Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
File: 00KrFW1a4VOtFlKOh9nIR53ApKU.mft (raw, json)
Hash identifier: R6qU5IIta0K5Oi7eVMeDUjdvln5vmAK+pN6V4KufXVU=
Subject key identifier: EA:BA:31:FA:DC:FF:87:3D:6D:BA:60:EE:7E:82:7B:D6:D2:AC:3C:D1
Authority key identifier: D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
Certificate issuer: /CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Certificate serial: 019D9AAC30038FBE5455AD1DEC2EE6F4D7E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 09:01:08 +0000
Manifest this update: Fri 17 Apr 2026 09:01:08 +0000
Manifest next update: Sat 18 Apr 2026 09:01:08 +0000
Files and hashes: 1: 00KrFW1a4VOtFlKOh9nIR53ApKU.crl (hash: ZI1oeQq5lgg+gUGdaXt4EZXXigBOIe1PXS/KrXseMTo=)
2: m-OH61lf9VVgWjii0PINezzjttE.roa (hash: 2GsJyhthbzFVpryryMCfZ+0hcAAlxYfWmqigOWWbj9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ac:30:03:8f:be:54:55:ad:1d:ec:2e:e6:f4:d7:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Validity
Not Before: Apr 17 09:01:08 2026 GMT
Not After : Apr 18 09:01:08 2026 GMT
Subject: CN=eaba31fadcff873d6dba60ee7e827bd6d2ac3cd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e8:b7:be:f2:77:33:72:1e:54:8d:1e:8e:a0:
7c:ea:8e:52:24:aa:d2:8a:03:9a:fc:9a:79:3d:49:
53:4c:63:11:c8:4c:ad:d0:00:e6:48:19:8b:f0:e5:
70:1f:da:f5:d8:db:f3:d3:30:3e:f0:1f:91:42:f4:
94:87:81:27:d4:1e:47:8f:59:3f:30:5b:54:0f:23:
ae:50:60:48:77:60:6e:a6:67:51:cd:ab:d0:29:a1:
79:d2:63:da:3b:5b:60:d9:90:73:31:41:c8:dc:1a:
e0:69:86:0b:a0:fc:bd:a9:99:69:f0:f7:57:6e:fb:
dd:7e:74:bf:e0:22:05:8b:97:30:2a:d2:1b:6e:fe:
1a:8c:78:1e:2b:6a:ae:dc:c5:63:9a:0e:8a:49:24:
ce:bd:a6:ef:34:03:ed:a5:35:10:58:b0:db:9b:19:
35:78:e6:a9:4a:8d:90:fa:29:7d:6e:d3:c3:0b:d5:
93:02:2f:3d:f4:5f:17:a2:dc:ca:44:c6:2f:4b:23:
6f:a4:f1:0b:f4:39:47:d8:cd:05:9e:a0:e3:3b:3d:
0e:66:d5:19:d8:ae:ca:3a:d6:2c:e9:39:78:fe:c7:
53:57:c1:6a:f8:c9:6d:c6:ae:d0:23:cb:ed:22:b0:
e9:3e:0f:1e:3a:4a:31:3b:b5:81:73:8e:92:19:49:
b1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:BA:31:FA:DC:FF:87:3D:6D:BA:60:EE:7E:82:7B:D6:D2:AC:3C:D1
X509v3 Authority Key Identifier:
keyid:D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:55:c0:74:45:20:8b:19:6e:7b:81:70:3b:70:aa:7e:3f:c8:
e6:ba:a4:6e:30:39:03:33:3e:f3:5d:e3:a1:6e:26:d6:2d:73:
cf:0e:c0:54:f5:dc:65:fd:85:11:ce:3e:00:23:b3:1b:8a:5f:
