Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
File: mRQlj7nTZXszdhQr_GPazk-CEcQ.mft (raw, json)
Hash identifier: 94ZdEu0pi3ze8E+/nuA0d6uiFj1no0ePy0jXBJcJOms=
Subject key identifier: 47:A7:E4:5E:9F:F3:9A:99:2A:3B:A6:0D:6D:BA:90:BA:07:A7:DA:CB
Authority key identifier: 99:14:25:8F:B9:D3:65:7B:33:76:14:2B:FC:63:DA:CE:4F:82:11:C4
Certificate issuer: /CN=9914258fb9d3657b3376142bfc63dace4f8211c4
Certificate serial: 019E205ACE848A405DFEF0BE74B2E2A1A97D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
Manifest number: 1907
Signing time: Wed 13 May 2026 08:01:22 +0000
Manifest this update: Wed 13 May 2026 08:01:22 +0000
Manifest next update: Thu 14 May 2026 08:01:22 +0000
Files and hashes: 1: YeKyHo-fPzS0PXLTVc_ZhuOAnDE.roa (hash: JasqN/dFTwUl8qybymMvb6Z/5LOD9789U3Jts0vT2yw=)
2: mRQlj7nTZXszdhQr_GPazk-CEcQ.crl (hash: yhwWCfGrBW6H5WwbuNCxhf7r3Gm0ExzUTAyCdMfJvR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:ce:84:8a:40:5d:fe:f0:be:74:b2:e2:a1:a9:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9914258fb9d3657b3376142bfc63dace4f8211c4
Validity
Not Before: May 13 08:01:22 2026 GMT
Not After : May 14 08:01:22 2026 GMT
Subject: CN=47a7e45e9ff39a992a3ba60d6dba90ba07a7dacb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c9:06:e3:dc:aa:aa:4c:46:42:9a:23:16:e5:
34:1d:31:1c:77:54:7d:86:73:f1:00:21:12:b0:fb:
71:f3:19:76:57:2e:a9:05:4a:08:42:f9:de:57:cc:
ad:d7:7d:60:ee:61:1e:d4:14:a2:dc:1d:7d:e8:20:
44:a8:ff:08:0e:51:c5:9c:3d:0a:77:6e:ca:a0:2b:
75:28:ba:71:33:eb:00:8e:aa:12:f2:c9:8f:10:6f:
b6:cb:df:52:5c:2d:e6:2d:99:af:5f:bf:0c:62:03:
ab:6a:c7:8d:76:86:2c:9f:04:4c:ef:19:49:a2:32:
3e:a2:15:60:9b:06:3e:9d:86:9c:94:76:83:e1:57:
79:f8:5a:c4:9c:56:4c:c5:dc:68:12:12:a5:91:e8:
b8:3a:80:b3:20:e6:61:c2:7a:cd:d3:51:4f:d4:8f:
7b:49:4d:0e:af:31:1a:25:95:6a:d7:05:44:b6:18:
a4:70:48:d5:79:b8:38:2d:ac:26:2e:38:28:e4:a8:
12:22:b8:90:26:de:aa:f1:f3:78:22:9d:cf:f0:56:
f3:97:74:c7:12:7a:52:05:cf:f2:c5:d4:44:cc:9a:
14:e0:56:85:34:b9:49:f9:3d:1e:33:63:97:8f:1d:
bc:2f:6b:a5:7e:ca:83:9d:8a:9a:c7:ea:df:3c:aa:
7c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A7:E4:5E:9F:F3:9A:99:2A:3B:A6:0D:6D:BA:90:BA:07:A7:DA:CB
X509v3 Authority Key Identifier:
keyid:99:14:25:8F:B9:D3:65:7B:33:76:14:2B:FC:63:DA:CE:4F:82:11:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:50:6e:2b:f5:76:5e:b3:eb:28:bd:fe:df:b1:17:85:69:d4:
a2:bf:99:58:0d:83:5b:9b:58:f2:98:02:4f:f0:03:36:10:42:
8f:b5:25:30:54:40:03:8e:30:5f:29:72:d8:78:2f:f9:28:57:
8a:27:fb:7d:5b:62:28:55:06:b1:5a:df:03:1c:cf:ae:db:e0:
10:32:92:e7:91:62:69:7e:cd:bb:69:c8:18:01:2e:a1:21:4e:
78:e9:5b:4b:34:4b:9c:83:58:2b:25:e8:c8:ef:40:e0:ea:b7:
aa:ff:6d:62:e8:b5:93:95:46:95:3e:6a:00:f6:67:53:7b:7b:
03:49:d1:0f:3c:57:62:34:c9:5a:2e:fe:d6:37:dd:51:59:bd:
4e:83:ba:00:c9:a2:21:4c:bf:d4:72:43:0a:1a:66:69:03:e7:
a7:d6:78:db:1f:7a:a4:0b:bf:f6:74:dc:0d:a5:bc:6a:76:07:
30:57:d1:4c:76:1f:75:fe:27:99:a9:c9:86:16:cd:cc:31:fd:
ce:dc:e7:05:b0:e3:84:44:5d:77:53:d0:d9:6a:be:97:42:fe:
e2:19:53:00:7c:67:68:01:56:a7:9a:17:b2:6f:ca:2b:91:b2:
7a:95:fd:f3:e5:b6:6c:b2:e1:72:b0:ad:1c:ee:4f:83:75:d0:
62:4d:e1:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gWs6EikBd/vC+dLLioal9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5MTQyNThmYjlkMzY1N2IzMzc2MTQyYmZjNjNkYWNlNGY4
MjExYzQwHhcNMjYwNTEzMDgwMTIyWhcNMjYwNTE0MDgwMTIyWjAzMTEwLwYDVQQD
Eyg0N2E3ZTQ1ZTlmZjM5YTk5MmEzYmE2MGQ2ZGJhOTBiYTA3YTdkYWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuskG49yqqkxGQpojFuU0HTEcd1R9
hnPxACESsPtx8xl2Vy6pBUoIQvneV8yt131g7mEe1BSi3B196CBEqP8IDlHFnD0K
d27KoCt1KLpxM+sAjqoS8smPEG+2y99SXC3mLZmvX78MYgOraseNdoYsnwRM7xlJ
ojI+ohVgmwY+nYaclHaD4Vd5+FrEnFZMxdxoEhKlkei4OoCzIOZhwnrN01FP1I97
SU0OrzEaJZVq1wVEthikcEjVebg4LawmLjgo5KgSIriQJt6q8fN4Ip3P8Fbzl3TH
EnpSBc/yxdREzJoU4FaFNLlJ+T0eM2OXjx28L2ulfsqDnYqax+rfPKp8UwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEen5F6f85qZKjumDW26kLoHp9rLMB8GA1UdIwQY
MBaAFJkUJY+502V7M3YUK/xj2s5PghHEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVJRbGo3blRaWHN6ZGhRcl9HUGF6ay1DRWNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS84NjY0MWUtNjY5Yy00YThkLWFlMGIt
ZmUzNDFiMzAwNWUzLzEvbVJRbGo3blRaWHN6ZGhRcl9HUGF6ay1DRWNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS84NjY0MWUtNjY5Yy00YThkLWFlMGItZmUzNDFiMzAwNWUz
LzEvbVJRbGo3blRaWHN6ZGhRcl9HUGF6ay1DRWNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT1BuK/V2
XrPrKL3+37EXhWnUor+ZWA2DW5tY8pgCT/ADNhBCj7UlMFRAA44wXyly2Hgv+ShX
iif7fVtiKFUGsVrfAxzPrtvgEDKS55FiaX7Nu2nIGAEuoSFOeOlbSzRLnINYKyXo
yO9A4Oq3qv9tYui1k5VGlT5qAPZnU3t7A0nRDzxXYjTJWi7+1jfdUVm9ToO6AMmi
IUy/1HJDChpmaQPnp9Z42x96pAu/9nTcDaW8anYHMFfRTHYfdf4nmanJhhbNzDH9
ztznBbDjhERdd1PQ2Wq+l0L+4hlTAHxnaAFWp5oXsm/KK5GyepX98+W2bLLhcrCt
HO5Pg3XQYk3hoA==
-----END CERTIFICATE-----
Generated at Wed May 13 13:39:25 2026 by rpki-client