Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: EWVEcp0ZdzJXT/bdCtNWC4DC9JPAvcckN26eTaI5fTc=
Subject key identifier: 68:C9:46:06:BA:E2:58:9D:21:B4:F0:15:29:AE:65:B6:8D:92:F1:BB
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 019D9AE375E4046D99A9150C526A63600C67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 0A34
Signing time: Fri 17 Apr 2026 10:01:31 +0000
Manifest this update: Fri 17 Apr 2026 10:01:31 +0000
Manifest next update: Sat 18 Apr 2026 10:01:31 +0000
Files and hashes: 1: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: rvGZdFlVw/OaJ6JEmQa0VG/24PjzLRLOtZEgr4y6Mig=)
2: g0oXLuj5iDetxALq5Bw1KiMkRUo.roa (hash: PW9/wUds/6yFiBdtio7q4yhD06x/RpMiIm+VqX8uKYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:75:e4:04:6d:99:a9:15:0c:52:6a:63:60:0c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: Apr 17 10:01:31 2026 GMT
Not After : Apr 18 10:01:31 2026 GMT
Subject: CN=68c94606bae2589d21b4f01529ae65b68d92f1bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:11:b7:27:36:17:2b:0f:4f:ef:05:5e:3b:1d:
a3:c5:ef:2f:8c:15:1b:0d:44:61:7c:f4:48:bf:a9:
5a:3d:18:a2:e3:d3:79:1b:c7:28:cb:11:f3:4c:ba:
9f:bb:08:13:aa:13:b4:ad:66:31:86:cf:ca:98:b3:
42:e4:92:74:58:88:0f:9f:b1:45:3d:82:bf:e6:80:
2c:20:90:1d:90:fc:68:d1:a5:a8:17:1c:5a:4a:33:
2e:b3:23:a8:be:6a:44:76:db:75:65:6d:a0:b2:6f:
ff:c5:e9:d6:96:c5:37:66:a0:9d:1a:65:15:e3:34:
51:67:0d:0d:bf:68:16:a6:b3:98:0d:1c:d6:06:7d:
29:9e:2f:fa:9d:6d:5e:47:0f:63:68:24:b7:48:40:
7a:36:c2:06:39:df:6d:9d:fd:ec:95:0d:e3:00:8b:
e5:61:1d:91:ec:01:d6:93:c0:5f:4a:b6:e2:95:5f:
22:16:1b:64:99:61:32:c4:f3:01:cf:a6:9a:2c:94:
55:ee:90:f4:72:93:53:d9:14:4b:46:80:6c:75:fe:
50:40:6e:36:df:0d:5c:86:db:a3:9d:82:a2:80:da:
5b:5b:c6:e0:c3:2f:df:60:49:76:de:22:83:47:e8:
aa:7a:e4:3f:07:31:67:8e:85:bc:1a:d2:e6:93:16:
58:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C9:46:06:BA:E2:58:9D:21:B4:F0:15:29:AE:65:B6:8D:92:F1:BB
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:fa:f3:d0:59:94:25:f0:f3:a0:10:75:89:c9:6e:2e:84:d6:
bf:3d:b4:6d:31:e7:69:de:b6:a9:98:4c:3e:18:4d:93:a3:0c:
6e:03:2d:33:4d:34:51:19:41:c4:b9:eb:da:ca:56:c1:62:c0:
fd:db:0b:c6:27:85:e1:d8:99:7e:d1:d9:d2:ab:c9:93:c5:4d:
d5:73:80:36:03:f0:dd:bb:9d:b6:10:77:a3:bf:84:8a:5b:06:
f6:be:b4:62:ee:30:a6:e0:7c:bc:0a:02:97:99:84:71:b8:c4:
2b:ad:7e:06:cb:51:59:7c:c7:dd:d9:c9:cc:d5:ee:1e:7a:fc:
af:60:26:86:54:20:90:d5:cb:1c:fc:fc:fd:07:b4:18:e9:27:
d5:7e:1f:b1:c3:26:17:a5:12:39:6d:f4:16:2e:e5:7f:d2:1c:
b7:9e:02:cf:95:0f:75:8d:43:82:9c:15:0d:49:8b:f8:f1:6b:
c8:85:f0:55:ce:99:18:b7:67:b1:1e:f4:25:b2:4d:c5:0d:f9:
fe:69:7b:43:41:38:6a:78:8c:0f:05:c1:ac:a3:a3:e1:2a:d8:
f8:fb:09:e6:e9:fb:42:6e:8d:0e:66:71:a2:83:9d:f1:af:0e:
99:e6:5b:97:c9:2d:04:b1:f7:2d:74:ec:3a:16:f3:2c:e8:30:
29:76:0b:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2a43XkBG2ZqRUMUmpjYAxnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzZWE1MDhhODViYzczYTlhYWEyMDNhOGE3YmFmOWMxNjJl
NmYzNmMwHhcNMjYwNDE3MTAwMTMxWhcNMjYwNDE4MTAwMTMxWjAzMTEwLwYDVQQD
Eyg2OGM5NDYwNmJhZTI1ODlkMjFiNGYwMTUyOWFlNjViNjhkOTJmMWJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArRG3JzYXKw9P7wVeOx2jxe8vjBUb
DURhfPRIv6laPRii49N5G8coyxHzTLqfuwgTqhO0rWYxhs/KmLNC5JJ0WIgPn7FF
PYK/5oAsIJAdkPxo0aWoFxxaSjMusyOovmpEdtt1ZW2gsm//xenWlsU3ZqCdGmUV
4zRRZw0Nv2gWprOYDRzWBn0pni/6nW1eRw9jaCS3SEB6NsIGOd9tnf3slQ3jAIvl
YR2R7AHWk8BfSrbilV8iFhtkmWEyxPMBz6aaLJRV7pD0cpNT2RRLRoBsdf5QQG42
3w1chtujnYKigNpbW8bgwy/fYEl23iKDR+iqeuQ/BzFnjoW8GtLmkxZYzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGjJRga64lidIbTwFSmuZbaNkvG7MB8GA1UdIwQY
MBaAFAPqUIqFvHOpqqIDqKe6+cFi5vNsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAt
ZDcyNzA5MDVlOTIzLzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAtZDcyNzA5MDVlOTIz
LzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIvrz0FmU
JfDzoBB1icluLoTWvz20bTHnad62qZhMPhhNk6MMbgMtM000URlBxLnr2spWwWLA
/dsLxieF4diZftHZ0qvJk8VN1XOANgPw3budthB3o7+EilsG9r60Yu4wpuB8vAoC
l5mEcbjEK61+BstRWXzH3dnJzNXuHnr8r2AmhlQgkNXLHPz8/Qe0GOkn1X4fscMm
F6USOW30Fi7lf9Ict54Cz5UPdY1DgpwVDUmL+PFryIXwVc6ZGLdnsR70JbJNxQ35
/ml7Q0E4aniMDwXBrKOj4SrY+PsJ5un7Qm6NDmZxooOd8a8OmeZbl8ktBLH3LXTs
OhbzLOgwKXYL1g==
-----END CERTIFICATE-----
Generated at Fri Apr 17 16:07:38 2026 by rpki-client