Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
File: a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft (raw, json)
Hash identifier: GCdtjYKIZJUHqPp/L9eP5dGU3BEKZOdN9ZPZR6veuO0=
Subject key identifier: E7:0F:53:BE:D6:4C:0C:8E:9A:92:DC:2B:D8:9A:8C:43:8C:5B:E7:9B
Authority key identifier: 6B:57:C5:DF:F7:0E:BF:E6:7A:40:0D:55:F2:59:DB:2C:37:19:21:96
Certificate issuer: /CN=6b57c5dff70ebfe67a400d55f259db2c37192196
Certificate serial: 019D9A3E57E6BA87180771C049B313F12C12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
Manifest number: 0682
Signing time: Fri 17 Apr 2026 07:01:09 +0000
Manifest this update: Fri 17 Apr 2026 07:01:09 +0000
Manifest next update: Sat 18 Apr 2026 07:01:09 +0000
Files and hashes: 1: 0Dg7ApkC7AP2Avn6x1J-1flmrKg.roa (hash: qG/3sEaE6hIKkBZX7yiUf0VUZdejvNknPMp0eVon50w=)
2: a1fF3_cOv-Z6QA1V8lnbLDcZIZY.crl (hash: oBjXP0Fr+aRRMQRijc/eDloKiEcY6J6OvTI6KmdeCRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:57:e6:ba:87:18:07:71:c0:49:b3:13:f1:2c:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b57c5dff70ebfe67a400d55f259db2c37192196
Validity
Not Before: Apr 17 07:01:09 2026 GMT
Not After : Apr 18 07:01:09 2026 GMT
Subject: CN=e70f53bed64c0c8e9a92dc2bd89a8c438c5be79b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:90:4c:db:90:06:98:26:cd:1e:55:23:6c:21:
b1:41:38:7e:94:b8:58:b6:4e:3b:d9:65:78:71:2e:
7d:a8:93:af:37:d6:5b:f2:d8:5f:fd:1f:95:b9:cc:
e0:f4:c3:81:04:f7:dc:fa:78:96:76:bb:75:c1:06:
40:36:6f:70:71:0a:ce:a8:75:c4:f6:f7:19:78:6a:
43:73:72:17:23:85:4b:b8:f6:90:79:26:14:b9:16:
86:87:21:97:a2:cb:7e:38:6e:5a:7d:97:ff:b5:db:
b7:a3:a7:52:2a:90:c0:2d:82:f3:ab:12:b0:76:bf:
30:70:6e:45:96:a8:03:3e:41:67:74:74:9f:fc:c6:
9e:8e:6e:08:66:6b:3c:96:90:b8:94:1f:ab:70:10:
01:8f:94:76:58:b4:1a:6c:e0:83:96:ec:fe:d2:73:
23:3e:60:c7:37:a3:2e:65:ce:d9:5a:8b:34:22:11:
c0:42:e8:1f:82:1d:66:36:35:7a:83:16:28:e1:37:
d4:f8:53:00:84:b7:10:e9:79:fb:98:40:8c:ae:c4:
34:96:0b:be:8a:77:59:ed:6c:b5:9c:8c:d2:bc:56:
9d:a0:17:9a:c5:d2:a6:07:56:0e:10:9a:d8:23:d1:
0a:7c:15:2e:6a:71:b5:5c:47:cc:ce:f7:88:08:34:
19:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:0F:53:BE:D6:4C:0C:8E:9A:92:DC:2B:D8:9A:8C:43:8C:5B:E7:9B
X509v3 Authority Key Identifier:
keyid:6B:57:C5:DF:F7:0E:BF:E6:7A:40:0D:55:F2:59:DB:2C:37:19:21:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:3d:78:2c:37:bd:b5:b8:7b:22:5e:b4:d8:36:eb:ee:d9:25:
3d:ed:f1:98:19:b1:fa:6d:0c:39:62:af:67:fe:04:5e:83:77:
b0:d0:bb:f9:e0:4a:6f:3f:bb:73:c2:c7:49:f7:fa:69:8c:c5:
01:f5:4c:56:52:4f:33:d2:04:b2:24:ae:8f:6c:ce:cd:0e:fe:
b1:61:fe:fa:bc:9d:c3:c8:f4:ed:83:b7:d2:52:64:36:06:fb:
70:3d:8c:95:fe:17:53:da:2e:55:d3:22:2b:6a:e1:e9:ec:71:
4e:0f:9a:43:c9:38:88:f9:68:02:54:72:74:99:a3:76:96:57:
6e:e0:1e:c5:e0:78:ad:ff:b4:a2:f6:65:c8:40:3b:a9:c3:ec:
32:40:ba:a8:bc:b3:77:9a:8f:52:31:e2:74:bb:14:c6:09:8d:
98:72:b9:85:db:7a:55:8b:7b:49:aa:83:03:b5:05:ae:a2:20:
47:60:56:7c:09:9f:88:c5:40:94:b6:aa:4c:9f:de:cd:7a:3c:
5f:99:77:fb:57:c0:a8:15:bc:87:ff:9d:9a:a4:51:21:55:f3:
c3:a5:6f:4d:db:ee:3a:84:41:42:c0:7e:96:06:bc:31:53:a8:
20:ff:3a:f0:e8:4a:fe:5c:cb:fb:7f:86:58:19:58:77:fb:6c:
d5:ce:6b:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aPlfmuocYB3HASbMT8SwSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiNTdjNWRmZjcwZWJmZTY3YTQwMGQ1NWYyNTlkYjJjMzcx
OTIxOTYwHhcNMjYwNDE3MDcwMTA5WhcNMjYwNDE4MDcwMTA5WjAzMTEwLwYDVQQD
EyhlNzBmNTNiZWQ2NGMwYzhlOWE5MmRjMmJkODlhOGM0MzhjNWJlNzliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjpBM25AGmCbNHlUjbCGxQTh+lLhY
tk472WV4cS59qJOvN9Zb8thf/R+Vuczg9MOBBPfc+niWdrt1wQZANm9wcQrOqHXE
9vcZeGpDc3IXI4VLuPaQeSYUuRaGhyGXost+OG5afZf/tdu3o6dSKpDALYLzqxKw
dr8wcG5FlqgDPkFndHSf/Maejm4IZms8lpC4lB+rcBABj5R2WLQabOCDluz+0nMj
PmDHN6MuZc7ZWos0IhHAQugfgh1mNjV6gxYo4TfU+FMAhLcQ6Xn7mECMrsQ0lgu+
indZ7Wy1nIzSvFadoBeaxdKmB1YOEJrYI9EKfBUuanG1XEfMzveICDQZfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOcPU77WTAyOmpLcK9iajEOMW+ebMB8GA1UdIwQY
MBaAFGtXxd/3Dr/mekANVfJZ2yw3GSGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTFmRjNfY092LVo2UUExVjhsbmJMRGNaSVpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS82YWU1OGMtNzYxOC00MWJhLWEzNDMt
YzQ2ZDdiYWMwMmZjLzEvYTFmRjNfY092LVo2UUExVjhsbmJMRGNaSVpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS82YWU1OGMtNzYxOC00MWJhLWEzNDMtYzQ2ZDdiYWMwMmZj
LzEvYTFmRjNfY092LVo2UUExVjhsbmJMRGNaSVpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASj14LDe9
tbh7Il602Dbr7tklPe3xmBmx+m0MOWKvZ/4EXoN3sNC7+eBKbz+7c8LHSff6aYzF
AfVMVlJPM9IEsiSuj2zOzQ7+sWH++rydw8j07YO30lJkNgb7cD2Mlf4XU9ouVdMi
K2rh6exxTg+aQ8k4iPloAlRydJmjdpZXbuAexeB4rf+0ovZlyEA7qcPsMkC6qLyz
d5qPUjHidLsUxgmNmHK5hdt6VYt7SaqDA7UFrqIgR2BWfAmfiMVAlLaqTJ/ezXo8
X5l3+1fAqBW8h/+dmqRRIVXzw6VvTdvuOoRBQsB+lga8MVOoIP868OhK/lzL+3+G
WBlYd/ts1c5riw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 13:49:48 2026 by rpki-client