Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
File: r7ALKTlueAM-26yv75hQsbDjUyM.mft (raw, json)
Hash identifier: /ixbF1B5DGj3+ury15megcePgbS6gtd4vcDYUXnt/LM=
Subject key identifier: 4A:B1:23:11:BB:D8:BF:99:D5:2A:52:7E:DE:CC:FB:7A:ED:77:1D:E7
Authority key identifier: AF:B0:0B:29:39:6E:78:03:3E:DB:AC:AF:EF:98:50:B1:B0:E3:53:23
Certificate issuer: /CN=afb00b29396e78033edbacafef9850b1b0e35323
Certificate serial: 019D992B5EF7EAC20A7D31089059C47DA4BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
Manifest number: 116F
Signing time: Fri 17 Apr 2026 02:00:49 +0000
Manifest this update: Fri 17 Apr 2026 02:00:49 +0000
Manifest next update: Sat 18 Apr 2026 02:00:49 +0000
Files and hashes: 1: BqKXTfV1zxu7JcLG72Zso4SHOOg.roa (hash: T8VlSosgzu97SNLjSfAlphc7hdN+zQvpmKY8/+PTx/s=)
2: r7ALKTlueAM-26yv75hQsbDjUyM.crl (hash: PKGorWcZNpmCqnT73VBRmGhmrW4jYuIiRp9mphphUpY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:5e:f7:ea:c2:0a:7d:31:08:90:59:c4:7d:a4:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afb00b29396e78033edbacafef9850b1b0e35323
Validity
Not Before: Apr 17 02:00:49 2026 GMT
Not After : Apr 18 02:00:49 2026 GMT
Subject: CN=4ab12311bbd8bf99d52a527edeccfb7aed771de7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6d:d8:74:86:e9:31:8a:c0:9e:36:e5:a9:34:
ff:00:83:41:94:5f:42:b8:aa:41:0e:fd:f8:3b:7f:
c1:54:19:0c:23:95:01:0b:88:8a:a4:a7:4e:2d:d4:
62:45:7b:ac:81:48:ff:65:64:6c:7f:8a:eb:cc:cf:
ce:93:44:79:98:a6:4d:b1:1e:34:a4:65:a7:ce:29:
52:f5:0a:08:28:bc:4a:e0:5b:b6:7f:08:02:e0:84:
38:32:ea:15:b6:75:f6:e2:21:21:fe:d0:3e:fa:e1:
5e:8e:d0:3d:d7:38:73:55:8d:11:c1:d3:a6:79:64:
54:77:3b:49:cc:92:b5:dd:c0:80:ff:2b:8a:38:e6:
c6:79:ba:85:d4:65:3b:7d:23:9c:a2:39:95:86:90:
de:04:d6:ba:ad:7c:e6:56:f0:ac:af:f4:95:94:3b:
1c:ef:13:e0:21:4d:2a:6a:05:e7:37:ad:c2:46:6c:
92:22:66:3a:63:0d:41:d3:42:d6:48:58:36:bc:3f:
18:10:01:0d:5d:b7:71:da:fd:66:78:cb:68:47:67:
01:c3:08:fe:9f:a1:81:01:6f:67:f6:6e:42:f7:ca:
67:f9:29:f2:fa:77:f7:88:31:1b:af:0c:50:5a:fe:
b3:e9:22:7e:cc:54:5f:f4:85:45:14:fd:6f:08:bb:
95:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B1:23:11:BB:D8:BF:99:D5:2A:52:7E:DE:CC:FB:7A:ED:77:1D:E7
X509v3 Authority Key Identifier:
keyid:AF:B0:0B:29:39:6E:78:03:3E:DB:AC:AF:EF:98:50:B1:B0:E3:53:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:60:e0:ca:ee:74:b8:ab:01:4b:f0:7a:17:74:08:aa:64:6f:
b1:97:31:47:8c:3e:e5:d3:1f:9f:5b:a5:d3:97:38:44:c1:41:
94:d9:39:6f:a3:7c:61:3f:bd:4b:ca:92:b4:ca:c9:2a:30:3e:
39:06:44:57:29:48:5c:80:31:f9:82:bb:a3:a8:87:d3:d1:3e:
2e:3e:23:69:0c:f7:97:bd:77:ad:81:2b:cb:3b:04:26:97:cc:
65:9b:22:f2:dd:22:e6:ca:e2:9b:d5:54:fc:ac:e0:e4:8c:60:
3f:0c:e8:2b:06:d5:0d:58:26:34:1b:c8:55:32:5e:3e:0f:fd:
45:d2:93:5d:ba:b8:6c:38:c4:65:7f:ea:50:45:34:47:79:8a:
3a:35:c9:1d:60:bc:7e:cd:eb:f6:e9:43:e0:ad:00:f4:84:e7:
ff:57:86:a1:f3:c5:d6:b9:fa:2d:b8:5e:9a:2d:22:84:56:17:
33:bf:cb:d3:79:cf:39:e0:28:cd:be:bf:1e:2c:10:1d:37:28:
fc:31:17:12:0b:c7:dd:de:76:d7:fc:b4:64:35:fc:2f:10:91:
b9:c6:ff:72:4f:f2:a1:e7:40:0c:b2:da:3f:a6:03:12:f6:71:
04:26:60:14:56:ba:78:82:22:65:1f:21:ac:e9:1d:3f:cc:60:
83:7e:13:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZK1736sIKfTEIkFnEfaS+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmYjAwYjI5Mzk2ZTc4MDMzZWRiYWNhZmVmOTg1MGIxYjBl
MzUzMjMwHhcNMjYwNDE3MDIwMDQ5WhcNMjYwNDE4MDIwMDQ5WjAzMTEwLwYDVQQD
Eyg0YWIxMjMxMWJiZDhiZjk5ZDUyYTUyN2VkZWNjZmI3YWVkNzcxZGU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt23YdIbpMYrAnjblqTT/AINBlF9C
uKpBDv34O3/BVBkMI5UBC4iKpKdOLdRiRXusgUj/ZWRsf4rrzM/Ok0R5mKZNsR40
pGWnzilS9QoIKLxK4Fu2fwgC4IQ4MuoVtnX24iEh/tA++uFejtA91zhzVY0RwdOm
eWRUdztJzJK13cCA/yuKOObGebqF1GU7fSOcojmVhpDeBNa6rXzmVvCsr/SVlDsc
7xPgIU0qagXnN63CRmySImY6Yw1B00LWSFg2vD8YEAENXbdx2v1meMtoR2cBwwj+
n6GBAW9n9m5C98pn+Sny+nf3iDEbrwxQWv6z6SJ+zFRf9IVFFP1vCLuVowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEqxIxG72L+Z1SpSft7M+3rtdx3nMB8GA1UdIwQY
MBaAFK+wCyk5bngDPtusr++YULGw41MjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjdBTEtUbHVlQU0tMjZ5djc1aFFzYkRqVXlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9lNGNhNTYtMTM4Ni00MzJjLTk2Y2It
NjVhOWE0ZGZhZDllLzEvcjdBTEtUbHVlQU0tMjZ5djc1aFFzYkRqVXlNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9lNGNhNTYtMTM4Ni00MzJjLTk2Y2ItNjVhOWE0ZGZhZDll
LzEvcjdBTEtUbHVlQU0tMjZ5djc1aFFzYkRqVXlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeWDgyu50
uKsBS/B6F3QIqmRvsZcxR4w+5dMfn1ul05c4RMFBlNk5b6N8YT+9S8qStMrJKjA+
OQZEVylIXIAx+YK7o6iH09E+Lj4jaQz3l713rYEryzsEJpfMZZsi8t0i5srim9VU
/Kzg5IxgPwzoKwbVDVgmNBvIVTJePg/9RdKTXbq4bDjEZX/qUEU0R3mKOjXJHWC8
fs3r9ulD4K0A9ITn/1eGofPF1rn6Lbhemi0ihFYXM7/L03nPOeAozb6/HiwQHTco
/DEXEgvH3d521/y0ZDX8LxCRucb/ck/yoedADLLaP6YDEvZxBCZgFFa6eIIiZR8h
rOkdP8xgg34TTw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:08:43 2026 by rpki-client