Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
File: 2l7eZe_t7t-MigSyRaOl32OmnoQ.mft (raw, json)
Hash identifier: sMHQQorbGcjoQ5jbGBZtq6fn7VUzBpER1wiAec13+nE=
Subject key identifier: 1C:4D:F3:AD:8E:74:B8:A1:54:83:93:59:CC:48:57:D5:1E:4F:50:A3
Authority key identifier: DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
Certificate issuer: /CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Certificate serial: 019D98F510DF5B2014AF61131374049FEAAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 01:01:30 +0000
Manifest this update: Fri 17 Apr 2026 01:01:30 +0000
Manifest next update: Sat 18 Apr 2026 01:01:30 +0000
Files and hashes: 1: 2l7eZe_t7t-MigSyRaOl32OmnoQ.crl (hash: ou1GgBJm1tHkqwZfL7YqVVWHloV3F5vRekP/vl0y/gU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:10:df:5b:20:14:af:61:13:13:74:04:9f:ea:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Validity
Not Before: Apr 17 01:01:30 2026 GMT
Not After : Apr 18 01:01:30 2026 GMT
Subject: CN=1c4df3ad8e74b8a154839359cc4857d51e4f50a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9c:54:3a:19:90:d3:8e:e3:8c:c2:34:fe:d4:
be:bb:3b:2a:99:81:5a:30:3e:f7:18:a4:ec:26:f2:
02:27:a4:8c:84:3b:7a:1d:5a:39:bf:fb:e2:e5:93:
fc:61:6d:55:a6:99:aa:ac:2e:32:2a:5d:73:a9:0b:
cc:20:4c:2a:8b:6e:6d:2c:d9:6a:b3:c9:f2:a9:44:
f8:7f:27:83:22:18:07:92:f4:cc:dd:7a:8b:2c:dd:
1d:23:84:99:b9:27:1f:de:69:44:dd:3d:30:5f:8f:
d4:d1:ee:1e:40:3c:1d:6b:62:6e:64:4a:10:60:c3:
a2:52:76:a4:1b:a5:ce:7c:37:e1:4d:79:2f:10:53:
76:e6:9c:05:82:f4:04:66:e3:d7:16:d5:c8:10:d2:
2a:87:09:65:ae:e4:0b:b3:f1:1b:ac:e4:9d:92:62:
04:af:cd:7f:a8:07:1b:d0:47:ed:f9:a3:11:ee:9b:
37:57:04:dd:a9:3f:28:05:af:aa:85:e0:5d:71:35:
54:04:7f:b9:2d:a2:0e:e7:50:79:ce:ae:5a:51:2b:
69:a5:6c:9f:54:4e:1a:ba:67:b5:47:ec:80:7d:47:
22:c7:44:94:e3:10:51:16:5c:bb:4a:ea:8f:23:ac:
ce:9e:f1:92:11:29:a9:58:fb:b5:67:08:a1:b0:c5:
44:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:4D:F3:AD:8E:74:B8:A1:54:83:93:59:CC:48:57:D5:1E:4F:50:A3
X509v3 Authority Key Identifier:
keyid:DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:08:bb:ed:d7:15:70:38:a8:24:f3:c8:1f:4c:67:43:84:a5:
21:94:f7:92:52:a1:a2:02:b4:56:0b:c7:0c:b3:89:db:d2:ee:
b9:46:97:23:f7:ca:97:83:b5:c3:10:60:15:d5:71:d7:b6:0a:
5f:1a:9d:56:92:06:a4:0d:a3:18:b1:bc:55:fc:b8:19:53:12:
13:b9:ff:f2:fe:d5:76:fe:a9:bf:ac:7e:4b:58:f5:e4:71:ca:
96:26:a6:fb:1c:32:60:7d:61:d9:20:57:bb:70:ee:c6:07:b2:
2f:4e:b3:47:a2:12:5f:5d:5f:9e:3f:89:35:45:da:83:60:56:
5e:6c:05:fe:4e:e8:19:6a:c9:bb:78:61:1a:1b:ce:42:c9:65:
55:42:4e:3d:02:d0:34:25:af:4c:47:7a:16:a6:4c:ca:fe:2f:
9d:a0:48:38:9a:0f:0a:75:ca:f2:0a:9a:5f:11:39:ff:66:18:
7b:f0:e2:fa:fc:c2:ff:38:3f:f0:d0:e1:06:36:df:86:3d:60:
fe:aa:3a:84:0f:86:37:79:fe:df:84:ae:2a:ab:2e:83:eb:10:
53:03:6d:68:1d:5c:cc:fd:d6:70:3f:2a:11:98:b3:1d:4e:70:
ae:06:d2:b0:52:b7:81:ec:4a:31:99:63:40:23:74:ad:2d:5a:
b4:48:eb:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9RDfWyAUr2ETE3QEn+qvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNWVkZTY1ZWZlZGVlZGY4YzhhMDRiMjQ1YTNhNWRmNjNh
NjllODQwHhcNMjYwNDE3MDEwMTMwWhcNMjYwNDE4MDEwMTMwWjAzMTEwLwYDVQQD
EygxYzRkZjNhZDhlNzRiOGExNTQ4MzkzNTljYzQ4NTdkNTFlNGY1MGEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjJxUOhmQ047jjMI0/tS+uzsqmYFa
MD73GKTsJvICJ6SMhDt6HVo5v/vi5ZP8YW1VppmqrC4yKl1zqQvMIEwqi25tLNlq
s8nyqUT4fyeDIhgHkvTM3XqLLN0dI4SZuScf3mlE3T0wX4/U0e4eQDwda2JuZEoQ
YMOiUnakG6XOfDfhTXkvEFN25pwFgvQEZuPXFtXIENIqhwllruQLs/EbrOSdkmIE
r81/qAcb0Eft+aMR7ps3VwTdqT8oBa+qheBdcTVUBH+5LaIO51B5zq5aUStppWyf
VE4aume1R+yAfUcix0SU4xBRFly7SuqPI6zOnvGSESmpWPu1ZwihsMVEAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBxN862OdLihVIOTWcxIV9UeT1CjMB8GA1UdIwQY
MBaAFNpe3mXv7e7fjIoEskWjpd9jpp6EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmw3ZVplX3Q3dC1NaWdTeVJhT2wzMk9tbm9RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9hNmE5ZGUtNjAzMy00YzlkLTg2MWIt
YWZmNTBlNGEwZTMzLzEvMmw3ZVplX3Q3dC1NaWdTeVJhT2wzMk9tbm9RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy9hNmE5ZGUtNjAzMy00YzlkLTg2MWItYWZmNTBlNGEwZTMz
LzEvMmw3ZVplX3Q3dC1NaWdTeVJhT2wzMk9tbm9RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArwi77dcV
cDioJPPIH0xnQ4SlIZT3klKhogK0VgvHDLOJ29LuuUaXI/fKl4O1wxBgFdVx17YK
XxqdVpIGpA2jGLG8Vfy4GVMSE7n/8v7Vdv6pv6x+S1j15HHKliam+xwyYH1h2SBX
u3DuxgeyL06zR6ISX11fnj+JNUXag2BWXmwF/k7oGWrJu3hhGhvOQsllVUJOPQLQ
NCWvTEd6FqZMyv4vnaBIOJoPCnXK8gqaXxE5/2YYe/Di+vzC/zg/8NDhBjbfhj1g
/qo6hA+GN3n+34SuKqsug+sQUwNtaB1czP3WcD8qEZizHU5wrgbSsFK3gexKMZlj
QCN0rS1atEjr0g==
-----END CERTIFICATE-----
Generated at Fri Apr 17 05:27:57 2026 by rpki-client