Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft
File: v60IrIYttq4LsLiArsBV7by7gvw.mft (raw, json)
Hash identifier: LJX7G8BJnAwT0w057iLK9YNT59UD9IWadDI9F9mvB+0=
Subject key identifier: CE:98:49:5E:FC:53:A0:D2:44:B9:18:A2:9A:41:D5:D4:CB:86:89:91
Authority key identifier: BF:AD:08:AC:86:2D:B6:AE:0B:B0:B8:80:AE:C0:55:ED:BC:BB:82:FC
Certificate issuer: /CN=bfad08ac862db6ae0bb0b880aec055edbcbb82fc
Certificate serial: 019D38656544B3487E4CE9568CD620AC1DDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v60IrIYttq4LsLiArsBV7by7gvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft
Manifest number: 106A
Signing time: Sun 29 Mar 2026 07:01:02 +0000
Manifest this update: Sun 29 Mar 2026 07:01:02 +0000
Manifest next update: Mon 30 Mar 2026 07:01:02 +0000
Files and hashes: 1: hRhNZPtmJg0KwdjuoZkk93sBP2c.roa (hash: Iux9M/ga92AaPnB9SKUAzQYgctGbOPAarQ3+UfPCjro=)
2: v60IrIYttq4LsLiArsBV7by7gvw.crl (hash: 52eIiyYAnz57s8kyycNd1/iiBCA8MNVBxfpkvmbgY+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/v60IrIYttq4LsLiArsBV7by7gvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:65:44:b3:48:7e:4c:e9:56:8c:d6:20:ac:1d:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfad08ac862db6ae0bb0b880aec055edbcbb82fc
Validity
Not Before: Mar 29 07:01:02 2026 GMT
Not After : Mar 30 07:01:02 2026 GMT
Subject: CN=ce98495efc53a0d244b918a29a41d5d4cb868991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d0:67:1b:c2:f8:85:4f:c3:ac:54:2e:8b:22:
e5:8c:c4:18:cb:1f:0c:19:0d:9d:59:fa:21:88:60:
e2:68:ae:a9:09:af:42:72:fa:52:25:6a:f2:f6:14:
95:7f:51:74:3f:4a:46:49:23:f4:74:64:97:e2:18:
64:0f:c5:24:55:78:2f:9f:75:69:cb:77:54:bb:bb:
b6:77:2b:9f:bf:5a:84:b2:e1:37:74:3e:11:c0:31:
04:c8:f0:d5:3e:78:a4:60:62:b5:d4:a1:79:ad:8f:
4a:36:ec:95:ce:15:3d:1a:e8:03:91:1a:e8:8b:ab:
36:f9:15:38:1b:89:9f:24:99:68:9b:0f:07:83:95:
31:9c:09:ca:12:6e:a8:b6:d4:4c:5a:16:a9:d1:55:
75:d4:6b:84:72:51:77:75:9c:c6:26:6a:d8:8d:cc:
76:0d:25:7b:b8:45:b1:23:2d:a2:a5:8c:2e:fc:73:
19:d3:16:d7:90:87:2e:5d:62:b7:12:fa:95:00:1c:
c0:97:61:f8:32:cd:11:2a:24:63:16:f5:48:10:1d:
99:d2:16:fe:f1:8b:ad:a7:0f:14:72:bc:1e:74:47:
c4:92:a9:3f:31:2b:57:e9:06:42:c8:07:a5:ea:05:
05:3c:94:57:94:20:43:3f:4f:f6:67:42:0f:80:3a:
e4:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:98:49:5E:FC:53:A0:D2:44:B9:18:A2:9A:41:D5:D4:CB:86:89:91
X509v3 Authority Key Identifier:
keyid:BF:AD:08:AC:86:2D:B6:AE:0B:B0:B8:80:AE:C0:55:ED:BC:BB:82:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v60IrIYttq4LsLiArsBV7by7gvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:65:bb:51:91:48:cd:3a:3d:14:bc:7b:3a:70:f5:94:8e:12:
