Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
File: h9mQExRnt30RFit5--OwbKirLTk.mft (raw, json)
Hash identifier: uoUSkgLL3x1MzLmR3B5w2Wl2HcqeXM6U0SuFoD39ixk=
Subject key identifier: 94:C3:C6:30:6A:20:D1:6C:AD:8E:22:EE:EF:D4:DC:1F:FD:BD:C4:7B
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 019DB08F29F1D3CB7AC4ADBEE1C886184970
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
Manifest number: 18E1
Signing time: Tue 21 Apr 2026 15:01:05 +0000
Manifest this update: Tue 21 Apr 2026 15:01:05 +0000
Manifest next update: Wed 22 Apr 2026 15:01:05 +0000
Files and hashes: 1: 4L2HrkOMp5Px3ZdgqOBGMnz6oXw.roa (hash: qjbkKzm11wnXRFJIt4quryujdmBS5m5m8Id3/w9vHFw=)
2: 78tSQmB_UZC_rIGDHLnxnqOm3fI.roa (hash: 3kNkwMTWy/XYCkJODFF1IVosQpGtDfhW2/dwVf0UwBQ=)
3: C3Lj3Wt6YNWIPGHmadEQ-dchhaw.roa (hash: fn0aOrz4mN4OtO/EtlMrSuF4wh5zaQaJSbD2ep7jxzI=)
4: JIk4GJqmgSwzYSk0JGPNI21QRnM.roa (hash: 45ZLZSPO108JAO0yb1j8MEBiHT4QdE4zU9XBhQbVqtg=)
5: PY323kbvCRFsNrwGFI26gXv0gpE.roa (hash: U0ksXLpw7uH4vwqe/cNwV58+FVim6JoHjXiFGt1giNE=)
6: h9mQExRnt30RFit5--OwbKirLTk.crl (hash: HiyxTNEJhmom8iYFvsRNLS5FxTkMxrjF2mqRIIrRYOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 14:21:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b0:8f:29:f1:d3:cb:7a:c4:ad:be:e1:c8:86:18:49:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Apr 21 15:01:05 2026 GMT
Not After : Apr 22 15:01:05 2026 GMT
Subject: CN=94c3c6306a20d16cad8e22eeefd4dc1ffdbdc47b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bd:ea:cd:f8:a6:56:c0:d1:a2:87:9a:27:6b:
2e:56:40:46:c5:67:03:1d:41:63:76:04:29:7f:f5:
b0:88:4b:d1:59:6d:4f:c2:69:b2:0d:2d:3d:a6:7b:
31:31:84:c9:95:97:e8:3c:aa:0b:9e:76:63:80:fd:
8f:42:79:ee:01:c1:70:ff:69:43:d0:5e:51:81:ca:
8d:1d:10:91:d3:ce:93:fe:13:1e:21:00:92:b9:ce:
9b:61:70:d9:39:2e:fb:d6:77:1b:f8:8a:5e:6b:55:
6d:7a:08:57:40:81:02:fe:63:4c:55:03:23:d8:17:
38:e6:b2:80:8f:58:4c:f5:ed:9b:81:ea:d7:ee:c2:
21:88:ef:1d:ce:dc:85:06:0a:3b:ba:af:ed:bd:87:
90:4d:7e:c9:bc:f6:dc:c5:90:86:6c:f1:31:7a:da:
c8:84:56:3a:18:cc:5c:82:c9:ae:7d:10:7e:c8:ef:
2c:c2:a3:c5:3a:40:e7:79:d5:58:7d:06:e7:46:6d:
99:2d:b1:96:db:3f:fe:48:27:d3:8f:cf:5c:24:de:
fe:67:84:61:1a:f1:5c:aa:85:90:88:03:09:eb:22:
0e:12:5f:67:7f:1f:a3:62:5c:28:43:48:0f:60:42:
59:5e:9a:00:1d:52:6e:80:0e:d0:9f:d1:68:20:4b:
36:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C3:C6:30:6A:20:D1:6C:AD:8E:22:EE:EF:D4:DC:1F:FD:BD:C4:7B
