Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
File: sUgIa40dx_EOND_RZXGSOadVvTQ.mft (raw, json)
Hash identifier: niEnUHSw+AmazcbD3qxxkhxU88SeI+99DJqGqVNoLos=
Subject key identifier: DA:C6:DB:45:6E:18:60:E3:A8:E3:89:1D:23:DB:FB:9A:A9:38:B3:CA
Authority key identifier: B1:48:08:6B:8D:1D:C7:F1:0E:34:3F:D1:65:71:92:39:A7:55:BD:34
Certificate issuer: /CN=b148086b8d1dc7f10e343fd165719239a755bd34
Certificate serial: 019D9961E223DD6813895AF33845B1EA9317
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUgIa40dx_EOND_RZXGSOadVvTQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
Manifest number: 123D
Signing time: Fri 17 Apr 2026 03:00:21 +0000
Manifest this update: Fri 17 Apr 2026 03:00:21 +0000
Manifest next update: Sat 18 Apr 2026 03:00:21 +0000
Files and hashes: 1: sUgIa40dx_EOND_RZXGSOadVvTQ.crl (hash: SZpZzujQY1tbSerY99Fn1KrzFIl7USgLt2c5+PAdxEc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sUgIa40dx_EOND_RZXGSOadVvTQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:61:e2:23:dd:68:13:89:5a:f3:38:45:b1:ea:93:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b148086b8d1dc7f10e343fd165719239a755bd34
Validity
Not Before: Apr 17 03:00:21 2026 GMT
Not After : Apr 18 03:00:21 2026 GMT
Subject: CN=dac6db456e1860e3a8e3891d23dbfb9aa938b3ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:95:30:bc:07:3c:ea:ed:b9:f1:79:1d:06:f3:
b7:9c:ea:9e:fd:f9:be:bc:cc:35:6e:88:22:26:35:
18:ef:c8:2f:26:a0:f6:7f:dd:1e:c4:26:b3:9c:3f:
39:63:1b:ff:b7:ab:9b:f9:77:9d:89:eb:00:2c:85:
c4:ed:1d:1f:2b:33:07:54:7b:5b:e7:65:5f:fe:9b:
d1:70:52:e2:96:22:d7:db:43:2b:00:c5:41:40:46:
60:8c:eb:b7:15:c2:59:3a:bc:97:52:e8:48:f9:72:
78:2b:50:60:2f:79:7d:b7:2d:cf:e9:d8:5b:2f:2f:
cd:90:a5:9e:a1:6e:4e:4f:c6:e6:1f:5b:b2:67:7e:
3e:67:6b:df:db:55:44:69:dd:43:6a:71:af:a6:9f:
85:db:3e:0b:27:39:75:a0:f0:af:05:8a:e2:85:5f:
90:df:2d:c1:ed:78:af:0e:1c:63:24:88:54:8c:d7:
b9:dc:38:35:50:8e:15:fd:04:b4:0c:62:9b:3d:39:
42:20:c8:a0:11:93:5a:28:b9:ef:32:01:dd:b6:62:
09:8b:ac:d2:b8:9c:23:57:cc:b9:d4:e6:d9:a6:ce:
8f:32:11:0a:ec:15:ae:84:a6:b4:d1:00:5b:35:a1:
b8:4b:16:52:15:1f:4f:3d:ea:ef:a9:ab:19:ba:1b:
1b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C6:DB:45:6E:18:60:E3:A8:E3:89:1D:23:DB:FB:9A:A9:38:B3:CA
X509v3 Authority Key Identifier:
keyid:B1:48:08:6B:8D:1D:C7:F1:0E:34:3F:D1:65:71:92:39:A7:55:BD:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUgIa40dx_EOND_RZXGSOadVvTQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:d5:86:8e:c1:b9:22:b8:7b:dc:af:d6:f4:d4:9c:3d:8d:56:
c1:db:fe:05:f8:90:f5:4c:99:af:a4:6d:ca:5b:65:6e:bb:9c:
d1:dc:eb:34:8e:54:5c:a6:78:60:47:4e:ac:0a:90:d5:2a:03:
a5:d7:85:c4:cb:15:11:28:ac:e5:25:4d:c2:e6:06:85:d4:8e:
10:bc:c5:67:01:4d:00:f3:6b:81:b4:9c:f1:20:a8:ae:b0:15:
c4:68:56:9f:23:56:19:87:ec:1f:be:d8:ed:ff:0a:3f:8b:e7:
08:b0:32:d8:9a:89:58:e2:70:24:d3:0c:56:01:1b:db:b0:18:
2e:ed:75:ca:60:53:52:dc:e2:53:71:61:13:e5:99:1d:38:0f:
4b:f4:f3:c9:6f:63:f9:02:78:ee:8f:37:73:ec:b2:d7:57:cf:
4b:d0:54:33:0c:5f:40:64:09:19:b5:04:1f:14:35:bf:f4:e1:
26:03:6e:a9:2c:59:c1:27:47:b9:85:ac:16:31:f4:2d:b8:91:
87:1e:b3:02:a9:9e:6c:d8:c6:40:eb:60:13:7d:e7:03:35:8a:
d1:ca:4a:c9:cf:2a:56:78:c9:be:bb:d6:bb:19:91:85:14:fa:
13:67:05:38:8e:0f:bb:12:27:5e:3b:50:94:8e:45:8e:89:b9:
23:e1:87:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZYeIj3WgTiVrzOEWx6pMXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNDgwODZiOGQxZGM3ZjEwZTM0M2ZkMTY1NzE5MjM5YTc1
NWJkMzQwHhcNMjYwNDE3MDMwMDIxWhcNMjYwNDE4MDMwMDIxWjAzMTEwLwYDVQQD
EyhkYWM2ZGI0NTZlMTg2MGUzYThlMzg5MWQyM2RiZmI5YWE5MzhiM2NhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5UwvAc86u258XkdBvO3nOqe/fm+
vMw1bogiJjUY78gvJqD2f90exCaznD85Yxv/t6ub+XediesALIXE7R0fKzMHVHtb
52Vf/pvRcFLiliLX20MrAMVBQEZgjOu3FcJZOryXUuhI+XJ4K1BgL3l9ty3P6dhb
Ly/NkKWeoW5OT8bmH1uyZ34+Z2vf21VEad1DanGvpp+F2z4LJzl1oPCvBYrihV+Q
3y3B7XivDhxjJIhUjNe53Dg1UI4V/QS0DGKbPTlCIMigEZNaKLnvMgHdtmIJi6zS
uJwjV8y51ObZps6PMhEK7BWuhKa00QBbNaG4SxZSFR9PPervqasZuhsbYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNrG20VuGGDjqOOJHSPb+5qpOLPKMB8GA1UdIwQY
MBaAFLFICGuNHcfxDjQ/0WVxkjmnVb00MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1VnSWE0MGR4X0VPTkRfUlpYR1NPYWRWdlRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9kYWRmMzQtMWYzZi00Y2VhLTgwMDEt
ZTNkNWQ3ZWY0MjMyLzEvc1VnSWE0MGR4X0VPTkRfUlpYR1NPYWRWdlRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9kYWRmMzQtMWYzZi00Y2VhLTgwMDEtZTNkNWQ3ZWY0MjMy
LzEvc1VnSWE0MGR4X0VPTkRfUlpYR1NPYWRWdlRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAldWGjsG5
Irh73K/W9NScPY1Wwdv+BfiQ9UyZr6Rtyltlbruc0dzrNI5UXKZ4YEdOrAqQ1SoD
pdeFxMsVESis5SVNwuYGhdSOELzFZwFNAPNrgbSc8SCorrAVxGhWnyNWGYfsH77Y
7f8KP4vnCLAy2JqJWOJwJNMMVgEb27AYLu11ymBTUtziU3FhE+WZHTgPS/TzyW9j
+QJ47o83c+yy11fPS9BUMwxfQGQJGbUEHxQ1v/ThJgNuqSxZwSdHuYWsFjH0LbiR
hx6zAqmebNjGQOtgE33nAzWK0cpKyc8qVnjJvrvWuxmRhRT6E2cFOI4PuxInXjtQ
lI5Fjom5I+GHjA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 09:33:21 2026 by rpki-client