74:9d:71:fa:df:63:94:7a:69:9b:89:ba:64:99:26:d8:c7:10:
4c:c1:58:63:8e:d5:74:40:34:fa:d4:f8:25:10:8e:2e:18:84:
a4:28:ca:f0:7f:3f:73:1c:75:bf:92:62:c3:e1:17:b0:45:a9:
b3:a4:8c:9e:f8:f5:81:d7:71:68:da:0a:02:cb:92:25:7b:a8:
7a:7a:2a:94:0f:16:9a:69:42:37:c7:70:08:52:e8:de:24:18:
c9:d8:f9:9c:cd:65:6e:92:cb:7a:17:b8:f0:d9:bc:61:89:85:
79:24:44:cb:0c:eb:3e:30:c4:43:f0:7d:5a:7d:cc:95:0b:0d:
e7:7c:81:46:b5:1e:46:8c:ec:b7:75:b1:36:c1:8c:a3:a2:18:
00:58:57:56:a9:15:85:55:59:81:72:e8:4c:85:3a:51:ac:a3:
ad:94:1c:c2:06:07:17:d8:95:45:51:c5:b5:c7:bc:40:c2:fc:
55:33:b8:9f:0e:8d:cc:af:4e:dd:3f:fd:70:dd:d0:ab:92:92:
d0:8d:f7:be:77:05:b6:51:34:6c:2e:2c:95:f7:9c:ad:06:11:
7f:30:7e:c8:48:97:ea:91:d0:1a:53:4a:52:c8:cc:71:a7:d6:
59:34:ab:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZWVEs0h+TOlWjNYgrB3cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmYWQwOGFjODYyZGI2YWUwYmIwYjg4MGFlYzA1NWVkYmNi
YjgyZmMwHhcNMjYwMzI5MDcwMTAyWhcNMjYwMzMwMDcwMTAyWjAzMTEwLwYDVQQD
EyhjZTk4NDk1ZWZjNTNhMGQyNDRiOTE4YTI5YTQxZDVkNGNiODY4OTkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr9BnG8L4hU/DrFQuiyLljMQYyx8M
GQ2dWfohiGDiaK6pCa9CcvpSJWry9hSVf1F0P0pGSSP0dGSX4hhkD8UkVXgvn3Vp
y3dUu7u2dyufv1qEsuE3dD4RwDEEyPDVPnikYGK11KF5rY9KNuyVzhU9GugDkRro
i6s2+RU4G4mfJJlomw8Hg5UxnAnKEm6ottRMWhap0VV11GuEclF3dZzGJmrYjcx2
DSV7uEWxIy2ipYwu/HMZ0xbXkIcuXWK3EvqVABzAl2H4Ms0RKiRjFvVIEB2Z0hb+
8Yutpw8UcrwedEfEkqk/MStX6QZCyAel6gUFPJRXlCBDP0/2Z0IPgDrkdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM6YSV78U6DSRLkYoppB1dTLhomRMB8GA1UdIwQY
MBaAFL+tCKyGLbauC7C4gK7AVe28u4L8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjYwSXJJWXR0cTRMc0xpQXJzQlY3Ynk3Z3Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9kNWRjNjEtODgyYi00NjM2LWFmZjEt
MWZiM2Y4MTc2MDhmLzEvdjYwSXJJWXR0cTRMc0xpQXJzQlY3Ynk3Z3Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9kNWRjNjEtODgyYi00NjM2LWFmZjEtMWZiM2Y4MTc2MDhm
LzEvdjYwSXJJWXR0cTRMc0xpQXJzQlY3Ynk3Z3Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ2W7UZFI
zTo9FLx7OnD1lI4SdJ1x+t9jlHppm4m6ZJkm2McQTMFYY47VdEA0+tT4JRCOLhiE
pCjK8H8/cxx1v5Jiw+EXsEWps6SMnvj1gddxaNoKAsuSJXuoenoqlA8WmmlCN8dw
CFLo3iQYydj5nM1lbpLLehe48Nm8YYmFeSREywzrPjDEQ/B9Wn3MlQsN53yBRrUe
Rozst3WxNsGMo6IYAFhXVqkVhVVZgXLoTIU6UayjrZQcwgYHF9iVRVHFtce8QML8
VTO4nw6NzK9O3T/9cN3Qq5KS0I33vncFtlE0bC4slfecrQYRfzB+yEiX6pHQGlNK
UsjMcafWWTSr7Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:25 2026 by rpki-client