:06:a2:67:2e:24:e0:93:20:
0c:c6:3b:b8:5f:79:1a:76:11:7f:2c:55:d6:f6:97:b8:fe:67:
71:17:2c:1f:85:10:e3:3e:ea:a9:d5:74:d6:7b:b6:f4:06:9d:
1a:2a:f6:84:4f:95:d0:be:e8:cd:8b:19:f4:f6:53:e9:65:ea:
0b:01:c9:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2a4zWUq3H6RZch6WtQ9wrkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxNmQ5NDA2NGY3Mzg1NTVlOGNlMzY1YTE5NTdkNjllNzY4
ODA5YzQwHhcNMjYwNDE3MTAwMTE0WhcNMjYwNDE4MTAwMTE0WjAzMTEwLwYDVQQD
Eyg4OTA0ZmQ1Yjg2Njk0MTUxZWQ2YmI2OTc3ZDI2NzMwNjJlNjBmYzU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmYwyMc0hTgIBmaQtQu4H8wH9vrVZ
LfZDJIsG+MYBcfWSaIS8ef6dVGafPBJhwDkqb2HcyfOTo2aruUNskREe5LLIumco
PSgrBmBcG+j+rJ/MyTBPQFKJurnkuEdsbQ/G8Zm9RPUi1V4eGwKCmXxbXsFCyl8/
GWkvlMa2BVfwQtgiA/0802JrKpngvhQ3wnm0aj3EnMYlDeqScLLhDKPjuJENGXg5
/NKG3kdh0eaLtIevaxerCTWQPeUs/ZV9aY7vQKBk/cqeUwW+K9r+QiPbKY4KDEVc
3YN5ba/OLR0aKXNAamP/ZtT2ZfDKbVa06XFbt6z3Kelrf3qnxm6FXrsIewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIkE/VuGaUFR7Wu2l30mcwYuYPxZMB8GA1UdIwQY
MBaAFFFtlAZPc4VV6M42WhlX1p52iAnEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVcyVUJrOXpoVlhvempaYUdWZldubmFJQ2NRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9iODE4OTUtYzYwNS00MWUyLWIyODMt
YzA1NjVmYTg0MGQ0LzEvVVcyVUJrOXpoVlhvempaYUdWZldubmFJQ2NRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS9iODE4OTUtYzYwNS00MWUyLWIyODMtYzA1NjVmYTg0MGQ0
LzEvVVcyVUJrOXpoVlhvempaYUdWZldubmFJQ2NRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAheSKNWAs
zbDVkVr+X3iaybl0/hxUo2NVENtbP3WXg6YLSeTVmSpVIt8pWhVyaA5YIN9i5bbX
EA1jxSA3pCFnxbqlR16XXiCRn9pMVsku43BrMn78zPx2QRN9Sm8VPRZQwD8VYSHd
5avEvI8tArUuC0km2FObGHmiJALNXRAh5hEsU+WkDV2flZ7+NTScGlX35cRhjiuY
WdmKVFDM7HWrcOQKd5mcJwMfdo9DfT00Wo9ct6Cpk8aHXFv7VY3TOgaiZy4k4JMg
DMY7uF95GnYRfyxV1vaXuP5ncRcsH4UQ4z7qqdV01nu29AadGir2hE+V0L7ozYsZ
9PZT6WXqCwHJYg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 14:43:33 2026 by rpki-client