Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.mft
File: AF8NRLIh9LEcidtolp-Xw8cVSQY.mft (raw, json)
Hash identifier: tq2TGN8wWBKrF2hnaD84ktgUFFnb4xCQhkOvJ5wSuVs=
Subject key identifier: 4D:F7:39:02:91:64:6A:4A:89:45:F6:66:9F:28:7B:F9:D6:68:37:DE
Authority key identifier: 00:5F:0D:44:B2:21:F4:B1:1C:89:DB:68:96:9F:97:C3:C7:15:49:06
Certificate issuer: /CN=005f0d44b221f4b11c89db68969f97c3c7154906
Certificate serial: 019DD509D25BA2C863C2D0EE0B87E4F6BD5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF8NRLIh9LEcidtolp-Xw8cVSQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.mft
Manifest number: 18E0
Signing time: Tue 28 Apr 2026 17:01:23 +0000
Manifest this update: Tue 28 Apr 2026 17:01:23 +0000
Manifest next update: Wed 29 Apr 2026 17:01:23 +0000
Files and hashes: 1: AF8NRLIh9LEcidtolp-Xw8cVSQY.crl (hash: iyq22rbJeyXAj7JWAMw5Xskz1swRLDMfsFQyDACywgs=)
2: kJQsI98iVa9ZD7yxoQppC6FP-XY.roa (hash: DqgDfqLMHMB6Ed3JqGpWQxjC4rt/X0IDDmE+DZGx1YQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AF8NRLIh9LEcidtolp-Xw8cVSQY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Apr 2026 14:21:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d5:09:d2:5b:a2:c8:63:c2:d0:ee:0b:87:e4:f6:bd:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=005f0d44b221f4b11c89db68969f97c3c7154906
Validity
Not Before: Apr 28 17:01:23 2026 GMT
Not After : Apr 29 17:01:23 2026 GMT
Subject: CN=4df7390291646a4a8945f6669f287bf9d66837de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4c:36:b3:22:6b:11:2c:be:b9:01:ae:16:05:
eb:ec:39:b9:18:c4:68:0f:df:4c:99:3b:42:3e:09:
d1:f5:4a:ac:dd:df:5f:9a:f7:4a:ab:10:58:61:ad:
d5:19:c9:4b:38:d2:6e:66:f4:01:50:d4:08:9c:32:
16:87:59:44:95:0e:2b:6f:02:58:ee:3b:3c:3a:90:
c6:50:9d:03:96:19:78:a3:14:38:a8:25:17:0f:52:
53:70:d6:06:2d:0a:d2:4d:74:c8:6e:e0:53:eb:67:
02:5a:88:43:fa:fa:f7:68:a3:94:f9:4d:0a:2e:cc:
f6:37:b1:0a:43:9d:37:85:f5:8a:91:60:5c:ad:72:
69:79:b0:db:c8:f6:21:74:e5:64:4b:94:44:47:f8:
9e:e2:2d:b4:c6:47:1f:f4:50:f7:cc:c3:4e:8e:82:
3c:dc:09:1c:b4:8c:4f:4a:c2:28:ea:19:10:ab:e0:
5f:dc:2f:96:b2:95:de:6f:68:fb:49:8f:3b:ff:48:
aa:7d:4f:a9:03:6f:1e:2a:c7:29:39:48:10:0b:91:
00:a5:65:31:be:86:e5:7f:c2:6a:62:88:22:e8:01:
08:e0:99:e2:8d:12:02:d5:5c:80:ed:29:cf:ea:30:
24:a0:6e:95:01:20:63:3e:12:84:69:0c:64:d8:22:
b0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:F7:39:02:91:64:6A:4A:89:45:F6:66:9F:28:7B:F9:D6:68:37:DE
X509v3 Authority Key Identifier:
