Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json)
Hash identifier: Fxl6V/VgGB9Biu3Mjva1tOvt39bGk/fNL/pZcTBR+3s=
Subject key identifier: 4C:19:3E:B8:6B:25:D0:A4:74:C5:3E:45:9F:9A:F5:20:26:81:6C:DF
Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Certificate serial: 019D9AE2EA752456A5339252E32FEE439192
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
Manifest number: 0F16
Signing time: Fri 17 Apr 2026 10:00:55 +0000
Manifest this update: Fri 17 Apr 2026 10:00:55 +0000
Manifest next update: Sat 18 Apr 2026 10:00:55 +0000
Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: agzlKkna8VYz1UenDgc5MhnA9ul4OBqcIWwtmQ8RCs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:ea:75:24:56:a5:33:92:52:e3:2f:ee:43:91:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Validity
Not Before: Apr 17 10:00:55 2026 GMT
Not After : Apr 18 10:00:55 2026 GMT
Subject: CN=4c193eb86b25d0a474c53e459f9af52026816cdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:70:0a:6d:47:80:e6:d8:34:6b:b0:4a:65:71:
ef:1d:96:78:a1:71:0b:c2:9a:0e:5a:ae:0c:01:e2:
22:21:63:c8:df:09:ee:d9:3f:33:40:38:0f:26:75:
48:60:e6:c6:14:04:e4:d7:fa:cf:e2:51:e4:52:02:
ea:93:17:03:46:e5:04:43:66:11:15:8d:8f:52:78:
a3:e3:39:f4:2b:f9:74:28:b4:42:ec:f8:ea:d6:eb:
bc:31:12:38:15:2d:49:b8:69:71:a1:5c:f5:d4:6d:
68:6b:72:cf:bb:6c:c0:38:d6:ef:62:f1:ae:87:2d:
17:34:ab:95:c1:6b:82:f8:92:e7:f8:a2:cb:d4:d6:
7d:46:46:77:cc:00:79:a1:fa:3e:b3:fc:07:3e:48:
e2:39:64:e8:50:e9:c0:ca:30:e8:6a:82:0d:30:92:
7d:79:0f:b4:02:a6:a7:84:04:98:1b:69:e4:d3:98:
f4:ad:80:84:09:fa:51:58:70:81:80:f0:a4:d5:ee:
74:26:52:f2:41:f2:43:bb:a0:7a:58:83:68:ce:28:
45:27:0d:58:8c:2a:8f:e4:f5:51:d6:a5:f8:d3:50:
51:06:20:2d:56:83:fc:12:3f:16:8f:45:28:98:3c:
a8:a9:2b:af:39:64:8c:06:73:04:c7:b2:56:1c:f5:
c2:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:19:3E:B8:6B:25:D0:A4:74:C5:3E:45:9F:9A:F5:20:26:81:6C:DF
X509v3 Authority Key Identifier:
keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:e1:b9:21:a5:40:2a:b4:22:b1:48:46:44:11:1c:5d:98:f2:
34:f0:89:21:91:e8:db:22:0b:b8:50:d9:26:88:b2:de:e3:26:
0e:a7:80:91:3d:24:bd:4e:ac:fe:75:94:5e:d4:18:c7:4d:e4:
39:b9:7b:af:c3:c8:52:d5:62:19:74:06:b0:18:eb:35:33:28:
fb:08:5e:2f:21:14:31:db:85:f2:fd:85:98:90:45:5d:2e:7b:
9b:43:81:63:5b:1b:69:75:6e:cd:40:40:12:f0:a1:0d:fe:2e:
38:05:80:3a:ab:d8:36:61:09:57:fd:02:bb:fa:ee:6b:70:00:
6e:42:d6:5e:61:f9:43:7d:90:b0:ea:67:dc:99:27:78:75:86:
8d:65:9f:49:99:8b:51:6c:fc:94:da:0d:fa:51:b6:26:80:9d:
df:95:70:5b:a3:a3:9f:1f:a3:af:07:26:a9:2b:12:46:08:48:
26:49:ba:82:f2:af:93:f1:e4:6b:81:c6:49:cb:6b:f3:48:0a:
0f:70:53:de:d9:e5:03:1d:6c:94:07:44:cd:bf:90:7d:5f:5a:
a6:d5:00:0f:4f:c3:b8:dd:c9:a3:75:59:00:04:2a:28:33:b7:
a5:7e:ee:b0:56:18:ba:c6:ff:09:23:b9:fd:7f:2a:e6:a5:a5:
c7:3a:f5:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2a4up1JFalM5JS4y/uQ5GSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2M2ZlOWMxMzQwNDFjZWJkYTU2OGI5ZjkwOGUyYWVmMzhh
YjdmNzUwHhcNMjYwNDE3MTAwMDU1WhcNMjYwNDE4MTAwMDU1WjAzMTEwLwYDVQQD
Eyg0YzE5M2ViODZiMjVkMGE0NzRjNTNlNDU5ZjlhZjUyMDI2ODE2Y2RmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA63AKbUeA5tg0a7BKZXHvHZZ4oXEL
wpoOWq4MAeIiIWPI3wnu2T8zQDgPJnVIYObGFATk1/rP4lHkUgLqkxcDRuUEQ2YR
FY2PUnij4zn0K/l0KLRC7Pjq1uu8MRI4FS1JuGlxoVz11G1oa3LPu2zAONbvYvGu
hy0XNKuVwWuC+JLn+KLL1NZ9RkZ3zAB5ofo+s/wHPkjiOWToUOnAyjDoaoINMJJ9
eQ+0AqanhASYG2nk05j0rYCECfpRWHCBgPCk1e50JlLyQfJDu6B6WINozihFJw1Y
jCqP5PVR1qX401BRBiAtVoP8Ej8Wj0UomDyoqSuvOWSMBnMEx7JWHPXCwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEwZPrhrJdCkdMU+RZ+a9SAmgWzfMB8GA1UdIwQY
MBaAFPY/6cE0BBzr2laLn5COKu84q391MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYt
NWFlYzc2NmE0OWI0LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYtNWFlYzc2NmE0OWI0
LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg+G5IaVA
KrQisUhGRBEcXZjyNPCJIZHo2yILuFDZJoiy3uMmDqeAkT0kvU6s/nWUXtQYx03k
Obl7r8PIUtViGXQGsBjrNTMo+wheLyEUMduF8v2FmJBFXS57m0OBY1sbaXVuzUBA
EvChDf4uOAWAOqvYNmEJV/0Cu/rua3AAbkLWXmH5Q32QsOpn3JkneHWGjWWfSZmL
UWz8lNoN+lG2JoCd35VwW6Ojnx+jrwcmqSsSRghIJkm6gvKvk/Hka4HGSctr80gK
D3BT3tnlAx1slAdEzb+QfV9aptUAD0/DuN3Jo3VZAAQqKDO3pX7usFYYusb/CSO5
/X8q5qWlxzr1Xg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 15:59:43 2026 by rpki-client