Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
File: H2fPHKLeoy_NlwLdJRDra_K2hhA.mft (raw, json)
Hash identifier: MYDKpDwCqubMbtblW5VvacC7x+kkfboR7qJZtMAnD0k=
Subject key identifier: A2:41:69:0C:C8:05:7A:EA:49:7E:8E:ED:FF:0C:B1:3F:17:19:C6:DA
Authority key identifier: 1F:67:CF:1C:A2:DE:A3:2F:CD:97:02:DD:25:10:EB:6B:F2:B6:86:10
Certificate issuer: /CN=1f67cf1ca2dea32fcd9702dd2510eb6bf2b68610
Certificate serial: 019DA48B46168DEDEFAE9630DA64969A01B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
Manifest number: 0869
Signing time: Sun 19 Apr 2026 07:01:24 +0000
Manifest this update: Sun 19 Apr 2026 07:01:24 +0000
Manifest next update: Mon 20 Apr 2026 07:01:24 +0000
Files and hashes: 1: G6Qimd7tAYQUvnYU3UCWKXw35BE.roa (hash: Y7JkYNH4E9BqcN5WcuNtct/o2Kwq3jTuydqYb5r4gpo=)
2: H2fPHKLeoy_NlwLdJRDra_K2hhA.crl (hash: NzYbDPUJEAE7mlrF+uwCHT8A666ew0OVuKSycW+824U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8b:46:16:8d:ed:ef:ae:96:30:da:64:96:9a:01:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f67cf1ca2dea32fcd9702dd2510eb6bf2b68610
Validity
Not Before: Apr 19 07:01:24 2026 GMT
Not After : Apr 20 07:01:24 2026 GMT
Subject: CN=a241690cc8057aea497e8eedff0cb13f1719c6da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:59:a1:ae:d9:41:2b:a6:bf:a6:64:db:bc:97:
7b:b3:7e:27:75:1d:db:53:4e:57:84:ea:56:8a:8b:
a5:49:b2:c3:ba:bc:f2:4c:2f:be:b0:03:d3:54:72:
4b:42:a5:49:c2:b3:54:2b:21:09:43:b8:da:da:1e:
ab:8f:10:c0:f2:b2:d5:02:12:5c:3e:2d:e0:a7:f2:
40:c6:65:a7:61:33:ef:95:d3:cc:c7:c2:06:4a:2e:
0a:cd:40:2c:b0:a7:e6:68:9f:47:32:db:d2:3d:5b:
a3:f9:51:1f:ca:94:6b:7d:09:10:cd:71:f3:25:bb:
d5:d7:73:50:04:12:2e:a0:9a:7a:25:62:72:b0:6c:
22:21:f7:9f:52:1b:04:bd:93:65:21:9d:09:a2:2c:
45:b6:af:83:74:28:93:19:09:0c:81:1d:96:65:8d:
11:3f:ee:59:b3:20:07:dc:23:0c:e4:00:fc:9a:a6:
43:80:da:88:7a:99:0e:f2:7a:59:a8:af:e6:2a:2c:
f9:8c:65:9a:41:30:ed:db:ba:a9:95:ef:32:8f:8e:
b8:88:61:c9:51:93:93:3f:9b:df:de:6b:8c:71:2b:
df:e5:63:5c:a3:d5:b7:8b:44:0c:d4:56:d1:e4:b2:
4e:05:24:27:97:5b:c5:c4:54:62:8f:be:3f:1b:f8:
77:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:41:69:0C:C8:05:7A:EA:49:7E:8E:ED:FF:0C:B1:3F:17:19:C6:DA
X509v3 Authority Key Identifier:
keyid:1F:67:CF:1C:A2:DE:A3:2F:CD:97:02:DD:25:10:EB:6B:F2:B6:86:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:ce:f7:7d:9f:82:34:05:f8:81:fb:f2:27:8d:00:ca:86:70:
de:27:48:5c:a5:84:38:0c:8d:6d:ad:c5:c0:16:8f:95:0e:8c:
1d:b9:86:d9:f0:d9:e1:54:70:27:b4:13:4b:e3:a8:ce:1b:8f:
a1:41:a1:98:31:38:98:1b:06:12:dd:c8:aa:02:3b:83:90:d1:
99:42:8d:13:ae:26:9e:04:79:2c:a4:8e:ee:a1:b5:d9:bd:7e:
2f:cf:12:33:e5:6e:29:05:a7:51:7d:e8:0f:b5:c7:5b:b4:7a:
0c:8c:03:8a:a6:b1:45:7c:9e:4d:a3:e8:0e:97:aa:6c:f2:8d:
b8:83:b9:39:20:dd:f5:85:96:98:31:52:b7:0b:45:42:b7:b7:
33:1f:d1:f8:5b:1a:90:92:55:77:25:d4:d1:0c:2d:bf:67:de:
55:54:b9:49:8b:6f:f5:10:6e:60:98:a6:23:53:74:57:f0:54:
0e:a9:00:ef:e0:3c:b3:00:fa:e8:2d:6d:10:59:48:d6:1e:1c:
71:05:e2:14:7d:06:28:d5:0c:e1:73:4a:27:c7:52:4a:49:a4:
61:89:ec:31:9e:7f:ca:d9:06:cf:7c:d2:e0:aa:10:2b:d4:3d:
a5:72:0f:ef:1c:29:7c:d2:3c:ec:c8:05:14:27:42:83:d5:c6:
4e:24:31:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ki0YWje3vrpYw2mSWmgGxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNjdjZjFjYTJkZWEzMmZjZDk3MDJkZDI1MTBlYjZiZjJi
Njg2MTAwHhcNMjYwNDE5MDcwMTI0WhcNMjYwNDIwMDcwMTI0WjAzMTEwLwYDVQQD
EyhhMjQxNjkwY2M4MDU3YWVhNDk3ZThlZWRmZjBjYjEzZjE3MTljNmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1mhrtlBK6a/pmTbvJd7s34ndR3b
U05XhOpWioulSbLDurzyTC++sAPTVHJLQqVJwrNUKyEJQ7ja2h6rjxDA8rLVAhJc
Pi3gp/JAxmWnYTPvldPMx8IGSi4KzUAssKfmaJ9HMtvSPVuj+VEfypRrfQkQzXHz
JbvV13NQBBIuoJp6JWJysGwiIfefUhsEvZNlIZ0JoixFtq+DdCiTGQkMgR2WZY0R
P+5ZsyAH3CMM5AD8mqZDgNqIepkO8npZqK/mKiz5jGWaQTDt27qple8yj464iGHJ
UZOTP5vf3muMcSvf5WNco9W3i0QM1FbR5LJOBSQnl1vFxFRij74/G/h3WwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKJBaQzIBXrqSX6O7f8MsT8XGcbaMB8GA1UdIwQY
MBaAFB9nzxyi3qMvzZcC3SUQ62vytoYQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDJmUEhLTGVveV9ObHdMZEpSRHJhX0syaGhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8zY2I0ZDYtZjMyYy00MTMwLWFlMGUt
YmFkYmU4NDA5NzdlLzEvSDJmUEhLTGVveV9ObHdMZEpSRHJhX0syaGhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy8zY2I0ZDYtZjMyYy00MTMwLWFlMGUtYmFkYmU4NDA5Nzdl
LzEvSDJmUEhLTGVveV9ObHdMZEpSRHJhX0syaGhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAws73fZ+C
NAX4gfvyJ40AyoZw3idIXKWEOAyNba3FwBaPlQ6MHbmG2fDZ4VRwJ7QTS+OozhuP
oUGhmDE4mBsGEt3IqgI7g5DRmUKNE64mngR5LKSO7qG12b1+L88SM+VuKQWnUX3o
D7XHW7R6DIwDiqaxRXyeTaPoDpeqbPKNuIO5OSDd9YWWmDFStwtFQre3Mx/R+Fsa
kJJVdyXU0Qwtv2feVVS5SYtv9RBuYJimI1N0V/BUDqkA7+A8swD66C1tEFlI1h4c
cQXiFH0GKNUM4XNKJ8dSSkmkYYnsMZ5/ytkGz3zS4KoQK9Q9pXIP7xwpfNI87MgF
FCdCg9XGTiQxrQ==
-----END CERTIFICATE-----
Generated at Sun Apr 19 09:46:02 2026 by rpki-client