Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft
File: s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft (raw, json)
Hash identifier: Y9r2F0/cOmzhOOSej104qcRtfyXAS5MzXIjhxI237eU=
Subject key identifier: 8D:B1:A6:CE:A0:AA:AA:5D:74:18:39:AD:D3:C2:7A:47:D0:B9:98:CA
Authority key identifier: B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06
Certificate issuer: /CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06
Certificate serial: 019DB1D857A8204B0E2AB0E399AB121F000C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft
Manifest number: 18D9
Signing time: Tue 21 Apr 2026 21:00:38 +0000
Manifest this update: Tue 21 Apr 2026 21:00:38 +0000
Manifest next update: Wed 22 Apr 2026 21:00:38 +0000
Files and hashes: 1: KvgeqJVMtBERBgaWeQ7l2q_TyyI.roa (hash: NJUE6bdAubYbnAUIE6s0c5Wi5PY+ros78NmtfNQmGAk=)
2: Of_F0nZx4uUMsyu_MFlv9vqYM6A.roa (hash: V1xfi16Y3WhXqWRGet3YcxqXtnKz/3AWs7HoDzA48YM=)
3: _VVNfxdA5_FHj05YYq547OSKmlQ.roa (hash: 13IEzG/o1pmkzrgbkejU8IZuzD7A6Ft+aR2tUe+BCq8=)
4: bnU5Q0FeKCXPHTgsxSNx9kV93d4.roa (hash: jfuS4WANPOwG9IyimGe8aZrpP9Pv78GN//1LDqZ2n2k=)
5: ck22982XPjtgcPjy954uVGCKcK0.roa (hash: xSnMILKaL4KrwNXzralU8vyZN836vuMs+IKmeHjf9vw=)
6: s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl (hash: 9h9KCmkaIjzoUMiVynXlH5TxFVK32rc2y5MtyBBP5VM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 21:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b1:d8:57:a8:20:4b:0e:2a:b0:e3:99:ab:12:1f:00:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06
Validity
Not Before: Apr 21 21:00:38 2026 GMT
Not After : Apr 22 21:00:38 2026 GMT
Subject: CN=8db1a6cea0aaaa5d741839add3c27a47d0b998ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:86:8e:84:3d:3b:81:74:b8:73:8d:2e:ec:37:
73:a6:66:e5:ac:a7:c8:d8:d2:e2:31:4d:fa:7a:ec:
8b:22:26:2c:b2:b4:7a:17:ee:0c:ad:35:12:81:d5:
dd:23:fa:c1:cd:d1:45:5f:37:6a:ac:63:11:96:b6:
61:e3:22:8c:d4:71:c8:98:28:a2:c1:42:61:2f:8f:
5d:e3:ce:57:aa:c1:97:05:6f:34:ca:77:96:eb:3a:
7b:65:ca:67:cb:0e:5b:30:f4:75:6c:c5:a1:85:a1:
35:7c:fb:0d:32:7f:6a:34:7a:b1:9e:68:8e:c8:7e:
5c:23:42:e3:d0:4f:c6:9f:92:a9:33:f3:d8:7a:dc:
bb:f3:b9:a4:77:f6:54:5d:cc:5e:6b:2b:f3:0b:8e:
1e:69:b3:49:1d:67:ed:81:28:b7:b8:42:51:30:15:
57:1b:fd:a3:08:ff:c1:71:28:50:36:f0:6b:cc:51:
79:ce:75:96:19:a2:1c:56:86:17:41:5d:6e:aa:6c:
f2:54:42:ae:1d:45:e0:1b:dd:40:4d:89:05:06:4f:
96:50:b5:2a:bd:eb:56:6a:35:0a:3b:ac:d0:57:e4:
c0:ac:8f:3f:87:8c:95:4b:04:e7:a2:3e:e1:00:f6:
cb:83:58:57:ba:97:87:35:fd:b6:e0:80:4a:cf:a7:
ab:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:B1:A6:CE:A0:AA:AA:5D:74:18:39:AD:D3:C2:7A:47:D0:B9:98:CA
