Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
File: r8GT7hHlRxYWn5TI-THq4fyFSSE.mft (raw, json)
Hash identifier: nmP/i2OC1N4W+Z2bm8wcTz0bcLnNpTlWbCwGMEu838U=
Subject key identifier: 21:C9:DD:E6:7A:05:2B:AA:82:4F:A8:46:2A:BF:61:FD:DB:A4:12:FD
Authority key identifier: AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
Certificate issuer: /CN=afc193ee11e54716169f94c8f931eae1fc854921
Certificate serial: 019D9AABF44AD3268BCA1922B8DAB4554EC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
Manifest number: 0E15
Signing time: Fri 17 Apr 2026 09:00:53 +0000
Manifest this update: Fri 17 Apr 2026 09:00:53 +0000
Manifest next update: Sat 18 Apr 2026 09:00:53 +0000
Files and hashes: 1: lWFmjWS1SbQSeACbvDZD9f1EmEg.roa (hash: TjMg92xbLY6yeaH0PpcE4pe0qFscpI9c3d7VL5l9Rzw=)
2: r8GT7hHlRxYWn5TI-THq4fyFSSE.crl (hash: HFo5I8WQJnxGobyuRpCoP02sz86B5vOWnWyBbip2+uE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:f4:4a:d3:26:8b:ca:19:22:b8:da:b4:55:4e:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afc193ee11e54716169f94c8f931eae1fc854921
Validity
Not Before: Apr 17 09:00:53 2026 GMT
Not After : Apr 18 09:00:53 2026 GMT
Subject: CN=21c9dde67a052baa824fa8462abf61fddba412fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:49:07:af:91:50:6f:8f:36:38:ef:a8:24:f9:
81:a2:4d:19:c4:71:30:6f:11:f1:7a:17:51:a6:6d:
56:92:62:2f:e6:f5:81:cf:d3:35:65:4d:94:32:5d:
f1:e8:c6:73:20:40:25:64:61:e1:cd:31:a6:c1:6c:
80:1b:ac:9b:d7:99:d2:b7:66:d6:d1:1a:56:86:0c:
23:db:38:66:6d:21:e5:4f:42:4d:b5:47:d4:5a:27:
89:ed:ea:ba:b6:af:72:fe:1e:e8:f6:7d:24:cc:71:
1b:48:d7:bb:6e:fb:b9:2a:66:e5:f5:09:c9:fa:a0:
61:1f:56:88:3b:c0:27:e7:c3:5e:97:a0:34:f0:11:
bd:aa:9e:ca:09:bb:14:d0:85:34:e0:43:d0:d6:37:
3e:88:49:df:f2:47:4b:3d:0b:10:c9:4d:d8:47:7e:
5f:6b:60:dc:13:8e:e7:29:ef:56:14:36:79:dc:94:
41:c4:53:83:cc:da:0c:c1:c0:23:3e:db:7d:4d:5a:
ca:71:09:ac:d7:19:1c:ca:14:4a:66:83:ad:42:33:
3d:24:ab:23:f4:60:4d:dd:59:ab:20:0e:e3:17:1a:
70:cd:48:46:c7:95:47:e6:0e:f8:cc:fe:04:75:fe:
2b:f0:34:31:9d:fe:2a:44:cc:e9:6a:88:4d:13:e9:
e2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:C9:DD:E6:7A:05:2B:AA:82:4F:A8:46:2A:BF:61:FD:DB:A4:12:FD
X509v3 Authority Key Identifier:
keyid:AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:f7:dd:f6:01:50:1d:0a:26:b7:93:86:b5:26:93:79:96:36:
ce:f2:65:cd:dc:43:3d:d5:65:41:14:82:ce:e2:f4:7c:b5:03:
16:ec:39:31:f9:dc:bd:63:a1:8f:72:68:d9:05:47:df:6e:ca:
4e:91:03:51:71:96:78:aa:93:4e:3b:cc:54:9f:f4:d4:61:b7:
1e:98:42:af:b2:e1:dd:3a:e5:c0:0b:f1:bf:c4:20:80:74:d9:
4a:e7:fd:18:29:67:54:72:1b:bc:5a:8a:5f:fe:57:ee:71:73:
d2:4f:af:0c:2e:8d:17:4e:c6:51:11:70:bb:ce:94:ed:3b:c5:
46:36:77:27:bf:8a:45:8e:c6:80:00:a4:05:01:92:7e:84:6b:
5e:3d:93:c7:8b:28:af:0d:7e:1c:40:0c:a3:91:85:63:67:d4:
e0:cf:ba:3b:df:a4:76:cd:94:76:44:34:70:17:b9:50:6c:3a:
49:4b:2f:b3:d7:27:f4:cb:07:2f:2e:86:1d:68:41:a8:bd:c2:
16:df:ed:96:38:f9:4e:94:b5:35:4b:ae:0a:19:57:c5:1f:da:
8f:e8:8e:00:a9:f3:30:88:c1:7b:35:58:b2:b5:c6:a0:b5:c0:
12:ae:d0:64:76:c1:f2:c9:35:d6:6a:aa:6b:f6:62:df:0b:2f:
72:45:c3:f2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aq/RK0yaLyhkiuNq0VU7JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmYzE5M2VlMTFlNTQ3MTYxNjlmOTRjOGY5MzFlYWUxZmM4
NTQ5MjEwHhcNMjYwNDE3MDkwMDUzWhcNMjYwNDE4MDkwMDUzWjAzMTEwLwYDVQQD
EygyMWM5ZGRlNjdhMDUyYmFhODI0ZmE4NDYyYWJmNjFmZGRiYTQxMmZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEkHr5FQb482OO+oJPmBok0ZxHEw
bxHxehdRpm1WkmIv5vWBz9M1ZU2UMl3x6MZzIEAlZGHhzTGmwWyAG6yb15nSt2bW
0RpWhgwj2zhmbSHlT0JNtUfUWieJ7eq6tq9y/h7o9n0kzHEbSNe7bvu5Kmbl9QnJ
+qBhH1aIO8An58Nel6A08BG9qp7KCbsU0IU04EPQ1jc+iEnf8kdLPQsQyU3YR35f
a2DcE47nKe9WFDZ53JRBxFODzNoMwcAjPtt9TVrKcQms1xkcyhRKZoOtQjM9JKsj
9GBN3VmrIA7jFxpwzUhGx5VH5g74zP4Edf4r8DQxnf4qRMzpaohNE+niaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCHJ3eZ6BSuqgk+oRiq/Yf3bpBL9MB8GA1UdIwQY
MBaAFK/Bk+4R5UcWFp+UyPkx6uH8hUkhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjhHVDdoSGxSeFlXbjVUSS1USHE0ZnlGU1NFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8wYjljYmYtMjVhZS00MzI3LTk4YWEt
YTdkZDlhZWExZDdhLzEvcjhHVDdoSGxSeFlXbjVUSS1USHE0ZnlGU1NFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy8wYjljYmYtMjVhZS00MzI3LTk4YWEtYTdkZDlhZWExZDdh
LzEvcjhHVDdoSGxSeFlXbjVUSS1USHE0ZnlGU1NFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT/fd9gFQ
HQomt5OGtSaTeZY2zvJlzdxDPdVlQRSCzuL0fLUDFuw5MfncvWOhj3Jo2QVH327K
TpEDUXGWeKqTTjvMVJ/01GG3HphCr7Lh3TrlwAvxv8QggHTZSuf9GClnVHIbvFqK
X/5X7nFz0k+vDC6NF07GURFwu86U7TvFRjZ3J7+KRY7GgACkBQGSfoRrXj2Tx4so
rw1+HEAMo5GFY2fU4M+6O9+kds2UdkQ0cBe5UGw6SUsvs9cn9MsHLy6GHWhBqL3C
Ft/tljj5TpS1NUuuChlXxR/aj+iOAKnzMIjBezVYsrXGoLXAEq7QZHbB8sk11mqq
a/Zi3wsvckXD8g==
-----END CERTIFICATE-----
Generated at Fri Apr 17 15:22:46 2026 by rpki-client