Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
File: v8qNbiIJkMc424yExmshnwNFVgw.mft (raw, json)
Hash identifier: EmtN4nbOS6usU+blHZKll5NoE4Fi4KWdb31KgBHuT10=
Subject key identifier: B9:23:BC:B9:7B:C0:16:16:50:26:61:B2:C9:31:85:12:A9:AC:B3:A6
Authority key identifier: BF:CA:8D:6E:22:09:90:C7:38:DB:8C:84:C6:6B:21:9F:03:45:56:0C
Certificate issuer: /CN=bfca8d6e220990c738db8c84c66b219f0345560c
Certificate serial: 019D9AE36B6A58EF4DCF4259C67531E0B831
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8qNbiIJkMc424yExmshnwNFVgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
Manifest number: 12BA
Signing time: Fri 17 Apr 2026 10:01:28 +0000
Manifest this update: Fri 17 Apr 2026 10:01:28 +0000
Manifest next update: Sat 18 Apr 2026 10:01:28 +0000
Files and hashes: 1: v8qNbiIJkMc424yExmshnwNFVgw.crl (hash: h+tEBHAN1g08J1HxiGlM/eudUljVWT11cB/nH22HleI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/v8qNbiIJkMc424yExmshnwNFVgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:6b:6a:58:ef:4d:cf:42:59:c6:75:31:e0:b8:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfca8d6e220990c738db8c84c66b219f0345560c
Validity
Not Before: Apr 17 10:01:28 2026 GMT
Not After : Apr 18 10:01:28 2026 GMT
Subject: CN=b923bcb97bc01616502661b2c9318512a9acb3a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d5:63:54:8d:cb:22:f8:4e:82:20:26:4c:99:
ad:b5:a9:0f:82:41:1f:e2:be:40:c8:a1:a9:e3:71:
14:15:f8:31:82:5a:b3:7d:52:8d:9b:e8:99:59:0e:
1c:fd:36:54:91:e0:5b:d9:88:8e:c7:89:a9:5d:82:
89:b8:88:99:36:5f:1c:1f:a1:0e:b8:bf:ba:f2:94:
dd:f1:1c:98:f0:b5:3a:44:47:b3:36:5f:ef:c5:dd:
f5:95:e1:53:19:ea:bf:54:64:50:a3:df:fa:1a:45:
e3:46:73:d5:d2:13:37:fd:e8:ad:58:1f:49:8d:1c:
79:f3:89:c6:bd:0b:5d:47:07:26:e8:5a:16:8c:65:
df:2f:d8:e7:f7:ca:14:a1:d1:45:00:d6:2b:bc:c6:
dd:8c:dc:5b:ea:2c:04:95:d6:fb:4d:33:1d:cf:ae:
75:c2:2b:8e:c2:fe:f8:ce:a3:cb:70:a7:98:5f:2c:
71:86:17:13:25:05:2a:e6:71:8e:e7:e9:8b:19:23:
1c:80:fa:97:00:33:2b:e0:2b:57:ab:8c:6c:39:66:
89:94:42:16:84:52:99:11:fe:c2:01:4d:ee:25:7a:
74:eb:54:da:20:bd:84:15:86:d2:cd:f0:48:ef:37:
81:fd:59:e5:56:d3:01:3f:d4:54:fb:58:fe:b0:2d:
8a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:23:BC:B9:7B:C0:16:16:50:26:61:B2:C9:31:85:12:A9:AC:B3:A6
X509v3 Authority Key Identifier:
keyid:BF:CA:8D:6E:22:09:90:C7:38:DB:8C:84:C6:6B:21:9F:03:45:56:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8qNbiIJkMc424yExmshnwNFVgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:1e:49:db:7d:cc:4c:c3:8e:be:28:98:69:7b:f7:c2:8a:6e:
a9:60:be:dc:9e:e1:b2:fe:39:7d:31:69:8e:34:a8:79:4d:69:
fb:d7:d6:c8:c5:c0:10:85:9c:59:05:b1:94:ea:b6:02:72:94:
3c:37:8e:ac:4d:00:79:7b:4d:d9:a7:38:12:6c:74:4e:ce:03:
5d:0b:df:c6:26:22:b8:e1:0a:25:5c:52:2d:75:e3:2e:b6:1e:
1a:13:25:b1:51:60:12:5c:4c:44:76:22:2c:5c:ba:f5:03:85:
88:dc:d5:1a:da:1c:2d:7f:95:ba:e8:27:07:39:51:7f:9d:6c:
47:38:07:69:84:5b:47:4a:d3:03:63:d3:25:53:39:c3:d8:3f:
6d:91:ab:cf:26:79:89:2a:9f:5f:dd:2f:0e:43:d3:c6:09:d4:
d2:3d:44:f4:51:75:42:4b:cf:4d:92:fc:54:25:ca:a8:3b:4b:
62:ed:23:9c:00:3a:4b:c3:74:a5:e4:4a:03:6b:90:f1:f3:bd:
4d:c0:1f:1f:57:f4:a1:09:04:97:8d:86:04:68:58:30:15:74:
bb:48:b0:78:b4:53:d2:e7:6f:c1:45:03:2d:61:76:fe:31:e5:
b9:30:fe:ad:2a:4c:7e:4b:cc:b4:a2:4e:1c:e5:b2:4f:d1:60:
90:0f:42:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2a42tqWO9Nz0JZxnUx4LgxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmY2E4ZDZlMjIwOTkwYzczOGRiOGM4NGM2NmIyMTlmMDM0
NTU2MGMwHhcNMjYwNDE3MTAwMTI4WhcNMjYwNDE4MTAwMTI4WjAzMTEwLwYDVQQD
EyhiOTIzYmNiOTdiYzAxNjE2NTAyNjYxYjJjOTMxODUxMmE5YWNiM2E2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvdVjVI3LIvhOgiAmTJmttakPgkEf
4r5AyKGp43EUFfgxglqzfVKNm+iZWQ4c/TZUkeBb2YiOx4mpXYKJuIiZNl8cH6EO
uL+68pTd8RyY8LU6REezNl/vxd31leFTGeq/VGRQo9/6GkXjRnPV0hM3/eitWB9J
jRx584nGvQtdRwcm6FoWjGXfL9jn98oUodFFANYrvMbdjNxb6iwEldb7TTMdz651
wiuOwv74zqPLcKeYXyxxhhcTJQUq5nGO5+mLGSMcgPqXADMr4CtXq4xsOWaJlEIW
hFKZEf7CAU3uJXp061TaIL2EFYbSzfBI7zeB/VnlVtMBP9RU+1j+sC2KGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLkjvLl7wBYWUCZhsskxhRKprLOmMB8GA1UdIwQY
MBaAFL/KjW4iCZDHONuMhMZrIZ8DRVYMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjhxTmJpSUprTWM0MjR5RXhtc2hud05GVmd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9lNDMxOTQtYzM3Yi00ZTdhLTkxNTAt
MjBlMjdmODc5YWU3LzEvdjhxTmJpSUprTWM0MjR5RXhtc2hud05GVmd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9lNDMxOTQtYzM3Yi00ZTdhLTkxNTAtMjBlMjdmODc5YWU3
LzEvdjhxTmJpSUprTWM0MjR5RXhtc2hud05GVmd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWR5J233M
TMOOviiYaXv3wopuqWC+3J7hsv45fTFpjjSoeU1p+9fWyMXAEIWcWQWxlOq2AnKU
PDeOrE0AeXtN2ac4Emx0Ts4DXQvfxiYiuOEKJVxSLXXjLrYeGhMlsVFgElxMRHYi
LFy69QOFiNzVGtocLX+VuugnBzlRf51sRzgHaYRbR0rTA2PTJVM5w9g/bZGrzyZ5
iSqfX90vDkPTxgnU0j1E9FF1QkvPTZL8VCXKqDtLYu0jnAA6S8N0peRKA2uQ8fO9
TcAfH1f0oQkEl42GBGhYMBV0u0iweLRT0udvwUUDLWF2/jHluTD+rSpMfkvMtKJO
HOWyT9FgkA9Cqg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 14:33:52 2026 by rpki-client