Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
File: aErIoCEnBoJ2XSPvAzjzXHht2zU.mft (raw, json)
Hash identifier: RTS+FFPpBt63/FmE4vau4GMjfZp7+yioJbDEoUAzx/8=
Subject key identifier: 76:64:C8:95:06:F1:3C:1B:EA:7C:A3:3F:B1:EE:AF:BC:50:E3:6F:7B
Authority key identifier: 68:4A:C8:A0:21:27:06:82:76:5D:23:EF:03:38:F3:5C:78:6D:DB:35
Certificate issuer: /CN=684ac8a021270682765d23ef0338f35c786ddb35
Certificate serial: 019D99992BF8F2EA18674D66CF03079D2197
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
Manifest number: 1570
Signing time: Fri 17 Apr 2026 04:00:45 +0000
Manifest this update: Fri 17 Apr 2026 04:00:45 +0000
Manifest next update: Sat 18 Apr 2026 04:00:45 +0000
Files and hashes: 1: aErIoCEnBoJ2XSPvAzjzXHht2zU.crl (hash: zJPeZtJdwAo+KsP2Veqg9W4EVsgOBRExqfJDUK+zzYg=)
2: cQSoOImIWHLQqvwma-mbQwTjc30.roa (hash: CvEfeGMhdPBsYF3CWWhLxK0Vg1UuXavAs76jMv4L1vA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:2b:f8:f2:ea:18:67:4d:66:cf:03:07:9d:21:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=684ac8a021270682765d23ef0338f35c786ddb35
Validity
Not Before: Apr 17 04:00:45 2026 GMT
Not After : Apr 18 04:00:45 2026 GMT
Subject: CN=7664c89506f13c1bea7ca33fb1eeafbc50e36f7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:55:3d:3c:4f:ba:f4:e1:10:c8:f1:2b:97:85:
3f:28:c0:b3:c9:9b:b3:8e:e5:a6:37:72:87:1b:1a:
04:81:4b:fd:4a:5b:2a:d3:9c:7c:e4:27:9f:5e:6c:
95:85:a9:e7:56:6d:35:51:83:e5:58:4f:bc:04:c9:
43:b9:25:42:78:a9:0f:79:e1:31:8f:92:ec:7f:fd:
75:ad:54:bd:57:35:2c:7e:1a:a9:f7:1f:ca:16:51:
b9:4c:e8:ad:d4:83:27:4e:17:19:d4:30:8c:0c:c9:
3d:ea:37:a4:8c:7e:f8:a2:6f:8c:bf:a1:01:75:f8:
7c:05:e7:4b:f6:78:8c:5a:f5:ed:d4:77:89:89:c5:
2c:24:7e:3c:b7:26:84:fa:34:9c:a2:79:03:3b:e2:
ee:67:0c:6e:e5:33:8f:e2:38:d1:8e:7b:5f:4e:21:
a6:e4:af:c9:fc:4c:2c:2d:5d:f3:08:13:d8:12:15:
d7:3f:c1:3c:3f:99:38:30:05:4b:ac:8b:6b:3f:d9:
b7:f3:c4:ab:5d:82:b9:84:0f:fa:ae:f4:cd:e1:63:
dd:43:c0:8a:9b:f8:a4:4d:41:37:bc:d4:0d:f9:43:
5f:d1:56:74:90:20:40:fa:9f:d8:67:34:9f:28:6c:
89:f5:75:5d:a3:26:12:0d:45:93:df:3d:af:ff:97:
70:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:64:C8:95:06:F1:3C:1B:EA:7C:A3:3F:B1:EE:AF:BC:50:E3:6F:7B
X509v3 Authority Key Identifier:
keyid:68:4A:C8:A0:21:27:06:82:76:5D:23:EF:03:38:F3:5C:78:6D:DB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:2b:a9:3f:65:63:c7:60:ff:6e:9b:8f:b2:d7:d0:93:5c:c0:
af:2c:64:2d:79:94:73:dd:01:a7:1c:7a:26:4f:63:58:f6:98:
25:75:f2:fc:ca:35:f8:c6:23:61:d5:3d:a2:cd:d2:e7:e7:2f:
8b:2e:2e:3b:d0:77:77:72:12:44:86:ca:f9:10:40:1d:5a:cb:
90:ed:f6:0a:cf:b3:2c:30:b8:4c:05:ef:00:24:3f:fe:e1:69:
89:d5:35:48:90:b8:7d:90:bb:92:de:f2:4a:75:7d:01:a1:c7:
4b:98:bf:3b:d9:77:eb:b2:fb:78:00:34:bf:84:0b:82:3e:d1:
2f:98:20:d7:0f:71:c4:89:8a:3c:b2:fa:0d:6c:58:b3:29:29:
a0:0f:cd:56:9c:da:52:b3:6b:cd:4c:74:17:ad:fe:89:3d:a4:
29:92:03:94:a7:3d:b3:d0:4d:f7:21:af:3d:50:f8:28:99:47:
21:06:38:9c:2a:fb:ab:15:6c:6a:d6:08:da:66:c0:1a:bc:f2:
d7:23:7f:ff:6a:7e:1e:48:90:c0:cc:7e:e0:0c:26:23:fe:15:
66:a1:61:c5:00:be:09:79:56:06:aa:ac:3c:cd:04:15:e9:5d:
e4:65:de:56:e0:34:48:27:e7:8f:c4:f0:42:05:42:7b:1c:da:
3e:c9:f0:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZmSv48uoYZ01mzwMHnSGXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4NGFjOGEwMjEyNzA2ODI3NjVkMjNlZjAzMzhmMzVjNzg2
ZGRiMzUwHhcNMjYwNDE3MDQwMDQ1WhcNMjYwNDE4MDQwMDQ1WjAzMTEwLwYDVQQD
Eyg3NjY0Yzg5NTA2ZjEzYzFiZWE3Y2EzM2ZiMWVlYWZiYzUwZTM2ZjdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFU9PE+69OEQyPErl4U/KMCzyZuz
juWmN3KHGxoEgUv9Slsq05x85CefXmyVhannVm01UYPlWE+8BMlDuSVCeKkPeeEx
j5Lsf/11rVS9VzUsfhqp9x/KFlG5TOit1IMnThcZ1DCMDMk96jekjH74om+Mv6EB
dfh8BedL9niMWvXt1HeJicUsJH48tyaE+jSconkDO+LuZwxu5TOP4jjRjntfTiGm
5K/J/EwsLV3zCBPYEhXXP8E8P5k4MAVLrItrP9m388SrXYK5hA/6rvTN4WPdQ8CK
m/ikTUE3vNQN+UNf0VZ0kCBA+p/YZzSfKGyJ9XVdoyYSDUWT3z2v/5dwBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHZkyJUG8Twb6nyjP7Hur7xQ4297MB8GA1UdIwQY
MBaAFGhKyKAhJwaCdl0j7wM481x4bds1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUVySW9DRW5Cb0oyWFNQdkF6anpYSGh0MnpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kMzBiNWQtN2YzYi00YTVhLTk4OTct
MGMwMTFjOWM5MjdkLzEvYUVySW9DRW5Cb0oyWFNQdkF6anpYSGh0MnpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kMzBiNWQtN2YzYi00YTVhLTk4OTctMGMwMTFjOWM5Mjdk
LzEvYUVySW9DRW5Cb0oyWFNQdkF6anpYSGh0MnpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAASupP2Vj
x2D/bpuPstfQk1zAryxkLXmUc90Bpxx6Jk9jWPaYJXXy/Mo1+MYjYdU9os3S5+cv
iy4uO9B3d3ISRIbK+RBAHVrLkO32Cs+zLDC4TAXvACQ//uFpidU1SJC4fZC7kt7y
SnV9AaHHS5i/O9l367L7eAA0v4QLgj7RL5gg1w9xxImKPLL6DWxYsykpoA/NVpza
UrNrzUx0F63+iT2kKZIDlKc9s9BN9yGvPVD4KJlHIQY4nCr7qxVsatYI2mbAGrzy
1yN//2p+HkiQwMx+4AwmI/4VZqFhxQC+CXlWBqqsPM0EFeld5GXeVuA0SCfnj8Tw
QgVCexzaPsnwTA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:36:31 2026 by rpki-client