X509v3 Authority Key Identifier:
keyid:B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:8f:9e:af:1e:ce:ea:f3:3d:14:2a:84:82:7b:5d:05:ad:6b:
dd:2c:4d:d8:05:92:d8:6b:fc:7a:64:dc:21:45:9a:82:1c:7a:
06:2d:f3:96:43:6f:bd:34:d4:14:b3:c7:c4:59:b8:1a:b3:07:
01:13:ad:72:ee:aa:23:f7:af:35:84:4a:2d:4b:5e:5b:41:97:
cc:70:44:92:ae:eb:f9:ce:07:b3:bb:4b:c3:6d:60:a9:a9:e3:
58:b3:8a:88:cf:20:cd:24:28:ac:08:90:46:ff:1d:9d:47:af:
3a:eb:3e:fa:2b:8e:ee:cd:ce:e5:91:da:80:9d:03:ba:20:55:
2d:1c:d1:6d:9b:0d:03:ab:5e:9d:8f:d0:a0:9f:5d:21:92:5b:
97:63:8c:02:95:b1:7c:c0:c6:22:4b:0a:ba:d0:d6:2c:a4:a8:
e1:f8:e0:f4:96:0c:ab:0a:14:b9:ef:f9:71:54:09:ce:f9:d9:
b6:38:96:4e:5f:18:69:38:ce:6b:fe:ca:ef:db:22:8b:8b:07:
d9:5d:88:fa:46:e4:a2:c0:d3:0a:99:d1:b8:37:92:a3:75:0d:
67:bb:e1:5d:a9:4b:2b:e3:64:5b:09:d2:46:ea:45:e1:6c:23:
3c:ef:bd:43:c2:60:dc:80:a6:18:1b:4c:b4:47:ab:07:a1:75:
2c:dd:ce:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2x2FeoIEsOKrDjmasSHwAMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzOGJiNjJhNDdiMWEyYWVkYjcwZjMyZjU4Yzk3OWJhMGM3
NzdmMDYwHhcNMjYwNDIxMjEwMDM4WhcNMjYwNDIyMjEwMDM4WjAzMTEwLwYDVQQD
Eyg4ZGIxYTZjZWEwYWFhYTVkNzQxODM5YWRkM2MyN2E0N2QwYjk5OGNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA94aOhD07gXS4c40u7DdzpmblrKfI
2NLiMU36euyLIiYssrR6F+4MrTUSgdXdI/rBzdFFXzdqrGMRlrZh4yKM1HHImCii
wUJhL49d485XqsGXBW80yneW6zp7Zcpnyw5bMPR1bMWhhaE1fPsNMn9qNHqxnmiO
yH5cI0Lj0E/Gn5KpM/PYety787mkd/ZUXcxeayvzC44eabNJHWftgSi3uEJRMBVX
G/2jCP/BcShQNvBrzFF5znWWGaIcVoYXQV1uqmzyVEKuHUXgG91ATYkFBk+WULUq
vetWajUKO6zQV+TArI8/h4yVSwTnoj7hAPbLg1hXupeHNf224IBKz6erHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI2xps6gqqpddBg5rdPCekfQuZjKMB8GA1UdIwQY
MBaAFLOLtipHsaKu23DzL1jJeboMd38GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczR1MktrZXhvcTdiY1BNdldNbDV1Z3gzZndZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85ZjY4MmMtMWM1Ny00Y2U1LWJiOTgt
MDYwNWMwODlmYzM4LzEvczR1MktrZXhvcTdiY1BNdldNbDV1Z3gzZndZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi85ZjY4MmMtMWM1Ny00Y2U1LWJiOTgtMDYwNWMwODlmYzM4
LzEvczR1MktrZXhvcTdiY1BNdldNbDV1Z3gzZndZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlo+erx7O
6vM9FCqEgntdBa1r3SxN2AWS2Gv8emTcIUWaghx6Bi3zlkNvvTTUFLPHxFm4GrMH
AROtcu6qI/evNYRKLUteW0GXzHBEkq7r+c4Hs7tLw21gqanjWLOKiM8gzSQorAiQ
Rv8dnUevOus++iuO7s3O5ZHagJ0DuiBVLRzRbZsNA6tenY/QoJ9dIZJbl2OMApWx
fMDGIksKutDWLKSo4fjg9JYMqwoUue/5cVQJzvnZtjiWTl8YaTjOa/7K79sii4sH
2V2I+kbkosDTCpnRuDeSo3UNZ7vhXalLK+NkWwnSRupF4WwjPO+9Q8Jg3ICmGBtM
tEerB6F1LN3O8Q==
-----END CERTIFICATE-----
Generated at Wed Apr 22 04:13:48 2026 by rpki-client