Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
File: diI4ozxVDMXfAkTz_G49vZHkw54.mft (raw, json)
Hash identifier: WX8uliHbVe2iNZ/qmMEzlJH5aBsprGfiy3XlFF89NZs=
Subject key identifier: EC:94:C8:2E:D3:43:BB:2F:93:44:50:FF:98:AB:A3:49:62:50:6A:EA
Authority key identifier: 76:22:38:A3:3C:55:0C:C5:DF:02:44:F3:FC:6E:3D:BD:91:E4:C3:9E
Certificate issuer: /CN=762238a33c550cc5df0244f3fc6e3dbd91e4c39e
Certificate serial: 019D98F49E0262163C610D5D0731DF74FEEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
Manifest number: 0D2C
Signing time: Fri 17 Apr 2026 01:01:01 +0000
Manifest this update: Fri 17 Apr 2026 01:01:01 +0000
Manifest next update: Sat 18 Apr 2026 01:01:01 +0000
Files and hashes: 1: F7EHLevqhIbYmfRWGh8ETrgh3yU.roa (hash: 0+kmPqOA1TrwEUsZC2FJDlWO1mQqSKgrQDKmrU5ENvM=)
2: diI4ozxVDMXfAkTz_G49vZHkw54.crl (hash: tAC7YZa3wth6SV4zNZvDfYkY8LlODkEXXbHuXSxnGRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:9e:02:62:16:3c:61:0d:5d:07:31:df:74:fe:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=762238a33c550cc5df0244f3fc6e3dbd91e4c39e
Validity
Not Before: Apr 17 01:01:01 2026 GMT
Not After : Apr 18 01:01:01 2026 GMT
Subject: CN=ec94c82ed343bb2f934450ff98aba34962506aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b8:d0:31:c7:23:20:e1:04:2f:23:6f:b8:94:
29:39:d6:85:12:0e:72:f3:6c:c5:68:d0:27:5d:af:
36:e6:0c:4f:14:95:90:02:03:4a:34:a5:ae:f7:dd:
f4:8a:ae:e5:5a:bb:12:8f:57:85:e4:30:80:b4:f1:
ea:20:bb:e1:5a:04:3a:5d:24:c6:1f:78:ae:98:de:
17:b9:f1:ae:a3:db:7a:81:1f:45:1f:dd:64:ec:07:
56:e6:8b:50:a8:8e:88:8b:26:ae:15:2e:a4:9c:1e:
91:ff:67:4c:fa:12:cb:6c:c0:4c:2c:e1:7f:37:71:
2d:f0:a0:8a:d0:60:f4:9d:1e:07:8d:42:61:a4:5e:
b9:5b:32:c1:81:c0:fa:d3:fa:95:59:05:7f:bc:6e:
90:75:45:90:0b:14:f9:bc:6a:b0:c6:56:04:6f:0e:
d8:4f:db:3f:93:b6:74:5e:d2:d6:d4:3a:b4:00:9b:
3e:32:c1:95:ee:b3:f6:42:66:15:c2:35:d4:2a:e2:
32:9b:41:f4:48:cd:a0:04:43:75:8e:94:cd:e5:15:
20:d5:a0:4c:a8:00:8e:d2:08:b4:f2:96:70:8e:1a:
09:fc:50:3e:f5:86:63:d0:94:84:e1:47:85:88:66:
49:68:d5:fa:ff:69:36:3d:1a:0a:b9:bb:af:52:4a:
45:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:94:C8:2E:D3:43:BB:2F:93:44:50:FF:98:AB:A3:49:62:50:6A:EA
X509v3 Authority Key Identifier:
keyid:76:22:38:A3:3C:55:0C:C5:DF:02:44:F3:FC:6E:3D:BD:91:E4:C3:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:77:d5:1a:d0:db:6c:fc:2c:77:02:cf:57:33:1e:9f:30:cc:
