Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft
File: Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft (raw, json)
Hash identifier: oSD849kYMTR/LCndDDtkEhhc4gUKt/WFqfXTC9K6DqQ=
Subject key identifier: 94:9C:FB:FE:87:26:DE:20:70:15:95:B1:36:5F:34:71:19:49:A2:E1
Authority key identifier: 0E:2E:4F:D2:19:F5:B7:7C:E8:0C:DF:AF:9E:3A:64:41:DE:C5:00:42
Certificate issuer: /CN=0e2e4fd219f5b77ce80cdfaf9e3a6441dec50042
Certificate serial: 019D9C9A437E2E6F7B8A4DFB4756EB0A5C90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft
Manifest number: 18CB
Signing time: Fri 17 Apr 2026 18:00:48 +0000
Manifest this update: Fri 17 Apr 2026 18:00:48 +0000
Manifest next update: Sat 18 Apr 2026 18:00:48 +0000
Files and hashes: 1: 6GPblw6DV3CHVZNWZ0QdaVy6klk.roa (hash: DqtHDBDEhiMvYHUrl8XYbcaTNh8BiLqth+UKaws4rT8=)
2: Bzo_d6zW3tj-cs4yT8d3sKOXlfg.roa (hash: sB4IjXQ2q1JliT65t5pMashaLGv9OdpiFjT65GllIOg=)
3: Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl (hash: 7JB3upRup4fIWIFteNi/HeIsyGPbNDWh0HE6mXiiZBI=)
4: E3W4jp5zsoikKWLmA1V7bWlcpV4.roa (hash: YJ9yEvPcrd1MOHEooUf+VZebkz+BFG/oUSCxEMHiKbk=)
5: aUScLYE7hWlZLrttrbL09JUvQA0.roa (hash: x+eRx80jxSLOtFgW7pQIqcwn52mE8qpARjfDhLVRoV4=)
6: nW3IwE5roVsnBgu9z0_CgUuzIkE.roa (hash: W9YQgHEfBWzENVLpd45FQgo4EBkxudFGiV0/tWzb3uI=)
7: oJikVGeGH47Pi9ETf25ZC2y534A.roa (hash: O9mHTIlUIZNrSBo/sFV/Ngmx3bneDcEBab5/fbZjQkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:9a:43:7e:2e:6f:7b:8a:4d:fb:47:56:eb:0a:5c:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e2e4fd219f5b77ce80cdfaf9e3a6441dec50042
Validity
Not Before: Apr 17 18:00:48 2026 GMT
Not After : Apr 18 18:00:48 2026 GMT
Subject: CN=949cfbfe8726de20701595b1365f34711949a2e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:cc:b9:7f:df:13:48:73:b8:00:2a:aa:75:57:
34:96:fd:d6:f2:ae:75:7c:d0:7d:51:5f:b6:a7:2d:
2c:db:a3:35:9e:f6:af:25:52:e8:66:32:dd:85:35:
5d:fa:1c:92:b4:4e:2f:91:a9:87:c7:04:4a:33:67:
c9:a8:86:a2:af:f6:8a:6d:3f:f6:65:9b:ae:d9:48:
ba:16:c8:ec:64:0c:a0:94:6f:59:91:f4:7a:f8:12:
10:92:1d:0a:2f:04:36:e7:2b:77:98:4e:e9:3b:32:
c1:e4:50:9d:7f:f1:fd:dc:76:c9:9a:ca:1a:42:94:
7c:01:58:54:9b:2d:5f:0b:22:fe:06:e5:4e:12:c5:
ac:7a:d8:01:eb:9a:0e:be:13:44:ea:df:d9:c7:61:
5a:bd:7a:7b:80:2e:f3:b8:eb:f7:15:96:63:b5:44:
17:06:85:08:76:ba:1a:a0:80:22:a0:12:d9:07:1a:
e4:99:a6:50:71:91:d3:78:7f:8f:0b:19:6b:f9:9f:
ad:b9:4c:d9:4e:b9:78:ce:b3:7b:15:7e:2f:98:5f:
87:6e:40:47:63:f3:71:a4:2b:b5:46:89:17:44:06:
c3:10:f1:76:34:af:4f:3a:bc:ce:32:58:df:6e:3d:
f9:6c:71:57:69:3a:cd:d6:1f:19:a9:ae:76:fd:69:
22:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:9C:FB:FE:87:26:DE:20:70:15:95:B1:36:5F:34:71:19:49:A2:E1
