Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
File: uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft (raw, json)
Hash identifier: LBztGyNxGX0RuBzxKq5yAmcW367vO0jNDhEF/yTDSPE=
Subject key identifier: 46:41:6D:58:8B:B0:1B:8D:F7:33:3E:97:1D:81:25:55:D0:BC:87:06
Authority key identifier: B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
Certificate issuer: /CN=b90907cee4fac50f3753622ad21a989ae7741c47
Certificate serial: 019D99626EFCD5A79EF2FAA317F9BD056C0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
Manifest number: 15C3
Signing time: Fri 17 Apr 2026 03:00:58 +0000
Manifest this update: Fri 17 Apr 2026 03:00:58 +0000
Manifest next update: Sat 18 Apr 2026 03:00:58 +0000
Files and hashes: 1: uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl (hash: b3c5IP9R8r9QrKVXJtvvyBLSKj1d+vcZZP1d10aSy74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:6e:fc:d5:a7:9e:f2:fa:a3:17:f9:bd:05:6c:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90907cee4fac50f3753622ad21a989ae7741c47
Validity
Not Before: Apr 17 03:00:58 2026 GMT
Not After : Apr 18 03:00:58 2026 GMT
Subject: CN=46416d588bb01b8df7333e971d812555d0bc8706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a1:a1:06:2d:47:c7:49:51:1f:32:69:d2:f8:
aa:c6:9f:2d:cf:9e:a6:8c:82:4d:87:a7:65:ba:0c:
e5:55:6a:60:52:91:53:19:c8:7f:b0:28:85:e2:3a:
5f:b1:9e:83:31:0d:b8:79:45:d5:07:e4:54:c5:a1:
e5:a2:f6:7f:49:1a:bd:5b:05:55:f0:c1:8d:cb:5c:
18:3b:6e:7d:68:ba:9e:9c:12:19:0e:8b:fb:79:bb:
da:e4:88:96:a5:df:4c:e1:3d:96:66:35:aa:d6:61:
92:45:cb:b0:a5:15:52:11:f9:8d:f1:3e:be:4e:49:
cf:f1:64:83:69:43:c3:98:75:f8:1a:21:13:4f:e8:
8c:4d:60:18:2b:87:4c:c2:bc:a2:44:21:fc:24:b1:
68:8d:f7:d0:86:6b:dd:ca:6f:e1:4b:79:18:c1:fc:
c7:c8:a5:86:1a:2c:ec:c6:bc:3e:d9:bd:10:9e:a1:
cb:5d:a4:93:1f:df:17:6a:6e:07:68:bf:63:31:cd:
34:5b:08:3a:6f:48:6b:1c:52:b7:bd:3c:58:4c:ff:
cb:1d:79:9e:c9:82:ec:ee:da:9e:d2:2e:52:37:95:
e3:36:47:6e:63:51:7d:cf:d9:9e:b9:a5:b6:a7:18:
91:17:af:b1:4f:9f:5b:78:c9:da:07:b5:43:62:88:
aa:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:41:6D:58:8B:B0:1B:8D:F7:33:3E:97:1D:81:25:55:D0:BC:87:06
X509v3 Authority Key Identifier:
keyid:B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:2c:ca:77:f9:e0:78:d6:7d:7e:5f:06:82:19:54:72:a3:dc:
81:f8:63:46:e9:89:32:5f:05:f8:29:db:f9:13:75:f1:de:93:
c8:eb:de:ab:b7:e4:47:5c:85:2c:15:db:c0:7f:cb:92:cc:08:
54:a3:8b:06:4e:de:73:53:ec:dc:4a:d7:d9:09:49:a9:d7:ad:
55:bc:ec:f2:32:31:31:1c:77:00:8a:ea:bf:40:e0:c1:21:f9:
8f:07:68:11:fd:9a:a0:4b:91:f7:40:b0:d4:67:d2:ea:a7:cd:
1f:8b:a6:84:5c:62:16:36:5d:aa:c2:86:48:4b:fb:32:e4:4e:
5b:57:4f:86:d1:54:4e:3d:cc:81:84:47:40:43:e7:bd:a8:53:
f1:74:ea:b3:4f:76:6e:dc:c9:06:9d:42:c8:6e:ab:95:27:f1:
ad:95:e7:2a:f1:92:96:af:a9:88:2e:cf:9d:fe:f5:c2:14:fc:
79:25:79:be:77:37:f0:de:42:e3:c5:0f:c9:09:0f:4f:1c:fc:
96:08:4f:ad:a1:a8:24:52:73:b8:e7:8b:f8:4c:38:4d:e5:de:
ea:77:bc:f4:84:16:cd:d8:5e:dd:61:29:03:c6:cb:df:68:20:
1f:de:70:28:95:95:33:2e:4e:d5:f2:d9:9a:be:a1:6b:54:c4:
c8:73:2e:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZYm781aee8vqjF/m9BWwLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5MDkwN2NlZTRmYWM1MGYzNzUzNjIyYWQyMWE5ODlhZTc3
NDFjNDcwHhcNMjYwNDE3MDMwMDU4WhcNMjYwNDE4MDMwMDU4WjAzMTEwLwYDVQQD
Eyg0NjQxNmQ1ODhiYjAxYjhkZjczMzNlOTcxZDgxMjU1NWQwYmM4NzA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA16GhBi1Hx0lRHzJp0viqxp8tz56m
jIJNh6dlugzlVWpgUpFTGch/sCiF4jpfsZ6DMQ24eUXVB+RUxaHlovZ/SRq9WwVV
8MGNy1wYO259aLqenBIZDov7ebva5IiWpd9M4T2WZjWq1mGSRcuwpRVSEfmN8T6+
TknP8WSDaUPDmHX4GiETT+iMTWAYK4dMwryiRCH8JLFojffQhmvdym/hS3kYwfzH
yKWGGizsxrw+2b0QnqHLXaSTH98Xam4HaL9jMc00Wwg6b0hrHFK3vTxYTP/LHXme
yYLs7tqe0i5SN5XjNkduY1F9z9meuaW2pxiRF6+xT59beMnaB7VDYoiq0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEZBbViLsBuN9zM+lx2BJVXQvIcGMB8GA1UdIwQY
MBaAFLkJB87k+sUPN1NiKtIamJrndBxHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zYzE2ZDItZDI5MC00N2ZiLTkxMWQt
NTk5NmNhZTlkMTE1LzEvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC8zYzE2ZDItZDI5MC00N2ZiLTkxMWQtNTk5NmNhZTlkMTE1
LzEvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJizKd/ng
eNZ9fl8GghlUcqPcgfhjRumJMl8F+Cnb+RN18d6TyOveq7fkR1yFLBXbwH/LkswI
VKOLBk7ec1Ps3ErX2QlJqdetVbzs8jIxMRx3AIrqv0DgwSH5jwdoEf2aoEuR90Cw
1GfS6qfNH4umhFxiFjZdqsKGSEv7MuROW1dPhtFUTj3MgYRHQEPnvahT8XTqs092
btzJBp1CyG6rlSfxrZXnKvGSlq+piC7Pnf71whT8eSV5vnc38N5C48UPyQkPTxz8
lghPraGoJFJzuOeL+Ew4TeXe6ne89IQWzdhe3WEpA8bL32ggH95wKJWVMy5O1fLZ
mr6ha1TEyHMuEg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:27:37 2026 by rpki-client