Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json)
Hash identifier: Yx2LazqrTdBlEH8ArGLP9boCUuEkf7je/l4bFIwPOc0=
Subject key identifier: B6:97:24:33:14:52:16:F3:93:33:5B:E4:D8:7F:F9:8E:C9:C3:A8:F4
Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Certificate serial: 019E30E04D0FA8DEF97F3A873299D1C761CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
Manifest number: 18DF
Signing time: Sat 16 May 2026 13:01:06 +0000
Manifest this update: Sat 16 May 2026 13:01:06 +0000
Manifest next update: Sun 17 May 2026 13:01:06 +0000
Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: lMN5T633107VRlQNd2go4NI9n9IhcCm8RDFDNJ2qiwA=)
2: 9vmezDMgMLAYgubj0dZwQBpw7Zo.roa (hash: QLo0rxDXf9m7rqbC9zynXdEyUGpcYsQ8wFalcr82vIw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:4d:0f:a8:de:f9:7f:3a:87:32:99:d1:c7:61:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Validity
Not Before: May 16 13:01:06 2026 GMT
Not After : May 17 13:01:06 2026 GMT
Subject: CN=b6972433145216f393335be4d87ff98ec9c3a8f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6f:1f:d8:71:19:94:f4:db:08:b6:0f:2d:4d:
c3:af:9b:dd:83:fe:fa:dd:39:57:cb:0e:20:bd:92:
4f:d0:e0:4f:b7:6d:3d:9b:bd:d7:7c:ef:95:6f:71:
8c:ba:cc:d7:fa:e0:43:93:50:b6:a4:38:aa:5e:46:
97:ba:ba:19:54:fc:df:0d:55:d9:8f:e1:4c:b1:db:
9f:52:1f:2f:30:7c:87:73:f2:37:f2:87:eb:e8:0f:
63:3e:7f:9d:d0:3e:43:e0:27:e8:b8:d6:64:0f:48:
ef:f0:83:85:6f:2b:cb:0b:8c:bb:c8:07:0f:30:05:
43:fa:51:49:84:22:58:ed:05:91:9a:ab:33:fc:a1:
5b:e4:7f:f3:5c:01:c9:6a:00:7b:4a:3c:c3:9a:b4:
94:70:72:b9:14:8e:2a:44:db:e0:60:ee:74:23:d4:
db:d0:89:e1:63:98:84:d0:24:55:64:c0:06:3c:d8:
ca:e6:cc:d1:55:d0:31:ab:9a:c4:0c:f1:2b:e2:8c:
eb:37:f2:bd:f0:d1:af:61:d8:44:6e:36:53:93:61:
af:49:17:6f:31:2e:2e:4a:0b:69:9e:57:02:55:4b:
7e:c7:54:ae:6c:8b:76:23:06:41:df:7b:2a:df:5b:
60:d6:50:2d:a8:3a:fc:a8:fd:ea:d1:e3:71:f3:7d:
7c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:97:24:33:14:52:16:F3:93:33:5B:E4:D8:7F:F9:8E:C9:C3:A8:F4
X509v3 Authority Key Identifier:
keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:7e:7a:33:60:69:78:4f:b6:a8:93:a0:09:77:82:e2:e0:43:
00:41:10:ee:49:33:56:0d:06:e9:35:7c:64:26:b5:19:4c:71:
9a:e8:ff:1d:b4:9b:dc:02:ef:88:22:5e:aa:8f:dc:32:f0:50:
11:80:b4:f4:44:c3:48:95:72:2f:7e:72:f1:9f:63:d1:5e:48:
df:a3:91:fc:cf:2c:66:72:5f:ba:95:c2:97:0a:90:cb:7d:a6:
29:55:c5:27:39:4d:fc:e7:57:b0:51:4b:61:b1:88:f1:35:a1:
92:71:af:bb:b7:56:a6:46:ad:27:35:7e:64:99:5b:47:ec:03:
6c:dc:66:fe:e6:7b:a4:a6:ea:93:4f:45:0c:f7:73:ff:00:20:
19:ed:7d:ed:0f:ca:49:37:9e:3a:28:dc:ff:4b:71:a2:39:1b:
4a:7e:41:0a:54:0e:1b:48:48:00:2a:3d:ee:33:f3:55:1a:bc:
1d:8b:0d:36:02:c6:ef:69:7d:ed:25:68:10:4f:ed:45:09:0c:
28:ed:3c:49:60:92:85:29:92:e0:59:03:48:09:ed:88:07:dc:
cc:17:ad:80:8e:6e:a4:5a:93:84:46:47:89:c1:55:10:a3:8f:
cf:b2:c5:e9:d1:59:49:9e:82:af:f5:eb:26:af:95:69:b9:7b:
09:ee:2f:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4w4E0PqN75fzqHMpnRx2HKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyNThiM2E5NzQxYjQzMWQ3YmVjZDY0Mjg2YjllNmJjZTBl
OTc1ZGEwHhcNMjYwNTE2MTMwMTA2WhcNMjYwNTE3MTMwMTA2WjAzMTEwLwYDVQQD
EyhiNjk3MjQzMzE0NTIxNmYzOTMzMzViZTRkODdmZjk4ZWM5YzNhOGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr28f2HEZlPTbCLYPLU3Dr5vdg/76
3TlXyw4gvZJP0OBPt209m73XfO+Vb3GMuszX+uBDk1C2pDiqXkaXuroZVPzfDVXZ
j+FMsdufUh8vMHyHc/I38ofr6A9jPn+d0D5D4CfouNZkD0jv8IOFbyvLC4y7yAcP
MAVD+lFJhCJY7QWRmqsz/KFb5H/zXAHJagB7SjzDmrSUcHK5FI4qRNvgYO50I9Tb
0InhY5iE0CRVZMAGPNjK5szRVdAxq5rEDPEr4ozrN/K98NGvYdhEbjZTk2GvSRdv
MS4uSgtpnlcCVUt+x1SubIt2IwZB33sq31tg1lAtqDr8qP3q0eNx83183wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLaXJDMUUhbzkzNb5Nh/+Y7Jw6j0MB8GA1UdIwQY
MBaAFPJYs6l0G0Mde+zWQoa55rzg6XXaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8wOTVkNWYtMjY5My00MTgyLTkzOTct
Y2RhOTRmYjc5NmQxLzEvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi8wOTVkNWYtMjY5My00MTgyLTkzOTctY2RhOTRmYjc5NmQx
LzEvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVn56M2Bp
eE+2qJOgCXeC4uBDAEEQ7kkzVg0G6TV8ZCa1GUxxmuj/HbSb3ALviCJeqo/cMvBQ
EYC09ETDSJVyL35y8Z9j0V5I36OR/M8sZnJfupXClwqQy32mKVXFJzlN/OdXsFFL
YbGI8TWhknGvu7dWpkatJzV+ZJlbR+wDbNxm/uZ7pKbqk09FDPdz/wAgGe197Q/K
STeeOijc/0txojkbSn5BClQOG0hIACo97jPzVRq8HYsNNgLG72l97SVoEE/tRQkM
KO08SWCShSmS4FkDSAntiAfczBetgI5upFqThEZHicFVEKOPz7LF6dFZSZ6Cr/Xr
Jq+Vabl7Ce4vFQ==
-----END CERTIFICATE-----
Generated at Sat May 16 20:21:49 2026 by rpki-client