Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
File: K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft (raw, json)
Hash identifier: +OKGhbwW85UoVKyFYbFfsC9NzQDQu/ijSneHAglJx9E=
Subject key identifier: 6D:35:79:BB:2E:33:1C:F7:B3:39:D4:F5:7B:C2:22:55:CA:E8:96:A6
Authority key identifier: 2B:73:AA:84:37:BC:67:23:51:9D:0F:32:0B:F1:F1:70:41:41:A5:3D
Certificate issuer: /CN=2b73aa8437bc6723519d0f320bf1f1704141a53d
Certificate serial: 019D9BBE797C47E0A98C2E29F2A1BCD09771
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
Manifest number: 068C
Signing time: Fri 17 Apr 2026 14:00:44 +0000
Manifest this update: Fri 17 Apr 2026 14:00:44 +0000
Manifest next update: Sat 18 Apr 2026 14:00:44 +0000
Files and hashes: 1: HNWOK-qSzLEKLOiT1RxncC81FBw.roa (hash: VsSGzqx4mMKPsvTq4Mnx3YPfOOngg/lj8h0zkR3wf/A=)
2: K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.crl (hash: bN4FbCLQQOsLkFWRaw+TeNFZVT5rucEESSTHUwHHvVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:79:7c:47:e0:a9:8c:2e:29:f2:a1:bc:d0:97:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b73aa8437bc6723519d0f320bf1f1704141a53d
Validity
Not Before: Apr 17 14:00:44 2026 GMT
Not After : Apr 18 14:00:44 2026 GMT
Subject: CN=6d3579bb2e331cf7b339d4f57bc22255cae896a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:96:26:6c:ad:9b:47:a2:aa:b1:e1:c8:e0:c4:
d4:fb:64:e0:56:43:df:40:b8:45:1c:10:9f:16:1d:
d7:66:38:4d:10:c9:ac:95:36:00:f5:8a:ee:8f:2b:
c7:23:6f:e6:75:a0:ae:78:f5:f2:9e:19:5b:ab:04:
6a:09:bf:34:3f:31:83:a7:6a:6a:43:e1:71:9e:6e:
91:da:36:c4:d9:55:84:96:3d:99:98:b4:af:e5:d6:
2f:78:7c:1e:a6:44:e1:f4:61:f7:86:d7:0c:72:aa:
7b:8d:d8:12:fa:e8:e4:02:b3:5b:c7:10:74:e3:77:
b6:11:7e:1b:7f:a6:3d:fd:5e:d5:54:05:70:d5:88:
00:ed:cc:5f:dc:ff:3c:ed:48:7f:d8:1e:da:c2:51:
ee:b0:df:7b:d7:bf:e7:6b:a9:d1:76:73:f3:90:eb:
fd:57:b2:f5:17:b5:6f:48:b2:c3:c8:28:3f:b4:69:
5b:c0:54:99:29:f3:16:be:ab:3b:12:0c:bc:53:d6:
9a:e6:99:8f:02:3f:ba:a1:f2:c0:be:d5:b6:95:d6:
3f:dd:3d:88:f8:8b:f4:4d:5e:80:7b:d1:94:ad:bd:
09:aa:86:4d:e4:4e:49:72:37:16:04:29:5d:8f:e0:
b6:fc:36:b8:ca:73:d6:49:07:88:34:22:df:75:fe:
01:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:35:79:BB:2E:33:1C:F7:B3:39:D4:F5:7B:C2:22:55:CA:E8:96:A6
X509v3 Authority Key Identifier:
keyid:2B:73:AA:84:37:BC:67:23:51:9D:0F:32:0B:F1:F1:70:41:41:A5:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:13:76:e5:aa:fc:63:63:77:cf:e4:00:81:61:6b:57:ab:2c:
