Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
File: 70Ku0OkbI9DNy_skrIObDb5qoEs.mft (raw, json)
Hash identifier: 8wd8UCT8XuAuU9OhYvcnJFEoq9+OBtaWwqPKx/i7cYc=
Subject key identifier: B2:E7:2D:67:2F:C4:5C:95:81:01:6F:B2:80:BA:5D:D8:2E:66:87:94
Authority key identifier: EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
Certificate issuer: /CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Certificate serial: 019F18D6BE66C87099F50ACE0BB4F2635BB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
Manifest number: 0EFE
Signing time: Tue 30 Jun 2026 14:02:34 +0000
Manifest this update: Tue 30 Jun 2026 14:02:34 +0000
Manifest next update: Wed 01 Jul 2026 14:02:34 +0000
Files and hashes: 1: 70Ku0OkbI9DNy_skrIObDb5qoEs.crl (hash: utgZ4edDAbU7pAeYvutJ4kNh2F5JdwX/E698lOvFK3U=)
2: WKalSGnevGohhpgm-gEVPpoJ6r8.roa (hash: RtBxGLGQ1rKUm3Dw/j2SrY9FsdpNgrlCWPACnmZSvFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:be:66:c8:70:99:f5:0a:ce:0b:b4:f2:63:5b:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Validity
Not Before: Jun 30 14:02:34 2026 GMT
Not After : Jul 1 14:02:34 2026 GMT
Subject: CN=b2e72d672fc45c9581016fb280ba5dd82e668794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:40:85:0a:b0:65:b6:4d:50:85:b1:f1:c7:67:
e4:bd:43:fe:70:8e:19:d9:83:96:9b:27:38:fe:e2:
5c:65:3e:ae:9c:73:79:34:cc:5f:83:b7:ed:b8:f9:
27:e2:5a:cc:5d:b4:1b:50:23:ab:b0:cd:84:09:2a:
7c:a4:b8:6b:ea:bb:00:91:f5:39:9e:07:a7:5f:ed:
1d:b7:ab:53:60:93:34:e2:6e:b7:50:c3:6d:93:9a:
f1:57:5a:f3:62:84:33:ee:ee:11:ab:20:97:a5:e9:
f5:33:aa:a7:97:fa:55:5e:f1:53:b1:e0:e4:a5:f8:
41:6c:e9:62:10:6d:61:8c:95:06:8a:5b:08:cb:81:
55:01:81:e7:32:ee:d3:2d:91:df:2b:3f:9f:4a:d2:
60:c0:a4:0b:67:58:fb:aa:c2:c0:84:b9:50:9c:e4:
c6:c3:df:af:88:6b:35:d6:d8:44:97:d0:bf:2f:5d:
57:05:5a:f0:ba:4c:74:1e:f7:c4:a0:97:aa:35:43:
97:ee:34:df:a9:02:d7:ab:48:da:50:81:cc:2d:e0:
7d:67:0a:59:d3:66:ee:f2:7b:ce:5d:02:cb:f7:03:
e2:13:cd:2e:a4:2c:3a:0a:1a:8b:53:4b:08:0b:54:
84:d5:af:aa:43:1f:38:20:ea:d4:54:d5:9f:a4:87:
02:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E7:2D:67:2F:C4:5C:95:81:01:6F:B2:80:BA:5D:D8:2E:66:87:94
X509v3 Authority Key Identifier:
keyid:EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:3e:57:58:ae:6f:12:de:d0:1e:89:74:af:c3:e0:b5:14:7f:
07:27:f7:ee:19:7e:36:c3:75:08:b0:c7:2b:4f:eb:d7:0c:6f:
6b:89:f3:b2:0b:86:83:e0:5b:8c:12:1d:31:65:35:b1:ce:e3:
57:77:ff:9b:ec:d9:29:0a:20:62:12:5f:40:2d:b5:b5:10:61:
cc:0f:59:ce:25:8c:63:9d:0c:10:11:a1:b6:59:10:d5:34:9a:
88:58:d4:29:ad:49:ce:f4:75:6f:65:41:9d:11:cd:a2:de:2b:
b0:2d:06:d1:f7:04:80:3c:35:12:df:ac:ca:ba:c8:a8:db:7a:
7d:b7:cf:19:da:61:a9:92:ff:83:fd:72:4f:fe:b9:d0:bd:df:
89:70:f1:2c:50:36:03:c6:a1:d3:4b:a7:3c:43:73:94:a0:1c:
17:fd:a9:cc:2f:94:c0:e1:81:24:fa:54:c8:95:8b:62:f6:8f:
c7:c9:68:9c:db:b0:0a:da:3d:3e:ae:e9:ef:af:c1:d1:a7:7e:
fd:2a:32:d1:a9:e0:58:62:75:67:64:4d:34:3a:a4:15:46:6d:
d1:1f:8b:39:04:e3:63:7d:ac:d5:35:8b:46:16:85:00:2b:d1:
70:12:13:69:af:93:38:85:63:c4:4f:9d:07:6a:dd:78:24:d5:
41:91:45:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8Y1r5myHCZ9QrOC7TyY1uxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmNDJhZWQwZTkxYjIzZDBjZGNiZmIyNGFjODM5YjBkYmU2
YWEwNGIwHhcNMjYwNjMwMTQwMjM0WhcNMjYwNzAxMTQwMjM0WjAzMTEwLwYDVQQD
EyhiMmU3MmQ2NzJmYzQ1Yzk1ODEwMTZmYjI4MGJhNWRkODJlNjY4Nzk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn0CFCrBltk1QhbHxx2fkvUP+cI4Z
2YOWmyc4/uJcZT6unHN5NMxfg7ftuPkn4lrMXbQbUCOrsM2ECSp8pLhr6rsAkfU5
ngenX+0dt6tTYJM04m63UMNtk5rxV1rzYoQz7u4RqyCXpen1M6qnl/pVXvFTseDk
pfhBbOliEG1hjJUGilsIy4FVAYHnMu7TLZHfKz+fStJgwKQLZ1j7qsLAhLlQnOTG
w9+viGs11thEl9C/L11XBVrwukx0HvfEoJeqNUOX7jTfqQLXq0jaUIHMLeB9ZwpZ
02bu8nvOXQLL9wPiE80upCw6ChqLU0sIC1SE1a+qQx84IOrUVNWfpIcC+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLLnLWcvxFyVgQFvsoC6XdguZoeUMB8GA1UdIwQY
MBaAFO9CrtDpGyPQzcv7JKyDmw2+aqBLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNzBLdTBPa2JJOUROeV9za3JJT2JEYjVxb0VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9iZDc1YTItZmM2ZS00YTg2LTllZGYt
NjY5OTA5ZTExY2UzLzEvNzBLdTBPa2JJOUROeV9za3JJT2JEYjVxb0VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9iZDc1YTItZmM2ZS00YTg2LTllZGYtNjY5OTA5ZTExY2Uz
LzEvNzBLdTBPa2JJOUROeV9za3JJT2JEYjVxb0VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjD5XWK5v
Et7QHol0r8PgtRR/Byf37hl+NsN1CLDHK0/r1wxva4nzsguGg+BbjBIdMWU1sc7j
V3f/m+zZKQogYhJfQC21tRBhzA9ZziWMY50MEBGhtlkQ1TSaiFjUKa1JzvR1b2VB
nRHNot4rsC0G0fcEgDw1Et+syrrIqNt6fbfPGdphqZL/g/1yT/650L3fiXDxLFA2
A8ah00unPENzlKAcF/2pzC+UwOGBJPpUyJWLYvaPx8lonNuwCto9Pq7p76/B0ad+
/Soy0angWGJ1Z2RNNDqkFUZt0R+LOQTjY32s1TWLRhaFACvRcBITaa+TOIVjxE+d
B2rdeCTVQZFFBQ==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:20:00 2026 by rpki-client