Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
File: h9mQExRnt30RFit5--OwbKirLTk.mft (raw, json)
Hash identifier: 39aSFuaOlafKovuDz08HCPJmQ8GXxuZ5T1WIcgQqpAg=
Subject key identifier: 33:28:B6:7E:13:22:5D:CB:DE:0B:36:72:9E:40:FE:8A:55:63:D7:F3
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 019D99629B446470A393446CA7715D907329
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
Manifest number: 18D5
Signing time: Fri 17 Apr 2026 03:01:09 +0000
Manifest this update: Fri 17 Apr 2026 03:01:09 +0000
Manifest next update: Sat 18 Apr 2026 03:01:09 +0000
Files and hashes: 1: 4L2HrkOMp5Px3ZdgqOBGMnz6oXw.roa (hash: qjbkKzm11wnXRFJIt4quryujdmBS5m5m8Id3/w9vHFw=)
2: 78tSQmB_UZC_rIGDHLnxnqOm3fI.roa (hash: 3kNkwMTWy/XYCkJODFF1IVosQpGtDfhW2/dwVf0UwBQ=)
3: C3Lj3Wt6YNWIPGHmadEQ-dchhaw.roa (hash: fn0aOrz4mN4OtO/EtlMrSuF4wh5zaQaJSbD2ep7jxzI=)
4: JIk4GJqmgSwzYSk0JGPNI21QRnM.roa (hash: 45ZLZSPO108JAO0yb1j8MEBiHT4QdE4zU9XBhQbVqtg=)
5: PY323kbvCRFsNrwGFI26gXv0gpE.roa (hash: U0ksXLpw7uH4vwqe/cNwV58+FVim6JoHjXiFGt1giNE=)
6: h9mQExRnt30RFit5--OwbKirLTk.crl (hash: vxrFVszSbYrHIC0u9RK/16mWqse4R5VIfl4RxZN775Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:9b:44:64:70:a3:93:44:6c:a7:71:5d:90:73:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Apr 17 03:01:09 2026 GMT
Not After : Apr 18 03:01:09 2026 GMT
Subject: CN=3328b67e13225dcbde0b36729e40fe8a5563d7f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b7:1f:14:85:5d:3c:b8:a5:d4:23:85:fe:6b:
14:20:87:74:f2:3b:02:69:8f:db:aa:5e:7f:6e:04:
f2:18:ae:cd:32:00:b8:4f:1a:51:ef:b9:8b:21:19:
cc:5a:df:72:af:91:69:7e:06:a5:63:80:93:eb:5b:
be:0b:83:1c:5d:de:97:f9:5f:98:6c:99:b1:9c:8e:
ab:5d:64:8f:a7:23:5c:cb:39:33:96:db:d8:d9:41:
35:4a:05:2f:18:68:ce:ac:db:78:fa:40:b4:d7:f2:
8e:d1:6a:c0:c9:50:6e:56:fe:fd:be:ee:53:52:5e:
c2:83:1c:6d:92:95:ce:0c:8e:f3:83:09:34:3d:36:
77:67:c0:6e:79:45:f9:31:ac:da:c8:9e:eb:24:bc:
21:55:d3:2c:5a:7f:2e:29:f9:27:4b:66:9a:0b:10:
a3:67:a4:55:55:84:14:47:3b:d9:9b:7d:26:d6:d6:
fb:1f:e3:fa:0d:4d:ce:6a:65:fe:11:63:8a:20:d9:
3b:ae:2a:84:2b:05:98:a2:83:24:0d:7e:f4:af:4b:
97:80:cd:e1:69:b1:f8:7d:4c:27:01:33:3f:34:77:
34:b3:56:86:87:c0:87:46:48:61:de:38:92:d7:e9:
01:15:8a:ac:94:03:33:3d:60:ff:10:e4:59:e8:7d:
3f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:28:B6:7E:13:22:5D:CB:DE:0B:36:72:9E:40:FE:8A:55:63:D7:F3