0c:bf:c0:0b:da:47:dd:b2:f9:1a:bb:25:d9:a1:4a:eb:08:e9:
f3:c7:ff:3d:d3:ac:c3:5a:30:4f:96:2f:b8:4b:e2:4c:94:1e:
8b:94:94:16:22:6f:44:cd:99:55:95:a0:1d:90:93:cf:fd:59:
16:e7:7c:41:a0:b5:f3:6a:eb:3e:02:27:c1:43:ad:3c:21:f0:
7d:c5:f9:91:05:25:19:b1:9b:65:ef:b5:b1:c0:dc:3f:e5:d9:
f5:dd:42:4c:10:87:cd:1d:b4:27:b8:86:06:74:c4:43:a0:b0:
e7:7b:9b:4b:fa:0a:09:29:93:e8:d0:d8:5f:ba:f9:53:30:d4:
fb:f4:c1:f8:21:d5:d7:0d:a9:93:ab:8d:8e:0a:59:2f:30:d2:
c6:db:b3:9c:ce:61:65:8d:f1:c8:58:58:9c:0f:dc:78:68:fc:
53:8b:62:64:ec:7b:a0:36:bb:8c:0a:54:1c:28:0b:41:18:1f:
d7:ea:9c:09:89:da:72:f3:8e:da:a3:6e:cd:44:86:ed:24:b7:
c2:69:55:c3:3e:a6:83:dd:98:25:88:e1:73:7d:1b:a3:86:e9:
3c:3e:8d:12:ef:74:1e:b2:7d:f8:2c:f6:39:e3:98:f7:7d:de:
b0:f9:5d:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9J4CYhY8YQ1dBzHfdP7qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2MjIzOGEzM2M1NTBjYzVkZjAyNDRmM2ZjNmUzZGJkOTFl
NGMzOWUwHhcNMjYwNDE3MDEwMTAxWhcNMjYwNDE4MDEwMTAxWjAzMTEwLwYDVQQD
EyhlYzk0YzgyZWQzNDNiYjJmOTM0NDUwZmY5OGFiYTM0OTYyNTA2YWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLjQMccjIOEELyNvuJQpOdaFEg5y
82zFaNAnXa825gxPFJWQAgNKNKWu9930iq7lWrsSj1eF5DCAtPHqILvhWgQ6XSTG
H3iumN4XufGuo9t6gR9FH91k7AdW5otQqI6IiyauFS6knB6R/2dM+hLLbMBMLOF/
N3Et8KCK0GD0nR4HjUJhpF65WzLBgcD60/qVWQV/vG6QdUWQCxT5vGqwxlYEbw7Y
T9s/k7Z0XtLW1Dq0AJs+MsGV7rP2QmYVwjXUKuIym0H0SM2gBEN1jpTN5RUg1aBM
qACO0gi08pZwjhoJ/FA+9YZj0JSE4UeFiGZJaNX6/2k2PRoKubuvUkpFqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOyUyC7TQ7svk0RQ/5iro0liUGrqMB8GA1UdIwQY
MBaAFHYiOKM8VQzF3wJE8/xuPb2R5MOeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGlJNG96eFZETVhmQWtUel9HNDl2WkhrdzU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS81ZTMyNDktYmViZi00MDcwLTlmY2Qt
MWIxZmM3OWQwNTUxLzEvZGlJNG96eFZETVhmQWtUel9HNDl2WkhrdzU0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS81ZTMyNDktYmViZi00MDcwLTlmY2QtMWIxZmM3OWQwNTUx
LzEvZGlJNG96eFZETVhmQWtUel9HNDl2WkhrdzU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtHfVGtDb
bPwsdwLPVzMenzDMDL/AC9pH3bL5Grsl2aFK6wjp88f/PdOsw1owT5YvuEviTJQe
i5SUFiJvRM2ZVZWgHZCTz/1ZFud8QaC182rrPgInwUOtPCHwfcX5kQUlGbGbZe+1
scDcP+XZ9d1CTBCHzR20J7iGBnTEQ6Cw53ubS/oKCSmT6NDYX7r5UzDU+/TB+CHV
1w2pk6uNjgpZLzDSxtuznM5hZY3xyFhYnA/ceGj8U4tiZOx7oDa7jApUHCgLQRgf
1+qcCYnacvOO2qNuzUSG7SS3wmlVwz6mg92YJYjhc30bo4bpPD6NEu90HrJ9+Cz2
OeOY933esPldiw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:08:44 2026 by rpki-client