Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft
File: pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft (raw, json)
Hash identifier: LIYuglOpNvrlgs+TF7JTELCGi+TXgy58mu8VSL9iFko=
Subject key identifier: F0:54:B5:A2:7F:6E:C0:DB:34:31:A6:FB:F0:44:C0:FF:3E:07:F4:5E
Authority key identifier: A5:2F:65:24:08:5F:A1:0E:8C:09:8A:C2:B5:82:8A:1F:88:C6:91:3C
Certificate issuer: /CN=a52f6524085fa10e8c098ac2b5828a1f88c6913c
Certificate serial: 019D9BF5944F1F92FADEF6536EF021F292C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 15:00:55 +0000
Manifest this update: Fri 17 Apr 2026 15:00:55 +0000
Manifest next update: Sat 18 Apr 2026 15:00:55 +0000
Files and hashes: 1: 5Gr2q7ZQUry_6juJo6TbPmIZ_GI.roa (hash: CLid1uYJD/tWmQGqtEiBJvjm9/bPdenK+e3VYv871Vk=)
2: pS9lJAhfoQ6MCYrCtYKKH4jGkTw.crl (hash: q7H2O8UxtGkiwnfHnhs7bfJ8Yh8vFjH+KxgjvSQf4Yo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:94:4f:1f:92:fa:de:f6:53:6e:f0:21:f2:92:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a52f6524085fa10e8c098ac2b5828a1f88c6913c
Validity
Not Before: Apr 17 15:00:55 2026 GMT
Not After : Apr 18 15:00:55 2026 GMT
Subject: CN=f054b5a27f6ec0db3431a6fbf044c0ff3e07f45e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:30:94:53:ba:8a:03:52:3f:96:c0:79:c7:86:
69:13:e9:ff:7e:72:4d:ff:f9:11:d0:ca:9d:2f:d8:
04:c6:23:d0:70:b4:3c:2e:b8:15:80:ab:49:da:a6:
15:95:8f:23:ae:d3:12:a2:cb:16:31:f5:bb:3c:04:
0c:83:4c:1a:48:e2:ad:89:a0:82:39:e2:bb:8d:76:
3b:5d:49:c1:aa:c1:4b:6f:2f:56:38:d3:75:68:2b:
63:57:69:bf:e8:a9:8b:93:15:2d:1e:aa:17:0b:07:
c0:08:5c:b1:1c:bd:e8:d9:18:86:1e:4a:7c:c6:60:
35:02:d7:92:4a:1c:f0:ec:cf:ab:b9:4f:2b:26:e2:
29:62:2f:53:ab:05:84:fe:d9:06:e1:6d:1d:9d:f0:
83:fb:06:39:56:ac:56:21:8c:a2:6c:19:85:d8:82:
57:10:01:a9:90:fc:c1:a9:7f:6e:57:fe:5b:dd:16:
17:5a:bc:49:55:7d:c4:ca:42:ee:36:6a:83:d5:41:
a9:57:c7:27:b3:a9:82:49:38:68:5e:0b:56:f3:4d:
ff:2e:94:bf:e2:b9:40:31:2d:0d:82:4a:35:cc:08:
00:59:2c:54:3e:e7:27:90:9f:11:0e:28:e1:83:94:
84:26:8b:a5:17:fb:0d:26:fc:8d:0a:79:af:0a:2b:
20:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:54:B5:A2:7F:6E:C0:DB:34:31:A6:FB:F0:44:C0:FF:3E:07:F4:5E
X509v3 Authority Key Identifier:
keyid:A5:2F:65:24:08:5F:A1:0E:8C:09:8A:C2:B5:82:8A:1F:88:C6:91:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0e4506-174f-440a-a31c-bfff5142053f/1/pS9lJAhfoQ6MCYrCtYKKH4jGkTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:70:b6:b3:a5:19:de:d7:7d:eb:7d:9d:2a:33:62:fb:ff:ba:
58:18:62:f3:91:72:9c:2e:80:db:45:ee:2e:68:cb:f0:78:80:
b3:d7:5d:6a:9a:68:a2:d9:0d:e4:da:d3:dc:41:68:21:87:7b:
08:03:63:e0:2d:31:8e:42:59:04:66:41:04:5b:00:e8:64:1a:
54:7d:97:a8:63:15:5a:fa:c4:c9:a7:46:95:f9:a4:99:8d:d7:
b1:74:8d:fb:84:f3:8b:2e:a2:fc:5c:fc:86:65:c8:1b:0c:21:
f8:44:c6:12:52:b1:a4:48:8b:ea:f2:d0:f7:bc:07:8c:54:ab:
51:43:58:b6:c0:5a:8b:94:c5:dd:2e:2a:50:65:2a:be:b6:35:
c8:7a:44:1f:06:f0:e5:75:a4:a1:72:65:13:6a:73:72:8c:9c:
38:c2:cd:fd:7b:eb:54:20:f4:40:b4:55:68:28:62:5e:38:09:
bd:fd:6e:ad:a5:94:9d:92:54:3d:2c:52:48:d2:52:9a:32:10:
ed:df:93:96:61:c7:f4:22:44:28:e2:de:be:72:32:f0:41:0b:
76:2b:63:03:e2:cb:9b:34:86:b0:3c:58:6c:de:7b:0b:be:41:
42:70:f7:98:d1:34:64:35:84:a6:60:60:dd:15:43:1f:8b:0c:
fa:5b:37:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2b9ZRPH5L63vZTbvAh8pLGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MmY2NTI0MDg1ZmExMGU4YzA5OGFjMmI1ODI4YTFmODhj
NjkxM2MwHhcNMjYwNDE3MTUwMDU1WhcNMjYwNDE4MTUwMDU1WjAzMTEwLwYDVQQD
EyhmMDU0YjVhMjdmNmVjMGRiMzQzMWE2ZmJmMDQ0YzBmZjNlMDdmNDVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjCUU7qKA1I/lsB5x4ZpE+n/fnJN
//kR0MqdL9gExiPQcLQ8LrgVgKtJ2qYVlY8jrtMSossWMfW7PAQMg0waSOKtiaCC
OeK7jXY7XUnBqsFLby9WONN1aCtjV2m/6KmLkxUtHqoXCwfACFyxHL3o2RiGHkp8
xmA1AteSShzw7M+ruU8rJuIpYi9TqwWE/tkG4W0dnfCD+wY5VqxWIYyibBmF2IJX
EAGpkPzBqX9uV/5b3RYXWrxJVX3EykLuNmqD1UGpV8cns6mCSThoXgtW803/LpS/
4rlAMS0Ngko1zAgAWSxUPucnkJ8RDijhg5SEJoulF/sNJvyNCnmvCisgiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPBUtaJ/bsDbNDGm+/BEwP8+B/ReMB8GA1UdIwQY
MBaAFKUvZSQIX6EOjAmKwrWCih+IxpE8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFM5bEpBaGZvUTZNQ1lyQ3RZS0tINGpHa1R3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8wZTQ1MDYtMTc0Zi00NDBhLWEzMWMt
YmZmZjUxNDIwNTNmLzEvcFM5bEpBaGZvUTZNQ1lyQ3RZS0tINGpHa1R3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC8wZTQ1MDYtMTc0Zi00NDBhLWEzMWMtYmZmZjUxNDIwNTNm
LzEvcFM5bEpBaGZvUTZNQ1lyQ3RZS0tINGpHa1R3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeXC2s6UZ
3td9632dKjNi+/+6WBhi85FynC6A20XuLmjL8HiAs9ddappootkN5NrT3EFoIYd7
CANj4C0xjkJZBGZBBFsA6GQaVH2XqGMVWvrEyadGlfmkmY3XsXSN+4Tziy6i/Fz8
hmXIGwwh+ETGElKxpEiL6vLQ97wHjFSrUUNYtsBai5TF3S4qUGUqvrY1yHpEHwbw
5XWkoXJlE2pzcoycOMLN/XvrVCD0QLRVaChiXjgJvf1uraWUnZJUPSxSSNJSmjIQ
7d+TlmHH9CJEKOLevnIy8EELditjA+LLmzSGsDxYbN57C75BQnD3mNE0ZDWEpmBg
3RVDH4sM+ls3Mw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 18:48:53 2026 by rpki-client