Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
File: 5IKZWNgAyhrebhPKeygLIpzmYC4.mft (raw, json)
Hash identifier: XVtci6vK+ASSy5XLJKHbFEo1ZDrADPBmfak21SZS5B4=
Subject key identifier: 84:0D:29:A4:F2:68:C9:23:94:78:EA:17:81:4C:EC:C6:7A:59:8F:6C
Authority key identifier: E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E
Certificate issuer: /CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
Certificate serial: 019D98F44344FB754D6265C4DCFD92B18569
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
Manifest number: 18BE
Signing time: Fri 17 Apr 2026 01:00:37 +0000
Manifest this update: Fri 17 Apr 2026 01:00:37 +0000
Manifest next update: Sat 18 Apr 2026 01:00:37 +0000
Files and hashes: 1: 5IKZWNgAyhrebhPKeygLIpzmYC4.crl (hash: YNtJVPdMvbS44yj5uzllXfCpzhEQn+dZbLLY7EYlGQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:43:44:fb:75:4d:62:65:c4:dc:fd:92:b1:85:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
Validity
Not Before: Apr 17 01:00:37 2026 GMT
Not After : Apr 18 01:00:37 2026 GMT
Subject: CN=840d29a4f268c9239478ea17814cecc67a598f6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:73:ca:16:d6:2e:1b:25:06:b5:25:35:21:41:
ff:db:e3:e8:ed:80:af:6f:d8:3c:0e:4e:cb:94:7b:
90:ef:aa:a6:89:5a:3a:83:87:79:75:22:32:21:94:
89:5f:22:52:84:e2:bb:22:5e:2a:66:18:49:d8:86:
78:98:5b:eb:5a:28:b9:cf:7c:52:79:c0:99:8b:45:
c5:7e:7e:c2:02:3f:dc:62:35:e5:a5:58:5a:6a:46:
61:1b:70:2a:17:58:1d:bb:e6:35:3a:18:59:39:36:
6b:47:11:ec:57:ce:87:91:f8:e3:b9:4f:d5:9d:bb:
79:c5:e2:03:5f:54:8f:78:a6:32:b8:c2:9a:8e:e5:
65:3e:9d:f2:78:ad:ec:68:8b:5e:b0:cc:23:09:b5:
5f:9b:f4:25:3a:93:2d:f0:dc:5c:0b:06:58:31:74:
4b:2a:ef:4c:7f:cb:fc:13:c6:de:e8:a6:02:4f:c5:
19:81:5e:3b:72:4b:53:56:5b:24:8a:10:2f:0f:4e:
c2:f4:51:7d:e9:2c:c3:8c:da:78:17:0f:71:0a:cc:
a0:57:31:ba:a0:ef:03:bb:b1:55:be:56:76:6d:3f:
40:b3:12:5f:35:79:57:a2:8c:09:ec:e7:67:2f:ba:
18:9a:80:43:93:52:c6:7a:e9:78:b2:55:9c:60:c5:
b0:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:0D:29:A4:F2:68:C9:23:94:78:EA:17:81:4C:EC:C6:7A:59:8F:6C
X509v3 Authority Key Identifier:
keyid:E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:29:ba:d4:63:1b:3e:4d:4a:af:27:3b:80:9c:7b:59:77:a4:
f9:c2:ab:64:2d:6f:28:6e:27:1b:19:5c:04:6e:d2:c1:39:b6:
e9:1c:ac:37:7e:31:7f:03:aa:ec:88:c6:e1:bd:f5:59:0c:09:
68:ec:39:fd:65:5d:09:7f:75:f5:2e:79:e6:2a:c2:f8:ce:3e:
3e:21:a3:ff:08:8f:df:37:45:42:79:39:aa:52:07:6c:72:22:
ce:1f:26:dc:ff:53:60:ec:6d:6a:37:40:45:57:f8:4b:2b:21:
73:94:1b:be:02:b0:7f:09:ae:c6:c3:79:c8:5d:97:d2:d0:4f:
91:e5:b9:20:f6:62:e3:90:88:3a:e3:b3:91:28:5b:0a:66:4b:
0a:e9:e1:e3:c9:a8:6a:11:5c:29:d2:8e:43:b2:3e:e4:f8:a5:
4b:a9:56:f8:51:13:28:9c:28:5b:54:6a:fb:9c:99:6c:04:9f:
d1:26:63:a3:ad:d1:61:89:76:55:a4:20:de:48:ad:f1:83:63:
e2:ad:a6:1a:4a:2a:3d:82:bd:95:87:e6:9d:9f:74:55:ba:fa:
e4:49:35:6a:90:3f:35:6f:e6:9a:eb:5f:d2:6f:7d:00:20:40:
a8:c7:4d:3f:45:b6:27:2b:e0:f3:21:e5:c8:ca:17:10:cd:f7:
98:40:3e:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9ENE+3VNYmXE3P2SsYVpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ODI5OTU4ZDgwMGNhMWFkZTZlMTNjYTdiMjgwYjIyOWNl
NjYwMmUwHhcNMjYwNDE3MDEwMDM3WhcNMjYwNDE4MDEwMDM3WjAzMTEwLwYDVQQD
Eyg4NDBkMjlhNGYyNjhjOTIzOTQ3OGVhMTc4MTRjZWNjNjdhNTk4ZjZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXPKFtYuGyUGtSU1IUH/2+Po7YCv
b9g8Dk7LlHuQ76qmiVo6g4d5dSIyIZSJXyJShOK7Il4qZhhJ2IZ4mFvrWii5z3xS
ecCZi0XFfn7CAj/cYjXlpVhaakZhG3AqF1gdu+Y1OhhZOTZrRxHsV86HkfjjuU/V
nbt5xeIDX1SPeKYyuMKajuVlPp3yeK3saItesMwjCbVfm/QlOpMt8NxcCwZYMXRL
Ku9Mf8v8E8be6KYCT8UZgV47cktTVlskihAvD07C9FF96SzDjNp4Fw9xCsygVzG6
oO8Du7FVvlZ2bT9AsxJfNXlXoowJ7OdnL7oYmoBDk1LGeul4slWcYMWwMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIQNKaTyaMkjlHjqF4FM7MZ6WY9sMB8GA1UdIwQY
MBaAFOSCmVjYAMoa3m4TynsoCyKc5mAuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQt
MWQ1YmMwMDFhMWRlLzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQtMWQ1YmMwMDFhMWRl
LzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWym61GMb
Pk1Kryc7gJx7WXek+cKrZC1vKG4nGxlcBG7SwTm26RysN34xfwOq7IjG4b31WQwJ
aOw5/WVdCX919S555irC+M4+PiGj/wiP3zdFQnk5qlIHbHIizh8m3P9TYOxtajdA
RVf4Syshc5QbvgKwfwmuxsN5yF2X0tBPkeW5IPZi45CIOuOzkShbCmZLCunh48mo
ahFcKdKOQ7I+5PilS6lW+FETKJwoW1Rq+5yZbASf0SZjo63RYYl2VaQg3kit8YNj
4q2mGkoqPYK9lYfmnZ90Vbr65Ek1apA/NW/mmutf0m99ACBAqMdNP0W2Jyvg8yHl
yMoXEM33mEA+3A==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:00:33 2026 by rpki-client