9e:e9:d7:b3:01:78:d6:a1:80:e9:c7:31:e9:fb:db:55:d4:69:
d2:a4:92:a8:2f:93:c2:42:05:9c:49:c9:75:ac:8d:ad:38:21:
19:6c:50:6c:7d:20:ae:ec:0b:52:73:90:96:aa:bc:d1:0f:5a:
89:d2:f3:5b:88:b4:15:74:c5:60:73:28:8d:16:3b:26:2b:cb:
e1:98:75:c1:23:7a:9a:20:a2:a0:a2:22:13:7d:59:48:10:32:
2a:79:f4:2d:04:55:3c:97:c7:40:40:88:b6:8d:18:7e:03:b7:
0c:fc:e5:01:7c:d1:b5:e2:ab:bc:e2:91:86:55:60:80:c8:a4:
31:6e:8a:60:aa:34:e9:f8:ae:c4:76:70:45:36:ea:f5:35:2e:
8e:b1:7b:5d:fc:08:89:1d:a2:27:d5:5d:5c:7e:11:2a:26:11:
dd:12:27:00:4d:ef:3c:de:51:cd:ce:2c:8e:17:e9:9f:dd:56:
58:04:1b:db:0d:12:f1:0a:53:7a:4f:2f:c5:47:2c:26:ec:f4:
59:23:d8:4b:71:99:aa:74:85:78:59:85:f5:41:b2:38:46:93:
b7:65:2e:51:be:03:24:70:5a:83:8c:75:af:b0:f6:b7:77:3b:
12:94:06:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bvnl8R+CpjC4p8qG80JdxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiNzNhYTg0MzdiYzY3MjM1MTlkMGYzMjBiZjFmMTcwNDE0
MWE1M2QwHhcNMjYwNDE3MTQwMDQ0WhcNMjYwNDE4MTQwMDQ0WjAzMTEwLwYDVQQD
Eyg2ZDM1NzliYjJlMzMxY2Y3YjMzOWQ0ZjU3YmMyMjI1NWNhZTg5NmE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5YmbK2bR6KqseHI4MTU+2TgVkPf
QLhFHBCfFh3XZjhNEMmslTYA9YrujyvHI2/mdaCuePXynhlbqwRqCb80PzGDp2pq
Q+Fxnm6R2jbE2VWElj2ZmLSv5dYveHwepkTh9GH3htcMcqp7jdgS+ujkArNbxxB0
43e2EX4bf6Y9/V7VVAVw1YgA7cxf3P887Uh/2B7awlHusN9717/na6nRdnPzkOv9
V7L1F7VvSLLDyCg/tGlbwFSZKfMWvqs7Egy8U9aa5pmPAj+6ofLAvtW2ldY/3T2I
+Iv0TV6Ae9GUrb0JqoZN5E5JcjcWBCldj+C2/Da4ynPWSQeINCLfdf4BBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG01ebsuMxz3sznU9XvCIlXK6JamMB8GA1UdIwQY
MBaAFCtzqoQ3vGcjUZ0PMgvx8XBBQaU9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzNPcWhEZThaeU5SblE4eUNfSHhjRUZCcFQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9iMGNhOTQtMGYxYi00ODhmLTk3MjMt
NTIxZmNlNmI2NGQ5LzEvSzNPcWhEZThaeU5SblE4eUNfSHhjRUZCcFQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9iMGNhOTQtMGYxYi00ODhmLTk3MjMtNTIxZmNlNmI2NGQ5
LzEvSzNPcWhEZThaeU5SblE4eUNfSHhjRUZCcFQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUxN25ar8
Y2N3z+QAgWFrV6ssnunXswF41qGA6ccx6fvbVdRp0qSSqC+TwkIFnEnJdayNrTgh
GWxQbH0gruwLUnOQlqq80Q9aidLzW4i0FXTFYHMojRY7JivL4Zh1wSN6miCioKIi
E31ZSBAyKnn0LQRVPJfHQECIto0YfgO3DPzlAXzRteKrvOKRhlVggMikMW6KYKo0
6fiuxHZwRTbq9TUujrF7XfwIiR2iJ9VdXH4RKiYR3RInAE3vPN5Rzc4sjhfpn91W
WAQb2w0S8QpTek8vxUcsJuz0WSPYS3GZqnSFeFmF9UGyOEaTt2UuUb4DJHBag4x1
r7D2t3c7EpQG/Q==
-----END CERTIFICATE-----
Generated at Fri Apr 17 16:52:54 2026 by rpki-client