
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json)
Hash identifier: dPKN4vb4mdieHLeskF+XbZmmzj++II2AJaupOf+0+38=
Subject key identifier: 62:1B:BD:06:CC:AE:ED:8A:6C:C1:7C:3A:FD:D1:3E:75:60:76:67:9E
Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Certificate serial: 019F41D26C7C86E79BA74F1F66DEEC7CC0C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
Manifest number: 0769
Signing time: Wed 08 Jul 2026 13:02:17 +0000
Manifest this update: Wed 08 Jul 2026 13:02:17 +0000
Manifest next update: Thu 09 Jul 2026 13:02:17 +0000
Files and hashes: 1: ClXL4dT4GSld8lEfAWyCYr5cI3Y.roa (hash: gOfRKf6V+xV3ZsFtbBW86oarsiPBo5VFvmb0v2OnPU0=)
2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: 6alSD/hEQGsfILNljlHVUKZTPavLmcR1RuQfhptKLuc=)
3: vT00UMTKIHLp4hINXZvd81w31H4.roa (hash: QI91nZrYvdKW6PkjSidpqTabE42DmbX4YNbp5QsN850=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Jul 2026 13:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:41:d2:6c:7c:86:e7:9b:a7:4f:1f:66:de:ec:7c:c0:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Validity
Not Before: Jul 8 13:02:17 2026 GMT
Not After : Jul 9 13:02:17 2026 GMT
Subject: CN=621bbd06ccaeed8a6cc17c3afdd13e756076679e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:db:5a:71:07:06:24:64:8e:3c:86:96:3d:04:
cc:c1:64:82:fe:72:20:e7:36:f0:11:8d:56:31:e6:
38:4f:ef:f0:15:fd:1c:5d:1b:fb:eb:11:96:3e:a3:
6e:ad:eb:57:5d:82:96:01:ae:ad:20:35:14:4c:f4:
c0:cd:fb:55:8c:dc:2c:82:e6:30:d5:b7:8c:64:a4:
cc:3d:c4:00:3d:25:0a:ed:a3:dc:07:bd:2b:5e:ae:
d3:7a:93:27:cb:38:39:20:45:bb:81:cc:60:85:8d:
cd:97:46:a2:f9:e4:a8:6f:8e:d8:50:fb:87:c2:66:
81:dd:1b:72:8b:a2:e8:2c:a3:c0:36:20:0a:2a:06:
80:bb:6a:8f:d7:af:75:b8:32:99:e8:b7:08:ee:49:
7a:92:c6:95:f9:22:e6:41:87:70:c0:5b:36:b5:9d:
b8:f7:47:a8:7d:c3:36:82:70:a1:fd:0a:50:d7:71:
6a:6d:18:dd:de:df:7e:d7:a3:22:64:36:6d:9f:42:
4c:95:78:aa:64:8e:7e:be:68:b0:09:00:72:75:6e:
ca:a0:05:ab:32:78:30:28:ba:ad:dc:da:fd:7b:bf:
16:c4:40:77:15:a2:ff:f8:e9:cb:88:ed:13:8b:55:
74:51:6b:20:f3:c7:1e:e4:53:c8:de:a5:48:9e:5a:
b2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:1B:BD:06:CC:AE:ED:8A:6C:C1:7C:3A:FD:D1:3E:75:60:76:67:9E
X509v3 Authority Key Identifier:
keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:74:1f:00:d1:8d:1e:da:bd:b2:36:6b:1a:20:f0:63:6f:6a:
3d:41:92:84:7f:90:06:f9:52:71:ca:e3:42:ea:00:3b:86:ce:
cf:ca:fd:6d:2a:52:03:94:d1:be:ce:dd:9d:f3:15:75:92:5c:
01:59:af:b7:70:61:36:97:9f:97:df:b8:6d:f1:67:53:d4:65:
1c:57:41:e8:29:89:0d:27:8d:4b:64:39:b6:c9:d6:d8:2c:27:
87:6f:da:fd:ce:c6:4a:85:0e:3c:79:d3:fa:c5:3d:63:94:6b:
36:13:35:62:26:7d:25:4c:d8:1b:d1:9e:34:f7:2c:4b:4a:96:
9b:f8:79:7c:fb:6b:0a:31:4a:06:aa:98:71:06:c7:63:65:21:
ce:ec:d0:c8:2e:b8:32:99:78:e9:b6:23:5a:6e:50:22:21:31:
1a:71:57:e1:37:71:b1:d0:8a:eb:8f:5f:91:06:a7:92:f4:50:
70:00:e6:3a:ff:3b:7a:b1:60:5f:82:81:01:0a:10:23:44:55:
33:ff:ac:80:70:20:ab:e2:68:8d:d2:b7:39:25:2e:bd:77:6c:
a3:ae:ef:16:b2:67:4f:c7:38:a7:7d:70:f8:1c:1e:e5:66:72:
e8:03:5a:cc:07:ea:a2:11:67:cc:de:7c:28:7f:dd:5c:68:5b:
1b:62:de:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ9B0mx8huebp08fZt7sfMDBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ZWQ5Y2I4MzQwYWMyMDk1YTRjYjA1MjhlNWVhMmY3Mzhj
ZWE2NzIwHhcNMjYwNzA4MTMwMjE3WhcNMjYwNzA5MTMwMjE3WjAzMTEwLwYDVQQD
Eyg2MjFiYmQwNmNjYWVlZDhhNmNjMTdjM2FmZGQxM2U3NTYwNzY2NzllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNtacQcGJGSOPIaWPQTMwWSC/nIg
5zbwEY1WMeY4T+/wFf0cXRv76xGWPqNuretXXYKWAa6tIDUUTPTAzftVjNwsguYw
1beMZKTMPcQAPSUK7aPcB70rXq7TepMnyzg5IEW7gcxghY3Nl0ai+eSob47YUPuH
wmaB3Rtyi6LoLKPANiAKKgaAu2qP1691uDKZ6LcI7kl6ksaV+SLmQYdwwFs2tZ24
90eofcM2gnCh/QpQ13FqbRjd3t9+16MiZDZtn0JMlXiqZI5+vmiwCQBydW7KoAWr
MngwKLqt3Nr9e78WxEB3FaL/+OnLiO0Ti1V0UWsg88ce5FPI3qVInlqyYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGIbvQbMru2KbMF8Ov3RPnVgdmeeMB8GA1UdIwQY
MBaAFIftnLg0CsIJWkywUo5eovc4zqZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDct
N2IyMWJmMzAzY2NjLzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDctN2IyMWJmMzAzY2Nj
LzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAknQfANGN
Htq9sjZrGiDwY29qPUGShH+QBvlSccrjQuoAO4bOz8r9bSpSA5TRvs7dnfMVdZJc
AVmvt3BhNpefl9+4bfFnU9RlHFdB6CmJDSeNS2Q5tsnW2Cwnh2/a/c7GSoUOPHnT
+sU9Y5RrNhM1YiZ9JUzYG9GeNPcsS0qWm/h5fPtrCjFKBqqYcQbHY2UhzuzQyC64
Mpl46bYjWm5QIiExGnFX4TdxsdCK649fkQankvRQcADmOv87erFgX4KBAQoQI0RV
M/+sgHAgq+JojdK3OSUuvXdso67vFrJnT8c4p31w+Bwe5WZy6ANazAfqohFnzN58
KH/dXGhbG2LeBA==
-----END CERTIFICATE-----
Generated at Wed Jul 8 18:31:37 2026 by rpki-client