Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
File: hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft (raw, json)
Hash identifier: jVM6u7+RcYA9CJrnv4tvrkq7LDJfr+E+pcH9ccAvi7U=
Subject key identifier: 79:A3:FE:E9:3B:97:AE:5D:26:A8:EB:DD:BC:F8:58:45:10:47:43:AD
Authority key identifier: 85:4E:10:3A:AE:C4:32:FC:19:1D:49:81:9B:D1:AB:71:FE:1C:FA:80
Certificate issuer: /CN=854e103aaec432fc191d49819bd1ab71fe1cfa80
Certificate serial: 019DA7F9A5BE400F8C620ED6E4B05EA87D94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hU4QOq7EMvwZHUmBm9Grcf4c-oA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
Manifest number: 18CC
Signing time: Sun 19 Apr 2026 23:00:49 +0000
Manifest this update: Sun 19 Apr 2026 23:00:49 +0000
Manifest next update: Mon 20 Apr 2026 23:00:49 +0000
Files and hashes: 1: Bgb4R3FK8PY34Yz-lvynRT-9XWQ.roa (hash: St6uFsBRyQsJnyTTYPZwyzlv1Byj/hyZ5kqADUUKKnM=)
2: hU4QOq7EMvwZHUmBm9Grcf4c-oA.crl (hash: CQgmSqZJjHRJgWRWYEGq1/Wy0dy/Ky3Ycz98vX3fntU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hU4QOq7EMvwZHUmBm9Grcf4c-oA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 23:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a7:f9:a5:be:40:0f:8c:62:0e:d6:e4:b0:5e:a8:7d:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854e103aaec432fc191d49819bd1ab71fe1cfa80
Validity
Not Before: Apr 19 23:00:49 2026 GMT
Not After : Apr 20 23:00:49 2026 GMT
Subject: CN=79a3fee93b97ae5d26a8ebddbcf85845104743ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:52:f4:e3:4a:65:5f:87:70:dc:0c:bd:4e:5c:
d7:62:3f:bc:17:4c:0c:c9:41:57:fb:5b:28:7b:a7:
76:0a:5a:75:7c:a3:72:8c:5a:f8:54:7b:d7:99:38:
4f:4e:4a:04:5d:8a:ac:a8:01:22:cf:be:c4:19:94:
dd:4f:db:62:77:b0:d9:b4:02:62:39:30:92:60:1b:
fb:41:f9:82:4e:c5:fe:60:01:d6:b0:13:72:10:09:
3e:e3:3f:89:f6:cf:7d:6a:f4:92:24:74:7d:1d:9a:
af:20:34:f3:65:0d:8f:e3:38:a2:35:d6:7e:c8:aa:
04:3b:bc:0b:6a:e5:99:02:25:5c:78:b4:a3:68:32:
8b:1b:84:ae:83:ea:56:70:86:a4:b6:5b:5a:07:ef:
d1:b5:d3:cc:92:9c:87:06:27:2f:7a:cc:83:69:a4:
6b:4c:d2:c1:12:92:df:2e:c4:e2:2d:51:70:f6:bf:
a5:cf:8c:93:ac:43:c4:0a:e7:ea:91:5a:16:f0:65:
10:ba:09:ac:09:d5:78:59:2d:b9:37:8e:09:f7:7c:
ed:ba:42:3c:9a:9c:d6:db:c3:b9:4c:d3:c5:26:5a:
7c:42:f9:67:71:4b:ce:a1:04:7a:7a:7b:a7:bd:a6:
dc:52:a3:32:c2:60:3e:b7:8c:85:22:b3:5c:1d:8f:
3d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A3:FE:E9:3B:97:AE:5D:26:A8:EB:DD:BC:F8:58:45:10:47:43:AD
X509v3 Authority Key Identifier:
keyid:85:4E:10:3A:AE:C4:32:FC:19:1D:49:81:9B:D1:AB:71:FE:1C:FA:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hU4QOq7EMvwZHUmBm9Grcf4c-oA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:6c:fa:d2:9d:21:a8:3a:dd:fa:99:d7:2d:39:40:59:d2:a2:
a4:45:5e:cd:41:df:fd:89:3a:82:e7:8d:12:93:37:d0:65:91:
0f:90:1b:9b:d0:e1:5c:7d:48:b6:7a:40:05:2f:da:97:cc:70:
cd:77:15:c5:9a:f8:eb:cd:a0:29:a3:31:dd:43:12:a4:60:97:
1b:b7:52:de:51:f2:0e:31:ac:c6:6e:74:26:9d:90:cc:39:66:
98:c0:3a:49:05:ed:14:3c:e5:f2:c7:c8:89:45:dc:9e:83:1c:
92:43:cc:3a:b1:72:1e:66:f3:0f:27:10:7b:65:77:fe:28:79:
ea:2a:03:70:c8:a3:73:a3:ad:f9:05:ec:b6:85:da:5f:8f:cd:
af:fb:57:00:b6:61:f6:a6:b9:0b:fa:1a:e2:20:b9:ef:42:6f:
16:52:0c:f4:81:8a:a1:35:16:6e:e2:89:23:9a:f4:9c:ed:11:
f0:8c:16:0e:8e:7b:25:f1:f2:f2:4e:55:ec:4b:52:7c:d1:b6:
49:6f:d8:f8:13:c1:0b:18:5b:6e:7b:e8:8b:43:a9:3a:96:00:
48:85:a3:67:57:b1:47:ad:ff:5f:4c:5b:f7:eb:63:81:63:9f:
f3:d7:a6:a6:5f:6e:b5:68:88:86:81:46:7a:f7:ea:2b:17:e2:
14:92:2c:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2n+aW+QA+MYg7W5LBeqH2UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1NGUxMDNhYWVjNDMyZmMxOTFkNDk4MTliZDFhYjcxZmUx
Y2ZhODAwHhcNMjYwNDE5MjMwMDQ5WhcNMjYwNDIwMjMwMDQ5WjAzMTEwLwYDVQQD
Eyg3OWEzZmVlOTNiOTdhZTVkMjZhOGViZGRiY2Y4NTg0NTEwNDc0M2FkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh1L040plX4dw3Ay9TlzXYj+8F0wM
yUFX+1soe6d2Clp1fKNyjFr4VHvXmThPTkoEXYqsqAEiz77EGZTdT9tid7DZtAJi
OTCSYBv7QfmCTsX+YAHWsBNyEAk+4z+J9s99avSSJHR9HZqvIDTzZQ2P4ziiNdZ+
yKoEO7wLauWZAiVceLSjaDKLG4Sug+pWcIaktltaB+/RtdPMkpyHBicvesyDaaRr
TNLBEpLfLsTiLVFw9r+lz4yTrEPECufqkVoW8GUQugmsCdV4WS25N44J93ztukI8
mpzW28O5TNPFJlp8QvlncUvOoQR6enunvabcUqMywmA+t4yFIrNcHY89twIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHmj/uk7l65dJqjr3bz4WEUQR0OtMB8GA1UdIwQY
MBaAFIVOEDquxDL8GR1JgZvRq3H+HPqAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFU0UU9xN0VNdndaSFVtQm05R3JjZjRjLW9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi82NWY0YTItNWY2OS00NjViLTg4OTEt
OWMwMWRmN2I5ZTY2LzEvaFU0UU9xN0VNdndaSFVtQm05R3JjZjRjLW9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNi82NWY0YTItNWY2OS00NjViLTg4OTEtOWMwMWRmN2I5ZTY2
LzEvaFU0UU9xN0VNdndaSFVtQm05R3JjZjRjLW9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoWz60p0h
qDrd+pnXLTlAWdKipEVezUHf/Yk6gueNEpM30GWRD5Abm9DhXH1ItnpABS/al8xw
zXcVxZr4682gKaMx3UMSpGCXG7dS3lHyDjGsxm50Jp2QzDlmmMA6SQXtFDzl8sfI
iUXcnoMckkPMOrFyHmbzDycQe2V3/ih56ioDcMijc6Ot+QXstoXaX4/Nr/tXALZh
9qa5C/oa4iC570JvFlIM9IGKoTUWbuKJI5r0nO0R8IwWDo57JfHy8k5V7EtSfNG2
SW/Y+BPBCxhbbnvoi0OpOpYASIWjZ1exR63/X0xb9+tjgWOf89empl9utWiIhoFG
evfqKxfiFJIsXg==
-----END CERTIFICATE-----
Generated at Mon Apr 20 08:45:53 2026 by rpki-client