Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
File: dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft (raw, json)
Hash identifier: LsnbfzDv2xo24LUZA20rRqGtoejnmcA4mlv+71JYrBg=
Subject key identifier: 71:8C:33:72:49:59:63:E2:FB:A6:A7:62:83:8F:F5:B1:86:40:D0:A9
Authority key identifier: 74:9D:8A:43:28:93:0B:93:8F:A8:60:18:B1:E4:47:EE:4D:8D:A8:F9
Certificate issuer: /CN=749d8a4328930b938fa86018b1e447ee4d8da8f9
Certificate serial: 019D9E1BD04DCD379109DDEEAD3C69097E11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
Manifest number: 023C
Signing time: Sat 18 Apr 2026 01:01:56 +0000
Manifest this update: Sat 18 Apr 2026 01:01:56 +0000
Manifest next update: Sun 19 Apr 2026 01:01:56 +0000
Files and hashes: 1: dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl (hash: Pp4UWoHOMePE5dzAhnCqy+2mgU3mP+DO1P5gJr1EKkQ=)
2: i5v8Z7TLwK1d1522dak6QJo-ZdI.roa (hash: dORF0I0Mm7ul7rA3/PIS0cDu8jhdXdBq0BX2+YuQ/kM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9e:1b:d0:4d:cd:37:91:09:dd:ee:ad:3c:69:09:7e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749d8a4328930b938fa86018b1e447ee4d8da8f9
Validity
Not Before: Apr 18 01:01:56 2026 GMT
Not After : Apr 19 01:01:56 2026 GMT
Subject: CN=718c3372495963e2fba6a762838ff5b18640d0a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:38:ac:e8:d8:15:f8:8d:cc:b6:ab:bb:36:dd:
32:d1:94:39:8e:e2:9b:16:c2:af:39:9b:d5:f7:49:
35:40:73:4e:d6:ff:a1:74:79:54:99:a9:46:8f:cb:
0c:72:f2:14:e2:2d:de:38:d1:7e:5d:8f:f3:45:c8:
82:00:6a:a8:19:28:9a:08:9d:46:dc:30:81:6a:fc:
92:00:08:8b:bc:9c:4d:55:78:6a:42:40:d8:df:44:
de:c6:6e:0f:d1:1b:58:6e:0a:aa:50:49:c8:8b:98:
91:8d:9f:8d:0b:bf:31:4b:29:ba:e8:e0:83:e8:7d:
c3:c0:53:bc:0e:ed:b6:82:b7:f6:24:34:0b:4e:5c:
c7:8a:a0:39:5b:87:b3:a8:0d:ae:a6:41:06:50:a1:
ec:f1:29:af:dd:ca:ae:9a:1b:fc:54:1d:cc:7d:b1:
7b:b0:0b:0c:0e:c7:4e:e2:07:c6:7f:94:c0:0e:9a:
eb:bc:aa:e1:c9:e7:bb:33:2f:26:9c:b0:bf:e8:83:
b7:12:9c:13:8e:4c:39:e9:59:4e:39:16:5e:1d:a3:
70:b9:62:f0:a2:9f:49:e9:f2:96:1f:15:61:a0:45:
8c:59:ab:a1:f8:5c:32:89:6b:8f:7d:d3:82:66:ab:
32:1b:d5:7e:62:95:68:64:d3:37:63:7d:db:c0:27:
74:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:8C:33:72:49:59:63:E2:FB:A6:A7:62:83:8F:F5:B1:86:40:D0:A9
X509v3 Authority Key Identifier:
keyid:74:9D:8A:43:28:93:0B:93:8F:A8:60:18:B1:E4:47:EE:4D:8D:A8:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:e3:b0:43:59:34:17:6e:19:c0:9b:d7:f8:80:77:b4:ed:6d:
46:4c:b8:77:68:e1:9c:dd:bd:91:17:b4:3b:cb:0d:88:e3:83:
4c:48:68:a1:a6:aa:46:5c:74:cd:90:5f:39:aa:74:f4:f0:0a:
d3:17:c3:89:ac:85:4a:a6:2a:be:42:ca:ac:10:78:08:6d:60:
c8:c6:02:78:7e:ef:38:87:d0:5b:a2:6a:20:7b:e8:2c:70:2d:
91:4e:85:aa:17:4f:ef:10:53:66:4f:ae:99:84:c6:5e:ed:86:
86:c9:ba:a5:e7:1b:25:62:3d:a3:2e:53:95:fb:93:54:a4:52:
ee:1f:b8:57:03:65:bc:b3:fe:a9:69:a2:6a:28:7f:fd:a2:13:
c1:97:95:02:53:fd:ef:81:d5:14:c6:3a:83:d0:53:4f:ab:11:
55:c3:2a:7d:38:00:d2:e8:0d:5d:f3:ee:80:4e:1b:de:bd:23:
20:f2:42:4f:aa:a3:e6:8d:8a:2d:9a:82:ec:ea:71:84:9a:06:
39:33:74:b7:d5:18:ff:f1:c4:0c:b1:6b:f5:3d:96:e3:dc:ff:
22:6a:36:3d:2d:a2:bd:71:48:24:54:e0:6f:ca:b3:58:98:f6:
1e:c7:eb:87:16:6f:df:fe:fb:86:1d:04:b4:ec:4f:1b:42:d5:
c3:d3:05:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2eG9BNzTeRCd3urTxpCX4RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OWQ4YTQzMjg5MzBiOTM4ZmE4NjAxOGIxZTQ0N2VlNGQ4
ZGE4ZjkwHhcNMjYwNDE4MDEwMTU2WhcNMjYwNDE5MDEwMTU2WjAzMTEwLwYDVQQD
Eyg3MThjMzM3MjQ5NTk2M2UyZmJhNmE3NjI4MzhmZjViMTg2NDBkMGE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0jis6NgV+I3Mtqu7Nt0y0ZQ5juKb
FsKvOZvV90k1QHNO1v+hdHlUmalGj8sMcvIU4i3eONF+XY/zRciCAGqoGSiaCJ1G
3DCBavySAAiLvJxNVXhqQkDY30Texm4P0RtYbgqqUEnIi5iRjZ+NC78xSym66OCD
6H3DwFO8Du22grf2JDQLTlzHiqA5W4ezqA2upkEGUKHs8Smv3cqumhv8VB3MfbF7
sAsMDsdO4gfGf5TADprrvKrhyee7My8mnLC/6IO3EpwTjkw56VlOORZeHaNwuWLw
op9J6fKWHxVhoEWMWauh+FwyiWuPfdOCZqsyG9V+YpVoZNM3Y33bwCd0KQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHGMM3JJWWPi+6anYoOP9bGGQNCpMB8GA1UdIwQY
MBaAFHSdikMokwuTj6hgGLHkR+5Njaj5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEoyS1F5aVRDNU9QcUdBWXNlUkg3azJOcVBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8zZmEyMTctODVmNS00ZjE5LWI5MWUt
MDg4OWUzZWNkMWY2LzEvZEoyS1F5aVRDNU9QcUdBWXNlUkg3azJOcVBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny8zZmEyMTctODVmNS00ZjE5LWI5MWUtMDg4OWUzZWNkMWY2
LzEvZEoyS1F5aVRDNU9QcUdBWXNlUkg3azJOcVBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ+OwQ1k0
F24ZwJvX+IB3tO1tRky4d2jhnN29kRe0O8sNiOODTEhooaaqRlx0zZBfOap09PAK
0xfDiayFSqYqvkLKrBB4CG1gyMYCeH7vOIfQW6JqIHvoLHAtkU6FqhdP7xBTZk+u
mYTGXu2Ghsm6pecbJWI9oy5TlfuTVKRS7h+4VwNlvLP+qWmiaih//aITwZeVAlP9
74HVFMY6g9BTT6sRVcMqfTgA0ugNXfPugE4b3r0jIPJCT6qj5o2KLZqC7OpxhJoG
OTN0t9UY//HEDLFr9T2W49z/Imo2PS2ivXFIJFTgb8qzWJj2HsfrhxZv3/77hh0E
tOxPG0LVw9MFOQ==
-----END CERTIFICATE-----
Generated at Sat Apr 18 04:39:15 2026 by rpki-client