Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
File: r7oQsKZ20-H6tWUoQw-siRoINlI.mft (raw, json)
Hash identifier: pFvbpBSlhtBCl5a4v41Q5Wtw9+TD0f+4Hk2MjG6lCMU=
Subject key identifier: BC:12:9F:74:55:0E:CD:36:2F:B7:83:1D:B9:E7:23:52:79:5D:37:F9
Authority key identifier: AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
Certificate issuer: /CN=afba10b0a676d3e1fab56528430fac891a083652
Certificate serial: 019D99CFC042205D00EA6809FDB68DB24AEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 05:00:22 +0000
Manifest this update: Fri 17 Apr 2026 05:00:22 +0000
Manifest next update: Sat 18 Apr 2026 05:00:22 +0000
Files and hashes: 1: WMBlv5TYOFhb5nmDTbMHQgVvFpc.roa (hash: aKDzW6jTAaiYbIZ5LNCccfbLrCredMGyDoJe0MXZVlA=)
2: r7oQsKZ20-H6tWUoQw-siRoINlI.crl (hash: ieEdexvMeUZRlCA9ADzHb8LZmr6ImPwojGA5JfUNnSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:c0:42:20:5d:00:ea:68:09:fd:b6:8d:b2:4a:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afba10b0a676d3e1fab56528430fac891a083652
Validity
Not Before: Apr 17 05:00:22 2026 GMT
Not After : Apr 18 05:00:22 2026 GMT
Subject: CN=bc129f74550ecd362fb7831db9e72352795d37f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ff:57:78:10:64:1b:cb:d3:23:12:35:80:56:
a2:43:2a:dc:4c:02:2d:07:c3:43:67:61:5d:81:12:
7b:51:b8:9c:2f:1d:a2:cc:a2:79:8c:0f:d6:3c:c6:
8d:5f:7f:b9:b4:f3:b4:7d:9f:84:2c:f2:1b:ee:65:
3a:5c:03:1d:5c:f4:da:2a:6b:5a:8c:25:ff:e2:f1:
5f:50:12:36:7b:1d:d3:94:34:f5:4d:bc:6d:8b:c0:
c3:b3:be:47:45:65:77:6f:39:ed:07:2f:95:f3:c0:
be:21:89:13:88:84:74:43:d3:f7:e3:ab:fd:ab:97:
49:87:d7:8d:5d:7e:98:8c:df:a3:38:ff:0c:9a:32:
83:b3:38:c4:ef:46:25:db:c4:a2:8b:61:9d:b1:d1:
67:49:15:6e:b2:c8:23:30:bd:c2:60:84:9f:cb:ea:
7c:2a:d9:f7:d6:f7:4d:0a:10:17:91:8c:a9:4f:19:
ee:7d:c6:03:76:d1:cb:b8:b2:7d:1a:31:53:c2:d7:
f7:d8:c9:3d:ea:b4:8f:c5:53:b5:9c:4b:c0:d2:cc:
24:00:c1:f3:2a:3c:d7:5a:57:0e:27:52:23:9f:54:
20:7f:86:9f:17:1d:03:0d:0e:9a:d9:5a:5f:d9:d9:
d9:72:82:83:9c:28:58:9e:33:dc:f2:af:3d:cf:20:
3b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:12:9F:74:55:0E:CD:36:2F:B7:83:1D:B9:E7:23:52:79:5D:37:F9
X509v3 Authority Key Identifier:
keyid:AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:6b:a8:41:57:c9:be:cb:e2:f7:61:a3:37:b1:e4:ea:53:75:
