Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
File: rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft (raw, json)
Hash identifier: AbjG7GhIF9u2aPZFVw31jpCHGw2vEJFGQ1qbVWMNcHc=
Subject key identifier: 71:AB:89:49:AC:F2:C5:95:A7:E5:CF:A5:0E:3A:22:32:A1:35:3E:D4
Authority key identifier: AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
Certificate issuer: /CN=acebf396c9adf94f84dc901656e255ce6d50660c
Certificate serial: 019D9BBE542D537A38DA5AB44493DE581EC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
Manifest number: 0539
Signing time: Fri 17 Apr 2026 14:00:35 +0000
Manifest this update: Fri 17 Apr 2026 14:00:35 +0000
Manifest next update: Sat 18 Apr 2026 14:00:35 +0000
Files and hashes: 1: Rr66ufKb1MLh9Wv3Z89vKrKFJI0.roa (hash: Yiy6bWp1Un5UwdmVbAZxKqnd38OQfcX3Y4LJySknw8Y=)
2: rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl (hash: 3ppRNScsgE1KzXcKaWSo3LbRRoRvPs5qt5WUo/hHF6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:54:2d:53:7a:38:da:5a:b4:44:93:de:58:1e:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acebf396c9adf94f84dc901656e255ce6d50660c
Validity
Not Before: Apr 17 14:00:35 2026 GMT
Not After : Apr 18 14:00:35 2026 GMT
Subject: CN=71ab8949acf2c595a7e5cfa50e3a2232a1353ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4e:ee:78:f5:2d:92:28:cd:ba:9d:c9:33:bc:
7c:45:a8:c5:bd:e2:e8:46:21:94:98:04:ef:80:44:
d7:fd:ff:e3:8d:fb:b9:8b:ac:fc:b7:70:9a:64:30:
7e:59:2a:7f:80:ed:e5:a6:47:7a:91:5c:9c:9c:ea:
a8:8b:9f:bb:e6:a2:7f:5b:e9:c3:28:06:49:a9:ab:
d1:95:aa:db:30:b1:94:0c:60:21:6a:87:4d:b4:57:
f5:eb:90:71:1b:00:9c:29:9a:8a:7e:10:a8:13:2e:
2f:a5:57:90:3b:dd:64:c2:92:ab:d4:16:cc:75:a5:
82:9c:ad:20:15:c6:fc:0f:5e:89:df:ae:13:45:dc:
a4:5e:7a:4b:bf:5a:3b:0d:3e:3f:16:cc:bb:1c:02:
5d:d5:a1:3f:5a:d6:1c:e1:82:f2:d3:b0:eb:7f:7e:
17:b9:89:3c:00:2e:f3:89:f0:37:26:bd:56:8a:2b:
ee:da:ad:c5:d2:9e:4f:e0:cb:bb:11:70:b6:c3:19:
97:0f:56:86:3d:47:10:49:20:ee:11:64:38:a9:39:
19:d5:a4:fb:ba:d1:76:40:6a:f8:1e:92:56:c8:56:
45:75:f4:31:a5:9f:58:34:fb:bc:72:42:5b:30:17:
6f:67:60:db:67:7e:20:c5:f3:98:7e:4b:bd:d6:fb:
45:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:AB:89:49:AC:F2:C5:95:A7:E5:CF:A5:0E:3A:22:32:A1:35:3E:D4
X509v3 Authority Key Identifier:
keyid:AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:b3:db:42:7e:dd:05:26:8a:af:d2:98:60:19:3f:c4:7f:6e:
58:a0:f6:f5:83:4d:a7:01:a7:be:5d:ef:f0:c9:c1:1f:66:fe:
c7:08:07:bf:01:f9:dc:af:65:c7:c8:f0:63:8e:f9:99:d1:71:
8e:da:19:8a:11:bd:8f:a8:7f:67:ea:b0:6c:9a:50:e7:e8:fe:
f7:08:43:90:19:af:d9:80:d0:21:1a:01:b8:79:47:25:04:2a:
25:87:d4:ac:bb:86:08:cb:d2:50:28:b7:33:7b:3b:0a:22:70:
47:17:e9:33:a9:43:dd:0a:83:e7:65:a1:28:b3:55:d1:5a:70:
15:6c:dc:84:4c:3f:1e:f7:98:e7:31:6a:1f:7c:a4:3a:af:cf:
bd:f6:94:d3:0b:ca:b0:13:8a:aa:09:05:ec:91:c6:9f:c2:6c:
7b:b4:70:e3:7f:52:12:bd:55:d3:39:8a:4a:ac:6a:c1:31:f6:
10:56:5a:7e:c6:89:43:9a:5b:3e:de:3a:7e:21:8c:bd:6a:7d:
fc:91:44:51:7c:48:60:26:40:d0:4c:32:bf:83:d0:f3:a8:3b:
67:8e:9d:d5:2e:85:63:47:b2:be:ff:2a:fb:e7:41:91:10:fa:
99:12:60:1b:bd:13:12:45:54:33:bd:b1:75:09:8a:59:d5:b9:
e5:09:ed:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bvlQtU3o42lq0RJPeWB7JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjZWJmMzk2YzlhZGY5NGY4NGRjOTAxNjU2ZTI1NWNlNmQ1
MDY2MGMwHhcNMjYwNDE3MTQwMDM1WhcNMjYwNDE4MTQwMDM1WjAzMTEwLwYDVQQD
Eyg3MWFiODk0OWFjZjJjNTk1YTdlNWNmYTUwZTNhMjIzMmExMzUzZWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj07uePUtkijNup3JM7x8RajFveLo
RiGUmATvgETX/f/jjfu5i6z8t3CaZDB+WSp/gO3lpkd6kVycnOqoi5+75qJ/W+nD
KAZJqavRlarbMLGUDGAhaodNtFf165BxGwCcKZqKfhCoEy4vpVeQO91kwpKr1BbM
daWCnK0gFcb8D16J364TRdykXnpLv1o7DT4/Fsy7HAJd1aE/WtYc4YLy07Drf34X
uYk8AC7zifA3Jr1Wiivu2q3F0p5P4Mu7EXC2wxmXD1aGPUcQSSDuEWQ4qTkZ1aT7
utF2QGr4HpJWyFZFdfQxpZ9YNPu8ckJbMBdvZ2DbZ34gxfOYfku91vtFXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHGriUms8sWVp+XPpQ46IjKhNT7UMB8GA1UdIwQY
MBaAFKzr85bJrflPhNyQFlbiVc5tUGYMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvck92emxzbXQtVS1FM0pBV1Z1SlZ6bTFRWmd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS85NzFkYzUtMTRmMy00ZDk1LWIwYmQt
NDg0N2QzOTNhYjU1LzEvck92emxzbXQtVS1FM0pBV1Z1SlZ6bTFRWmd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS85NzFkYzUtMTRmMy00ZDk1LWIwYmQtNDg0N2QzOTNhYjU1
LzEvck92emxzbXQtVS1FM0pBV1Z1SlZ6bTFRWmd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgLPbQn7d
BSaKr9KYYBk/xH9uWKD29YNNpwGnvl3v8MnBH2b+xwgHvwH53K9lx8jwY475mdFx
jtoZihG9j6h/Z+qwbJpQ5+j+9whDkBmv2YDQIRoBuHlHJQQqJYfUrLuGCMvSUCi3
M3s7CiJwRxfpM6lD3QqD52WhKLNV0VpwFWzchEw/HveY5zFqH3ykOq/PvfaU0wvK
sBOKqgkF7JHGn8Jse7Rw439SEr1V0zmKSqxqwTH2EFZafsaJQ5pbPt46fiGMvWp9
/JFEUXxIYCZA0Ewyv4PQ86g7Z46d1S6FY0eyvv8q++dBkRD6mRJgG70TEkVUM72x
dQmKWdW55Qntsg==
-----END CERTIFICATE-----
Generated at Sat Apr 18 00:06:57 2026 by rpki-client