Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
File: mXyCWBNDX7ARVDjuP2B2N869jo4.mft (raw, json)
Hash identifier: FgE/8MzDzcNBn70sK+5cZ4NMzxs94w5j6UkQ7qmQOjU=
Subject key identifier: 97:23:96:A1:71:7F:4F:B9:8A:6E:EB:AF:00:6B:8E:C7:37:66:38:3F
Authority key identifier: 99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E
Certificate issuer: /CN=997c825813435fb0115438ee3f607637cebd8e8e
Certificate serial: 019DA8D56A0B5F7FAC81C70C9BE7AC86E3A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
Manifest number: 01A9
Signing time: Mon 20 Apr 2026 03:00:51 +0000
Manifest this update: Mon 20 Apr 2026 03:00:51 +0000
Manifest next update: Tue 21 Apr 2026 03:00:51 +0000
Files and hashes: 1: IqAZ7XQz7BlbCx4e-ofeDvMJfNU.roa (hash: Kp2XtcxtOkZThbBMLc4hB6JTrGLoaZOP4GbgJkvTA/A=)
2: mXyCWBNDX7ARVDjuP2B2N869jo4.crl (hash: SL+qD7KcpGEpWX1oykGf4pGU4ncAFulDBGnZ17mKeMc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Apr 2026 03:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a8:d5:6a:0b:5f:7f:ac:81:c7:0c:9b:e7:ac:86:e3:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997c825813435fb0115438ee3f607637cebd8e8e
Validity
Not Before: Apr 20 03:00:51 2026 GMT
Not After : Apr 21 03:00:51 2026 GMT
Subject: CN=972396a1717f4fb98a6eebaf006b8ec73766383f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:3c:a9:e9:37:d5:15:15:fc:76:2b:da:f4:a1:
26:3d:73:6e:d8:51:60:46:13:8e:e5:cd:aa:5e:14:
a3:14:ea:61:3e:fd:8d:74:e8:f3:3c:38:c1:be:ea:
51:f1:26:d4:d2:a3:0f:2b:c9:f6:f8:d9:d7:ce:85:
ce:9a:9c:5a:1d:1c:26:a3:af:0a:4e:aa:23:11:ab:
e6:52:5a:47:31:30:ff:e8:e4:7d:28:db:40:0e:9b:
76:a6:5d:13:b7:b2:45:ce:5e:0d:34:9b:66:b1:29:
94:62:25:57:e0:88:95:c7:64:d6:eb:5c:bd:93:24:
17:2c:07:3c:de:48:71:1a:59:10:ba:5e:98:5e:ba:
35:78:6e:d1:ba:46:55:8c:9b:30:00:81:8e:0e:ef:
41:d0:2b:9f:a1:9f:ec:21:29:b8:97:cb:23:d3:3c:
12:34:57:5c:04:86:1e:75:b2:f1:12:72:10:07:19:
c0:78:14:bb:63:5d:1f:e9:1f:c6:a5:e1:38:b5:c1:
7c:89:15:ec:4d:aa:9d:09:9d:1a:39:96:1d:2f:a8:
09:7d:37:00:61:c8:62:31:6d:0b:3d:27:b4:7a:12:
fe:13:7a:4f:db:4a:00:09:11:80:c2:2b:36:86:87:
59:85:98:8d:74:36:ad:9a:0e:c3:e7:43:15:d5:35:
12:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:23:96:A1:71:7F:4F:B9:8A:6E:EB:AF:00:6B:8E:C7:37:66:38:3F
X509v3 Authority Key Identifier:
