Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
File: to-PMlFKGD6Xejx982Rz1WJgxKQ.mft (raw, json)
Hash identifier: 7CbY/7WIH7cfHkiT1EpqrNXNJttxXhFCeaHsoCQ14V4=
Subject key identifier: B5:31:EC:E3:0D:7E:53:83:0C:C6:2D:CB:C1:91:90:49:91:8D:F7:B4
Authority key identifier: B6:8F:8F:32:51:4A:18:3E:97:7A:3C:7D:F3:64:73:D5:62:60:C4:A4
Certificate issuer: /CN=b68f8f32514a183e977a3c7df36473d56260c4a4
Certificate serial: 019D99CFFF91A8F9DCC73FAE54147BAB0AA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
Manifest number: 0D23
Signing time: Fri 17 Apr 2026 05:00:38 +0000
Manifest this update: Fri 17 Apr 2026 05:00:38 +0000
Manifest next update: Sat 18 Apr 2026 05:00:38 +0000
Files and hashes: 1: UycNDBh6XIKJ82eOMM9nsWm3RUU.roa (hash: j5CuV0Ecvfd3t9K7/xrfKK4OIBdyHHKPYNpzUJ5l9jc=)
2: to-PMlFKGD6Xejx982Rz1WJgxKQ.crl (hash: DxsQarOUo2EUF6+Zp+P1eK9OEufN6lFiye+Er0L/kBg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:ff:91:a8:f9:dc:c7:3f:ae:54:14:7b:ab:0a:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b68f8f32514a183e977a3c7df36473d56260c4a4
Validity
Not Before: Apr 17 05:00:38 2026 GMT
Not After : Apr 18 05:00:38 2026 GMT
Subject: CN=b531ece30d7e53830cc62dcbc1919049918df7b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6a:09:1e:2a:eb:19:bd:c6:7d:1f:65:3f:90:
fa:59:44:8b:1d:60:3f:b2:c6:20:f2:11:5e:78:ba:
eb:e1:44:e6:e9:02:4c:07:3c:31:39:59:6e:b5:43:
40:22:01:c1:87:bc:31:73:85:27:38:ad:c1:2a:a2:
06:ce:4c:12:95:c0:6c:3a:81:f6:9c:44:c7:20:cf:
82:d2:1a:80:74:cd:31:79:f0:61:83:04:d3:c4:62:
9a:a7:9a:a2:a0:e7:fa:f3:63:dd:f6:df:52:84:61:
57:40:f0:68:27:28:e6:5c:4f:f0:92:25:52:ec:75:
a8:42:de:69:ab:c0:d2:68:96:3b:da:c5:95:12:47:
e6:42:f7:3b:9d:a3:e7:0c:b2:2f:ef:50:7b:fe:02:
7f:0b:d5:33:58:80:0b:8c:1e:04:ce:9f:1c:60:b3:
10:cc:58:91:65:4c:1f:3e:1e:e6:c0:8e:11:21:af:
2a:89:a2:2f:42:ed:91:ed:0f:a0:36:ad:da:79:6f:
58:15:f8:e0:6a:6b:c3:d5:af:c5:18:56:1e:f4:a2:
a5:9d:6d:3d:ab:94:7d:47:ee:99:c0:78:dd:f5:65:
2b:97:48:b1:90:ca:95:f4:c5:9a:f5:fb:d4:54:70:
6a:25:b4:a4:8c:40:09:0d:b1:5d:c7:4b:ca:c0:a6:
1d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:31:EC:E3:0D:7E:53:83:0C:C6:2D:CB:C1:91:90:49:91:8D:F7:B4
X509v3 Authority Key Identifier:
keyid:B6:8F:8F:32:51:4A:18:3E:97:7A:3C:7D:F3:64:73:D5:62:60:C4:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:dd:e8:94:92:30:15:aa:11:07:38:61:9c:b0:aa:0d:4d:b8:
b9:1d:b5:2f:a9:4b:31:20:51:31:d8:38:f5:01:b2:41:b4:2a:
72:e5:bc:88:f4:8c:9c:ac:95:83:00:af:73:df:32:79:07:70:
13:3e:fb:48:3f:bc:4e:9e:a8:26:e3:47:92:fb:09:ef:50:ff:
55:cf:f2:11:9f:72:ff:06:7a:55:c4:bc:dc:d0:bc:b4:a1:f9:
ee:b8:2c:c0:b1:1a:01:c1:fb:60:0a:13:16:60:6b:df:f0:09:
6d:99:60:cf:ba:a4:64:f0:c3:81:fb:be:12:6a:8b:c0:ac:cc:
31:50:dd:a9:5b:22:00:83:24:f8:63:d1:39:1e:8e:f9:c6:51:
89:55:82:74:b9:28:ab:48:96:19:b8:4f:d8:0d:7c:c0:74:95:
a6:48:35:01:56:86:18:0e:50:1c:0c:5f:4c:b1:ae:8b:b8:1b:
6f:69:ab:da:f6:b7:66:b5:33:27:b0:84:23:31:f9:10:1d:e2:
aa:a3:f6:61:9e:ae:14:2c:b9:cb:5c:eb:0b:52:21:73:69:b7:
27:c1:2c:b4:3c:86:3d:48:8b:00:80:e4:8d:a0:0f:4f:24:13:
07:45:b2:bd:c4:20:b8:ee:b8:72:0c:c0:77:9b:34:53:ec:ff:
75:c5:b3:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Zz/+RqPncxz+uVBR7qwqpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2OGY4ZjMyNTE0YTE4M2U5NzdhM2M3ZGYzNjQ3M2Q1NjI2
MGM0YTQwHhcNMjYwNDE3MDUwMDM4WhcNMjYwNDE4MDUwMDM4WjAzMTEwLwYDVQQD
EyhiNTMxZWNlMzBkN2U1MzgzMGNjNjJkY2JjMTkxOTA0OTkxOGRmN2I0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA02oJHirrGb3GfR9lP5D6WUSLHWA/
ssYg8hFeeLrr4UTm6QJMBzwxOVlutUNAIgHBh7wxc4UnOK3BKqIGzkwSlcBsOoH2
nETHIM+C0hqAdM0xefBhgwTTxGKap5qioOf682Pd9t9ShGFXQPBoJyjmXE/wkiVS
7HWoQt5pq8DSaJY72sWVEkfmQvc7naPnDLIv71B7/gJ/C9UzWIALjB4Ezp8cYLMQ
zFiRZUwfPh7mwI4RIa8qiaIvQu2R7Q+gNq3aeW9YFfjgamvD1a/FGFYe9KKlnW09
q5R9R+6ZwHjd9WUrl0ixkMqV9MWa9fvUVHBqJbSkjEAJDbFdx0vKwKYdHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLUx7OMNflODDMYty8GRkEmRjfe0MB8GA1UdIwQY
MBaAFLaPjzJRShg+l3o8ffNkc9ViYMSkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdG8tUE1sRktHRDZYZWp4OTgyUnoxV0pneEtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8zODg3ZTQtYjU5OC00NWUzLThkODUt
MjIxMGVkOWQwODYxLzEvdG8tUE1sRktHRDZYZWp4OTgyUnoxV0pneEtRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8zODg3ZTQtYjU5OC00NWUzLThkODUtMjIxMGVkOWQwODYx
LzEvdG8tUE1sRktHRDZYZWp4OTgyUnoxV0pneEtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGd3olJIw
FaoRBzhhnLCqDU24uR21L6lLMSBRMdg49QGyQbQqcuW8iPSMnKyVgwCvc98yeQdw
Ez77SD+8Tp6oJuNHkvsJ71D/Vc/yEZ9y/wZ6VcS83NC8tKH57rgswLEaAcH7YAoT
FmBr3/AJbZlgz7qkZPDDgfu+EmqLwKzMMVDdqVsiAIMk+GPROR6O+cZRiVWCdLko
q0iWGbhP2A18wHSVpkg1AVaGGA5QHAxfTLGui7gbb2mr2va3ZrUzJ7CEIzH5EB3i
qqP2YZ6uFCy5y1zrC1Ihc2m3J8EstDyGPUiLAIDkjaAPTyQTB0WyvcQguO64cgzA
d5s0U+z/dcWzRw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:47:24 2026 by rpki-client