X509v3 Authority Key Identifier:
keyid:0E:2E:4F:D2:19:F5:B7:7C:E8:0C:DF:AF:9E:3A:64:41:DE:C5:00:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:f6:e5:f8:cf:6b:90:97:a2:60:05:2d:8d:4c:a9:32:5b:57:
36:21:6d:93:f3:ef:c3:43:98:ba:a8:0f:7b:f3:b1:ef:2b:fa:
42:d4:68:b4:61:a2:0d:db:a2:42:76:0f:0f:10:ef:14:9f:12:
09:60:17:c0:53:bb:7e:b9:60:78:9d:12:d9:78:f5:f4:df:fe:
5f:df:72:d5:a2:cd:b6:e4:d4:be:e5:b2:4a:96:6e:a0:2f:6d:
47:00:76:93:a6:b2:a9:4b:d4:9b:89:00:e2:ed:23:a3:2e:0c:
02:46:e3:eb:6d:ea:5e:b6:4b:24:30:8b:2b:16:21:41:ef:a9:
bb:8b:61:ae:6f:c3:3a:e2:2d:b1:30:e4:9c:50:3f:fc:c1:7b:
3c:7b:e6:76:fc:82:25:e1:37:33:2a:50:31:26:31:f4:ae:5b:
7c:8c:52:6a:1c:60:37:f3:9a:ce:c3:2c:80:6c:1d:2c:49:ba:
1e:8e:67:40:24:8b:f2:6d:46:d0:f7:23:be:b5:20:08:56:f7:
e8:74:19:8f:5a:98:55:c6:e5:52:55:54:fc:24:8c:b5:06:4e:
df:dd:b8:61:4b:ca:08:2e:1b:a9:25:1d:13:b5:79:94:5e:bf:
6d:5b:46:c1:09:6b:1c:c5:a7:d0:41:9b:96:da:60:65:db:4c:
14:65:3b:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2cmkN+Lm97ik37R1brClyQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlMmU0ZmQyMTlmNWI3N2NlODBjZGZhZjllM2E2NDQxZGVj
NTAwNDIwHhcNMjYwNDE3MTgwMDQ4WhcNMjYwNDE4MTgwMDQ4WjAzMTEwLwYDVQQD
Eyg5NDljZmJmZTg3MjZkZTIwNzAxNTk1YjEzNjVmMzQ3MTE5NDlhMmUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnMy5f98TSHO4ACqqdVc0lv3W8q51
fNB9UV+2py0s26M1nvavJVLoZjLdhTVd+hyStE4vkamHxwRKM2fJqIair/aKbT/2
ZZuu2Ui6FsjsZAyglG9ZkfR6+BIQkh0KLwQ25yt3mE7pOzLB5FCdf/H93HbJmsoa
QpR8AVhUmy1fCyL+BuVOEsWsetgB65oOvhNE6t/Zx2FavXp7gC7zuOv3FZZjtUQX
BoUIdroaoIAioBLZBxrkmaZQcZHTeH+PCxlr+Z+tuUzZTrl4zrN7FX4vmF+HbkBH
Y/NxpCu1RokXRAbDEPF2NK9POrzOMljfbj35bHFXaTrN1h8Zqa52/WkirwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJSc+/6HJt4gcBWVsTZfNHEZSaLhMB8GA1UdIwQY
MBaAFA4uT9IZ9bd86Azfr546ZEHexQBCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGk1UDBobjF0M3pvRE4tdm5qcGtRZDdGQUVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS9lMTEyMjQtNjFjNy00Nzg2LTg2ZTkt
MjM4ZmVlNjkyNDMwLzEvRGk1UDBobjF0M3pvRE4tdm5qcGtRZDdGQUVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS9lMTEyMjQtNjFjNy00Nzg2LTg2ZTktMjM4ZmVlNjkyNDMw
LzEvRGk1UDBobjF0M3pvRE4tdm5qcGtRZDdGQUVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjvbl+M9r
kJeiYAUtjUypMltXNiFtk/Pvw0OYuqgPe/Ox7yv6QtRotGGiDduiQnYPDxDvFJ8S
CWAXwFO7frlgeJ0S2Xj19N/+X99y1aLNtuTUvuWySpZuoC9tRwB2k6ayqUvUm4kA
4u0joy4MAkbj623qXrZLJDCLKxYhQe+pu4thrm/DOuItsTDknFA//MF7PHvmdvyC
JeE3MypQMSYx9K5bfIxSahxgN/OazsMsgGwdLEm6Ho5nQCSL8m1G0PcjvrUgCFb3
6HQZj1qYVcblUlVU/CSMtQZO3924YUvKCC4bqSUdE7V5lF6/bVtGwQlrHMWn0EGb
ltpgZdtMFGU7lg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 22:00:16 2026 by rpki-client