7c:12:b1:1e:9c:59:42:1f:da:06:27:ce:73:74:29:cc:b5:44:
01:54:e7:e0:78:f0:ca:9c:ea:79:2f:2a:22:53:97:fc:4f:a1:
8f:b8:7f:9f:39:31:28:57:eb:c4:45:2f:9c:ee:c0:34:29:a3:
e9:c4:47:cd:50:c0:7a:6c:1d:d8:9b:6b:89:2e:15:3c:63:5a:
79:ee:ae:4c:55:29:59:c9:23:1b:e0:b0:d2:73:f0:14:59:3a:
bf:e2:69:02:d6:70:85:40:55:38:57:9f:94:12:aa:69:34:5c:
ce:d2:73:f0:ff:f8:f4:b8:46:5f:ed:ab:6e:71:51:f2:60:83:
f3:db:d7:18:3f:64:be:39:55:1b:2a:f2:8e:7a:18:1e:70:63:
6b:a7:ed:04:1f:1f:87:2d:52:68:b6:1b:a4:64:43:53:0b:17:
1f:a5:ca:46:27:7f:c2:0f:d1:ac:5f:08:34:3f:e5:10:f2:1f:
a7:0a:b4:c5:7f:ad:cb:2d:8f:5f:d6:66:a7:2d:42:f7:39:c3:
84:a0:a8:bf:5f:04:c2:2e:b1:b6:66:13:53:df:05:26:97:66:
a5:a7:81:9c:b0:f6:50:c9:e7:69:83:c0:f6:d9:b4:5d:ee:83:
a3:ff:75:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Zz8BCIF0A6mgJ/baNskrsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmYmExMGIwYTY3NmQzZTFmYWI1NjUyODQzMGZhYzg5MWEw
ODM2NTIwHhcNMjYwNDE3MDUwMDIyWhcNMjYwNDE4MDUwMDIyWjAzMTEwLwYDVQQD
EyhiYzEyOWY3NDU1MGVjZDM2MmZiNzgzMWRiOWU3MjM1Mjc5NWQzN2Y5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvf9XeBBkG8vTIxI1gFaiQyrcTAIt
B8NDZ2FdgRJ7UbicLx2izKJ5jA/WPMaNX3+5tPO0fZ+ELPIb7mU6XAMdXPTaKmta
jCX/4vFfUBI2ex3TlDT1Tbxti8DDs75HRWV3bzntBy+V88C+IYkTiIR0Q9P346v9
q5dJh9eNXX6YjN+jOP8MmjKDszjE70Yl28Sii2GdsdFnSRVussgjML3CYISfy+p8
Ktn31vdNChAXkYypTxnufcYDdtHLuLJ9GjFTwtf32Mk96rSPxVO1nEvA0swkAMHz
KjzXWlcOJ1Ijn1Qgf4afFx0DDQ6a2Vpf2dnZcoKDnChYnjPc8q89zyA7fwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLwSn3RVDs02L7eDHbnnI1J5XTf5MB8GA1UdIwQY
MBaAFK+6ELCmdtPh+rVlKEMPrIkaCDZSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8xYTljOWYtMGMwNy00Nzc2LWFlNjUt
ZTAyN2RjYjFkMTg2LzEvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8xYTljOWYtMGMwNy00Nzc2LWFlNjUtZTAyN2RjYjFkMTg2
LzEvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAWuoQVfJ
vsvi92GjN7Hk6lN1fBKxHpxZQh/aBifOc3QpzLVEAVTn4HjwypzqeS8qIlOX/E+h
j7h/nzkxKFfrxEUvnO7ANCmj6cRHzVDAemwd2JtriS4VPGNaee6uTFUpWckjG+Cw
0nPwFFk6v+JpAtZwhUBVOFeflBKqaTRcztJz8P/49LhGX+2rbnFR8mCD89vXGD9k
vjlVGyryjnoYHnBja6ftBB8fhy1SaLYbpGRDUwsXH6XKRid/wg/RrF8IND/lEPIf
pwq0xX+tyy2PX9Zmpy1C9znDhKCov18Ewi6xtmYTU98FJpdmpaeBnLD2UMnnaYPA
9tm0Xe6Do/91pA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:28:27 2026 by rpki-client