Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft
File: MNWOQMbZHzcp5X4zRNMItZkv5G4.mft (raw, json)
Hash identifier: wXAgLZ0RqxugCOm1DCk1WgqCAiCPDsk1rp0hAsGXMHE=
Subject key identifier: F9:C1:0A:11:94:C6:ED:86:6C:9C:8C:C6:05:40:7F:6F:70:0F:85:45
Authority key identifier: 30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
Certificate issuer: /CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Certificate serial: 019D86B7B5A159CFA4D92A0BCAF180708068
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft
Manifest number: 0DB1
Signing time: Mon 13 Apr 2026 12:01:19 +0000
Manifest this update: Mon 13 Apr 2026 12:01:19 +0000
Manifest next update: Tue 14 Apr 2026 12:01:19 +0000
Files and hashes: 1: 3aS_biMuk3t6OSrvJyokC_jXDfU.roa (hash: uIA1uRbc2hX8KsAKbb90U8OFKc7TaqfJ9JatfJ5wndY=)
2: 4K-iSTTQ62k9u_ts6FEnNZujPB8.roa (hash: JFw4hB1oA1nXw9shAVgFEoq8dXT9KA58CiXxsf23Cvk=)
3: MNWOQMbZHzcp5X4zRNMItZkv5G4.crl (hash: bUAOE525/y+1iZi62+vLSka0I4EKe+10iw1zssadFN0=)
4: hLLZvlA7_aLzHqMN-k0zYYWqdoI.roa (hash: 11v4o65bjg9Zi3P8TmWqgVpKzKXaXy9HU3XbxQsjkfA=)
5: whsxlRD8ACtbwVUDR7WD9M1I_Zo.roa (hash: WyhnHPwfaB8TlTtQhX3k0EqL0gIjvm9v03iJPq6dfuQ=)
6: xuAdygYVpRiV81z46OX-kd86p2I.roa (hash: w1oNZfbPGzW3kF1Su2UyFw287xX5XbrHkRu08WfqL70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 14 Apr 2026 12:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:86:b7:b5:a1:59:cf:a4:d9:2a:0b:ca:f1:80:70:80:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Validity
Not Before: Apr 13 12:01:19 2026 GMT
Not After : Apr 14 12:01:19 2026 GMT
Subject: CN=f9c10a1194c6ed866c9c8cc605407f6f700f8545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:31:94:8f:a7:2c:21:5a:bd:be:88:59:e4:a4:
29:ba:45:38:1f:84:d1:a3:fe:d2:3a:79:ec:9e:94:
92:f8:6b:db:7c:c3:b2:fc:1b:5a:47:5b:97:3f:b1:
0b:4e:40:93:6a:04:26:77:43:64:f6:2d:59:37:a5:
b8:83:49:37:cf:79:60:80:7d:87:52:18:d3:f7:e7:
3f:3d:1c:ff:d2:c3:6f:62:18:fc:89:0c:90:08:ea:
15:4e:a2:a9:75:25:e6:7b:32:e7:8b:ae:6e:e4:62:
d5:4e:de:0a:74:14:4d:9d:bb:27:4a:42:c5:3b:3a:
5b:bd:68:c6:51:e5:ff:13:9d:e6:01:b8:fa:94:2d:
0d:b1:86:cc:b6:52:1a:d9:32:0c:65:f7:74:46:1f:
0e:48:b0:07:7c:0f:62:17:63:73:53:ba:eb:05:43:
c0:06:d9:41:83:78:bb:01:9a:5c:7f:77:88:f7:7c:
d6:85:63:43:74:c2:0d:63:fe:9e:e8:87:2c:ac:b8:
72:ff:41:da:89:0d:d7:cf:ba:e6:d3:91:7e:7c:9c:
48:57:d8:bf:d9:67:e1:7a:bf:02:b8:76:ca:b8:39:
20:19:fb:fb:c4:4c:6d:aa:85:bb:3d:79:14:b0:f0:
2a:44:af:06:2d:03:62:85:11:62:89:76:1f:41:1a:
34:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:C1:0A:11:94:C6:ED:86:6C:9C:8C:C6:05:40:7F:6F:70:0F:85:45