84:2b:2b:cb:b5:42:58:72:bb:38:32:27:e5:e7:73:9a:3b:85:
e4:e3:84:5e:f1:24:b3:0d:7c:40:0c:08:f4:8d:4a:5c:43:35:
bb:94:ed:d0:a7:ad:e0:17:20:88:90:32:a0:c1:c9:77:76:7d:
4e:3e:bb:6e:7a:77:0e:d7:88:88:dd:8c:99:3a:6f:77:d0:a4:
b7:81:41:f7:8e:42:bf:0e:53:84:bd:30:7b:b4:5b:d0:79:f5:
19:64:29:28:61:a5:92:e7:51:76:0b:cb:b6:3b:67:16:51:be:
8b:98:d1:39:59:ff:9b:28:3e:42:3c:81:33:4c:9e:26:28:b6:
5f:1b:e3:10:f3:b0:4e:aa:54:45:63:5c:90:8b:1f:80:5d:c8:
a4:61:6e:5a:eb:9e:c5:27:c2:9e:8a:02:95:52:af:96:2b:c9:
a6:11:28:23:db:fb:b6:f3:c1:78:36:3f:82:01:6f:4c:1e:fc:
fd:dc:95:d4:13:36:af:94:42:d5:5f:a1:b6:1b:06:34:f0:d0:
0b:54:fe:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2arDADj75UVa0d7C7m9NfhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNDJhYjE1NmQ1YWUxNTNhZDE2NTI4ZTg3ZDljODQ3OWRj
MGE0YTUwHhcNMjYwNDE3MDkwMTA4WhcNMjYwNDE4MDkwMTA4WjAzMTEwLwYDVQQD
EyhlYWJhMzFmYWRjZmY4NzNkNmRiYTYwZWU3ZTgyN2JkNmQyYWMzY2QxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOi3vvJ3M3IeVI0ejqB86o5SJKrS
igOa/Jp5PUlTTGMRyEyt0ADmSBmL8OVwH9r12Nvz0zA+8B+RQvSUh4En1B5Hj1k/
MFtUDyOuUGBId2BupmdRzavQKaF50mPaO1tg2ZBzMUHI3BrgaYYLoPy9qZlp8PdX
bvvdfnS/4CIFi5cwKtIbbv4ajHgeK2qu3MVjmg6KSSTOvabvNAPtpTUQWLDbmxk1
eOapSo2Q+il9btPDC9WTAi899F8XotzKRMYvSyNvpPEL9DlH2M0FnqDjOz0OZtUZ
2K7KOtYs6Tl4/sdTV8Fq+Mltxq7QI8vtIrDpPg8eOkoxO7WBc46SGUmxlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOq6Mfrc/4c9bbpg7n6Ce9bSrDzRMB8GA1UdIwQY
MBaAFNNCqxVtWuFTrRZSjofZyEedwKSlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDBLckZXMWE0Vk90RmxLT2g5bklSNTNBcEtVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8yNjM0NDctMGM4MC00Y2RhLWI5MTUt
MDgxYTYzN2Y3MDNlLzEvMDBLckZXMWE0Vk90RmxLT2g5bklSNTNBcEtVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy8yNjM0NDctMGM4MC00Y2RhLWI5MTUtMDgxYTYzN2Y3MDNl
LzEvMDBLckZXMWE0Vk90RmxLT2g5bklSNTNBcEtVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf1XAdEUg
ixlue4FwO3Cqfj/I5rqkbjA5AzM+813joW4m1i1zzw7AVPXcZf2FEc4+ACOzG4pf
hCsry7VCWHK7ODIn5edzmjuF5OOEXvEksw18QAwI9I1KXEM1u5Tt0Ket4BcgiJAy
oMHJd3Z9Tj67bnp3DteIiN2MmTpvd9Ckt4FB945Cvw5ThL0we7Rb0Hn1GWQpKGGl
kudRdgvLtjtnFlG+i5jROVn/myg+QjyBM0yeJii2XxvjEPOwTqpURWNckIsfgF3I
pGFuWuuexSfCnooClVKvlivJphEoI9v7tvPBeDY/ggFvTB78/dyV1BM2r5RC1V+h
thsGNPDQC1T+Sg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:35:44 2026 by rpki-client