keyid:99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:8d:06:ce:7c:d5:dc:16:73:c1:fe:26:97:2f:8e:8f:0a:9e:
57:ef:56:fa:68:19:46:23:cb:57:7f:c1:84:a5:23:ec:da:27:
06:33:41:87:84:63:62:76:53:f7:0d:43:68:86:e5:13:f4:ce:
7c:d2:34:6e:6d:a1:49:2e:3c:c7:b1:c2:38:b5:83:5b:41:df:
2d:8e:11:08:27:7c:df:ab:81:eb:81:92:83:ee:76:28:a7:e6:
e8:d3:62:98:71:10:81:9d:36:c3:49:95:2a:0d:73:90:14:4e:
d2:48:c1:f0:46:67:f6:35:86:d9:7b:05:03:41:b2:3f:e9:8c:
e7:fa:57:62:a4:0b:d9:a0:14:bc:0b:93:66:58:3b:0a:d9:3b:
06:aa:fc:a5:74:b5:fc:95:a2:e9:1d:45:81:21:a1:0a:31:f9:
47:8a:96:f3:62:ae:69:2b:4b:ed:80:c6:13:19:a5:c9:f5:76:
b5:b8:f2:af:98:8b:84:62:ad:fd:9b:d1:4f:00:83:e5:43:c4:
96:f3:85:0e:67:c9:c5:25:50:7c:6d:fe:06:01:db:84:9c:f6:
ff:3a:86:f1:bd:e3:30:72:c8:c2:77:30:5c:df:4b:16:83:15:
4c:0d:98:9d:55:c0:3b:6d:58:00:47:fb:3d:e6:6c:09:fe:c2:
04:a4:10:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2o1WoLX3+sgccMm+eshuOiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5N2M4MjU4MTM0MzVmYjAxMTU0MzhlZTNmNjA3NjM3Y2Vi
ZDhlOGUwHhcNMjYwNDIwMDMwMDUxWhcNMjYwNDIxMDMwMDUxWjAzMTEwLwYDVQQD
Eyg5NzIzOTZhMTcxN2Y0ZmI5OGE2ZWViYWYwMDZiOGVjNzM3NjYzODNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyzyp6TfVFRX8diva9KEmPXNu2FFg
RhOO5c2qXhSjFOphPv2NdOjzPDjBvupR8SbU0qMPK8n2+NnXzoXOmpxaHRwmo68K
TqojEavmUlpHMTD/6OR9KNtADpt2pl0Tt7JFzl4NNJtmsSmUYiVX4IiVx2TW61y9
kyQXLAc83khxGlkQul6YXro1eG7RukZVjJswAIGODu9B0CufoZ/sISm4l8sj0zwS
NFdcBIYedbLxEnIQBxnAeBS7Y10f6R/GpeE4tcF8iRXsTaqdCZ0aOZYdL6gJfTcA
YchiMW0LPSe0ehL+E3pP20oACRGAwis2hodZhZiNdDatmg7D50MV1TUSLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJcjlqFxf0+5im7rrwBrjsc3Zjg/MB8GA1UdIwQY
MBaAFJl8glgTQ1+wEVQ47j9gdjfOvY6OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8yZjU1MDItMDA3YS00NjgzLTk4NzIt
MjhmNzFhYmJhMDNhLzEvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni8yZjU1MDItMDA3YS00NjgzLTk4NzItMjhmNzFhYmJhMDNh
LzEvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVY0GznzV
3BZzwf4mly+OjwqeV+9W+mgZRiPLV3/BhKUj7NonBjNBh4RjYnZT9w1DaIblE/TO
fNI0bm2hSS48x7HCOLWDW0HfLY4RCCd836uB64GSg+52KKfm6NNimHEQgZ02w0mV
Kg1zkBRO0kjB8EZn9jWG2XsFA0GyP+mM5/pXYqQL2aAUvAuTZlg7Ctk7Bqr8pXS1
/JWi6R1FgSGhCjH5R4qW82KuaStL7YDGExmlyfV2tbjyr5iLhGKt/ZvRTwCD5UPE
lvOFDmfJxSVQfG3+BgHbhJz2/zqG8b3jMHLIwncwXN9LFoMVTA2YnVXAO21YAEf7
PeZsCf7CBKQQ5g==
-----END CERTIFICATE-----
Generated at Mon Apr 20 13:23:18 2026 by rpki-client