Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.mft
File: 67Ulb-PgcwKrcye3R7jfOCRcTt8.mft (raw, json)
Hash identifier: McG48L3omic2wtvJTkIRbPPtGMglrgSrpIYoyO0vfLQ=
Subject key identifier: D5:28:91:CA:57:A9:95:18:5D:2F:FD:8E:C4:76:E5:AE:CC:44:72:C6
Authority key identifier: EB:B5:25:6F:E3:E0:73:02:AB:73:27:B7:47:B8:DF:38:24:5C:4E:DF
Certificate issuer: /CN=ebb5256fe3e07302ab7327b747b8df38245c4edf
Certificate serial: 019D9DAD78A73EC0C492D52E56991ADD84D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/67Ulb-PgcwKrcye3R7jfOCRcTt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.mft
Manifest number: 03E8
Signing time: Fri 17 Apr 2026 23:01:24 +0000
Manifest this update: Fri 17 Apr 2026 23:01:24 +0000
Manifest next update: Sat 18 Apr 2026 23:01:24 +0000
Files and hashes: 1: 67Ulb-PgcwKrcye3R7jfOCRcTt8.crl (hash: hKkHBg3xgz4seuOknQSKOY6V8qXJ2CzErKu/2VKp2g8=)
2: tz3awoZeBMuIdw8HRL7O9-b0MUY.roa (hash: a14NZqfBHqVj9Mn2LuS27VMbtbzXHlfv3zf5CSLerJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/67Ulb-PgcwKrcye3R7jfOCRcTt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:ad:78:a7:3e:c0:c4:92:d5:2e:56:99:1a:dd:84:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebb5256fe3e07302ab7327b747b8df38245c4edf
Validity
Not Before: Apr 17 23:01:24 2026 GMT
Not After : Apr 18 23:01:24 2026 GMT
Subject: CN=d52891ca57a995185d2ffd8ec476e5aecc4472c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:53:f8:de:47:b7:83:63:4c:35:00:1c:40:e9:
81:0e:0d:2c:40:f3:01:a7:27:09:56:99:4c:f0:3c:
4a:57:a6:6b:f0:6d:02:1b:28:af:bf:89:f3:0c:4f:
92:c4:22:ee:8c:75:c3:6f:b4:7e:bc:d5:dc:1c:42:
b7:30:21:3c:e9:d1:68:1c:10:53:63:bb:2a:cf:2e:
f8:6b:76:de:b3:c9:2d:78:6c:bf:6e:05:5f:c7:41:
10:23:f6:4e:0b:34:f4:f1:77:ea:53:87:e9:12:6a:
0d:e6:ef:b3:ba:30:3a:a4:d0:76:fd:e9:ff:af:66:
5f:99:5e:a2:69:09:6f:d2:ce:3e:0c:f2:89:ae:5a:
b0:7b:95:87:8b:f4:ca:db:f9:b6:2a:5e:de:2d:76:
ba:d7:a4:c8:48:95:6f:44:67:b6:c5:6b:9c:5f:1e:
83:e3:bc:84:8e:20:13:18:2c:17:95:04:32:9d:e1:
5f:a2:8b:69:97:67:d5:10:ae:3f:35:c7:4a:da:5c:
12:ee:4b:c7:5b:81:e9:cc:df:89:c8:21:5f:88:ef:
05:ac:a7:f0:d9:93:99:3f:71:9e:53:a0:f7:38:9a:
6d:23:6d:a5:7a:25:fa:ad:93:93:3a:04:65:fd:e1:
87:19:06:15:b2:a2:66:d7:bb:75:72:70:60:be:b0:
96:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:28:91:CA:57:A9:95:18:5D:2F:FD:8E:C4:76:E5:AE:CC:44:72:C6
X509v3 Authority Key Identifier:
keyid:EB:B5:25:6F:E3:E0:73:02:AB:73:27:B7:47:B8:DF:38:24:5C:4E:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/67Ulb-PgcwKrcye3R7jfOCRcTt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:1a:04:54:eb:c8:17:38:23:87:4a:02:82:8e:1c:78:dd:de:
c0:07:65:4a:e3:8c:78:ad:36:1e:e4:f5:3c:c3:f4:99:87:14:
fc:12:07:17:c1:f8:2f:f7:16:2b:9c:2f:d9:dd:c0:9f:4d:33:
42:22:d1:2f:b7:17:19:77:67:49:9f:04:32:75:a2:07:5d:bf:
a0:46:0d:de:f2:14:d5:6d:10:b7:c0:77:6d:f8:8f:35:e7:2f:
bb:4d:ab:d7:aa:d0:83:c6:02:d9:c9:c5:06:a9:be:67:cd:b7:
ee:f0:c7:e2:0d:53:59:28:c2:0f:bf:63:94:b2:a8:22:8c:d2:
f0:b8:4c:7b:2f:20:ff:f9:8d:4a:53:90:df:0a:92:3c:ac:96:
ec:78:7f:19:e1:e7:c6:c4:cd:cd:eb:42:8a:ae:2d:84:b1:87:
c7:45:36:7c:9e:59:3b:a6:1a:af:93:67:b6:e5:82:45:e2:55:
5c:fb:cf:e6:36:60:6c:0d:8f:dd:00:19:c3:6d:9c:ec:ab:a8:
2c:6d:9d:c9:03:2b:8a:7c:ab:fc:f1:4d:35:dc:16:de:65:72:
42:f3:34:b7:cc:b7:35:d1:e4:7d:76:7b:83:f4:62:aa:a3:a9:
e4:6b:c1:71:dc:83:b9:a2:5a:e3:79:df:02:c9:b0:26:a8:94:
2e:84:a1:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2drXinPsDEktUuVpka3YTSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGViYjUyNTZmZTNlMDczMDJhYjczMjdiNzQ3YjhkZjM4MjQ1
YzRlZGYwHhcNMjYwNDE3MjMwMTI0WhcNMjYwNDE4MjMwMTI0WjAzMTEwLwYDVQQD
EyhkNTI4OTFjYTU3YTk5NTE4NWQyZmZkOGVjNDc2ZTVhZWNjNDQ3MmM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FP43ke3g2NMNQAcQOmBDg0sQPMB
pycJVplM8DxKV6Zr8G0CGyivv4nzDE+SxCLujHXDb7R+vNXcHEK3MCE86dFoHBBT
Y7sqzy74a3bes8kteGy/bgVfx0EQI/ZOCzT08XfqU4fpEmoN5u+zujA6pNB2/en/
r2ZfmV6iaQlv0s4+DPKJrlqwe5WHi/TK2/m2Kl7eLXa616TISJVvRGe2xWucXx6D
47yEjiATGCwXlQQyneFfootpl2fVEK4/NcdK2lwS7kvHW4HpzN+JyCFfiO8FrKfw
2ZOZP3GeU6D3OJptI22leiX6rZOTOgRl/eGHGQYVsqJm17t1cnBgvrCWIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNUokcpXqZUYXS/9jsR25a7MRHLGMB8GA1UdIwQY
MBaAFOu1JW/j4HMCq3Mnt0e43zgkXE7fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNjdVbGItUGdjd0tyY3llM1I3amZPQ1JjVHQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS80MGIyYTktYjJjNy00MjIzLTg4NDgt
MGQyZTQyMDU2ODZmLzEvNjdVbGItUGdjd0tyY3llM1I3amZPQ1JjVHQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS80MGIyYTktYjJjNy00MjIzLTg4NDgtMGQyZTQyMDU2ODZm
LzEvNjdVbGItUGdjd0tyY3llM1I3amZPQ1JjVHQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfhoEVOvI
Fzgjh0oCgo4ceN3ewAdlSuOMeK02HuT1PMP0mYcU/BIHF8H4L/cWK5wv2d3An00z
QiLRL7cXGXdnSZ8EMnWiB12/oEYN3vIU1W0Qt8B3bfiPNecvu02r16rQg8YC2cnF
Bqm+Z8237vDH4g1TWSjCD79jlLKoIozS8LhMey8g//mNSlOQ3wqSPKyW7Hh/GeHn
xsTNzetCiq4thLGHx0U2fJ5ZO6Yar5NntuWCReJVXPvP5jZgbA2P3QAZw22c7Kuo
LG2dyQMrinyr/PFNNdwW3mVyQvM0t8y3NdHkfXZ7g/RiqqOp5GvBcdyDuaJa43nf
AsmwJqiULoSh2g==
-----END CERTIFICATE-----
Generated at Sat Apr 18 02:31:02 2026 by rpki-client