Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
File: thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft (raw, json)
Hash identifier: h+1um66fVGL6DAfbBE+YtYKsp3QQAtWjzj9R3usZupc=
Subject key identifier: 10:FC:F0:2D:52:63:F1:6D:16:90:B5:8F:34:D6:5F:A8:9C:A2:4E:A0
Authority key identifier: B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
Certificate issuer: /CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Certificate serial: 019DA3AF02E79FC8B4566EBC80B7B8E45B8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
Manifest number: 0D0C
Signing time: Sun 19 Apr 2026 03:00:48 +0000
Manifest this update: Sun 19 Apr 2026 03:00:48 +0000
Manifest next update: Mon 20 Apr 2026 03:00:48 +0000
Files and hashes: 1: 4HE55QqTfljWCn4cZ1ai8cvlh4Q.roa (hash: Urls4Wea48yb11KMoVdUctKI04Yz3x+qj0Xh8gfQ8ic=)
2: ZI0XBxKngNfebDmdNmRzMmhs3_c.roa (hash: QNWQmpn8TQdq4xaJXKJjh0gyorKFkSra2zQiLtm/C4o=)
3: gbhgQ3B2uQKFPVeFw6hdlGGc7-M.roa (hash: G0Tz2y63qfWHb3YGepEYqUMgHFr/+KkjDltfUYTk6fM=)
4: thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl (hash: TMDYjqxJmn/8XX6xRYMUzQZcq/pHxKJltNbisYXW3GY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:af:02:e7:9f:c8:b4:56:6e:bc:80:b7:b8:e4:5b:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Validity
Not Before: Apr 19 03:00:48 2026 GMT
Not After : Apr 20 03:00:48 2026 GMT
Subject: CN=10fcf02d5263f16d1690b58f34d65fa89ca24ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b2:9d:e6:34:12:03:71:6e:fa:79:24:50:c7:
a8:93:fd:6d:0b:8c:91:2d:af:1c:c7:67:05:02:81:
2a:fe:5c:0c:95:9b:eb:22:bd:ad:e7:e1:bd:18:ab:
19:99:d6:81:04:79:c8:c7:15:14:07:16:a5:6c:35:
c5:a4:95:02:91:9c:85:ac:70:19:85:5a:f1:a5:28:
9e:fa:d5:4e:64:00:b1:d6:72:d6:f0:df:5e:77:e7:
fc:48:b3:8b:df:b2:9c:8c:22:47:bb:e4:c8:3f:e4:
c6:84:ef:41:23:a7:08:95:e3:f1:56:45:b2:ac:8f:
81:47:6d:90:b5:fe:8a:2e:98:8f:d5:83:67:b0:ab:
e8:57:a4:8a:68:f3:f7:76:45:df:91:63:c5:5c:d5:
2c:2c:66:a4:5b:7c:84:8b:85:ba:f1:9f:8d:3d:17:
31:f9:c6:ce:03:d4:ba:e0:1e:06:e6:db:f4:8d:a4:
ad:05:07:a2:93:51:25:fc:5f:30:88:82:3d:38:de:
2b:5a:0b:3b:1f:63:79:23:8a:d3:7e:e8:fc:76:1c:
cf:a6:8e:94:11:d3:cd:d4:5a:e7:c2:87:c3:d1:67:
38:fb:a9:c9:df:7d:53:26:75:9e:6a:26:07:e9:47:
54:61:93:9e:b6:cd:53:dc:f3:d7:01:10:70:48:60:
2f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:FC:F0:2D:52:63:F1:6D:16:90:B5:8F:34:D6:5F:A8:9C:A2:4E:A0
X509v3 Authority Key Identifier:
keyid:B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:50:71:6d:ed:55:96:48:eb:29:0c:ce:79:d6:54:0f:64:a4:
2d:e0:7a:2d:57:2f:ce:f4:c1:ae:17:8b:4e:3a:78:7e:6f:5a:
b8:99:52:3c:83:33:58:d9:35:94:21:ec:57:fe:ce:51:6f:e4:
64:9d:e6:b5:cc:2c:cf:e2:bd:a4:b7:9d:18:6f:9f:d1:0c:14:
26:0d:cf:08:5d:b5:e2:35:a8:37:90:64:32:c9:34:8b:51:75:
b7:86:1e:f9:04:af:e3:9e:ca:85:f9:55:bc:4e:8e:80:e2:4a:
dd:ff:23:e8:4e:8d:56:cb:b1:b1:ab:f0:34:0e:ad:74:9f:6a:
47:cf:6a:1c:39:5e:f3:15:17:e7:c0:e8:3b:20:34:70:e0:e7:
c1:5b:e2:fa:9c:47:bb:7f:3f:94:57:e3:48:4f:ce:2f:0f:9c:
1e:fe:19:12:3f:85:d4:29:39:01:d6:ec:0d:0f:a6:7d:61:5c:
a5:0a:25:bd:30:52:ce:a7:93:98:c6:00:82:e2:91:7d:73:c8:
14:9f:a8:c8:e6:8f:19:83:1b:b9:9a:f2:27:39:0f:f1:7b:be:
b6:6b:2f:9d:81:6a:1a:99:fc:ea:51:c2:1b:99:52:57:e0:64:
f4:2c:a9:db:23:f3:70:8d:e0:a0:85:9e:a3:b4:5f:4a:e3:be:
87:91:c2:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2jrwLnn8i0Vm68gLe45FuPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2MTA0NmRjYjE4NWIwYmZkOTk3NjYyOGQ2OWExODlkM2Mz
OTg3ZDgwHhcNMjYwNDE5MDMwMDQ4WhcNMjYwNDIwMDMwMDQ4WjAzMTEwLwYDVQQD
EygxMGZjZjAyZDUyNjNmMTZkMTY5MGI1OGYzNGQ2NWZhODljYTI0ZWEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA07Kd5jQSA3Fu+nkkUMeok/1tC4yR
La8cx2cFAoEq/lwMlZvrIr2t5+G9GKsZmdaBBHnIxxUUBxalbDXFpJUCkZyFrHAZ
hVrxpSie+tVOZACx1nLW8N9ed+f8SLOL37KcjCJHu+TIP+TGhO9BI6cIlePxVkWy
rI+BR22Qtf6KLpiP1YNnsKvoV6SKaPP3dkXfkWPFXNUsLGakW3yEi4W68Z+NPRcx
+cbOA9S64B4G5tv0jaStBQeik1El/F8wiII9ON4rWgs7H2N5I4rTfuj8dhzPpo6U
EdPN1FrnwofD0Wc4+6nJ331TJnWeaiYH6UdUYZOets1T3PPXARBwSGAv0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBD88C1SY/FtFpC1jzTWX6icok6gMB8GA1UdIwQY
MBaAFLYQRtyxhbC/2ZdmKNaaGJ08OYfYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGhCRzNMR0ZzTF9abDJZbzFwb1luVHc1aDlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC83MDc1N2ItYzc1OC00MjkyLThiNWMt
Y2YxZjJmYThlNWYyLzEvdGhCRzNMR0ZzTF9abDJZbzFwb1luVHc1aDlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC83MDc1N2ItYzc1OC00MjkyLThiNWMtY2YxZjJmYThlNWYy
LzEvdGhCRzNMR0ZzTF9abDJZbzFwb1luVHc1aDlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAilBxbe1V
lkjrKQzOedZUD2SkLeB6LVcvzvTBrheLTjp4fm9auJlSPIMzWNk1lCHsV/7OUW/k
ZJ3mtcwsz+K9pLedGG+f0QwUJg3PCF214jWoN5BkMsk0i1F1t4Ye+QSv457KhflV
vE6OgOJK3f8j6E6NVsuxsavwNA6tdJ9qR89qHDle8xUX58DoOyA0cODnwVvi+pxH
u38/lFfjSE/OLw+cHv4ZEj+F1Ck5AdbsDQ+mfWFcpQolvTBSzqeTmMYAguKRfXPI
FJ+oyOaPGYMbuZryJzkP8Xu+tmsvnYFqGpn86lHCG5lSV+Bk9Cyp2yPzcI3goIWe
o7RfSuO+h5HCWw==
-----END CERTIFICATE-----
Generated at Sun Apr 19 11:32:56 2026 by rpki-client