Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json)
Hash identifier: X9tC41BiU+tRx1C6kdqIZhHsoiUgfPuKmlMmTQSZAuo=
Subject key identifier: 34:6A:96:95:4F:41:D4:51:F4:C1:16:64:41:50:F6:D9:54:5C:13:AA
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 019DCE637E4406FAC7128507841F3908AEED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
Manifest number: 18EE
Signing time: Mon 27 Apr 2026 10:02:00 +0000
Manifest this update: Mon 27 Apr 2026 10:02:00 +0000
Manifest next update: Tue 28 Apr 2026 10:02:00 +0000
Files and hashes: 1: 1-zEgOYWTHaiqMcDqGEot8D9hfIE.roa (hash: jVaMeN32gu4WLb8RXEU7QtT8NJ8As10+YaSSTQDJyMM=)
2: 77UuERyh3Z3AUcULCIiJEdc-fQo.roa (hash: DnHBthnf/STbIAi1O3tZFh2P5fMOYtzdif9FPjsRkXU=)
3: I74vLo5CklRsbzCPNYnKrvIvLj4.roa (hash: ylSWG2wfgpUMhcZpBHxBahFVE1pyuX6ebVuzOtGSKVo=)
4: OA8Bk3tPUiZSmiAzbm0eBXa4nuE.roa (hash: oWNPNPjgcKmmhmYQ0/KR/N+7+UQanOVovcIMTSyV2uo=)
5: hYxTxK4AHKTY1TwSA43oGaIbwvI.roa (hash: pXMygWt3Q3zIvm4RuMnURnfNgvmTHNGm+Wsjn0P2p18=)
6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: z/+oYOxzaT45FHaKGwN4AcwD+cOjBrSLBW5A/GbaJ9A=)
7: nS-qR-87gGJ6pBf2l7_HCJOIeHM.roa (hash: uHfPOVPyEDve9s1ba9V4RroyQ1/pD8S/mdaAMdEB9is=)
8: pxTDDl8HD6hZo5qJKIkeKUT3PHY.roa (hash: FICr2xp4vd+7n3rWeWvKoKoWXhNvU50pS0gZxwPllVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:63:7e:44:06:fa:c7:12:85:07:84:1f:39:08:ae:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Apr 27 10:02:00 2026 GMT
Not After : Apr 28 10:02:00 2026 GMT
Subject: CN=346a96954f41d451f4c116644150f6d9545c13aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a9:c5:8a:fc:20:7e:84:92:27:20:c7:34:7c:
69:de:62:87:11:f4:3b:8b:ac:f0:bb:cf:fe:6a:2e:
80:40:a4:25:ac:09:d7:59:f5:91:2a:cd:55:0b:40:
f9:db:c7:e2:c0:f7:fb:0b:5a:9d:15:cd:a8:c1:fe:
fe:f4:a6:2d:53:7b:c9:b7:ea:ce:de:46:db:e2:ed:
0e:00:d8:fc:5d:78:01:9a:eb:1d:60:c5:51:6f:1b:
be:4c:29:0d:29:60:29:5e:df:a7:2e:7c:41:68:7f:
32:21:1a:ce:3a:9f:b2:96:ee:4a:59:92:c6:69:05:
42:e1:96:47:1e:b7:06:75:52:06:e1:77:4a:0f:a0:
59:44:8e:a2:03:d8:7e:72:c8:8f:df:0a:43:e7:fb:
9a:1d:79:c5:f0:d6:8f:9e:bf:da:5c:71:53:95:ad:
e7:13:54:7c:1c:18:63:05:e7:22:8e:da:c9:34:70:
30:6d:c1:19:19:cc:36:1a:3b:22:09:04:e4:83:4c:
87:9b:01:1a:85:bd:c9:1d:43:2d:e3:cf:f2:32:ad:
35:c2:1d:80:cf:ba:60:d3:9f:a4:04:84:36:2e:5a:
c8:c9:d6:96:13:a3:61:07:fe:c8:8a:f6:8c:c7:6e:
fa:2e:6f:7c:97:18:3e:0d:9b:0b:d5:c2:17:74:93:
89:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:6A:96:95:4F:41:D4:51:F4:C1:16:64:41:50:F6:D9:54:5C:13:AA
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:7d:bb:97:bc:95:80:48:5a:47:35:9c:27:e2:1b:49:51:be:
88:f9:cb:94:45:38:fd:35:5f:79:07:69:1c:7a:c0:2f:1e:6c:
52:00:cb:43:0d:94:09:41:56:3a:45:5c:24:ce:0e:cf:f0:60:
01:eb:69:be:65:c5:3e:03:b4:1d:06:d4:ab:26:43:52:12:c3:
0d:a1:8d:f4:ba:a3:66:6c:da:14:b8:97:f1:5f:35:f5:e3:59:
f9:5d:18:86:f0:cc:65:dd:89:06:a8:df:b2:1f:d0:bf:18:e5:
2a:a4:16:ec:c1:23:12:c1:7f:a6:0b:7b:c3:19:39:45:b2:0e:
82:a0:69:41:90:41:2e:23:57:9c:cd:3b:47:4b:13:8b:e6:d0:
c2:e9:b6:cc:29:3a:55:80:fc:62:ae:5f:f7:63:f4:09:98:74:
55:b8:c5:f8:f5:00:a2:ff:a5:7b:fd:4a:53:97:78:56:73:97:
56:a2:d4:24:f6:de:21:33:fb:7b:85:09:08:35:46:d3:28:10:
76:ca:fd:83:81:ba:17:bb:b3:2e:e5:71:65:ad:e8:78:cf:19:
c4:e3:92:dc:75:e5:e6:7a:84:22:17:0f:72:c1:12:02:8a:24:
77:12:e3:e4:06:3c:03:aa:c4:19:80:33:fd:64:ad:f2:43:3b:
83:b6:06:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3OY35EBvrHEoUHhB85CK7tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0MGExMGEyNTY3MjhmMTFhNGJiYWFkYzMyMDRiN2YwYTM1
YTUwMDAwHhcNMjYwNDI3MTAwMjAwWhcNMjYwNDI4MTAwMjAwWjAzMTEwLwYDVQQD
EygzNDZhOTY5NTRmNDFkNDUxZjRjMTE2NjQ0MTUwZjZkOTU0NWMxM2FhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwKnFivwgfoSSJyDHNHxp3mKHEfQ7
i6zwu8/+ai6AQKQlrAnXWfWRKs1VC0D528fiwPf7C1qdFc2owf7+9KYtU3vJt+rO
3kbb4u0OANj8XXgBmusdYMVRbxu+TCkNKWApXt+nLnxBaH8yIRrOOp+ylu5KWZLG
aQVC4ZZHHrcGdVIG4XdKD6BZRI6iA9h+csiP3wpD5/uaHXnF8NaPnr/aXHFTla3n
E1R8HBhjBecijtrJNHAwbcEZGcw2GjsiCQTkg0yHmwEahb3JHUMt48/yMq01wh2A
z7pg05+kBIQ2LlrIydaWE6NhB/7IivaMx276Lm98lxg+DZsL1cIXdJOJcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDRqlpVPQdRR9MEWZEFQ9tlUXBOqMB8GA1UdIwQY
MBaAFJQKEKJWco8RpLuq3DIEt/CjWlAAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYt
ZGNlNmQ2OTA5MjQ3LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYtZGNlNmQ2OTA5MjQ3
LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUX27l7yV
gEhaRzWcJ+IbSVG+iPnLlEU4/TVfeQdpHHrALx5sUgDLQw2UCUFWOkVcJM4Oz/Bg
AetpvmXFPgO0HQbUqyZDUhLDDaGN9LqjZmzaFLiX8V819eNZ+V0YhvDMZd2JBqjf
sh/QvxjlKqQW7MEjEsF/pgt7wxk5RbIOgqBpQZBBLiNXnM07R0sTi+bQwum2zCk6
VYD8Yq5f92P0CZh0VbjF+PUAov+le/1KU5d4VnOXVqLUJPbeITP7e4UJCDVG0ygQ
dsr9g4G6F7uzLuVxZa3oeM8ZxOOS3HXl5nqEIhcPcsESAookdxLj5AY8A6rEGYAz
/WSt8kM7g7YGMA==
-----END CERTIFICATE-----
Generated at Mon Apr 27 14:36:01 2026 by rpki-client