Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json)
Hash identifier: Vg+TvlIYMG4wLA6BwbJxqNpgHDKfP6UbLXTmWkAyBTU=
Subject key identifier: D2:A7:2B:07:FD:C0:39:A2:6D:E2:AE:5E:CA:81:4D:AE:D4:34:F6:EC
Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea
Certificate serial: 019E284B312BF1B189895D958A99D9198783
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
Manifest number: 0F0D
Signing time: Thu 14 May 2026 21:01:16 +0000
Manifest this update: Thu 14 May 2026 21:01:16 +0000
Manifest next update: Fri 15 May 2026 21:01:16 +0000
Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: 6O8z9mmanLEabL9/ORhqYDM7KQfRSEXWlFKW7K4k5/Q=)
2: CdfLb6TofkWtReh_YXLGBpk_g6c.roa (hash: wzdkGkKknbVJYDWx/Ffoau27HnZpYfEves1fyMYu134=)
3: fqd_p4Wrb6OXddN1aeuYEJC8YH4.asa (hash: jmbRwKrDPkjso/zUasnqP+cDaGWkVpbGq+nQ2VGiSLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 21:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:4b:31:2b:f1:b1:89:89:5d:95:8a:99:d9:19:87:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea
Validity
Not Before: May 14 21:01:16 2026 GMT
Not After : May 15 21:01:16 2026 GMT
Subject: CN=d2a72b07fdc039a26de2ae5eca814daed434f6ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:01:52:37:d5:66:3f:41:26:91:3c:7c:73:69:
0e:01:a4:bf:e4:82:8c:72:12:c7:21:10:c1:53:ee:
f0:ee:00:88:da:bf:20:cb:8f:75:04:4b:9e:28:74:
a6:4a:71:ed:6b:55:40:ec:a8:76:1d:43:fa:65:8d:
bb:a3:a5:cc:ff:7b:c9:23:6f:a3:6e:ee:d9:97:ec:
79:34:c8:64:34:b7:43:3f:6a:51:c3:ac:da:a1:a4:
d8:b6:f4:0e:d0:1a:b1:9c:be:ec:65:99:9c:6e:b9:
c7:02:22:ec:94:2d:36:fa:16:de:2e:f8:02:b5:fe:
25:23:1f:4e:bd:b1:05:65:72:06:bf:5a:b1:16:39:
5c:5b:19:8c:28:b1:e5:cd:6e:1b:cf:ed:57:89:92:
f5:ca:49:56:6c:f5:7a:f3:33:42:71:ae:cf:2c:40:
35:76:f0:94:45:1c:cf:d3:12:5a:34:14:a5:91:c4:
c3:1c:3f:4a:5b:3d:85:57:08:2a:41:8e:08:c4:5c:
70:e1:82:18:75:3a:c8:7a:63:9c:d3:aa:fb:30:36:
c1:48:99:a2:e2:19:6a:d3:97:29:91:2d:16:81:77:
44:ce:59:07:bf:17:32:75:31:e8:19:a4:47:ca:5b:
3d:89:a3:11:ec:7f:ce:48:51:1f:0a:60:17:7c:20:
6d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A7:2B:07:FD:C0:39:A2:6D:E2:AE:5E:CA:81:4D:AE:D4:34:F6:EC
X509v3 Authority Key Identifier:
keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:d0:f3:97:9b:ae:01:44:6f:8f:5b:18:ac:f3:04:c6:31:00:
2a:8f:e6:b2:03:2c:a8:36:7a:4a:37:38:f7:e9:48:9f:b5:0f:
e9:f3:6d:2a:26:45:0d:a4:6b:d2:8c:95:ae:27:22:9a:c4:bb:
6f:dd:93:68:5b:04:cc:45:8d:94:3a:0b:7c:d0:96:b9:e4:09:
31:f2:de:38:d6:ff:80:63:e0:fd:04:81:06:63:51:2a:ef:2b:
3d:cb:39:59:1b:f1:df:6b:3a:74:55:e9:ce:78:31:7c:ca:89:
b6:90:4f:77:e3:77:07:8a:41:cb:94:cb:4b:d2:ed:ee:b0:5d:
42:a5:88:5b:7a:dd:f4:2e:b5:48:5d:6a:24:d4:92:ce:c9:74:
69:ea:32:1e:d7:ad:6c:29:eb:a9:2f:27:4e:64:3f:18:19:66:
40:4e:01:cd:6b:1f:bb:5f:88:9f:37:ac:a0:a6:b7:6d:87:da:
18:8c:52:e9:8d:fa:50:cf:70:de:e7:ef:65:b7:ee:87:7a:24:
e4:ea:79:ba:61:ba:89:2e:43:70:34:2f:45:39:5a:52:19:06:
7d:ea:16:3c:ad:66:29:e2:6a:39:75:fd:ff:6e:3e:ad:23:33:
66:c5:0e:0f:5c:75:7a:20:63:e6:8e:4b:f5:8d:56:1b:69:c2:
13:15:d2:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4oSzEr8bGJiV2VipnZGYeDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwNjdhN2I5ZGU3NjdlYjk3ZGI2NGU1MTY0Nzg0OTQ2MzNi
ZDU0ZWEwHhcNMjYwNTE0MjEwMTE2WhcNMjYwNTE1MjEwMTE2WjAzMTEwLwYDVQQD
EyhkMmE3MmIwN2ZkYzAzOWEyNmRlMmFlNWVjYTgxNGRhZWQ0MzRmNmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5AFSN9VmP0EmkTx8c2kOAaS/5IKM
chLHIRDBU+7w7gCI2r8gy491BEueKHSmSnHta1VA7Kh2HUP6ZY27o6XM/3vJI2+j
bu7Zl+x5NMhkNLdDP2pRw6zaoaTYtvQO0BqxnL7sZZmcbrnHAiLslC02+hbeLvgC
tf4lIx9OvbEFZXIGv1qxFjlcWxmMKLHlzW4bz+1XiZL1yklWbPV68zNCca7PLEA1
dvCURRzP0xJaNBSlkcTDHD9KWz2FVwgqQY4IxFxw4YIYdTrIemOc06r7MDbBSJmi
4hlq05cpkS0WgXdEzlkHvxcydTHoGaRHyls9iaMR7H/OSFEfCmAXfCBt8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNKnKwf9wDmibeKuXsqBTa7UNPbsMB8GA1UdIwQY
MBaAFOBnp7nedn65fbZOUWR4SUYzvVTqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9kNTIwYzQtZGViNC00MzhiLTkzYmYt
NzY4ZjNkNmVlMTllLzEvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9kNTIwYzQtZGViNC00MzhiLTkzYmYtNzY4ZjNkNmVlMTll
LzEvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaNDzl5uu
AURvj1sYrPMExjEAKo/msgMsqDZ6Sjc49+lIn7UP6fNtKiZFDaRr0oyVricimsS7
b92TaFsEzEWNlDoLfNCWueQJMfLeONb/gGPg/QSBBmNRKu8rPcs5WRvx32s6dFXp
zngxfMqJtpBPd+N3B4pBy5TLS9Lt7rBdQqWIW3rd9C61SF1qJNSSzsl0aeoyHtet
bCnrqS8nTmQ/GBlmQE4BzWsfu1+InzesoKa3bYfaGIxS6Y36UM9w3ufvZbfuh3ok
5Op5umG6iS5DcDQvRTlaUhkGfeoWPK1mKeJqOXX9/24+rSMzZsUOD1x1eiBj5o5L
9Y1WG2nCExXSAA==
-----END CERTIFICATE-----
Generated at Fri May 15 07:01:42 2026 by rpki-client