Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
File: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft (raw, json)
Hash identifier: FUObENcjRznnOuvlYIxL5pyaLDOR0GAFILprd1sAf6c=
Subject key identifier: 38:67:3B:1B:B0:B3:09:22:2E:B2:BE:17:06:0D:2A:6C:F0:80:35:E8
Authority key identifier: 95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
Certificate issuer: /CN=951bb490e09df1467e4eec43d8f20484cee839fe
Certificate serial: 019E8E009807FE82D41648AD2842DECD5399
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
Manifest number: 0DC2
Signing time: Wed 03 Jun 2026 15:01:03 +0000
Manifest this update: Wed 03 Jun 2026 15:01:03 +0000
Manifest next update: Thu 04 Jun 2026 15:01:03 +0000
Files and hashes: 1: kE66fhDE4xBKZgP00aDSZ5wUo8Q.roa (hash: Xz3m7rpESDDSay6iugLcdgSAsdxY3IOPYIq5I7x/X5M=)
2: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl (hash: FDCjJFW6j0JUuuIK3DCeBDMjylwvGFnKAVfEjAwWe/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 13:19:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8e:00:98:07:fe:82:d4:16:48:ad:28:42:de:cd:53:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951bb490e09df1467e4eec43d8f20484cee839fe
Validity
Not Before: Jun 3 15:01:03 2026 GMT
Not After : Jun 4 15:01:03 2026 GMT
Subject: CN=38673b1bb0b309222eb2be17060d2a6cf08035e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0f:af:ea:6c:da:a7:6d:ff:c7:56:8d:cb:96:
be:e6:c1:e6:21:9e:40:8d:89:b7:7a:13:cd:23:37:
cb:bb:3a:f1:e5:dd:17:0d:e4:ad:5a:b9:e8:cd:e5:
33:8f:f6:d0:66:ac:f8:0d:2b:a7:62:83:9b:9d:a6:
12:dc:8b:1d:32:c2:55:7d:8e:9d:16:f9:57:6e:22:
de:1c:cf:d0:40:74:95:c7:88:25:73:fd:3d:dd:a7:
be:ad:2b:52:78:29:80:e0:f1:cc:99:1c:ad:28:66:
0c:69:f3:af:7e:d1:9b:33:0c:0c:b3:21:82:2c:75:
04:3e:7e:43:2d:eb:1d:0c:4d:0e:7e:75:f5:de:cc:
5e:c3:2c:50:02:3d:68:4d:75:5b:db:0d:3a:8b:5f:
3f:8b:dc:c0:70:26:b9:d0:71:64:a9:1a:d6:e6:09:
c9:21:94:b6:61:75:af:1b:c7:cd:82:60:6c:26:7a:
8a:c3:19:a0:6e:cc:06:3f:c7:a7:56:83:58:40:33:
f9:98:bf:77:0b:17:12:a5:e5:f2:c5:6f:a4:dc:aa:
58:76:d7:89:60:04:49:41:ea:b7:c1:d0:ff:1c:ac:
69:25:de:6b:e1:9b:41:66:86:35:0d:ba:7d:62:8f:
0a:d1:36:5a:0f:c9:0a:e1:53:26:70:bc:a5:52:e1:
1e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:67:3B:1B:B0:B3:09:22:2E:B2:BE:17:06:0D:2A:6C:F0:80:35:E8
X509v3 Authority Key Identifier:
keyid:95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:c0:c4:c4:1c:53:48:22:e8:9f:9b:be:f7:2a:8b:0a:c0:a7:
b6:88:4a:1a:77:d5:c8:55:42:c0:05:a2:6f:9b:e3:66:cf:93:
4e:eb:ce:70:97:8f:62:64:eb:c3:6f:f0:c2:72:96:0c:14:f1:
27:e9:cf:0c:97:5a:17:39:c7:6b:2d:aa:0f:66:75:11:c4:38:
eb:9c:67:5d:88:71:71:18:0b:7d:ee:29:61:cd:e8:81:3f:ba:
f8:31:09:89:8f:92:1c:88:f9:6c:a3:cb:23:7b:3e:34:73:6b:
ed:63:90:94:d2:9d:4c:7f:67:70:ed:e7:1b:8c:c7:31:b6:fb:
78:4d:d9:0d:44:97:a3:ff:82:77:48:43:be:65:61:50:e8:27:
d8:7c:46:3b:c8:72:40:86:26:fa:a6:93:09:62:5d:67:d2:fb:
c7:59:d5:02:61:c9:9b:30:a8:5d:d6:f8:10:12:98:b6:ea:13:
ce:f4:d2:02:f2:b6:cd:60:db:e5:0e:ea:3b:df:e5:74:bc:33:
34:70:f6:5d:5a:79:6b:81:ab:4d:f5:78:2c:d2:b1:8c:09:0c:
f6:e6:89:7b:fa:73:71:7a:35:3b:f4:40:a4:40:e0:05:9a:3f:
75:df:27:89:6a:51:da:9e:99:31:ad:46:a8:14:69:0e:f6:43:
2b:08:f2:03
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6OAJgH/oLUFkitKELezVOZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MWJiNDkwZTA5ZGYxNDY3ZTRlZWM0M2Q4ZjIwNDg0Y2Vl
ODM5ZmUwHhcNMjYwNjAzMTUwMTAzWhcNMjYwNjA0MTUwMTAzWjAzMTEwLwYDVQQD
EygzODY3M2IxYmIwYjMwOTIyMmViMmJlMTcwNjBkMmE2Y2YwODAzNWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQ+v6mzap23/x1aNy5a+5sHmIZ5A
jYm3ehPNIzfLuzrx5d0XDeStWrnozeUzj/bQZqz4DSunYoObnaYS3IsdMsJVfY6d
FvlXbiLeHM/QQHSVx4glc/093ae+rStSeCmA4PHMmRytKGYMafOvftGbMwwMsyGC
LHUEPn5DLesdDE0OfnX13sxewyxQAj1oTXVb2w06i18/i9zAcCa50HFkqRrW5gnJ
IZS2YXWvG8fNgmBsJnqKwxmgbswGP8enVoNYQDP5mL93CxcSpeXyxW+k3KpYdteJ
YARJQeq3wdD/HKxpJd5r4ZtBZoY1Dbp9Yo8K0TZaD8kK4VMmcLylUuEePwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDhnOxuwswkiLrK+FwYNKmzwgDXoMB8GA1UdIwQY
MBaAFJUbtJDgnfFGfk7sQ9jyBITO6Dn+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTct
MWRiNGVkMTMxYmMzLzEvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTctMWRiNGVkMTMxYmMz
LzEvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARcDExBxT
SCLon5u+9yqLCsCntohKGnfVyFVCwAWib5vjZs+TTuvOcJePYmTrw2/wwnKWDBTx
J+nPDJdaFznHay2qD2Z1EcQ465xnXYhxcRgLfe4pYc3ogT+6+DEJiY+SHIj5bKPL
I3s+NHNr7WOQlNKdTH9ncO3nG4zHMbb7eE3ZDUSXo/+Cd0hDvmVhUOgn2HxGO8hy
QIYm+qaTCWJdZ9L7x1nVAmHJmzCoXdb4EBKYtuoTzvTSAvK2zWDb5Q7qO9/ldLwz
NHD2XVp5a4GrTfV4LNKxjAkM9uaJe/pzcXo1O/RApEDgBZo/dd8niWpR2p6ZMa1G
qBRpDvZDKwjyAw==
-----END CERTIFICATE-----
Generated at Wed Jun 3 19:56:29 2026 by rpki-client