Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
File: 0luQuJgbWR11p-k14TBKdAdWAv0.mft (raw, json)
Hash identifier: 8yGFaqN4sEZ2EH84HVaA2ZwRg/PBN7biKQfJQB6k1Wc=
Subject key identifier: FA:F1:53:F6:DA:94:84:25:AB:C6:7F:E6:13:97:6A:C4:0F:42:00:04
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 019D9A3E92156CC405C8149D62AC8F0D6FFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
Manifest number: 179C
Signing time: Fri 17 Apr 2026 07:01:24 +0000
Manifest this update: Fri 17 Apr 2026 07:01:24 +0000
Manifest next update: Sat 18 Apr 2026 07:01:24 +0000
Files and hashes: 1: 0luQuJgbWR11p-k14TBKdAdWAv0.crl (hash: xG05lLGh7q6j3vo6mGmBXr3HJzR6dyKO8YsiIA9/nnc=)
2: PzBJvCvuKoLcfTByzdz7KrKT9g0.roa (hash: 3oZ6E/qyPFCkNxJX9IOFDQ5m/aqdqH2CkJ/hq3ptHGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:92:15:6c:c4:05:c8:14:9d:62:ac:8f:0d:6f:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: Apr 17 07:01:24 2026 GMT
Not After : Apr 18 07:01:24 2026 GMT
Subject: CN=faf153f6da948425abc67fe613976ac40f420004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1c:81:c7:43:8f:c5:06:c3:ad:36:9c:31:5a:
ce:1d:6d:b8:2d:05:ca:5b:3f:3d:9d:e9:5d:b2:dc:
93:73:72:b2:49:eb:7a:33:38:16:0e:9c:1f:2d:8f:
c7:1e:72:48:02:ba:e0:4a:66:c7:6e:55:4b:47:a4:
b7:69:76:2d:63:e4:be:78:7b:2b:ed:7c:e0:c6:71:
88:ea:c0:29:49:97:47:18:48:42:9c:a8:d9:b2:49:
e3:df:8a:dc:db:f9:f8:0d:ba:c5:59:7e:e9:3b:cc:
e5:30:85:db:61:18:cf:5c:af:59:52:5b:ee:56:49:
8b:f4:11:51:1d:79:b5:c0:2e:ea:69:96:06:b5:e2:
b3:9e:24:87:88:8e:f2:08:78:b9:a4:2b:f4:81:92:
4f:5e:6b:9d:3b:97:17:04:8a:fe:6e:fc:13:99:cc:
86:c3:28:e4:11:07:e1:2b:55:ff:07:1f:44:61:4a:
ce:62:9d:50:2f:95:18:f2:80:3c:73:35:24:93:6a:
c9:75:2c:af:fc:b2:be:eb:21:9d:12:c3:ef:b2:80:
c2:2f:87:7a:c3:5c:4a:60:24:40:62:be:56:6e:3b:
78:04:0c:37:dc:ac:a3:f5:95:4c:f2:d4:78:14:00:
8b:f9:b0:8e:eb:a3:44:51:df:b2:d8:44:c3:ed:1e:
7a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F1:53:F6:DA:94:84:25:AB:C6:7F:E6:13:97:6A:C4:0F:42:00:04
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:f1:04:18:cb:3f:2c:46:d4:a3:3e:6b:54:33:53:a6:6b:5e:
f9:0a:2c:78:1a:21:c4:3a:1d:bf:58:a3:a9:bb:80:39:c3:a4:
7f:51:78:9a:75:eb:de:45:cd:2f:67:8e:8f:5b:70:62:f0:2c:
cd:c9:c1:41:b1:4a:9f:ab:52:3b:6f:c9:45:e2:85:71:ce:56:
78:63:d0:97:6a:20:bc:91:30:b5:7d:1a:80:5c:22:f9:5d:a1:
39:e9:09:0e:d4:1b:9e:89:c8:ea:16:7a:ae:e1:49:e3:6e:e4:
da:45:64:26:c1:49:c5:72:d5:c4:73:b3:65:6f:f8:e0:46:80:
bf:6a:41:9c:97:c4:c5:7b:84:de:47:0c:a8:a4:02:1b:da:ca:
e6:af:00:3e:2a:a1:fa:b9:c9:f4:98:3c:45:39:69:b0:33:18:
95:00:c6:24:88:2b:39:22:53:ef:71:f1:60:5f:30:19:6b:7f:
a6:06:93:e9:63:af:80:4b:8e:c1:8e:cb:d2:ea:8a:a6:2b:ec:
72:5e:51:b6:94:83:70:8d:59:ab:05:d4:ee:b2:fe:03:5b:b5:
b0:62:d9:4a:94:68:90:a3:d6:6c:8e:8a:7d:45:7e:5f:39:5e:
84:f9:4a:91:d9:1d:42:2b:43:fa:c3:14:35:32:3c:6a:e3:bb:
27:85:00:6c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aPpIVbMQFyBSdYqyPDW/9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNWI5MGI4OTgxYjU5MWQ3NWE3ZTkzNWUxMzA0YTc0MDc1
NjAyZmQwHhcNMjYwNDE3MDcwMTI0WhcNMjYwNDE4MDcwMTI0WjAzMTEwLwYDVQQD
EyhmYWYxNTNmNmRhOTQ4NDI1YWJjNjdmZTYxMzk3NmFjNDBmNDIwMDA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxyBx0OPxQbDrTacMVrOHW24LQXK
Wz89neldstyTc3KySet6MzgWDpwfLY/HHnJIArrgSmbHblVLR6S3aXYtY+S+eHsr
7XzgxnGI6sApSZdHGEhCnKjZsknj34rc2/n4DbrFWX7pO8zlMIXbYRjPXK9ZUlvu
VkmL9BFRHXm1wC7qaZYGteKzniSHiI7yCHi5pCv0gZJPXmudO5cXBIr+bvwTmcyG
wyjkEQfhK1X/Bx9EYUrOYp1QL5UY8oA8czUkk2rJdSyv/LK+6yGdEsPvsoDCL4d6
w1xKYCRAYr5Wbjt4BAw33Kyj9ZVM8tR4FACL+bCO66NEUd+y2ETD7R56hQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPrxU/balIQlq8Z/5hOXasQPQgAEMB8GA1UdIwQY
MBaAFNJbkLiYG1kddafpNeEwSnQHVgL9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODct
YTJhYmRhZGY1ZjkwLzEvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODctYTJhYmRhZGY1Zjkw
LzEvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACfEEGMs/
LEbUoz5rVDNTpmte+QoseBohxDodv1ijqbuAOcOkf1F4mnXr3kXNL2eOj1twYvAs
zcnBQbFKn6tSO2/JReKFcc5WeGPQl2ogvJEwtX0agFwi+V2hOekJDtQbnonI6hZ6
ruFJ427k2kVkJsFJxXLVxHOzZW/44EaAv2pBnJfExXuE3kcMqKQCG9rK5q8APiqh
+rnJ9Jg8RTlpsDMYlQDGJIgrOSJT73HxYF8wGWt/pgaT6WOvgEuOwY7L0uqKpivs
cl5RtpSDcI1ZqwXU7rL+A1u1sGLZSpRokKPWbI6KfUV+XzlehPlKkdkdQitD+sMU
NTI8auO7J4UAbA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:43:35 2026 by rpki-client