Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
File: U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft (raw, json)
Hash identifier: WwgfwU/mhpMGhykD04qlO8Ncf0ygQAImfWEGIjrvOd0=
Subject key identifier: 5F:89:15:3F:90:FE:01:C4:FA:57:56:06:20:93:B0:4D:2A:87:EA:B7
Authority key identifier: 53:65:83:DE:83:6F:CC:28:E7:0B:F6:6E:AD:B8:D3:8F:3F:64:F4:E1
Certificate issuer: /CN=536583de836fcc28e70bf66eadb8d38f3f64f4e1
Certificate serial: 019D9C2C9ACD9D5F00F50F54EFF2C759C1F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
Manifest number: 18C0
Signing time: Fri 17 Apr 2026 16:01:02 +0000
Manifest this update: Fri 17 Apr 2026 16:01:02 +0000
Manifest next update: Sat 18 Apr 2026 16:01:02 +0000
Files and hashes: 1: U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl (hash: zK8/keoaf95lnGoeaBB6lhXaq5Dg9xYHa30WcIr0kOc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:9a:cd:9d:5f:00:f5:0f:54:ef:f2:c7:59:c1:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=536583de836fcc28e70bf66eadb8d38f3f64f4e1
Validity
Not Before: Apr 17 16:01:02 2026 GMT
Not After : Apr 18 16:01:02 2026 GMT
Subject: CN=5f89153f90fe01c4fa5756062093b04d2a87eab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cb:82:28:55:8b:78:7c:55:76:ec:76:36:a7:
13:78:cd:20:14:13:37:a1:4d:13:5a:18:52:ca:50:
22:1e:62:2d:1b:e1:75:b8:dd:43:ba:32:51:c8:68:
e3:40:3f:01:fa:2d:5b:3e:c8:3d:5a:e8:ed:e1:75:
93:b7:95:e1:25:2b:bc:0d:b2:91:92:fa:07:ce:4e:
cc:e0:91:09:a4:e0:6a:bc:bc:4b:20:46:77:5c:a1:
42:a4:25:f1:1e:72:33:b4:81:b8:22:31:69:78:94:
5a:4b:03:35:6b:f4:fa:81:44:04:8b:f7:02:b7:0f:
da:d0:c1:2a:64:ef:44:45:a4:94:61:88:d0:50:58:
53:c3:85:0b:01:51:64:54:e3:b0:c0:8a:6f:cf:74:
4e:e1:1e:64:87:5a:8e:35:04:16:f8:b0:54:c9:f4:
f0:83:65:66:bc:15:63:f0:f3:43:28:a4:f1:d5:49:
e2:49:52:da:e5:44:57:51:12:52:8a:03:c5:a0:d3:
43:8b:a4:e3:a5:7e:1e:28:f6:c2:2e:f1:40:de:a6:
a5:3b:9a:ab:6d:3b:15:e9:40:83:fb:2a:0e:47:9c:
b2:a1:7b:2b:03:12:bc:27:89:9f:aa:b9:68:f3:6c:
c3:7f:7f:64:19:cb:b3:3f:2d:ac:75:9a:6f:7a:d3:
87:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:89:15:3F:90:FE:01:C4:FA:57:56:06:20:93:B0:4D:2A:87:EA:B7
X509v3 Authority Key Identifier:
keyid:53:65:83:DE:83:6F:CC:28:E7:0B:F6:6E:AD:B8:D3:8F:3F:64:F4:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:5a:cf:17:00:a2:ba:2c:f3:62:26:ef:21:65:00:c8:59:52:
09:8b:48:da:c2:b1:fa:f3:0b:41:05:f8:9c:e8:50:ff:b1:61:
90:e2:cd:e4:61:10:4c:6c:45:c7:c6:bc:a4:32:1c:2a:73:59:
59:98:05:bc:cd:d4:3e:8b:b0:bf:7a:2a:b2:ea:0d:60:63:ce:
13:5a:c6:5a:52:bf:ba:d2:3f:da:6d:fd:52:fe:a8:60:0a:9b:
ae:d1:6d:d0:13:17:9a:f2:f7:89:b9:51:d3:61:2d:86:0b:49:
47:16:37:52:94:d2:13:a0:94:5b:67:15:d8:52:e7:77:bd:28:
78:1b:86:19:ad:34:85:de:41:f4:f9:08:b5:ba:3d:bb:2d:0f:
18:90:eb:30:78:81:b6:e7:c4:91:55:d0:ab:dd:7e:72:56:1a:
f2:7b:f1:6d:30:13:48:85:38:96:fc:0f:49:8d:1b:f3:71:26:
bc:5e:fd:6a:6f:f1:22:47:6e:77:80:1a:63:b5:a1:a6:e5:cc:
c6:ca:05:82:19:d7:9d:39:db:bd:15:1a:f2:b1:f3:8c:d7:79:
59:0d:3e:6a:ba:ca:fb:c7:fc:73:d8:cd:8c:d1:ba:40:82:f1:
d6:e5:ef:44:6f:e7:8d:8e:d1:6d:dd:aa:83:d7:95:be:9f:3d:
75:d6:24:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2cLJrNnV8A9Q9U7/LHWcH1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzNjU4M2RlODM2ZmNjMjhlNzBiZjY2ZWFkYjhkMzhmM2Y2
NGY0ZTEwHhcNMjYwNDE3MTYwMTAyWhcNMjYwNDE4MTYwMTAyWjAzMTEwLwYDVQQD
Eyg1Zjg5MTUzZjkwZmUwMWM0ZmE1NzU2MDYyMDkzYjA0ZDJhODdlYWI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosuCKFWLeHxVdux2NqcTeM0gFBM3
oU0TWhhSylAiHmItG+F1uN1DujJRyGjjQD8B+i1bPsg9Wujt4XWTt5XhJSu8DbKR
kvoHzk7M4JEJpOBqvLxLIEZ3XKFCpCXxHnIztIG4IjFpeJRaSwM1a/T6gUQEi/cC
tw/a0MEqZO9ERaSUYYjQUFhTw4ULAVFkVOOwwIpvz3RO4R5kh1qONQQW+LBUyfTw
g2VmvBVj8PNDKKTx1UniSVLa5URXURJSigPFoNNDi6TjpX4eKPbCLvFA3qalO5qr
bTsV6UCD+yoOR5yyoXsrAxK8J4mfqrlo82zDf39kGcuzPy2sdZpvetOHiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF+JFT+Q/gHE+ldWBiCTsE0qh+q3MB8GA1UdIwQY
MBaAFFNlg96Db8wo5wv2bq24048/ZPThMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTJXRDNvTnZ6Q2puQ19adXJialRqejlrOU9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy82ZjI2M2EtNDE5My00MzA5LTljN2Et
ODJhNjk5MGRmMzhkLzEvVTJXRDNvTnZ6Q2puQ19adXJialRqejlrOU9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy82ZjI2M2EtNDE5My00MzA5LTljN2EtODJhNjk5MGRmMzhk
LzEvVTJXRDNvTnZ6Q2puQ19adXJialRqejlrOU9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAFrPFwCi
uizzYibvIWUAyFlSCYtI2sKx+vMLQQX4nOhQ/7FhkOLN5GEQTGxFx8a8pDIcKnNZ
WZgFvM3UPouwv3oqsuoNYGPOE1rGWlK/utI/2m39Uv6oYAqbrtFt0BMXmvL3iblR
02EthgtJRxY3UpTSE6CUW2cV2FLnd70oeBuGGa00hd5B9PkItbo9uy0PGJDrMHiB
tufEkVXQq91+clYa8nvxbTATSIU4lvwPSY0b83EmvF79am/xIkdud4AaY7WhpuXM
xsoFghnXnTnbvRUa8rHzjNd5WQ0+arrK+8f8c9jNjNG6QILx1uXvRG/njY7Rbd2q
g9eVvp89ddYkog==
-----END CERTIFICATE-----
Generated at Fri Apr 17 18:40:41 2026 by rpki-client