Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
File: PheDehDbHT3XPiDfC0eeQNsiNv4.mft (raw, json)
Hash identifier: WiEg8m6XCyFoTlP5OCkyAqEJpacZHzaaDPbW/Caj/k0=
Subject key identifier: C0:A2:03:F3:4F:87:76:B7:5A:9A:39:DF:60:B5:85:48:2D:07:F0:07
Authority key identifier: 3E:17:83:7A:10:DB:1D:3D:D7:3E:20:DF:0B:47:9E:40:DB:22:36:FE
Certificate issuer: /CN=3e17837a10db1d3dd73e20df0b479e40db2236fe
Certificate serial: 019D98BD4C621B256A23E604B4F61B71A058
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
Manifest number: 10D6
Signing time: Fri 17 Apr 2026 00:00:35 +0000
Manifest this update: Fri 17 Apr 2026 00:00:35 +0000
Manifest next update: Sat 18 Apr 2026 00:00:35 +0000
Files and hashes: 1: J1ZNlvpAp8dQYGMOD7UX0oUYBcI.roa (hash: EeG9YUdg/cA88sV9yS1ysCVKGj6cTXLlHbFYfJXwIrI=)
2: PheDehDbHT3XPiDfC0eeQNsiNv4.crl (hash: fzL1Ja3kbzPlSPbscscaqCXLGRjMX6aGiE6TV3JU0eg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:4c:62:1b:25:6a:23:e6:04:b4:f6:1b:71:a0:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e17837a10db1d3dd73e20df0b479e40db2236fe
Validity
Not Before: Apr 17 00:00:35 2026 GMT
Not After : Apr 18 00:00:35 2026 GMT
Subject: CN=c0a203f34f8776b75a9a39df60b585482d07f007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0d:25:7f:98:49:08:62:b0:48:53:5f:9a:ac:
79:ef:b4:de:58:f9:dc:f5:3e:f0:3c:2f:0a:f1:0f:
db:3c:c2:47:21:9e:01:8c:7f:f9:7a:af:0e:7d:d5:
4c:a6:17:2c:59:d7:0b:e0:57:7f:52:97:12:63:c8:
f9:4f:d2:49:23:80:67:47:9b:19:5b:8e:e7:e6:f8:
de:5c:90:c0:f9:94:8f:f5:c9:07:0f:2c:69:cb:f4:
ae:8c:f0:2e:2d:5c:88:77:83:35:60:6e:3a:9b:7d:
11:b6:12:e5:99:8e:50:99:16:55:eb:82:79:49:30:
87:6c:d7:73:85:2c:92:4c:40:4a:8a:43:40:f4:9b:
27:cb:43:2d:a7:54:02:57:cc:94:44:d5:ca:f0:6d:
81:ea:49:fe:e5:53:3f:40:6a:31:7d:73:74:05:f1:
77:53:cb:1a:05:7f:ac:59:b8:ba:b9:5b:89:7f:d3:
85:a1:4b:2a:9d:17:e9:6d:50:80:89:de:b8:61:7b:
cf:bb:d4:54:53:49:f0:26:f5:bd:9b:12:06:34:cc:
b2:e7:16:2c:76:dc:d8:3d:5d:38:85:99:0c:d1:7e:
c1:bd:b1:49:48:e1:eb:34:bc:71:86:0e:7a:01:fb:
a0:ac:f6:87:70:d5:03:87:21:6b:60:88:b9:54:f0:
86:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A2:03:F3:4F:87:76:B7:5A:9A:39:DF:60:B5:85:48:2D:07:F0:07
X509v3 Authority Key Identifier:
keyid:3E:17:83:7A:10:DB:1D:3D:D7:3E:20:DF:0B:47:9E:40:DB:22:36:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:f5:01:12:ab:be:5b:84:87:16:93:97:27:7b:76:9f:ad:58:
