Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
File: hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft (raw, json)
Hash identifier: GKk8deQlhjt3VLa6BDS9ennYLFzXugpQj6GpJ4D9sIE=
Subject key identifier: 58:59:08:79:FA:B7:5C:95:C1:D8:15:32:4C:B5:D6:06:F2:0E:F7:31
Authority key identifier: 84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8
Certificate issuer: /CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8
Certificate serial: 019D992B8681E3834F8906636A2A7F963781
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
Manifest number: 18C9
Signing time: Fri 17 Apr 2026 02:00:59 +0000
Manifest this update: Fri 17 Apr 2026 02:00:59 +0000
Manifest next update: Sat 18 Apr 2026 02:00:59 +0000
Files and hashes: 1: 867F4OQuQLWhRY4aKxKeoxD01B4.asa (hash: +fRCR0HY7fbE+pyBbt7W5yHcfIjIo6aJjDfzPZQv280=)
2: au_k5KTkHwmYgyGwQL9kaGDMGdc.roa (hash: TQ4e7aFpXjYOcX/z8GmwxlZOtaffODMat2Hj3Al3L2Y=)
3: hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl (hash: mL8iQuJvpvU7omcseRYY5W4NUEORJt9eebTGhQqo7HM=)
4: iqLo87tMFOB-XBrWIzdU46MRBuE.roa (hash: IzYBLEWXA56LUWCfb8F/l/nPeES5nSXV/ENxm4IRlhY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:86:81:e3:83:4f:89:06:63:6a:2a:7f:96:37:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8
Validity
Not Before: Apr 17 02:00:59 2026 GMT
Not After : Apr 18 02:00:59 2026 GMT
Subject: CN=58590879fab75c95c1d815324cb5d606f20ef731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:44:d2:35:ad:85:31:49:d0:43:d7:59:9f:33:
b8:2f:7f:e8:18:35:a9:ca:f2:b9:b0:80:41:e2:6b:
77:11:72:d4:0f:37:f7:11:b5:94:bb:2e:1b:64:cf:
8e:bf:e1:cc:a5:1b:1a:2c:9b:7a:92:7f:cd:11:2d:
e3:d8:38:ad:ab:3f:db:97:c3:6d:c8:b1:e0:9b:df:
13:8b:d1:b4:92:c5:31:c0:e2:ff:59:7c:d6:ef:e7:
f7:30:32:fe:2b:8f:63:94:ca:90:7a:ef:6a:d5:44:
e7:39:cd:ab:67:3e:fd:eb:90:f4:3d:f7:73:4d:7b:
86:27:27:43:a8:c1:32:f4:49:0b:5e:27:2f:91:a0:
56:cd:63:d7:e8:15:75:31:01:ef:b5:ea:b2:a7:73:
38:e5:8a:e4:01:96:28:61:a6:35:da:67:5d:08:3d:
74:da:74:e4:88:12:14:95:d5:d3:05:a5:ed:90:5f:
dc:32:ae:3d:7b:a8:8e:e2:86:e1:ef:02:fa:ee:4a:
ed:e3:10:19:78:93:1b:3c:a6:bf:04:9b:f0:61:ca:
14:9d:59:e5:e2:97:96:9f:10:70:4e:39:f8:04:73:
94:94:88:95:7d:eb:05:eb:76:6a:4f:e0:93:8a:3a:
8c:28:8f:07:b4:8c:43:eb:0c:1f:6e:0e:69:f3:94:
73:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:59:08:79:FA:B7:5C:95:C1:D8:15:32:4C:B5:D6:06:F2:0E:F7:31
X509v3 Authority Key Identifier:
keyid:84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:f4:f8:81:4e:51:05:66:4e:5f:b3:29:88:68:e9:fe:10:7a:
42:36:83:a4:09:2b:34:52:98:25:ff:00:74:28:ee:41:1c:8b:
2c:ff:26:d2:93:2b:cd:96:67:4a:57:f1:48:99:37:b6:49:ba:
9f:11:53:16:cb:d3:f6:61:13:64:d7:37:57:63:37:b0:76:30:
86:ed:fa:91:d7:4d:bb:43:8c:87:d0:3c:4c:cc:15:88:97:fc:
bf:26:91:3b:a5:51:8f:44:5d:d2:19:1b:2f:db:49:35:4e:4d:
27:a0:d1:83:32:47:92:47:d3:6e:f3:4c:35:1f:52:67:f2:e3:
04:95:24:e1:84:78:03:66:b7:5f:fc:ad:7a:a3:a1:c9:90:7b:
1a:c1:a9:16:f6:94:fb:e6:55:e1:8b:f1:47:94:44:d3:fc:a8:
ae:e2:36:09:f5:13:f3:70:f5:6e:76:76:36:dc:9f:3e:34:0d:
b2:2b:fd:64:1d:02:ab:6c:62:78:02:03:39:81:c9:69:da:9d:
e4:bd:09:0c:d2:3d:fc:79:a6:6e:3d:d1:05:9e:f6:31:4e:32:
e2:49:13:93:9e:09:0b:9b:30:5e:59:41:3e:d2:5b:be:5b:b6:
7e:a0:a0:50:ce:5c:ea:61:34:f8:75:43:c2:ae:35:52:3d:48:
10:1c:66:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZK4aB44NPiQZjaip/ljeBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0ZTE0MjlhNTNlNjQ2M2IzYzc0ZjVhM2YxN2M1ZDRhNTFl
YmQwYjgwHhcNMjYwNDE3MDIwMDU5WhcNMjYwNDE4MDIwMDU5WjAzMTEwLwYDVQQD
Eyg1ODU5MDg3OWZhYjc1Yzk1YzFkODE1MzI0Y2I1ZDYwNmYyMGVmNzMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA10TSNa2FMUnQQ9dZnzO4L3/oGDWp
yvK5sIBB4mt3EXLUDzf3EbWUuy4bZM+Ov+HMpRsaLJt6kn/NES3j2Ditqz/bl8Nt
yLHgm98Ti9G0ksUxwOL/WXzW7+f3MDL+K49jlMqQeu9q1UTnOc2rZz7965D0Pfdz
TXuGJydDqMEy9EkLXicvkaBWzWPX6BV1MQHvteqyp3M45YrkAZYoYaY12mddCD10
2nTkiBIUldXTBaXtkF/cMq49e6iO4obh7wL67krt4xAZeJMbPKa/BJvwYcoUnVnl
4peWnxBwTjn4BHOUlIiVfesF63ZqT+CTijqMKI8HtIxD6wwfbg5p85RzmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFhZCHn6t1yVwdgVMky11gbyDvcxMB8GA1UdIwQY
MBaAFIThQppT5kY7PHT1o/F8XUpR69C4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaE9GQ21sUG1SanM4ZFBXajhYeGRTbEhyMExnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83MmRiZGYtYzcxZC00ZTU5LTgwNzYt
YzQxZGNjYThiNzc1LzEvaE9GQ21sUG1SanM4ZFBXajhYeGRTbEhyMExnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS83MmRiZGYtYzcxZC00ZTU5LTgwNzYtYzQxZGNjYThiNzc1
LzEvaE9GQ21sUG1SanM4ZFBXajhYeGRTbEhyMExnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPvT4gU5R
BWZOX7MpiGjp/hB6QjaDpAkrNFKYJf8AdCjuQRyLLP8m0pMrzZZnSlfxSJk3tkm6
nxFTFsvT9mETZNc3V2M3sHYwhu36kddNu0OMh9A8TMwViJf8vyaRO6VRj0Rd0hkb
L9tJNU5NJ6DRgzJHkkfTbvNMNR9SZ/LjBJUk4YR4A2a3X/yteqOhyZB7GsGpFvaU
++ZV4YvxR5RE0/yoruI2CfUT83D1bnZ2NtyfPjQNsiv9ZB0Cq2xieAIDOYHJadqd
5L0JDNI9/Hmmbj3RBZ72MU4y4kkTk54JC5swXllBPtJbvlu2fqCgUM5c6mE0+HVD
wq41Uj1IEBxmxg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 05:59:58 2026 by rpki-client