Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
File: cHl9sHv21Fl6wtyL40-JKYAI8s0.mft (raw, json)
Hash identifier: 8wrW/7eG3phTYabp7Wsk09fd/SU46boU3xzItKTyYVU=
Subject key identifier: 88:01:5F:BE:66:6D:AF:3B:31:18:33:C0:7B:66:48:01:5D:DB:3C:27
Authority key identifier: 70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
Certificate issuer: /CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Certificate serial: 019D992B410151C715AA2197A549A3204CAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
Manifest number: 18C7
Signing time: Fri 17 Apr 2026 02:00:41 +0000
Manifest this update: Fri 17 Apr 2026 02:00:41 +0000
Manifest next update: Sat 18 Apr 2026 02:00:41 +0000
Files and hashes: 1: cAt58g0xkrFHt9-N3ZykhWH0ReM.roa (hash: zJIgtJYw+ptpKpZht1FAofTALod8Sw1aXf2YLrLjs1s=)
2: cHl9sHv21Fl6wtyL40-JKYAI8s0.crl (hash: dCQSNjYvz9ZfYPSYcgEoSMBmbm9IgzQHJX114icUkAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:41:01:51:c7:15:aa:21:97:a5:49:a3:20:4c:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Validity
Not Before: Apr 17 02:00:41 2026 GMT
Not After : Apr 18 02:00:41 2026 GMT
Subject: CN=88015fbe666daf3b311833c07b6648015ddb3c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:16:5d:b8:4d:7a:09:83:39:9d:8a:f9:2f:03:
7d:ff:42:d1:54:01:25:54:8e:69:3b:e9:24:01:9a:
64:01:85:70:a3:c6:8a:e5:33:46:63:84:bc:56:8d:
0d:bf:f2:68:29:d6:68:ad:b4:bd:b6:98:da:a7:c5:
60:b3:ae:4e:2f:1d:3d:bf:db:12:56:57:1a:64:6e:
b2:91:bf:29:c0:cc:e6:c2:6f:50:db:f4:00:e9:94:
3a:2a:85:bb:80:2e:06:a3:87:ad:53:cd:46:69:75:
4d:32:0e:92:00:19:5f:ec:2e:29:02:c0:83:78:17:
b6:83:86:d4:52:0a:38:23:7e:a8:53:4c:d0:37:51:
2b:6f:24:d0:48:a9:30:35:73:c0:a5:8a:29:53:d5:
1d:9e:4c:42:33:52:09:f5:93:09:1a:24:23:32:81:
aa:3d:9c:78:9d:86:c7:66:13:4f:7a:77:53:25:6b:
e0:2c:a5:73:c0:15:ce:ec:48:ae:3f:99:49:ad:89:
90:06:c2:da:f0:7a:8d:6d:47:42:20:aa:8f:96:3e:
f5:02:d3:2f:ae:39:7f:7b:e9:1d:e7:d4:fe:49:71:
0e:39:33:3c:a3:98:e5:73:99:3e:91:1b:9d:ca:94:
39:31:19:d2:58:ad:a1:46:f8:d7:c7:e0:60:f2:ae:
8f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:01:5F:BE:66:6D:AF:3B:31:18:33:C0:7B:66:48:01:5D:DB:3C:27
X509v3 Authority Key Identifier:
keyid:70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:2e:d5:9f:27:93:58:18:b9:61:6a:d9:fa:77:f6:1f:46:d3:
36:97:ab:8d:ff:21:f8:c3:84:58:4f:07:7b:47:22:df:df:3c:
e7:d4:c4:12:cb:a7:26:be:7a:a7:83:77:2c:41:b5:2d:69:95:
1d:22:97:16:94:71:69:fa:e4:d6:d8:85:62:49:64:17:fe:1d:
f2:63:2e:7c:72:87:cf:5a:3a:0c:bf:3f:f7:db:30:b3:ab:71:
f6:38:4a:5e:54:ac:14:9a:34:6b:88:18:33:4f:23:92:a0:2d:
e5:18:ee:e6:4b:5f:fc:74:0f:e1:6f:dc:c9:5c:7f:83:96:85:
b0:0e:b5:6b:6f:8b:ff:9d:de:27:4e:5f:b3:c4:d9:72:81:98:
c6:d3:e8:49:f6:82:4c:48:cb:c3:eb:c6:e9:d8:9e:78:8d:18:
21:b4:ac:d8:df:3a:dd:7e:46:10:a8:96:63:1c:ff:5f:97:48:
89:bb:ab:64:2e:8b:c7:14:94:5a:07:f5:f0:2d:1b:51:4d:9c:
41:39:33:09:63:eb:1a:6b:7d:b9:0d:58:cc:52:5d:e0:ea:51:
67:ee:7e:1b:6c:38:64:f3:18:2e:6e:99:7c:f0:2b:04:37:8e:
76:c9:9c:d1:29:c7:09:90:19:20:17:fa:d7:6f:3e:44:16:30:
32:4e:22:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZK0EBUccVqiGXpUmjIEyuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwNzk3ZGIwN2JmNmQ0NTk3YWMyZGM4YmUzNGY4OTI5ODAw
OGYyY2QwHhcNMjYwNDE3MDIwMDQxWhcNMjYwNDE4MDIwMDQxWjAzMTEwLwYDVQQD
Eyg4ODAxNWZiZTY2NmRhZjNiMzExODMzYzA3YjY2NDgwMTVkZGIzYzI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRZduE16CYM5nYr5LwN9/0LRVAEl
VI5pO+kkAZpkAYVwo8aK5TNGY4S8Vo0Nv/JoKdZorbS9tpjap8Vgs65OLx09v9sS
VlcaZG6ykb8pwMzmwm9Q2/QA6ZQ6KoW7gC4Go4etU81GaXVNMg6SABlf7C4pAsCD
eBe2g4bUUgo4I36oU0zQN1ErbyTQSKkwNXPApYopU9UdnkxCM1IJ9ZMJGiQjMoGq
PZx4nYbHZhNPendTJWvgLKVzwBXO7EiuP5lJrYmQBsLa8HqNbUdCIKqPlj71AtMv
rjl/e+kd59T+SXEOOTM8o5jlc5k+kRudypQ5MRnSWK2hRvjXx+Bg8q6PJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIgBX75mba87MRgzwHtmSAFd2zwnMB8GA1UdIwQY
MBaAFHB5fbB79tRZesLci+NPiSmACPLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9jMmVlN2EtY2JiNy00NzBlLWI5NjUt
OTA3ZGFhNDY0NjNiLzEvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS9jMmVlN2EtY2JiNy00NzBlLWI5NjUtOTA3ZGFhNDY0NjNi
LzEvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdS7VnyeT
WBi5YWrZ+nf2H0bTNperjf8h+MOEWE8He0ci398859TEEsunJr56p4N3LEG1LWmV
HSKXFpRxafrk1tiFYklkF/4d8mMufHKHz1o6DL8/99sws6tx9jhKXlSsFJo0a4gY
M08jkqAt5Rju5ktf/HQP4W/cyVx/g5aFsA61a2+L/53eJ05fs8TZcoGYxtPoSfaC
TEjLw+vG6dieeI0YIbSs2N863X5GEKiWYxz/X5dIiburZC6LxxSUWgf18C0bUU2c
QTkzCWPrGmt9uQ1YzFJd4OpRZ+5+G2w4ZPMYLm6ZfPArBDeOdsmc0SnHCZAZIBf6
128+RBYwMk4inA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:54:44 2026 by rpki-client