d2:3f:33:25:78:38:c3:9d:37:a1:09:1b:e1:26:67:b5:04:0c:
5f:2d:c5:68:1b:e4:e4:8b:d7:39:97:90:21:bc:c5:c5:bb:a5:
a4:00:38:98:d4:b3:3f:4d:32:cd:53:1e:48:48:4e:cf:24:77:
a2:89:fc:74:e5:46:f7:93:db:83:0b:82:4e:58:ef:e3:e1:4d:
1b:81:c3:1f:cb:90:5e:2d:fe:ae:ce:9b:d6:9e:81:31:56:0d:
98:41:20:52:5d:77:32:5d:09:43:67:3f:66:97:1c:eb:69:cf:
c0:51:0d:de:f2:59:b2:10:31:21:82:cd:77:e8:30:25:04:f2:
e1:10:c1:c8:76:1a:80:0a:17:28:2d:81:71:c3:00:35:0f:07:
97:3e:71:6a:aa:19:4c:1f:84:ae:5d:33:1d:c4:56:ef:89:ad:
ed:f2:3d:3a:ee:6e:8d:28:eb:63:0e:2c:1c:48:1d:77:b6:d6:
dd:c4:2c:7e:a0:df:6a:6f:3c:26:cd:d9:a7:ef:f9:f6:ba:8d:
b9:f7:bd:f4:3a:5f:9b:e3:e5:41:d2:25:c1:a9:b3:6f:76:53:
33:95:b6:39:4c:c4:42:97:48:8b:b2:7f:0b:dc:aa:f9:ae:87:
ff:3a:4b:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2YvUxiGyVqI+YEtPYbcaBYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlMTc4MzdhMTBkYjFkM2RkNzNlMjBkZjBiNDc5ZTQwZGIy
MjM2ZmUwHhcNMjYwNDE3MDAwMDM1WhcNMjYwNDE4MDAwMDM1WjAzMTEwLwYDVQQD
EyhjMGEyMDNmMzRmODc3NmI3NWE5YTM5ZGY2MGI1ODU0ODJkMDdmMDA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAug0lf5hJCGKwSFNfmqx577TeWPnc
9T7wPC8K8Q/bPMJHIZ4BjH/5eq8OfdVMphcsWdcL4Fd/UpcSY8j5T9JJI4BnR5sZ
W47n5vjeXJDA+ZSP9ckHDyxpy/SujPAuLVyId4M1YG46m30RthLlmY5QmRZV64J5
STCHbNdzhSySTEBKikNA9Jsny0Mtp1QCV8yURNXK8G2B6kn+5VM/QGoxfXN0BfF3
U8saBX+sWbi6uVuJf9OFoUsqnRfpbVCAid64YXvPu9RUU0nwJvW9mxIGNMyy5xYs
dtzYPV04hZkM0X7BvbFJSOHrNLxxhg56AfugrPaHcNUDhyFrYIi5VPCGWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMCiA/NPh3a3Wpo532C1hUgtB/AHMB8GA1UdIwQY
MBaAFD4Xg3oQ2x091z4g3wtHnkDbIjb+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS80YzA0M2MtNWZjZC00OGNiLWJkNTAt
YzU5NmFmMmE0MmJhLzEvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS80YzA0M2MtNWZjZC00OGNiLWJkNTAtYzU5NmFmMmE0MmJh
LzEvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH/UBEqu+
W4SHFpOXJ3t2n61Y0j8zJXg4w503oQkb4SZntQQMXy3FaBvk5IvXOZeQIbzFxbul
pAA4mNSzP00yzVMeSEhOzyR3oon8dOVG95PbgwuCTljv4+FNG4HDH8uQXi3+rs6b
1p6BMVYNmEEgUl13Ml0JQ2c/Zpcc62nPwFEN3vJZshAxIYLNd+gwJQTy4RDByHYa
gAoXKC2BccMANQ8Hlz5xaqoZTB+Erl0zHcRW74mt7fI9Ou5ujSjrYw4sHEgdd7bW
3cQsfqDfam88Js3Zp+/59rqNufe99Dpfm+PlQdIlwamzb3ZTM5W2OUzEQpdIi7J/
C9yq+a6H/zpLmw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 05:22:00 2026 by rpki-client