Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
File: IwqhYKbohsED2tvkSyPCd3YFc5E.mft (raw, json)
Hash identifier: p4DjUFm3SJOF5Y4pH791/sGDDZ7umI7odS5XiqI9t8E=
Subject key identifier: 50:7D:72:41:51:C0:D1:7B:FE:9F:24:58:85:A3:A5:31:B7:D7:9D:4D
Authority key identifier: 23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
Certificate issuer: /CN=230aa160a6e886c103dadbe44b23c27776057391
Certificate serial: 019DCDF504ADA5F480D52DD67AFC53642294
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
Manifest number: 107C
Signing time: Mon 27 Apr 2026 08:01:19 +0000
Manifest this update: Mon 27 Apr 2026 08:01:19 +0000
Manifest next update: Tue 28 Apr 2026 08:01:19 +0000
Files and hashes: 1: EG_Id09DvFvq6OjCzlCxHI8GXVg.roa (hash: SEYIizAUZ8Gr2yBztTyZlf2jtywb5D92XRV6mbkv9uw=)
2: IwqhYKbohsED2tvkSyPCd3YFc5E.crl (hash: qJ7JIlQgN5Q61Qz57z2rTk4+GB0RC1zsfRIeKb9DwUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:f5:04:ad:a5:f4:80:d5:2d:d6:7a:fc:53:64:22:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230aa160a6e886c103dadbe44b23c27776057391
Validity
Not Before: Apr 27 08:01:19 2026 GMT
Not After : Apr 28 08:01:19 2026 GMT
Subject: CN=507d724151c0d17bfe9f245885a3a531b7d79d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f0:03:01:fc:34:64:5a:ac:b3:7f:58:4c:f4:
62:07:30:d4:d2:3e:bd:48:67:1a:c4:18:15:c8:4a:
89:98:04:75:bd:6f:c0:dc:f8:f9:5b:96:dd:2b:7f:
fe:8a:5a:a6:43:bb:58:72:05:56:0c:70:fc:92:b8:
26:02:3f:bf:bb:33:2f:be:bf:61:6e:21:9f:eb:df:
37:43:0f:e1:23:ce:95:75:1b:46:fc:8e:8c:75:2d:
50:ae:b3:62:c0:1a:9e:c6:69:91:a7:18:40:60:f7:
76:0e:e1:65:e2:ac:8e:23:d1:76:e2:03:b1:eb:89:
9a:b6:04:90:16:57:3e:03:24:ce:3e:6b:8f:ea:b6:
82:45:39:23:ea:08:cc:33:8e:c5:da:5c:80:ea:66:
d2:20:a8:4b:bf:1b:25:cf:fe:64:0a:5a:fb:a3:76:
60:1a:15:d4:17:10:ad:ba:f0:e0:39:0e:cd:fa:8a:
b1:85:c3:be:e2:ad:20:d8:b3:9d:33:2f:ee:44:8f:
53:38:68:78:13:51:40:63:fa:5e:11:71:42:3f:f1:
ad:79:8c:ae:80:4c:ac:19:1b:80:61:49:51:98:c0:
5b:9d:98:4d:77:75:31:22:2f:a9:7f:00:46:ff:b7:
61:7e:b8:3e:14:3b:cb:16:e0:95:1b:42:bb:fe:84:
e7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:7D:72:41:51:C0:D1:7B:FE:9F:24:58:85:A3:A5:31:B7:D7:9D:4D
X509v3 Authority Key Identifier:
keyid:23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:86:4d:20:19:ca:f3:15:6b:8e:0b:d6:f6:fb:01:58:8f:ef:
e2:05:e9:77:fe:f5:13:12:0a:89:60:e6:9a:0f:79:ee:e4:68:
7e:e2:73:88:97:18:3b:f5:20:60:3c:d6:ca:a4:20:91:52:74:
ac:4b:83:42:0b:e5:61:a1:b3:31:b3:62:fc:df:cb:32:fd:c1:
f2:41:1f:47:4f:0a:3a:79:46:17:83:cc:ee:e7:10:04:d6:9a:
ce:df:70:8c:36:25:74:83:23:31:2c:20:49:15:ac:5a:3e:cb:
ba:fc:81:1c:53:74:c9:a5:37:a6:2e:cc:5f:e5:3f:8f:bd:c7:
53:05:e0:6c:72:9a:fb:4e:03:91:3c:58:95:56:ce:0a:21:a8:
d3:65:7d:34:ac:6c:33:3a:c6:de:d6:f0:5d:8b:da:13:e1:8f:
af:e6:eb:c7:16:8a:7f:33:f2:87:36:c4:70:03:a5:e2:df:93:
3a:b6:d1:43:e1:5d:0f:a5:f0:3a:fe:12:26:23:b3:d1:c3:b6:
2a:c1:78:91:04:51:d3:35:c4:99:dd:c6:34:d2:59:4d:d7:08:
b5:9f:8c:07:85:b0:fe:98:66:9f:9f:b5:12:07:ab:95:ca:3f:
23:50:5b:5a:1e:1f:b0:54:d6:3a:25:8c:b5:44:a5:70:d2:f2:
ad:53:38:7a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3N9QStpfSA1S3WevxTZCKUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzMGFhMTYwYTZlODg2YzEwM2RhZGJlNDRiMjNjMjc3NzYw
NTczOTEwHhcNMjYwNDI3MDgwMTE5WhcNMjYwNDI4MDgwMTE5WjAzMTEwLwYDVQQD
Eyg1MDdkNzI0MTUxYzBkMTdiZmU5ZjI0NTg4NWEzYTUzMWI3ZDc5ZDRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0fADAfw0ZFqss39YTPRiBzDU0j69
SGcaxBgVyEqJmAR1vW/A3Pj5W5bdK3/+ilqmQ7tYcgVWDHD8krgmAj+/uzMvvr9h
biGf6983Qw/hI86VdRtG/I6MdS1QrrNiwBqexmmRpxhAYPd2DuFl4qyOI9F24gOx
64matgSQFlc+AyTOPmuP6raCRTkj6gjMM47F2lyA6mbSIKhLvxslz/5kClr7o3Zg
GhXUFxCtuvDgOQ7N+oqxhcO+4q0g2LOdMy/uRI9TOGh4E1FAY/peEXFCP/GteYyu
gEysGRuAYUlRmMBbnZhNd3UxIi+pfwBG/7dhfrg+FDvLFuCVG0K7/oTn1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFB9ckFRwNF7/p8kWIWjpTG3151NMB8GA1UdIwQY
MBaAFCMKoWCm6IbBA9rb5Esjwnd2BXORMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXdxaFlLYm9oc0VEMnR2a1N5UENkM1lGYzVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS82ZWI1NGUtZTcwOS00YjdhLWFkZTkt
YTlhZWI0ODVkNTkyLzEvSXdxaFlLYm9oc0VEMnR2a1N5UENkM1lGYzVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS82ZWI1NGUtZTcwOS00YjdhLWFkZTktYTlhZWI0ODVkNTky
LzEvSXdxaFlLYm9oc0VEMnR2a1N5UENkM1lGYzVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAoZNIBnK
8xVrjgvW9vsBWI/v4gXpd/71ExIKiWDmmg957uRofuJziJcYO/UgYDzWyqQgkVJ0
rEuDQgvlYaGzMbNi/N/LMv3B8kEfR08KOnlGF4PM7ucQBNaazt9wjDYldIMjMSwg
SRWsWj7LuvyBHFN0yaU3pi7MX+U/j73HUwXgbHKa+04DkTxYlVbOCiGo02V9NKxs
MzrG3tbwXYvaE+GPr+brxxaKfzPyhzbEcAOl4t+TOrbRQ+FdD6XwOv4SJiOz0cO2
KsF4kQRR0zXEmd3GNNJZTdcItZ+MB4Ww/phmn5+1Egerlco/I1BbWh4fsFTWOiWM
tUSlcNLyrVM4eg==
-----END CERTIFICATE-----
Generated at Mon Apr 27 12:39:01 2026 by rpki-client