Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
File: U8kSoEEbsBdFBwktDKNaka15kFw.mft (raw, json)
Hash identifier: /vro9+aDz0iSCIredsSmQMEZIBtZn/eS0Vw/h6ccWyU=
Subject key identifier: 32:CD:8A:A5:DF:00:1D:D1:2B:6C:FB:A1:6C:3E:2E:96:68:0D:27:31
Authority key identifier: 53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
Certificate issuer: /CN=53c912a0411bb0174507092d0ca35a91ad79905c
Certificate serial: 019DD0F6556D6FF2A1401420E30E5EF2B540
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
Manifest number: 18E5
Signing time: Mon 27 Apr 2026 22:01:37 +0000
Manifest this update: Mon 27 Apr 2026 22:01:37 +0000
Manifest next update: Tue 28 Apr 2026 22:01:37 +0000
Files and hashes: 1: 92JgNy2UniVvWNA6kvsz4sovFIA.roa (hash: lAqICp0tk9GujbZHx2/6RHqqJpx7oSWIDsAW5NqmUFs=)
2: Jgm412TDqz8eqc-jU7VKAy0ZDsw.roa (hash: z/uYXvq2xIRczyrsXkqCGG5d8yfec3+FGNIntpcNWWU=)
3: U8kSoEEbsBdFBwktDKNaka15kFw.crl (hash: VsSYAYgdvtI3Quxhc+DEBfmbV0L6z09itmgkD6FW0eE=)
4: ot9zGZ8lqbZQsxEaVPvTfXs9gBQ.roa (hash: Kks4PvcwFRu/9gLcNOW/VSN4jNFuv/TAckUM8Z6fniM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d0:f6:55:6d:6f:f2:a1:40:14:20:e3:0e:5e:f2:b5:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c912a0411bb0174507092d0ca35a91ad79905c
Validity
Not Before: Apr 27 22:01:37 2026 GMT
Not After : Apr 28 22:01:37 2026 GMT
Subject: CN=32cd8aa5df001dd12b6cfba16c3e2e96680d2731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f5:71:06:1d:72:90:4a:fa:6b:51:06:8e:6a:
b2:46:37:03:d8:4b:ca:58:e9:9a:7f:9b:3d:9e:5e:
74:1e:25:71:9c:66:40:0d:97:04:9b:48:f1:6e:27:
07:52:53:d6:9e:dc:93:0c:75:bb:51:bf:2a:ce:8d:
0a:76:c9:f1:a5:d3:1f:00:86:8d:90:87:ee:8e:f2:
ad:f4:ac:ce:b1:e6:96:06:af:3a:eb:fc:4a:c9:e5:
e0:2d:5c:01:e4:28:2e:15:0b:a0:94:50:47:44:35:
01:dc:4c:34:15:f7:d0:00:59:25:3b:af:e7:4a:c6:
c3:f0:9b:f6:3f:7d:97:3f:aa:f4:fb:43:26:cd:16:
72:46:96:51:6e:92:53:1d:72:bf:af:c8:6a:69:fe:
89:82:a0:ea:0e:0a:63:72:15:b3:81:89:a1:bc:ea:
f8:31:2c:08:28:dd:11:51:7d:00:01:e9:90:19:13:
64:05:1f:a3:3d:a4:be:b6:9f:76:03:43:df:fe:3d:
1a:cb:a3:10:c8:f2:df:0e:2a:b3:b1:52:12:bb:7a:
71:15:71:21:4d:1b:05:99:01:7d:88:73:00:14:c8:
f3:43:d2:8a:7f:6f:61:ab:ba:c2:3c:34:01:a0:84:
95:04:1b:3a:8a:5f:d5:84:b4:35:5a:2f:3a:98:34:
4d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:CD:8A:A5:DF:00:1D:D1:2B:6C:FB:A1:6C:3E:2E:96:68:0D:27:31
X509v3 Authority Key Identifier:
keyid:53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:2e:1c:af:95:c1:bf:dd:ed:8e:d5:4c:6c:20:19:a0:4b:45:
ec:ab:e5:7a:e9:29:50:cb:ee:3d:5c:89:22:fb:81:72:67:29:
71:5e:55:e1:a8:56:a5:83:83:ca:ba:63:95:15:03:75:e8:58:
fd:27:c2:00:c9:36:72:1b:e7:3d:76:eb:79:3a:de:13:2f:33:
8c:1b:1a:ba:01:55:ca:ec:ff:c1:97:13:8d:9b:0f:63:a6:0a:
55:93:31:df:5d:e9:d7:79:55:48:0f:a8:f9:ec:7e:cd:ee:ae:
36:8c:82:28:34:d4:de:95:a0:46:56:e0:82:de:95:f1:e6:1c:
05:58:79:3a:9a:f5:2e:2c:77:df:3d:56:19:bb:42:ee:80:44:
d2:82:81:52:a8:5a:26:a6:73:75:79:6e:95:92:cb:3e:d2:ce:
57:b9:e7:fd:c3:68:43:a6:4e:8c:fb:67:44:43:e0:a0:7c:75:
3a:25:9a:49:dd:64:fd:0c:23:aa:e2:72:e3:c4:80:f0:84:27:
a4:3a:2a:b8:54:97:3e:58:cc:0a:db:e9:d6:26:76:58:a8:b3:
56:c6:c2:cb:bf:71:cd:e6:13:8d:65:54:b6:17:83:14:5a:30:
8e:64:ed:ed:ec:0f:33:df:6f:c9:43:76:69:d2:7e:00:24:af:
53:2c:2e:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3Q9lVtb/KhQBQg4w5e8rVAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYzkxMmEwNDExYmIwMTc0NTA3MDkyZDBjYTM1YTkxYWQ3
OTkwNWMwHhcNMjYwNDI3MjIwMTM3WhcNMjYwNDI4MjIwMTM3WjAzMTEwLwYDVQQD
EygzMmNkOGFhNWRmMDAxZGQxMmI2Y2ZiYTE2YzNlMmU5NjY4MGQyNzMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7PVxBh1ykEr6a1EGjmqyRjcD2EvK
WOmaf5s9nl50HiVxnGZADZcEm0jxbicHUlPWntyTDHW7Ub8qzo0KdsnxpdMfAIaN
kIfujvKt9KzOseaWBq866/xKyeXgLVwB5CguFQuglFBHRDUB3Ew0FffQAFklO6/n
SsbD8Jv2P32XP6r0+0MmzRZyRpZRbpJTHXK/r8hqaf6JgqDqDgpjchWzgYmhvOr4
MSwIKN0RUX0AAemQGRNkBR+jPaS+tp92A0Pf/j0ay6MQyPLfDiqzsVISu3pxFXEh
TRsFmQF9iHMAFMjzQ9KKf29hq7rCPDQBoISVBBs6il/VhLQ1Wi86mDRNJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDLNiqXfAB3RK2z7oWw+LpZoDScxMB8GA1UdIwQY
MBaAFFPJEqBBG7AXRQcJLQyjWpGteZBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9kNzdlNjAtODkxNi00Zjk2LThlZDAt
ZTIxYzQzNmI2MmVmLzEvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi9kNzdlNjAtODkxNi00Zjk2LThlZDAtZTIxYzQzNmI2MmVm
LzEvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARS4cr5XB
v93tjtVMbCAZoEtF7KvleukpUMvuPVyJIvuBcmcpcV5V4ahWpYODyrpjlRUDdehY
/SfCAMk2chvnPXbreTreEy8zjBsaugFVyuz/wZcTjZsPY6YKVZMx313p13lVSA+o
+ex+ze6uNoyCKDTU3pWgRlbggt6V8eYcBVh5Opr1Lix33z1WGbtC7oBE0oKBUqha
JqZzdXlulZLLPtLOV7nn/cNoQ6ZOjPtnREPgoHx1OiWaSd1k/QwjquJy48SA8IQn
pDoquFSXPljMCtvp1iZ2WKizVsbCy79xzeYTjWVUtheDFFowjmTt7ewPM99vyUN2
adJ+ACSvUywuig==
-----END CERTIFICATE-----
Generated at Mon Apr 27 23:44:24 2026 by rpki-client