Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
File: usA65sVFitKAdlulUnmAoG_sI6g.mft (raw, json)
Hash identifier: n/uFpc+2FPuZCnNwO6T1gEZVxNZoRpQHs+VJpNQUeu8=
Subject key identifier: D4:FC:1A:E8:D9:25:81:F0:B5:6E:DC:0E:97:43:63:2D:CB:49:D4:E1
Authority key identifier: BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8
Certificate issuer: /CN=bac03ae6c5458ad280765ba5527980a06fec23a8
Certificate serial: 019DCE2B6B25CE4E835B283D000B76E9BB64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
Manifest number: 18DD
Signing time: Mon 27 Apr 2026 09:00:45 +0000
Manifest this update: Mon 27 Apr 2026 09:00:45 +0000
Manifest next update: Tue 28 Apr 2026 09:00:45 +0000
Files and hashes: 1: JGKLr4eYvFyQS44nBzhaqSDqb4M.roa (hash: R8q2g33KJxVN+/8kBrx+AnoKYUUKSwPLQijlXQQHaMQ=)
2: usA65sVFitKAdlulUnmAoG_sI6g.crl (hash: 9lpuksiw9uooLttPYPdnKpnxygy5LPtbFMDQrYUyW64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:2b:6b:25:ce:4e:83:5b:28:3d:00:0b:76:e9:bb:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bac03ae6c5458ad280765ba5527980a06fec23a8
Validity
Not Before: Apr 27 09:00:45 2026 GMT
Not After : Apr 28 09:00:45 2026 GMT
Subject: CN=d4fc1ae8d92581f0b56edc0e9743632dcb49d4e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:57:93:c5:57:e0:fa:d1:88:26:6e:ae:7a:8e:
d1:4e:d9:87:93:f6:c5:ff:47:81:2d:32:57:4e:32:
d4:cf:b7:2d:e3:13:cb:20:a4:8e:61:c4:da:b0:91:
14:b2:19:31:c8:9d:24:f8:35:4b:96:aa:32:4f:37:
0e:a2:f2:e7:c8:9b:af:8c:29:bb:4f:63:13:9f:b1:
d4:30:d0:fc:1f:d5:79:8f:50:9c:0c:21:5a:d6:92:
ec:55:83:df:9d:0d:de:98:c2:ee:97:9f:74:68:cc:
ae:e6:52:32:c4:ce:08:08:f5:69:c2:66:d7:32:b9:
6c:49:72:eb:69:89:32:e5:03:15:7e:71:79:21:06:
cb:8d:1b:a0:0f:9f:19:e3:6a:f4:10:57:08:9c:c8:
31:f1:3e:b8:f0:1f:9a:55:d9:98:d1:ca:78:8c:4e:
2b:a4:4a:b3:c3:82:98:41:11:f6:03:2a:45:3f:c3:
98:98:90:f5:01:bd:7f:60:4a:cf:84:9e:53:c0:a5:
20:d3:ed:23:7c:ab:63:8f:68:21:0b:bd:fe:78:79:
2e:c9:5e:96:c7:6b:44:b5:09:b1:d6:10:06:5a:e2:
0f:02:f7:c5:58:1d:94:8b:af:3e:ad:7f:24:d2:41:
ef:cd:51:d3:f6:6a:5f:ec:ff:c2:43:2a:3c:89:3b:
88:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:FC:1A:E8:D9:25:81:F0:B5:6E:DC:0E:97:43:63:2D:CB:49:D4:E1
X509v3 Authority Key Identifier:
keyid:BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:1f:a7:be:af:d7:02:50:e0:ac:2a:70:e5:b4:ea:5d:17:a8:
22:b9:5e:25:cb:70:bc:49:43:5f:50:b6:51:85:df:2f:31:2c:
29:21:bd:f6:24:18:5a:ae:02:aa:2a:10:93:34:cd:13:69:2d:
5d:4e:fc:0c:94:e3:30:e5:2e:5a:e1:99:03:4f:d9:29:5b:77:
2f:3d:8b:c7:02:73:6a:f3:3d:f9:17:a8:a2:47:a3:eb:5d:2e:
05:b0:96:3c:52:0e:c4:c0:88:35:22:e4:ff:c9:6f:e2:8d:12:
19:6f:09:26:1a:f1:08:a3:3f:8a:38:e6:21:fe:e4:9e:43:75:
8b:8c:86:6a:08:64:5f:dd:7e:2c:8a:b1:43:f8:08:ff:dd:32:
b5:b0:db:3b:4f:6a:82:79:94:47:fc:4e:3f:2f:df:9f:75:da:
23:8c:27:58:a1:cb:42:cf:98:cc:a2:26:5b:a2:98:9d:30:0c:
82:44:74:fc:48:95:4c:96:c5:1a:7e:2a:2b:44:72:9f:19:b0:
31:4c:1d:5d:b3:f9:72:2c:3e:1d:83:7b:68:27:5b:20:09:bf:
74:01:be:1e:bf:8d:72:16:67:96:a5:a8:99:d7:9d:75:62:b4:
be:e3:51:b2:bc:c2:29:a2:1c:c8:fb:c9:8b:f9:c8:ff:e1:07:
40:d7:82:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3OK2slzk6DWyg9AAt26btkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhYzAzYWU2YzU0NThhZDI4MDc2NWJhNTUyNzk4MGEwNmZl
YzIzYTgwHhcNMjYwNDI3MDkwMDQ1WhcNMjYwNDI4MDkwMDQ1WjAzMTEwLwYDVQQD
EyhkNGZjMWFlOGQ5MjU4MWYwYjU2ZWRjMGU5NzQzNjMyZGNiNDlkNGUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuleTxVfg+tGIJm6ueo7RTtmHk/bF
/0eBLTJXTjLUz7ct4xPLIKSOYcTasJEUshkxyJ0k+DVLlqoyTzcOovLnyJuvjCm7
T2MTn7HUMND8H9V5j1CcDCFa1pLsVYPfnQ3emMLul590aMyu5lIyxM4ICPVpwmbX
MrlsSXLraYky5QMVfnF5IQbLjRugD58Z42r0EFcInMgx8T648B+aVdmY0cp4jE4r
pEqzw4KYQRH2AypFP8OYmJD1Ab1/YErPhJ5TwKUg0+0jfKtjj2ghC73+eHkuyV6W
x2tEtQmx1hAGWuIPAvfFWB2Ui68+rX8k0kHvzVHT9mpf7P/CQyo8iTuIGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNT8GujZJYHwtW7cDpdDYy3LSdThMB8GA1UdIwQY
MBaAFLrAOubFRYrSgHZbpVJ5gKBv7COoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXNBNjVzVkZpdEtBZGx1bFVubUFvR19zSTZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9lOTMxZTYtYTE1Mi00YTFhLWIwOGEt
MTA4MWFlYjEyMWIzLzEvdXNBNjVzVkZpdEtBZGx1bFVubUFvR19zSTZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC9lOTMxZTYtYTE1Mi00YTFhLWIwOGEtMTA4MWFlYjEyMWIz
LzEvdXNBNjVzVkZpdEtBZGx1bFVubUFvR19zSTZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJx+nvq/X
AlDgrCpw5bTqXReoIrleJctwvElDX1C2UYXfLzEsKSG99iQYWq4CqioQkzTNE2kt
XU78DJTjMOUuWuGZA0/ZKVt3Lz2LxwJzavM9+Reookej610uBbCWPFIOxMCINSLk
/8lv4o0SGW8JJhrxCKM/ijjmIf7knkN1i4yGaghkX91+LIqxQ/gI/90ytbDbO09q
gnmUR/xOPy/fn3XaI4wnWKHLQs+YzKImW6KYnTAMgkR0/EiVTJbFGn4qK0Rynxmw
MUwdXbP5ciw+HYN7aCdbIAm/dAG+Hr+NchZnlqWomdeddWK0vuNRsrzCKaIcyPvJ
i/nI/+EHQNeC0g==
-----END CERTIFICATE-----
Generated at Mon Apr 27 15:47:36 2026 by rpki-client