Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
File: JcUDXdNt8HSfTWKZyPy-1hVcARc.mft (raw, json)
Hash identifier: IsAPQSQuHv156NVUg1WyrRTy2rMI5lefP47SQfJPpz8=
Subject key identifier: 10:50:A9:DD:4E:CF:36:FA:E3:5F:31:49:69:96:09:70:3C:C3:5C:C3
Authority key identifier: 25:C5:03:5D:D3:6D:F0:74:9F:4D:62:99:C8:FC:BE:D6:15:5C:01:17
Certificate issuer: /CN=25c5035dd36df0749f4d6299c8fcbed6155c0117
Certificate serial: 019D98F4D4C6BB6C360A1F68D870FDC48A6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
Manifest number: 18BD
Signing time: Fri 17 Apr 2026 01:01:15 +0000
Manifest this update: Fri 17 Apr 2026 01:01:15 +0000
Manifest next update: Sat 18 Apr 2026 01:01:15 +0000
Files and hashes: 1: JcUDXdNt8HSfTWKZyPy-1hVcARc.crl (hash: y2u5Y1sL7PiBbakwFAZaNhpIIjuR4ICJyKsLkUKna3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:d4:c6:bb:6c:36:0a:1f:68:d8:70:fd:c4:8a:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25c5035dd36df0749f4d6299c8fcbed6155c0117
Validity
Not Before: Apr 17 01:01:15 2026 GMT
Not After : Apr 18 01:01:15 2026 GMT
Subject: CN=1050a9dd4ecf36fae35f3149699609703cc35cc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d8:0d:5c:d6:bb:4f:02:ba:d1:06:6f:03:ab:
1e:0b:1f:04:06:e8:0b:bc:e6:8f:df:1b:ba:10:78:
9e:4a:6b:56:9f:0f:b7:91:24:40:76:37:44:1c:d5:
cd:95:8b:b5:29:ea:9c:e1:3c:8a:16:04:f5:4e:a5:
8e:d9:5c:d0:e7:6b:a8:f5:46:70:af:53:64:51:11:
c5:cf:8b:17:a6:30:5a:5a:4d:db:9e:4c:64:9d:41:
fd:dc:21:50:68:6a:2f:ca:8c:64:e7:36:ac:ca:24:
d6:f9:65:75:c0:97:28:05:dc:12:20:f5:44:3b:a0:
8a:b5:1b:41:a4:ac:b7:10:0b:f7:3a:d9:a4:a2:5e:
80:bd:80:a3:38:9d:4f:ad:b2:28:fa:e8:3f:ab:f8:
eb:21:c5:9d:e4:f5:c5:8d:08:36:28:e1:6b:ae:8a:
01:09:59:c5:10:22:e3:6a:70:c1:71:48:93:f9:17:
ea:a5:7c:1b:5e:56:31:2c:1a:cd:e3:f0:f1:c5:81:
da:23:dd:0f:45:0d:11:dc:4a:bf:af:0a:40:a2:d2:
7a:0a:fe:a1:19:87:4f:dc:ba:44:9a:f6:aa:a2:37:
69:0d:18:d7:b5:0f:cc:1a:75:e4:a1:da:3d:7b:1c:
2f:a5:b7:55:ff:f5:85:0a:aa:ae:67:31:1c:e3:f1:
5e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:50:A9:DD:4E:CF:36:FA:E3:5F:31:49:69:96:09:70:3C:C3:5C:C3
X509v3 Authority Key Identifier:
keyid:25:C5:03:5D:D3:6D:F0:74:9F:4D:62:99:C8:FC:BE:D6:15:5C:01:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:0d:e4:93:59:9e:a5:e0:03:b7:fc:a6:27:78:06:8a:e9:7c:
db:89:bb:c5:9d:b8:8c:c6:79:ec:9a:d5:c1:af:c7:6e:39:84:
9c:75:a3:9e:a1:52:7a:09:3d:42:d6:06:4d:5d:c0:ca:cd:30:
1c:6e:80:a1:89:aa:3c:7c:5c:ed:2b:40:38:7a:ff:90:ce:4b:
f5:8d:b6:09:b9:de:eb:eb:f1:27:cc:c1:10:fc:62:d4:a4:a7:
ed:bc:19:8a:c0:35:3e:aa:8c:2a:76:16:fb:d3:e6:c3:cb:a6:
37:8d:0d:dd:b9:11:7a:77:b6:e6:09:c6:3f:1d:b2:82:b5:9e:
0d:12:99:83:27:27:45:af:1b:92:d1:1e:2d:8c:c5:ff:1d:5b:
ae:ac:34:1b:53:e8:49:a5:05:30:6b:01:66:fe:b4:47:13:7d:
17:c4:8d:d2:c7:ce:16:90:c9:ed:d5:fe:a0:b3:dc:44:7a:dd:
bc:31:01:ba:85:08:27:86:2a:c5:3b:d9:79:3f:57:66:ef:80:
94:75:2f:16:d9:7e:0a:6f:c3:c9:de:b4:e2:8e:c0:1a:1f:95:
07:cf:b3:7c:47:7a:e6:79:1b:04:8b:13:11:3e:c9:0a:96:23:
83:92:3e:69:7a:26:2a:eb:fd:8b:28:3a:88:f3:24:87:a1:c3:
d9:21:40:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9NTGu2w2Ch9o2HD9xIpuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1YzUwMzVkZDM2ZGYwNzQ5ZjRkNjI5OWM4ZmNiZWQ2MTU1
YzAxMTcwHhcNMjYwNDE3MDEwMTE1WhcNMjYwNDE4MDEwMTE1WjAzMTEwLwYDVQQD
EygxMDUwYTlkZDRlY2YzNmZhZTM1ZjMxNDk2OTk2MDk3MDNjYzM1Y2MzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9gNXNa7TwK60QZvA6seCx8EBugL
vOaP3xu6EHieSmtWnw+3kSRAdjdEHNXNlYu1Keqc4TyKFgT1TqWO2VzQ52uo9UZw
r1NkURHFz4sXpjBaWk3bnkxknUH93CFQaGovyoxk5zasyiTW+WV1wJcoBdwSIPVE
O6CKtRtBpKy3EAv3Otmkol6AvYCjOJ1PrbIo+ug/q/jrIcWd5PXFjQg2KOFrrooB
CVnFECLjanDBcUiT+RfqpXwbXlYxLBrN4/DxxYHaI90PRQ0R3Eq/rwpAotJ6Cv6h
GYdP3LpEmvaqojdpDRjXtQ/MGnXkodo9exwvpbdV//WFCqquZzEc4/FeJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBBQqd1Ozzb6418xSWmWCXA8w1zDMB8GA1UdIwQY
MBaAFCXFA13TbfB0n01imcj8vtYVXAEXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmNVRFhkTnQ4SFNmVFdLWnlQeS0xaFZjQVJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy84MDljZDUtZjIzZi00NzIwLThjNjQt
NTllYjM4NGUwOTY3LzEvSmNVRFhkTnQ4SFNmVFdLWnlQeS0xaFZjQVJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy84MDljZDUtZjIzZi00NzIwLThjNjQtNTllYjM4NGUwOTY3
LzEvSmNVRFhkTnQ4SFNmVFdLWnlQeS0xaFZjQVJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzA3kk1me
peADt/ymJ3gGiul824m7xZ24jMZ57JrVwa/HbjmEnHWjnqFSegk9QtYGTV3Ays0w
HG6AoYmqPHxc7StAOHr/kM5L9Y22Cbne6+vxJ8zBEPxi1KSn7bwZisA1PqqMKnYW
+9Pmw8umN40N3bkRene25gnGPx2ygrWeDRKZgycnRa8bktEeLYzF/x1brqw0G1Po
SaUFMGsBZv60RxN9F8SN0sfOFpDJ7dX+oLPcRHrdvDEBuoUIJ4YqxTvZeT9XZu+A
lHUvFtl+Cm/Dyd604o7AGh+VB8+zfEd65nkbBIsTET7JCpYjg5I+aXomKuv9iyg6
iPMkh6HD2SFA7Q==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:03:08 2026 by rpki-client