Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
File: un1KwTROw43OmXaNeKEU6_fxfYU.mft (raw, json)
Hash identifier: OKxe4DuPPDaCtXwXorONuoi8POtl8JbrllovGIObd88=
Subject key identifier: 9B:24:F5:31:28:34:0F:51:9B:F3:07:DB:DE:93:4E:B3:B3:D2:48:22
Authority key identifier: BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85
Certificate issuer: /CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85
Certificate serial: 019D9A3E6E2F248DA87332B36ED90B0FB8B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
Manifest number: 0F7B
Signing time: Fri 17 Apr 2026 07:01:15 +0000
Manifest this update: Fri 17 Apr 2026 07:01:15 +0000
Manifest next update: Sat 18 Apr 2026 07:01:15 +0000
Files and hashes: 1: o1To2AOAuoLP-nWNuTs68gOKGAE.roa (hash: IQkZrzowlCF0UtrbBWeIReby2n7O6GCUFgToo++Y5B0=)
2: un1KwTROw43OmXaNeKEU6_fxfYU.crl (hash: FGdor0zlSNe7KjPW5qUfs1pfnsTVC6KRtmoftcFPPpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:6e:2f:24:8d:a8:73:32:b3:6e:d9:0b:0f:b8:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85
Validity
Not Before: Apr 17 07:01:15 2026 GMT
Not After : Apr 18 07:01:15 2026 GMT
Subject: CN=9b24f53128340f519bf307dbde934eb3b3d24822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:02:8b:3d:5a:2b:f5:dc:90:dc:b2:e2:79:b0:
2d:4f:54:1b:ef:56:4a:e0:2f:ee:69:03:4c:7d:d8:
8f:9e:f5:23:9c:46:fc:3e:3d:44:00:fc:df:58:5d:
60:4d:1b:2c:50:f5:3b:1e:da:c0:12:b1:ab:6e:b1:
4a:68:a3:8a:0b:ba:62:59:bf:aa:73:a8:cd:e2:86:
6b:03:85:25:19:c6:a7:b7:0e:28:f9:a9:3f:50:08:
2e:84:b7:28:28:4d:0f:e0:b8:77:d6:c3:5d:c8:ef:
73:44:c9:35:9e:2f:88:93:94:c7:ae:26:55:61:0b:
c3:90:86:9a:e5:49:63:1e:f6:37:25:7a:8e:2b:be:
6a:14:4e:ef:53:d8:4a:da:3e:9a:97:56:be:25:7f:
79:54:c6:dd:71:2d:f2:e9:1a:8d:bd:9b:26:4d:c3:
ed:0a:d6:46:9b:78:db:67:53:92:d5:f5:da:e7:08:
fa:a1:0e:53:9a:3e:d7:d2:6b:eb:6c:c2:70:9a:a6:
60:4d:58:4b:94:2b:9d:80:49:99:79:1c:4a:0f:6b:
d1:1d:e4:19:fc:75:05:8b:6a:db:38:91:fd:d1:8a:
cb:f9:38:82:74:92:78:47:9a:0f:00:c0:e9:04:40:
8e:d0:51:3c:4d:36:34:01:c0:50:4f:3f:15:37:ca:
a8:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:24:F5:31:28:34:0F:51:9B:F3:07:DB:DE:93:4E:B3:B3:D2:48:22
X509v3 Authority Key Identifier:
keyid:BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:5b:ca:ff:0a:0d:b6:10:4d:b4:5f:73:47:12:52:40:da:34:
b2:f3:66:94:37:3e:e2:6f:e6:29:44:75:31:f3:c4:4a:d6:a4:
ff:26:9f:57:fc:bb:0c:9f:b9:bd:92:16:56:1c:3d:55:fd:91:
10:00:03:54:57:d6:bd:12:f3:73:0b:70:6f:42:58:bf:76:c0:
7e:d2:dd:52:ca:97:d0:d9:fc:10:ef:e1:ff:46:2c:19:dd:95:
c2:b9:47:c6:6d:6b:99:22:0b:55:3d:00:82:81:c3:3c:ea:d1:
bf:7a:53:6d:8e:c1:8b:8f:7c:09:19:61:aa:3c:3e:b5:21:a1:
cc:94:cf:6e:27:be:f0:a2:dc:50:0a:86:6e:78:ea:46:15:65:
5b:3f:15:8b:0f:9f:c9:cd:b8:c8:65:92:38:cc:33:12:a2:ad:
e9:36:55:a6:91:d3:fb:3b:91:ad:f5:59:80:de:df:92:21:52:
bc:57:4e:32:b4:ca:f9:67:c8:71:89:5f:71:1b:fc:4d:b2:0b:
66:da:80:9a:8a:8b:90:f8:bf:b5:7a:79:df:10:a0:fb:41:48:
aa:e2:49:d3:28:18:13:ff:5a:31:b7:26:be:0d:90:47:4b:5f:
61:7e:ab:85:02:fe:73:7c:4f:d3:9a:5c:7b:0f:4d:ec:09:e2:
b7:26:2a:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aPm4vJI2oczKzbtkLD7i3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhN2Q0YWMxMzQ0ZWMzOGRjZTk5NzY4ZDc4YTExNGViZjdm
MTdkODUwHhcNMjYwNDE3MDcwMTE1WhcNMjYwNDE4MDcwMTE1WjAzMTEwLwYDVQQD
Eyg5YjI0ZjUzMTI4MzQwZjUxOWJmMzA3ZGJkZTkzNGViM2IzZDI0ODIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgKLPVor9dyQ3LLiebAtT1Qb71ZK
4C/uaQNMfdiPnvUjnEb8Pj1EAPzfWF1gTRssUPU7HtrAErGrbrFKaKOKC7piWb+q
c6jN4oZrA4UlGcantw4o+ak/UAguhLcoKE0P4Lh31sNdyO9zRMk1ni+Ik5THriZV
YQvDkIaa5UljHvY3JXqOK75qFE7vU9hK2j6al1a+JX95VMbdcS3y6RqNvZsmTcPt
CtZGm3jbZ1OS1fXa5wj6oQ5Tmj7X0mvrbMJwmqZgTVhLlCudgEmZeRxKD2vRHeQZ
/HUFi2rbOJH90YrL+TiCdJJ4R5oPAMDpBECO0FE8TTY0AcBQTz8VN8qo7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJsk9TEoNA9Rm/MH296TTrOz0kgiMB8GA1UdIwQY
MBaAFLp9SsE0TsONzpl2jXihFOv38X2FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9iNjYxMjUtNjg0NC00YTg3LTliYjUt
YWY0MjYyM2VhNDMxLzEvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9iNjYxMjUtNjg0NC00YTg3LTliYjUtYWY0MjYyM2VhNDMx
LzEvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkFvK/woN
thBNtF9zRxJSQNo0svNmlDc+4m/mKUR1MfPEStak/yafV/y7DJ+5vZIWVhw9Vf2R
EAADVFfWvRLzcwtwb0JYv3bAftLdUsqX0Nn8EO/h/0YsGd2VwrlHxm1rmSILVT0A
goHDPOrRv3pTbY7Bi498CRlhqjw+tSGhzJTPbie+8KLcUAqGbnjqRhVlWz8Viw+f
yc24yGWSOMwzEqKt6TZVppHT+zuRrfVZgN7fkiFSvFdOMrTK+WfIcYlfcRv8TbIL
ZtqAmoqLkPi/tXp53xCg+0FIquJJ0ygYE/9aMbcmvg2QR0tfYX6rhQL+c3xP05pc
ew9N7AnityYq2Q==
-----END CERTIFICATE-----
Generated at Fri Apr 17 09:55:11 2026 by rpki-client