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:bd:fe:c9:7b:00:37:b1:90:b6:bc:e9:71:fb:99:82:6f:88:
59:e9:97:4d:f7:2b:ac:ea:43:62:5e:7c:58:e4:fd:e1:74:43:
2e:71:61:cf:3d:7f:34:dc:2d:44:b7:da:10:f4:76:74:e4:16:
63:ea:ac:06:77:d1:88:c8:f7:cf:c1:dc:de:92:68:80:4f:e6:
79:40:0c:c8:7f:4d:f6:45:0d:21:95:f8:d1:0d:31:df:75:93:
22:3f:fc:de:d5:44:d2:6a:49:d7:54:f7:21:37:d1:b5:7d:c9:
c9:06:3d:cc:1b:b4:79:3d:8e:af:8e:62:11:25:64:01:4f:c5:
41:1e:bb:a4:e5:7f:bd:8f:25:44:5e:55:61:e7:55:03:18:6e:
6b:0d:3b:45:37:92:7f:04:cd:a9:bf:0a:b3:be:ae:ce:29:11:
07:eb:69:a1:96:cd:35:bc:a3:44:13:d1:a4:a6:e1:85:a7:c8:
26:61:f3:82:a2:9f:99:66:59:d0:f8:0a:9b:fd:3b:42:32:4c:
68:0f:23:65:09:d8:b5:4e:c7:25:b2:f8:29:8e:18:ae:85:f4:
f5:84:95:fd:64:b5:da:67:35:03:e0:ae:56:25:99:3c:bf:79:
10:04:9d:68:6f:b7:9d:26:a9:04:b5:c7:c9:78:bf:df:f7:5e:
26:7e:d8:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2wjynx08t6xK2+4ciGGElwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ZDk5MDEzMTQ2N2I3N2QxMTE2MmI3OWZiZTNiMDZjYThh
YjJkMzkwHhcNMjYwNDIxMTUwMTA1WhcNMjYwNDIyMTUwMTA1WjAzMTEwLwYDVQQD
Eyg5NGMzYzYzMDZhMjBkMTZjYWQ4ZTIyZWVlZmQ0ZGMxZmZkYmRjNDdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAub3qzfimVsDRooeaJ2suVkBGxWcD
HUFjdgQpf/WwiEvRWW1PwmmyDS09pnsxMYTJlZfoPKoLnnZjgP2PQnnuAcFw/2lD
0F5RgcqNHRCR086T/hMeIQCSuc6bYXDZOS771ncb+Ipea1VteghXQIEC/mNMVQMj
2Bc45rKAj1hM9e2bgerX7sIhiO8dztyFBgo7uq/tvYeQTX7JvPbcxZCGbPExetrI
hFY6GMxcgsmufRB+yO8swqPFOkDnedVYfQbnRm2ZLbGW2z/+SCfTj89cJN7+Z4Rh
GvFcqoWQiAMJ6yIOEl9nfx+jYlwoQ0gPYEJZXpoAHVJugA7Qn9FoIEs2BQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJTDxjBqINFsrY4i7u/U3B/9vcR7MB8GA1UdIwQY
MBaAFIfZkBMUZ7d9ERYrefvjsGyoqy05MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni81ZGVhOTctN2VmNy00ZGIwLTk0YmMt
YjhlOGIzNGRiMjkwLzEvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni81ZGVhOTctN2VmNy00ZGIwLTk0YmMtYjhlOGIzNGRiMjkw
LzEvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAar3+yXsA
N7GQtrzpcfuZgm+IWemXTfcrrOpDYl58WOT94XRDLnFhzz1/NNwtRLfaEPR2dOQW
Y+qsBnfRiMj3z8Hc3pJogE/meUAMyH9N9kUNIZX40Q0x33WTIj/83tVE0mpJ11T3
ITfRtX3JyQY9zBu0eT2Or45iESVkAU/FQR67pOV/vY8lRF5VYedVAxhuaw07RTeS
fwTNqb8Ks76uzikRB+tpoZbNNbyjRBPRpKbhhafIJmHzgqKfmWZZ0PgKm/07QjJM
aA8jZQnYtU7HJbL4KY4YroX09YSV/WS12mc1A+CuViWZPL95EASdaG+3nSapBLXH
yXi/3/deJn7Ygw==
-----END CERTIFICATE-----
Generated at Tue Apr 21 19:06:46 2026 by rpki-client