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:f1:bd:b4:c1:78:45:9e:72:19:2a:74:39:3e:4e:c9:df:44:
f5:28:91:89:1c:95:87:6a:5a:42:60:16:32:97:30:a9:39:c1:
5f:eb:7b:e8:6e:ca:db:40:c9:29:d8:38:37:d1:5f:e4:6b:32:
5c:b5:a6:c8:1e:61:2a:c5:51:ad:7c:7c:3b:72:75:38:b6:4a:
20:4c:39:b2:d2:c5:88:a6:9b:ff:9c:4d:3c:98:4f:44:4e:4a:
6a:30:51:1d:b8:cc:0f:06:f1:3e:24:84:ea:a2:37:64:58:00:
db:65:94:74:46:4e:89:21:2c:62:06:f3:a3:39:da:3f:48:98:
aa:bf:93:4d:50:60:21:c0:77:f4:0e:77:59:65:34:6d:3f:0c:
be:3a:bb:9d:fd:ed:b8:ec:2d:1b:fd:17:9e:bf:d4:fd:eb:bf:
70:e7:6c:44:95:2a:b0:3c:28:cb:3d:06:61:34:0d:27:87:49:
57:8b:08:35:ee:01:a3:44:c9:6b:ef:14:06:97:24:3f:ed:8b:
2b:d5:9f:e3:d2:f7:9d:9f:fb:e5:27:ff:ed:ed:6a:8c:3f:f6:
b7:02:10:25:d7:9f:2d:a7:65:10:10:42:4d:d2:6f:32:e6:ec:
8e:c8:cb:ff:20:e2:75:36:63:cd:94:04:9d:90:74:39:7d:03:
77:5f:8a:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZYptEZHCjk0Rsp3FdkHMpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ZDk5MDEzMTQ2N2I3N2QxMTE2MmI3OWZiZTNiMDZjYThh
YjJkMzkwHhcNMjYwNDE3MDMwMTA5WhcNMjYwNDE4MDMwMTA5WjAzMTEwLwYDVQQD
EygzMzI4YjY3ZTEzMjI1ZGNiZGUwYjM2NzI5ZTQwZmU4YTU1NjNkN2YzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7cfFIVdPLil1COF/msUIId08jsC
aY/bql5/bgTyGK7NMgC4TxpR77mLIRnMWt9yr5FpfgalY4CT61u+C4McXd6X+V+Y
bJmxnI6rXWSPpyNcyzkzltvY2UE1SgUvGGjOrNt4+kC01/KO0WrAyVBuVv79vu5T
Ul7CgxxtkpXODI7zgwk0PTZ3Z8BueUX5MazayJ7rJLwhVdMsWn8uKfknS2aaCxCj
Z6RVVYQURzvZm30m1tb7H+P6DU3OamX+EWOKINk7riqEKwWYooMkDX70r0uXgM3h
abH4fUwnATM/NHc0s1aGh8CHRkhh3jiS1+kBFYqslAMzPWD/EORZ6H0/3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDMotn4TIl3L3gs2cp5A/opVY9fzMB8GA1UdIwQY
MBaAFIfZkBMUZ7d9ERYrefvjsGyoqy05MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni81ZGVhOTctN2VmNy00ZGIwLTk0YmMt
YjhlOGIzNGRiMjkwLzEvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni81ZGVhOTctN2VmNy00ZGIwLTk0YmMtYjhlOGIzNGRiMjkw
LzEvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPPG9tMF4
RZ5yGSp0OT5Oyd9E9SiRiRyVh2paQmAWMpcwqTnBX+t76G7K20DJKdg4N9Ff5Gsy
XLWmyB5hKsVRrXx8O3J1OLZKIEw5stLFiKab/5xNPJhPRE5KajBRHbjMDwbxPiSE
6qI3ZFgA22WUdEZOiSEsYgbzoznaP0iYqr+TTVBgIcB39A53WWU0bT8Mvjq7nf3t
uOwtG/0Xnr/U/eu/cOdsRJUqsDwoyz0GYTQNJ4dJV4sINe4Bo0TJa+8UBpckP+2L
K9Wf49L3nZ/75Sf/7e1qjD/2twIQJdefLadlEBBCTdJvMubsjsjL/yDidTZjzZQE
nZB0OX0Dd1+KfQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:33:32 2026 by rpki-client