Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
File: eknuryQ0LDssYyyeSEYxON4twAs.mft (raw, json)
Hash identifier: +ljK+x5PfnKsrDbFzdBvrernqoZSU9SSW9a9TuFZ7+M=
Subject key identifier: BC:18:73:8C:31:B4:0B:17:30:65:F4:24:DA:9D:68:58:C1:45:A9:C5
Authority key identifier: 7A:49:EE:AF:24:34:2C:3B:2C:63:2C:9E:48:46:31:38:DE:2D:C0:0B
Certificate issuer: /CN=7a49eeaf24342c3b2c632c9e48463138de2dc00b
Certificate serial: 019D9BF5BEFC6B9A03A0F498BF4403DE036D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
Manifest number: 18C5
Signing time: Fri 17 Apr 2026 15:01:06 +0000
Manifest this update: Fri 17 Apr 2026 15:01:06 +0000
Manifest next update: Sat 18 Apr 2026 15:01:06 +0000
Files and hashes: 1: Zi7Fm7xGDMI0wzFEfSwodKSqV1A.roa (hash: xTOm/EemcqAocmaFWYcszLLVt5VioXRzSyJ/5c30dUE=)
2: eknuryQ0LDssYyyeSEYxON4twAs.crl (hash: iCsn6G9HgAcchvKxdWOUHrRNh5/WeG/ahgW1bYfEuM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:be:fc:6b:9a:03:a0:f4:98:bf:44:03:de:03:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a49eeaf24342c3b2c632c9e48463138de2dc00b
Validity
Not Before: Apr 17 15:01:06 2026 GMT
Not After : Apr 18 15:01:06 2026 GMT
Subject: CN=bc18738c31b40b173065f424da9d6858c145a9c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:83:5f:a2:3d:5f:74:42:2d:e2:f7:ec:a2:54:
55:21:fe:5e:3e:b0:f1:0f:22:ed:f3:df:21:ab:a9:
fb:2c:d3:1f:ea:6a:91:91:3a:19:3b:35:4e:1f:6f:
41:87:42:5d:2d:53:86:89:94:c4:b0:c6:f9:7a:c7:
f2:d7:e9:e6:cf:1e:4d:30:64:17:0c:87:82:05:c5:
73:26:a3:40:51:fd:22:44:aa:f6:8e:cf:66:81:62:
01:6b:83:30:12:49:2c:4d:7d:a9:18:30:cc:3b:7d:
6c:df:9d:0f:ef:b8:48:cf:2c:27:66:7e:af:3e:b4:
6d:af:2b:d4:2a:19:bf:0a:0c:2a:35:95:b7:dd:54:
d4:2d:a6:a4:91:05:68:82:56:b1:81:91:ad:44:d3:
df:98:4a:29:d6:0d:39:f4:f1:bc:b3:7a:18:57:c9:
64:ad:ae:64:86:59:c9:9a:99:89:bb:e6:e0:b6:12:
51:d1:31:5a:1b:92:6a:a9:3f:80:44:35:f8:6d:9f:
5d:8f:26:43:f4:8f:b5:35:c5:88:5b:31:20:c2:57:
d0:ac:ad:16:fe:50:8b:f3:56:2c:e2:12:46:fc:4f:
ca:6b:08:64:ad:a2:85:9d:fc:e1:18:50:56:ab:f6:
bd:e1:fd:10:1f:9b:18:ac:c8:26:a8:23:a6:6e:6f:
b5:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:18:73:8C:31:B4:0B:17:30:65:F4:24:DA:9D:68:58:C1:45:A9:C5
X509v3 Authority Key Identifier:
keyid:7A:49:EE:AF:24:34:2C:3B:2C:63:2C:9E:48:46:31:38:DE:2D:C0:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eknuryQ0LDssYyyeSEYxON4twAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/63b8aa-722f-4009-ada7-f9b60711453c/1/eknuryQ0LDssYyyeSEYxON4twAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:c9:00:3f:80:7b:93:3b:27:dd:82:56:e0:da:b9:39:8f:d5:
a2:0d:42:d7:79:b3:73:5f:46:8e:fa:6e:12:9a:50:38:9b:5b:
ff:e3:50:2a:50:ef:af:05:f7:27:0a:ba:ca:62:a4:b3:81:e6:
d9:a2:f3:e9:d6:e8:0f:76:7a:e7:14:b9:9a:a4:1e:38:f4:81:
a7:c2:a5:17:37:66:34:1c:cd:4d:e0:8d:0c:5e:82:bb:20:77:
25:02:8e:c9:e1:6b:51:31:3a:65:81:80:5e:e0:e3:6d:25:94:
06:c0:2d:ee:81:87:19:d0:ad:64:95:01:dc:88:b4:9c:89:ac:
5d:1a:44:b1:53:f9:e0:30:77:1c:56:bf:53:1e:de:ed:ae:e6:
13:22:ec:04:c4:c6:d3:8b:de:a4:57:0c:aa:9d:1d:e3:81:fd:
f2:01:e0:02:3c:b1:c6:9a:b2:0d:18:c9:08:6e:cd:57:39:22:
ef:e6:d8:a1:d6:82:63:d5:55:cc:ac:47:fd:ef:70:a2:ef:5a:
47:86:4a:02:c5:f9:58:9d:5b:9c:03:91:fd:42:ed:29:9e:29:
a9:a6:7f:73:62:f7:00:f5:6f:1b:49:af:1c:df:71:e0:a1:9f:
59:b4:97:ea:ff:77:06:c7:7d:6a:03:d4:09:50:ac:dc:a0:36:
36:4c:ee:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2b9b78a5oDoPSYv0QD3gNtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhNDllZWFmMjQzNDJjM2IyYzYzMmM5ZTQ4NDYzMTM4ZGUy
ZGMwMGIwHhcNMjYwNDE3MTUwMTA2WhcNMjYwNDE4MTUwMTA2WjAzMTEwLwYDVQQD
EyhiYzE4NzM4YzMxYjQwYjE3MzA2NWY0MjRkYTlkNjg1OGMxNDVhOWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsINfoj1fdEIt4vfsolRVIf5ePrDx
DyLt898hq6n7LNMf6mqRkToZOzVOH29Bh0JdLVOGiZTEsMb5esfy1+nmzx5NMGQX
DIeCBcVzJqNAUf0iRKr2js9mgWIBa4MwEkksTX2pGDDMO31s350P77hIzywnZn6v
PrRtryvUKhm/CgwqNZW33VTULaakkQVoglaxgZGtRNPfmEop1g059PG8s3oYV8lk
ra5khlnJmpmJu+bgthJR0TFaG5JqqT+ARDX4bZ9djyZD9I+1NcWIWzEgwlfQrK0W
/lCL81Ys4hJG/E/KawhkraKFnfzhGFBWq/a94f0QH5sYrMgmqCOmbm+1IwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLwYc4wxtAsXMGX0JNqdaFjBRanFMB8GA1UdIwQY
MBaAFHpJ7q8kNCw7LGMsnkhGMTjeLcALMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWtudXJ5UTBMRHNzWXl5ZVNFWXhPTjR0d0FzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy82M2I4YWEtNzIyZi00MDA5LWFkYTct
ZjliNjA3MTE0NTNjLzEvZWtudXJ5UTBMRHNzWXl5ZVNFWXhPTjR0d0FzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy82M2I4YWEtNzIyZi00MDA5LWFkYTctZjliNjA3MTE0NTNj
LzEvZWtudXJ5UTBMRHNzWXl5ZVNFWXhPTjR0d0FzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC8kAP4B7
kzsn3YJW4Nq5OY/Vog1C13mzc19GjvpuEppQOJtb/+NQKlDvrwX3Jwq6ymKks4Hm
2aLz6dboD3Z65xS5mqQeOPSBp8KlFzdmNBzNTeCNDF6CuyB3JQKOyeFrUTE6ZYGA
XuDjbSWUBsAt7oGHGdCtZJUB3Ii0nImsXRpEsVP54DB3HFa/Ux7e7a7mEyLsBMTG
04vepFcMqp0d44H98gHgAjyxxpqyDRjJCG7NVzki7+bYodaCY9VVzKxH/e9wou9a
R4ZKAsX5WJ1bnAOR/ULtKZ4pqaZ/c2L3APVvG0mvHN9x4KGfWbSX6v93Bsd9agPU
CVCs3KA2Nkzu3A==
-----END CERTIFICATE-----
Generated at Fri Apr 17 20:38:18 2026 by rpki-client