keyid:00:5F:0D:44:B2:21:F4:B1:1C:89:DB:68:96:9F:97:C3:C7:15:49:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF8NRLIh9LEcidtolp-Xw8cVSQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:4e:f7:bc:d1:29:1c:ad:c3:fa:22:00:01:cf:df:4e:1a:34:
fb:9d:21:19:e4:8e:98:d5:93:43:d6:38:2f:1a:ba:74:eb:43:
b1:0b:e8:da:f2:e1:9e:0f:f3:36:da:33:82:19:dd:a2:95:ff:
45:6a:c0:74:34:c4:ec:9b:bf:9a:3e:9b:13:49:4e:6a:3a:48:
91:e5:fe:47:bc:f8:c5:ae:76:ad:1c:b0:e3:3f:e3:40:b2:21:
90:6a:c3:46:d1:a1:b7:0c:67:59:c3:7b:19:f2:ff:97:6c:51:
87:b2:7f:40:12:7c:92:2d:06:60:04:23:64:86:2a:c2:44:78:
2e:5f:61:6d:d7:d1:25:cb:0e:fa:41:5e:5e:27:8b:c4:3a:b1:
99:52:06:a6:18:2b:91:1b:ca:35:81:1e:7b:3f:08:6f:ec:a6:
87:a2:23:0a:20:79:96:c4:b8:15:7e:0a:d9:69:75:cf:cf:ac:
7c:b0:96:ef:f6:b8:c4:35:91:a2:6d:b1:eb:30:d3:18:a9:10:
06:cb:6b:f3:d4:49:24:b7:67:5b:9a:85:e0:cc:4e:19:67:ee:
f7:7f:af:6a:1e:f2:fd:ca:9e:5d:0d:c3:54:07:e4:ec:8c:79:
1b:89:b3:55:cf:d3:67:d3:1b:6d:c5:89:7c:e3:5e:8c:9a:78:
f4:9d:94:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3VCdJboshjwtDuC4fk9r1eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNWYwZDQ0YjIyMWY0YjExYzg5ZGI2ODk2OWY5N2MzYzcx
NTQ5MDYwHhcNMjYwNDI4MTcwMTIzWhcNMjYwNDI5MTcwMTIzWjAzMTEwLwYDVQQD
Eyg0ZGY3MzkwMjkxNjQ2YTRhODk0NWY2NjY5ZjI4N2JmOWQ2NjgzN2RlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApUw2syJrESy+uQGuFgXr7Dm5GMRo
D99MmTtCPgnR9Uqs3d9fmvdKqxBYYa3VGclLONJuZvQBUNQInDIWh1lElQ4rbwJY
7js8OpDGUJ0Dlhl4oxQ4qCUXD1JTcNYGLQrSTXTIbuBT62cCWohD+vr3aKOU+U0K
Lsz2N7EKQ503hfWKkWBcrXJpebDbyPYhdOVkS5RER/ie4i20xkcf9FD3zMNOjoI8
3AkctIxPSsIo6hkQq+Bf3C+WspXeb2j7SY87/0iqfU+pA28eKscpOUgQC5EApWUx
voblf8JqYogi6AEI4JnijRIC1VyA7SnP6jAkoG6VASBjPhKEaQxk2CKw4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE33OQKRZGpKiUX2Zp8oe/nWaDfeMB8GA1UdIwQY
MBaAFABfDUSyIfSxHInbaJafl8PHFUkGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUY4TlJMSWg5TEVjaWR0b2xwLVh3OGNWU1FZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My82ODIzOWYtMDlhMy00MTA4LTg5YmEt
ZWVlNTBkZDkxOTNjLzEvQUY4TlJMSWg5TEVjaWR0b2xwLVh3OGNWU1FZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My82ODIzOWYtMDlhMy00MTA4LTg5YmEtZWVlNTBkZDkxOTNj
LzEvQUY4TlJMSWg5TEVjaWR0b2xwLVh3OGNWU1FZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATE73vNEp
HK3D+iIAAc/fTho0+50hGeSOmNWTQ9Y4Lxq6dOtDsQvo2vLhng/zNtozghndopX/
RWrAdDTE7Ju/mj6bE0lOajpIkeX+R7z4xa52rRyw4z/jQLIhkGrDRtGhtwxnWcN7
GfL/l2xRh7J/QBJ8ki0GYAQjZIYqwkR4Ll9hbdfRJcsO+kFeXieLxDqxmVIGphgr
kRvKNYEeez8Ib+ymh6IjCiB5lsS4FX4K2Wl1z8+sfLCW7/a4xDWRom2x6zDTGKkQ
Bstr89RJJLdnW5qF4MxOGWfu93+vah7y/cqeXQ3DVAfk7Ix5G4mzVc/TZ9MbbcWJ
fONejJp49J2U/A==
-----END CERTIFICATE-----
Generated at Wed Apr 29 00:03:08 2026 by rpki-client