Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
File: aQomMkmEfPlzRHQiE2RPkpvqqZc.mft (raw, json)
Hash identifier: 44g+WynWo6SqxMZRlF8LoLrqblSJdW+W9zBdpr8YYOU=
Subject key identifier: F9:31:93:8A:6E:C1:C2:42:37:C5:DB:5A:AA:C9:0B:55:CE:54:F9:80
Authority key identifier: 69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
Certificate issuer: /CN=690a263249847cf97344742213644f929beaa997
Certificate serial: 019D9B87562357BBA96C27C9DE48BBCD0229
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
Manifest number: 0B22
Signing time: Fri 17 Apr 2026 13:00:31 +0000
Manifest this update: Fri 17 Apr 2026 13:00:31 +0000
Manifest next update: Sat 18 Apr 2026 13:00:31 +0000
Files and hashes: 1: 1QpbjmDLVcUMqnNrCbGP4FA5FaY.roa (hash: 5prhYgOZoGVGdhCQditPaOssQQZBoW2n1oXkHDCQF6E=)
2: aQomMkmEfPlzRHQiE2RPkpvqqZc.crl (hash: t3RXpecIps2bdP0Ui/yMXZ6naOoPPlHJDX2IfQmseR4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:56:23:57:bb:a9:6c:27:c9:de:48:bb:cd:02:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690a263249847cf97344742213644f929beaa997
Validity
Not Before: Apr 17 13:00:31 2026 GMT
Not After : Apr 18 13:00:31 2026 GMT
Subject: CN=f931938a6ec1c24237c5db5aaac90b55ce54f980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a7:b4:ed:5f:ee:7c:76:e6:02:a0:90:88:a9:
e1:2a:06:a4:1a:1e:37:7f:ac:c4:93:04:43:55:a7:
72:8c:17:a7:26:90:89:54:5a:fc:e5:d5:a8:14:7d:
03:47:b1:27:0b:73:c1:97:41:3c:b6:da:0f:c6:57:
25:d3:d0:64:9e:30:0e:3c:4c:62:b0:93:74:b1:8b:
98:3c:6a:45:fc:c0:52:51:c5:fd:c5:45:77:2a:58:
c4:fd:0d:06:4f:96:e8:c6:72:1e:c8:0f:84:c5:83:
10:3f:51:7e:a8:05:2e:fd:d7:e5:8e:fb:da:d6:6e:
ba:20:67:ff:99:06:82:9e:5a:0e:43:f2:cb:85:b1:
b1:11:35:9f:cf:a5:d3:fc:72:11:5b:d6:d5:19:16:
20:c3:6e:bc:58:a3:c2:33:46:23:35:9e:79:5d:64:
f8:c6:14:61:24:fb:d9:02:1a:6a:43:93:27:8d:b5:
29:3f:5e:56:85:8e:7b:aa:17:de:17:56:10:b7:a6:
4a:91:84:3c:9d:56:5a:99:e7:c6:4f:1a:ce:7d:ea:
d2:99:0c:ae:95:84:0f:f2:04:a3:e7:ba:6a:68:71:
ad:28:2c:99:10:22:fe:5a:ce:03:49:f4:70:32:c7:
6d:75:7c:e2:25:c1:0e:dc:c6:0b:66:1d:c4:c7:a4:
54:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:31:93:8A:6E:C1:C2:42:37:C5:DB:5A:AA:C9:0B:55:CE:54:F9:80
X509v3 Authority Key Identifier:
keyid:69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:ac:e8:8f:25:da:b9:1f:69:a7:70:99:38:59:3b:41:20:57:
77:ea:57:03:a1:d4:70:35:89:87:c5:7f:57:ea:1c:be:8d:d9:
1a:74:8a:1a:14:8a:55:f1:8b:d3:d8:1f:91:76:ef:0b:07:9e:
96:7d:f1:c0:2b:87:de:fc:26:c8:af:6c:74:e2:2f:6c:0a:1e:
15:4a:48:b7:74:d9:24:4d:07:b1:1e:0d:c9:f1:3b:52:22:a4:
d9:4e:5d:92:03:45:e1:ae:a0:0e:f4:cf:05:84:84:14:ab:94:
02:53:9a:95:c2:3e:8b:69:9c:e8:44:ba:1f:da:48:fe:88:92:
30:e6:97:15:63:92:31:bb:6e:75:1c:bd:c7:31:f8:f4:82:00:
e0:39:3a:ee:00:16:ec:45:91:c6:ab:05:17:a1:1e:55:8b:1d:
24:ac:dc:6d:ee:70:71:ba:82:36:f8:1f:1a:3c:7e:b6:a4:89:
37:52:d0:14:fb:31:64:6e:d3:70:3e:32:d3:38:51:40:95:a0:
17:00:e1:b0:5a:2b:37:86:64:72:dd:47:cb:ab:1f:33:5f:86:
52:3e:72:33:6f:7a:31:30:86:ec:2e:77:c7:b1:f2:44:3a:e8:
57:c5:fe:b8:ec:cc:eb:6a:a7:82:3c:35:e8:d2:d9:e8:60:98:
bc:ab:49:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bh1YjV7upbCfJ3ki7zQIpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MGEyNjMyNDk4NDdjZjk3MzQ0NzQyMjEzNjQ0ZjkyOWJl
YWE5OTcwHhcNMjYwNDE3MTMwMDMxWhcNMjYwNDE4MTMwMDMxWjAzMTEwLwYDVQQD
EyhmOTMxOTM4YTZlYzFjMjQyMzdjNWRiNWFhYWM5MGI1NWNlNTRmOTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKe07V/ufHbmAqCQiKnhKgakGh43
f6zEkwRDVadyjBenJpCJVFr85dWoFH0DR7EnC3PBl0E8ttoPxlcl09BknjAOPExi
sJN0sYuYPGpF/MBSUcX9xUV3KljE/Q0GT5boxnIeyA+ExYMQP1F+qAUu/dfljvva
1m66IGf/mQaCnloOQ/LLhbGxETWfz6XT/HIRW9bVGRYgw268WKPCM0YjNZ55XWT4
xhRhJPvZAhpqQ5MnjbUpP15WhY57qhfeF1YQt6ZKkYQ8nVZamefGTxrOferSmQyu
lYQP8gSj57pqaHGtKCyZECL+Ws4DSfRwMsdtdXziJcEO3MYLZh3Ex6RULQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPkxk4puwcJCN8XbWqrJC1XOVPmAMB8GA1UdIwQY
MBaAFGkKJjJJhHz5c0R0IhNkT5Kb6qmXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVFvbU1rbUVmUGx6UkhRaUUyUlBrcHZxcVpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9hNzZhODYtNzViMy00Y2VmLWEzNDAt
MzFiMmE2MDdiYTk3LzEvYVFvbU1rbUVmUGx6UkhRaUUyUlBrcHZxcVpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9hNzZhODYtNzViMy00Y2VmLWEzNDAtMzFiMmE2MDdiYTk3
LzEvYVFvbU1rbUVmUGx6UkhRaUUyUlBrcHZxcVpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc6zojyXa
uR9pp3CZOFk7QSBXd+pXA6HUcDWJh8V/V+ocvo3ZGnSKGhSKVfGL09gfkXbvCwee
ln3xwCuH3vwmyK9sdOIvbAoeFUpIt3TZJE0HsR4NyfE7UiKk2U5dkgNF4a6gDvTP
BYSEFKuUAlOalcI+i2mc6ES6H9pI/oiSMOaXFWOSMbtudRy9xzH49IIA4Dk67gAW
7EWRxqsFF6EeVYsdJKzcbe5wcbqCNvgfGjx+tqSJN1LQFPsxZG7TcD4y0zhRQJWg
FwDhsForN4Zkct1Hy6sfM1+GUj5yM296MTCG7C53x7HyRDroV8X+uOzM62qngjw1
6NLZ6GCYvKtJWw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 19:39:12 2026 by rpki-client