Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
File: iq94tpd0pVUH3qv4xMlpQunvDSA.mft (raw, json)
Hash identifier: rrruIxHgjzWJXbrVC9G7TKrpRJ9g+hY74ddbnociIsU=
Subject key identifier: 29:F1:E8:16:7C:E9:38:F2:31:DF:1B:CF:3E:AA:EB:AB:D8:43:9F:24
Authority key identifier: 8A:AF:78:B6:97:74:A5:55:07:DE:AB:F8:C4:C9:69:42:E9:EF:0D:20
Certificate issuer: /CN=8aaf78b69774a55507deabf8c4c96942e9ef0d20
Certificate serial: 019E333C67C4F86D8D801CF2CB0FF8E63079
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
Manifest number: 100D
Signing time: Sun 17 May 2026 00:00:57 +0000
Manifest this update: Sun 17 May 2026 00:00:57 +0000
Manifest next update: Mon 18 May 2026 00:00:57 +0000
Files and hashes: 1: AOuKaEFuAus3hz3w0WC3j7I2mqc.roa (hash: YMOsepey7pZcM4gw70d5HgYaXkzZjfvaKQx2Aill38c=)
2: iq94tpd0pVUH3qv4xMlpQunvDSA.crl (hash: KhSh2nnArSCNVDoqwRNT3OqyGwUEXe+A9QZLxVubi3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:33:3c:67:c4:f8:6d:8d:80:1c:f2:cb:0f:f8:e6:30:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aaf78b69774a55507deabf8c4c96942e9ef0d20
Validity
Not Before: May 17 00:00:57 2026 GMT
Not After : May 18 00:00:57 2026 GMT
Subject: CN=29f1e8167ce938f231df1bcf3eaaebabd8439f24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c9:fb:61:59:df:f6:f4:55:9f:84:3c:fa:fa:
04:79:a2:b4:fe:1c:1b:f1:28:be:bb:9b:9d:3b:71:
5c:b2:1f:97:56:bf:cf:3b:7a:33:7c:90:ee:f7:43:
3a:63:f1:79:04:aa:ae:68:92:f7:17:52:80:85:5e:
f3:86:a6:13:93:54:3d:5f:5f:0f:5c:2e:96:e4:88:
85:18:aa:bf:5d:9b:63:d7:ae:6c:8e:db:91:2f:52:
83:d3:73:b1:66:1a:22:ab:f5:ba:5a:b1:c2:9d:6c:
14:b7:26:6f:aa:8c:ae:01:21:f8:2d:37:30:0f:d9:
79:03:63:08:cb:eb:b0:d3:98:4f:ba:f5:1d:37:60:
9a:95:62:ba:91:c2:10:83:0e:5a:57:7f:7e:29:08:
df:f3:ea:eb:6c:92:be:03:86:32:33:73:35:0b:34:
f4:a6:78:3c:3d:7e:01:54:63:60:1f:58:4d:71:9b:
d6:d0:04:b2:a1:58:4a:98:5b:32:99:0c:dd:b4:b2:
fc:db:6d:76:f0:30:56:10:45:27:d4:12:76:1c:bb:
80:b0:fe:84:11:05:28:1f:7a:e8:d5:81:b6:3a:92:
9e:f2:b7:e8:50:97:af:92:52:92:28:0f:f0:72:3a:
06:a0:5a:cb:9f:4e:45:f6:a5:b5:b5:84:a7:0a:aa:
e2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F1:E8:16:7C:E9:38:F2:31:DF:1B:CF:3E:AA:EB:AB:D8:43:9F:24
X509v3 Authority Key Identifier:
keyid:8A:AF:78:B6:97:74:A5:55:07:DE:AB:F8:C4:C9:69:42:E9:EF:0D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:90:31:0b:89:b9:45:41:6f:29:cd:cc:11:3a:d0:88:35:72:
5b:cc:5c:9c:4f:15:8a:8c:0b:b9:d1:a6:3b:fe:9b:d4:3b:5a:
eb:93:67:45:3b:7f:6b:b0:81:09:c0:d6:39:28:8c:a3:e4:90:
cb:2c:c4:cd:e8:f7:51:a9:27:34:f1:5f:7b:aa:d4:fa:ef:7e:
1d:41:81:6e:6c:43:eb:e2:e1:21:3a:6d:7c:e5:ba:99:cf:b3:
e9:c0:e1:a8:46:c1:87:1e:b2:84:27:a1:4b:81:e9:77:47:d8:
49:d1:c3:4b:13:a1:5c:79:f4:2a:8c:de:49:fc:77:cf:64:41:
85:66:e2:6d:2d:85:d3:0b:12:f7:b0:ef:53:2e:5a:7b:00:76:
84:bd:22:5b:d5:a4:99:c8:56:93:16:15:85:43:b8:f8:70:b3:
91:19:32:c5:42:ea:ae:65:35:54:c7:9f:04:18:d0:d5:4f:ef:
19:4d:f2:09:92:8c:20:9c:a4:ac:e1:ab:8b:58:44:77:5c:95:
f4:c3:fe:3e:90:d9:60:ce:80:22:72:80:bf:9b:0d:00:a4:a9:
ba:88:62:1f:80:0e:94:c9:d1:16:f1:5e:36:e8:46:49:9b:1f:
c1:f8:1a:79:c8:11:40:c0:29:5f:87:c3:d8:7e:bb:94:f9:d3:
a8:cb:95:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4zPGfE+G2NgBzyyw/45jB5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYWY3OGI2OTc3NGE1NTUwN2RlYWJmOGM0Yzk2OTQyZTll
ZjBkMjAwHhcNMjYwNTE3MDAwMDU3WhcNMjYwNTE4MDAwMDU3WjAzMTEwLwYDVQQD
EygyOWYxZTgxNjdjZTkzOGYyMzFkZjFiY2YzZWFhZWJhYmQ4NDM5ZjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1sn7YVnf9vRVn4Q8+voEeaK0/hwb
8Si+u5udO3Fcsh+XVr/PO3ozfJDu90M6Y/F5BKquaJL3F1KAhV7zhqYTk1Q9X18P
XC6W5IiFGKq/XZtj165sjtuRL1KD03OxZhoiq/W6WrHCnWwUtyZvqoyuASH4LTcw
D9l5A2MIy+uw05hPuvUdN2CalWK6kcIQgw5aV39+KQjf8+rrbJK+A4YyM3M1CzT0
png8PX4BVGNgH1hNcZvW0ASyoVhKmFsymQzdtLL822128DBWEEUn1BJ2HLuAsP6E
EQUoH3ro1YG2OpKe8rfoUJevklKSKA/wcjoGoFrLn05F9qW1tYSnCqriMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCnx6BZ86TjyMd8bzz6q66vYQ58kMB8GA1UdIwQY
MBaAFIqveLaXdKVVB96r+MTJaULp7w0gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXE5NHRwZDBwVlVIM3F2NHhNbHBRdW52RFNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS83OTczOTAtODFkNC00YzVkLWFiNzEt
NzA4ODU2OGM1MWMwLzEvaXE5NHRwZDBwVlVIM3F2NHhNbHBRdW52RFNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS83OTczOTAtODFkNC00YzVkLWFiNzEtNzA4ODU2OGM1MWMw
LzEvaXE5NHRwZDBwVlVIM3F2NHhNbHBRdW52RFNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc5AxC4m5
RUFvKc3METrQiDVyW8xcnE8ViowLudGmO/6b1Dta65NnRTt/a7CBCcDWOSiMo+SQ
yyzEzej3UaknNPFfe6rU+u9+HUGBbmxD6+LhITptfOW6mc+z6cDhqEbBhx6yhCeh
S4Hpd0fYSdHDSxOhXHn0KozeSfx3z2RBhWbibS2F0wsS97DvUy5aewB2hL0iW9Wk
mchWkxYVhUO4+HCzkRkyxULqrmU1VMefBBjQ1U/vGU3yCZKMIJykrOGri1hEd1yV
9MP+PpDZYM6AInKAv5sNAKSpuohiH4AOlMnRFvFeNuhGSZsfwfgaecgRQMApX4fD
2H67lPnTqMuVrg==
-----END CERTIFICATE-----
Generated at Sun May 17 03:37:37 2026 by rpki-client