X509v3 Authority Key Identifier:
keyid:30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:22:9a:ad:e7:fe:42:38:98:d9:af:82:54:25:d1:9a:2b:db:
8c:6a:cc:1f:c0:3a:a2:64:c7:8a:97:f4:24:07:af:75:23:4c:
1e:2a:83:d1:33:5a:f5:1a:70:81:e3:62:b5:f7:d1:99:04:b6:
cf:62:f6:a8:bf:84:f9:db:55:7c:e0:3f:59:ca:88:d7:ce:c9:
40:5f:cb:f8:6b:9f:ae:e2:cb:c0:6d:2b:95:9c:f5:ff:1e:c1:
7a:5c:38:ff:d8:e2:53:bd:d6:e9:e3:6e:8d:45:51:99:97:d5:
42:e2:cf:2f:85:e4:df:7b:8e:00:f5:67:68:af:a4:2c:a9:02:
2d:67:6d:71:0c:8f:b5:de:94:f0:7f:94:6b:c5:72:3a:5c:62:
7c:01:a7:2d:0b:58:a9:9e:1f:a6:25:4e:db:35:39:9f:6e:36:
bc:26:91:bd:0a:35:92:09:7d:70:ae:20:30:90:59:b9:0d:8e:
b2:6f:86:ce:a8:87:b7:25:37:37:60:30:12:a0:28:a1:48:4c:
0d:b4:1f:c2:a7:15:fb:eb:32:8c:c2:db:15:c0:ae:2a:50:e7:
b8:a5:a7:03:03:04:ed:4e:98:3e:ab:a8:fc:02:21:da:48:7e:
24:31:1e:99:67:dd:ee:28:2f:d4:dc:6a:a3:54:5b:5e:aa:d0:
22:c4:5e:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Gt7WhWc+k2SoLyvGAcIBoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwZDU4ZTQwYzZkOTFmMzcyOWU1N2UzMzQ0ZDMwOGI1OTky
ZmU0NmUwHhcNMjYwNDEzMTIwMTE5WhcNMjYwNDE0MTIwMTE5WjAzMTEwLwYDVQQD
EyhmOWMxMGExMTk0YzZlZDg2NmM5YzhjYzYwNTQwN2Y2ZjcwMGY4NTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwDGUj6csIVq9vohZ5KQpukU4H4TR
o/7SOnnsnpSS+GvbfMOy/BtaR1uXP7ELTkCTagQmd0Nk9i1ZN6W4g0k3z3lggH2H
UhjT9+c/PRz/0sNvYhj8iQyQCOoVTqKpdSXmezLni65u5GLVTt4KdBRNnbsnSkLF
OzpbvWjGUeX/E53mAbj6lC0NsYbMtlIa2TIMZfd0Rh8OSLAHfA9iF2NzU7rrBUPA
BtlBg3i7AZpcf3eI93zWhWNDdMINY/6e6IcsrLhy/0HaiQ3Xz7rm05F+fJxIV9i/
2Wfher8CuHbKuDkgGfv7xExtqoW7PXkUsPAqRK8GLQNihRFiiXYfQRo00wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPnBChGUxu2GbJyMxgVAf29wD4VFMB8GA1UdIwQY
MBaAFDDVjkDG2R83KeV+M0TTCLWZL+RuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTU5XT1FNYlpIemNwNVg0elJOTUl0Wmt2NUc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy82MjVhMzAtM2E2Yi00NjYxLTg0MGEt
ZjgyYjcwZDhhMGE3LzEvTU5XT1FNYlpIemNwNVg0elJOTUl0Wmt2NUc0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy82MjVhMzAtM2E2Yi00NjYxLTg0MGEtZjgyYjcwZDhhMGE3
LzEvTU5XT1FNYlpIemNwNVg0elJOTUl0Wmt2NUc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfSKaref+
QjiY2a+CVCXRmivbjGrMH8A6omTHipf0JAevdSNMHiqD0TNa9RpwgeNitffRmQS2
z2L2qL+E+dtVfOA/WcqI187JQF/L+GufruLLwG0rlZz1/x7Belw4/9jiU73W6eNu
jUVRmZfVQuLPL4Xk33uOAPVnaK+kLKkCLWdtcQyPtd6U8H+Ua8VyOlxifAGnLQtY
qZ4fpiVO2zU5n242vCaRvQo1kgl9cK4gMJBZuQ2Osm+GzqiHtyU3N2AwEqAooUhM
DbQfwqcV++syjMLbFcCuKlDnuKWnAwME7U6YPquo/AIh2kh+JDEemWfd7igv1Nxq
o1RbXqrQIsReEw==
-----END CERTIFICATE-----
Generated at Mon Apr 13 15:58:45 2026 by rpki-client