Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
File: F3khM2kRpWiNeOk__l5HIRO7Gb4.mft (raw, json)
Hash identifier: L/LJ4HKPxA5Wqx9RqsBVU9/IuYRZoYGTrNE2h0zIZCg=
Subject key identifier: 06:3A:30:33:68:4F:97:A0:CC:34:3D:89:D7:DB:76:B5:7C:BF:C0:EF
Authority key identifier: 17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
Certificate issuer: /CN=177921336911a5688d78e93ffe5e472113bb19be
Certificate serial: 019D999910E3D1F23BEDA19C32D21378BA1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
Manifest number: 08A3
Signing time: Fri 17 Apr 2026 04:00:38 +0000
Manifest this update: Fri 17 Apr 2026 04:00:38 +0000
Manifest next update: Sat 18 Apr 2026 04:00:38 +0000
Files and hashes: 1: 00KPXaoeVFb3ZxS5PVmQU3i8VY4.roa (hash: HLzQZ86nyzCWCoL4HyX0cWOR0lVQ8RFQ8/UNt4CesgA=)
2: F3khM2kRpWiNeOk__l5HIRO7Gb4.crl (hash: QXfuKBWMePCvEKQVdJYZvqt7s5NRVPCJpDsb9vv7AVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:10:e3:d1:f2:3b:ed:a1:9c:32:d2:13:78:ba:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=177921336911a5688d78e93ffe5e472113bb19be
Validity
Not Before: Apr 17 04:00:38 2026 GMT
Not After : Apr 18 04:00:38 2026 GMT
Subject: CN=063a3033684f97a0cc343d89d7db76b57cbfc0ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:29:19:18:da:40:9d:31:d8:2d:f9:30:6f:cb:
f9:cc:d4:ff:5c:4d:6b:64:74:5a:18:bd:50:06:6e:
a8:e4:37:68:3d:1e:95:ee:de:9b:87:96:55:14:4d:
67:f4:85:99:29:c3:7d:4c:4c:c7:8c:7b:d6:34:67:
ec:54:16:26:6b:ca:c7:89:9a:db:a9:3b:f9:4a:42:
ca:2e:e9:03:df:4c:a9:bd:f1:5c:2d:00:34:41:a3:
a9:0f:bb:8b:9e:40:27:03:d8:cc:a6:c1:1e:a6:c1:
86:d8:a1:6d:03:92:90:9e:73:f7:ce:4d:9c:fa:f8:
7e:ae:51:95:74:74:ac:9a:f3:1a:3d:2d:b0:c3:94:
df:76:15:bc:c1:a4:ca:3f:95:2a:b5:14:0a:ee:b7:
5b:e2:27:70:4e:62:24:89:98:d6:19:04:bb:94:bd:
49:93:b0:10:39:65:eb:5d:7f:2a:94:c8:b3:4f:7b:
6e:b4:c4:30:c5:49:4b:08:7a:94:a1:c1:47:de:f5:
51:f1:25:fb:3c:91:08:9b:48:ca:d8:af:ca:13:80:
95:ea:75:a1:67:8a:32:bd:51:a2:62:90:ca:fa:65:
30:77:66:a4:2d:67:db:d3:df:e1:c9:32:58:a3:16:
04:4a:41:98:cd:eb:fa:2f:2a:fb:96:b5:0a:26:53:
fb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:3A:30:33:68:4F:97:A0:CC:34:3D:89:D7:DB:76:B5:7C:BF:C0:EF
X509v3 Authority Key Identifier:
keyid:17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:93:c2:e7:d8:2f:90:44:ac:51:c9:e5:1f:82:6d:b6:73:e8:
ec:b9:9e:69:e5:a3:15:66:7a:05:ce:7c:ac:51:16:85:e2:87:
e8:bd:8f:45:41:a3:21:a0:11:7e:ff:34:eb:60:f0:81:7f:20:
44:86:be:f7:de:49:82:06:0c:4a:d9:37:e2:c9:11:ce:da:8d:
a8:ba:47:fe:51:f3:1c:90:80:df:f4:de:80:ca:fe:0d:fd:2a:
5c:09:dc:25:c2:c5:e0:00:53:6a:a3:de:1f:96:e9:77:6a:de:
01:4e:05:53:3c:e2:53:11:25:aa:82:b9:cb:5e:62:a4:4c:94:
f9:34:76:9d:fc:dd:f3:5b:60:25:60:69:77:c1:c4:5f:2e:08:
22:2a:f1:10:3c:e5:5e:56:ba:b0:57:0e:59:e9:23:cd:8c:cb:
e1:d0:f1:10:3b:6b:52:3c:fc:b3:2b:60:dd:e9:4b:c6:66:de:
9c:14:7d:e2:0f:58:eb:82:05:da:63:05:05:c5:38:5f:33:51:
23:3a:93:70:cb:16:86:b2:3f:9e:0f:84:39:ee:33:72:6d:c3:
e9:05:7a:30:76:23:2e:da:19:76:49:eb:2c:e7:e5:a7:02:b3:
54:f7:80:f3:37:f8:35:94:c5:00:d5:b8:3b:2f:95:b6:11:b2:
57:d5:8c:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZmRDj0fI77aGcMtITeLoaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3NzkyMTMzNjkxMWE1Njg4ZDc4ZTkzZmZlNWU0NzIxMTNi
YjE5YmUwHhcNMjYwNDE3MDQwMDM4WhcNMjYwNDE4MDQwMDM4WjAzMTEwLwYDVQQD
EygwNjNhMzAzMzY4NGY5N2EwY2MzNDNkODlkN2RiNzZiNTdjYmZjMGVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzikZGNpAnTHYLfkwb8v5zNT/XE1r
ZHRaGL1QBm6o5DdoPR6V7t6bh5ZVFE1n9IWZKcN9TEzHjHvWNGfsVBYma8rHiZrb
qTv5SkLKLukD30ypvfFcLQA0QaOpD7uLnkAnA9jMpsEepsGG2KFtA5KQnnP3zk2c
+vh+rlGVdHSsmvMaPS2ww5TfdhW8waTKP5UqtRQK7rdb4idwTmIkiZjWGQS7lL1J
k7AQOWXrXX8qlMizT3tutMQwxUlLCHqUocFH3vVR8SX7PJEIm0jK2K/KE4CV6nWh
Z4oyvVGiYpDK+mUwd2akLWfb09/hyTJYoxYESkGYzev6Lyr7lrUKJlP7oQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAY6MDNoT5egzDQ9idfbdrV8v8DvMB8GA1UdIwQY
MBaAFBd5ITNpEaVojXjpP/5eRyETuxm+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0Nzgt
YjVjM2QyNGVmZGNkLzEvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0NzgtYjVjM2QyNGVmZGNk
LzEvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAv5PC59gv
kESsUcnlH4JttnPo7LmeaeWjFWZ6Bc58rFEWheKH6L2PRUGjIaARfv8062DwgX8g
RIa+995JggYMStk34skRztqNqLpH/lHzHJCA3/TegMr+Df0qXAncJcLF4ABTaqPe
H5bpd2reAU4FUzziUxElqoK5y15ipEyU+TR2nfzd81tgJWBpd8HEXy4IIirxEDzl
Xla6sFcOWekjzYzL4dDxEDtrUjz8sytg3elLxmbenBR94g9Y64IF2mMFBcU4XzNR
IzqTcMsWhrI/ng+EOe4zcm3D6QV6MHYjLtoZdknrLOflpwKzVPeA8zf4NZTFANW4
Oy+VthGyV9WMrA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:40:53 2026 by rpki-client