Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
File: rnLkfVZpJJmnJr-ADqg4A2Letr4.mft (raw, json)
Hash identifier: 0zo9V8ZpR+/2C9lJJTCEc4hPWz1sQOjM0z9bge1GCpE=
Subject key identifier: A6:08:E8:BC:51:FC:F0:74:D4:55:11:DD:30:B7:D5:40:D5:08:10:19
Authority key identifier: AE:72:E4:7D:56:69:24:99:A7:26:BF:80:0E:A8:38:03:62:DE:B6:BE
Certificate issuer: /CN=ae72e47d56692499a726bf800ea8380362deb6be
Certificate serial: 019E1FB550A54AF1AB3986D1BEB28F340270
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
Manifest number: 1917
Signing time: Wed 13 May 2026 05:00:36 +0000
Manifest this update: Wed 13 May 2026 05:00:36 +0000
Manifest next update: Thu 14 May 2026 05:00:36 +0000
Files and hashes: 1: 0tjlFCD9R3QvhuaUb8R98x3yaAA.roa (hash: QW/Cv+tz1AwpdParcrVZ17Ri4asuS8geM/KpLVI71iU=)
2: RYe-A-tcBgsvnTviE-ENg27AeMY.roa (hash: BIG9Ev2/ZDOm8EsC2U3aW/Qd5R8vFaAuiSgknEWjyDA=)
3: rnLkfVZpJJmnJr-ADqg4A2Letr4.crl (hash: KwLEF8fOKXkoZ2A2V0AfVb9IWNBj6gbgl3AZzqFfPIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:b5:50:a5:4a:f1:ab:39:86:d1:be:b2:8f:34:02:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae72e47d56692499a726bf800ea8380362deb6be
Validity
Not Before: May 13 05:00:36 2026 GMT
Not After : May 14 05:00:36 2026 GMT
Subject: CN=a608e8bc51fcf074d45511dd30b7d540d5081019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:40:d1:3c:66:15:6f:d0:6e:d8:ad:66:8d:ca:
5f:02:79:d2:ea:3e:6c:8d:16:2a:de:60:10:37:9f:
e6:8f:59:40:eb:f4:6d:59:83:b4:a5:8e:36:32:36:
0c:66:5a:d3:43:78:68:ae:ba:04:9b:fd:93:4f:a0:
7f:4a:5f:e6:52:4c:75:bc:7a:66:37:15:00:b3:df:
2e:d3:84:26:84:3a:8c:4b:62:59:f3:98:02:a0:4a:
b2:20:7f:4a:8b:f7:9c:a9:1f:96:71:47:2b:3b:19:
fc:94:ad:2d:b8:17:7c:bf:98:a2:8a:1e:95:9e:e9:
dd:8f:03:d9:9f:79:f7:cc:d2:27:a3:42:0b:04:19:
71:e7:db:28:80:93:44:ce:de:ee:ae:70:27:bf:37:
00:15:60:87:5b:d0:3b:2f:1f:ca:66:14:86:67:9a:
05:55:b4:fd:62:36:63:01:cd:26:b9:61:75:31:1b:
b8:c4:b8:98:59:78:15:37:7e:9a:f6:50:bd:fa:f2:
f1:5c:cf:34:2d:5d:d4:d4:b7:00:d7:ce:d2:55:03:
b6:be:15:6d:ea:a0:d7:2a:32:43:ab:cd:95:7f:92:
9d:f3:cb:8e:c2:da:21:79:d0:c2:2b:b6:df:46:e3:
69:00:1d:a3:6f:a7:af:23:51:65:77:fa:2b:ea:2d:
b9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:08:E8:BC:51:FC:F0:74:D4:55:11:DD:30:B7:D5:40:D5:08:10:19
X509v3 Authority Key Identifier:
keyid:AE:72:E4:7D:56:69:24:99:A7:26:BF:80:0E:A8:38:03:62:DE:B6:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:3b:14:24:d0:e5:01:e1:e9:d0:f7:34:24:6d:63:21:91:c4:
59:1c:83:88:be:dd:68:71:e2:dd:42:ad:b9:07:62:db:d2:ff:
f2:a2:5e:08:9b:de:b2:56:20:8d:5b:91:48:32:27:b6:ce:20:
68:82:d1:b2:e8:28:6d:21:ad:57:29:10:21:52:64:e7:fd:22:
32:e7:05:14:c3:47:e8:98:c3:76:ba:04:3c:59:34:ee:1f:9b:
d8:d1:27:4e:ac:82:b1:be:f6:45:9b:4d:10:48:2a:bf:61:73:
45:15:43:14:3f:5d:ef:e9:ee:29:04:9f:ea:a7:da:32:16:45:
2c:55:9d:e0:35:71:69:f5:e7:81:6f:19:4d:e1:25:58:a5:87:
28:7a:17:47:32:63:02:c5:2e:56:f4:75:2f:df:47:0c:06:c2:
e9:0e:ce:f1:43:73:9d:3f:31:17:d6:2e:06:7c:4e:ef:17:5f:
4d:b1:63:38:7a:16:05:ad:60:d6:1d:4d:8f:a3:e7:94:68:aa:
d2:fd:e8:a1:84:14:60:6d:f1:78:78:8f:94:b8:04:64:63:e7:
79:06:6e:f6:80:74:6c:d1:c0:61:84:89:54:2f:9a:42:5a:81:
db:e8:a9:54:2b:cb:32:80:b3:66:7d:9a:9d:b3:69:f2:03:2b:
89:13:2d:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4ftVClSvGrOYbRvrKPNAJwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlNzJlNDdkNTY2OTI0OTlhNzI2YmY4MDBlYTgzODAzNjJk
ZWI2YmUwHhcNMjYwNTEzMDUwMDM2WhcNMjYwNTE0MDUwMDM2WjAzMTEwLwYDVQQD
EyhhNjA4ZThiYzUxZmNmMDc0ZDQ1NTExZGQzMGI3ZDU0MGQ1MDgxMDE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkDRPGYVb9Bu2K1mjcpfAnnS6j5s
jRYq3mAQN5/mj1lA6/RtWYO0pY42MjYMZlrTQ3horroEm/2TT6B/Sl/mUkx1vHpm
NxUAs98u04QmhDqMS2JZ85gCoEqyIH9Ki/ecqR+WcUcrOxn8lK0tuBd8v5iiih6V
nundjwPZn3n3zNIno0ILBBlx59sogJNEzt7urnAnvzcAFWCHW9A7Lx/KZhSGZ5oF
VbT9YjZjAc0muWF1MRu4xLiYWXgVN36a9lC9+vLxXM80LV3U1LcA187SVQO2vhVt
6qDXKjJDq82Vf5Kd88uOwtohedDCK7bfRuNpAB2jb6evI1Fld/or6i25eQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKYI6LxR/PB01FUR3TC31UDVCBAZMB8GA1UdIwQY
MBaAFK5y5H1WaSSZpya/gA6oOANi3ra+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm5Ma2ZWWnBKSm1uSnItQURxZzRBMkxldHI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS82YmI0NzEtNGEzZS00ODhkLWI4OGMt
ZmUxMmM3NWJmNGFiLzEvcm5Ma2ZWWnBKSm1uSnItQURxZzRBMkxldHI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS82YmI0NzEtNGEzZS00ODhkLWI4OGMtZmUxMmM3NWJmNGFi
LzEvcm5Ma2ZWWnBKSm1uSnItQURxZzRBMkxldHI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWjsUJNDl
AeHp0Pc0JG1jIZHEWRyDiL7daHHi3UKtuQdi29L/8qJeCJveslYgjVuRSDInts4g
aILRsugobSGtVykQIVJk5/0iMucFFMNH6JjDdroEPFk07h+b2NEnTqyCsb72RZtN
EEgqv2FzRRVDFD9d7+nuKQSf6qfaMhZFLFWd4DVxafXngW8ZTeElWKWHKHoXRzJj
AsUuVvR1L99HDAbC6Q7O8UNznT8xF9YuBnxO7xdfTbFjOHoWBa1g1h1Nj6PnlGiq
0v3ooYQUYG3xeHiPlLgEZGPneQZu9oB0bNHAYYSJVC+aQlqB2+ipVCvLMoCzZn2a
nbNp8gMriRMtcA==
-----END CERTIFICATE-----
Generated at Wed May 13 11:13:36 2026 by rpki-client