Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft
File: DT66aHPFtQdbPEOff-61SvHxDak.mft (raw, json)
Hash identifier: UQ+07rRdTu8o0OtDCFFNyjPjwlqgEHUGWYRVHdSkO6M=
Subject key identifier: 41:F7:1C:EA:29:F5:AD:26:34:78:32:15:AB:08:1C:D0:51:0B:97:5E
Authority key identifier: 0D:3E:BA:68:73:C5:B5:07:5B:3C:43:9F:7F:EE:B5:4A:F1:F1:0D:A9
Certificate issuer: /CN=0d3eba6873c5b5075b3c439f7feeb54af1f10da9
Certificate serial: 019F17F94454FD47AA001832BE4ABC438A18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DT66aHPFtQdbPEOff-61SvHxDak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft
Manifest number: 198F
Signing time: Tue 30 Jun 2026 10:00:39 +0000
Manifest this update: Tue 30 Jun 2026 10:00:39 +0000
Manifest next update: Wed 01 Jul 2026 10:00:39 +0000
Files and hashes: 1: DT66aHPFtQdbPEOff-61SvHxDak.crl (hash: 0uOsaGbgF3aR69b+tbclKE7Is+wtLA11zGuS6hU6l8w=)
2: UHX8LoJItxLXbSSkLElmcrzzhts.roa (hash: j+K6pcnA4SNCVnoj07hqtnhu76mvNIjpIA6tG3zdI5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft
rsync://rpki.ripe.net/repository/DEFAULT/DT66aHPFtQdbPEOff-61SvHxDak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:44:54:fd:47:aa:00:18:32:be:4a:bc:43:8a:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d3eba6873c5b5075b3c439f7feeb54af1f10da9
Validity
Not Before: Jun 30 10:00:39 2026 GMT
Not After : Jul 1 10:00:39 2026 GMT
Subject: CN=41f71cea29f5ad2634783215ab081cd0510b975e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:07:0a:04:20:fb:03:60:09:65:79:b2:6c:54:
d1:8a:c0:e9:2c:17:8d:5b:c3:48:14:a8:36:d9:69:
99:de:0f:7a:a6:62:0e:72:1c:d1:7f:58:e2:46:7d:
5c:15:1a:1c:38:92:2e:cc:fd:30:29:db:16:e8:b6:
4a:25:cc:9d:58:94:df:6c:9b:29:29:6c:e9:c7:d2:
c9:13:35:69:c4:9e:51:d4:dd:f1:72:93:64:c2:ad:
ab:d0:cc:42:9e:ff:d5:66:0d:ac:d8:aa:4c:76:81:
c8:ba:88:08:cb:da:d9:e8:a5:26:1e:cd:3b:c5:10:
15:10:29:ac:c1:4a:ec:bd:9d:3e:1c:16:66:53:74:
bd:c3:80:60:5a:b8:e8:30:53:6a:b4:28:3b:aa:61:
fb:d2:d0:24:0e:c7:a1:f5:7d:32:74:88:76:da:39:
b9:72:5a:8a:4f:8e:f9:ec:ba:49:27:85:f3:50:ed:
a0:28:d9:2b:06:90:17:2b:90:65:7d:79:30:48:16:
81:dc:db:2c:03:fc:d9:ad:a6:e0:96:fb:db:c6:8f:
8b:60:ce:81:6e:80:6e:1d:69:97:99:51:ed:9a:bb:
43:2f:2b:1a:1a:12:3a:11:6c:bf:97:5e:35:51:34:
2b:eb:c8:b2:23:b0:b0:05:9a:8c:63:1d:a6:1c:89:
47:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:F7:1C:EA:29:F5:AD:26:34:78:32:15:AB:08:1C:D0:51:0B:97:5E
X509v3 Authority Key Identifier:
keyid:0D:3E:BA:68:73:C5:B5:07:5B:3C:43:9F:7F:EE:B5:4A:F1:F1:0D:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DT66aHPFtQdbPEOff-61SvHxDak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:fc:59:9c:72:29:67:be:7d:52:a2:d4:fd:2b:06:9a:33:4c:
b9:50:ab:81:9f:82:03:1e:c5:b4:35:4e:9e:15:5c:59:02:7b:
00:55:ca:99:e8:88:94:c3:6c:42:64:ab:36:fb:25:f9:88:f0:
fd:83:85:ad:62:05:1e:c8:3a:73:16:3c:69:aa:96:a5:0b:fa:
14:51:8c:05:05:3f:d8:cb:8f:cb:d1:cb:e2:bd:c6:d3:de:2c:
b0:f1:50:65:ef:91:1c:4b:e5:c0:1b:02:64:a8:dc:a6:20:47:
d0:22:94:2c:52:9d:5e:78:6a:5e:69:bb:22:67:63:e7:04:72:
f8:7c:35:8d:f7:46:bd:bb:43:5f:67:db:b3:83:ac:64:de:51:
b5:e2:f4:fe:9f:f4:04:de:f2:04:dd:ef:a2:cc:2a:9d:74:52:
1a:89:41:a6:fd:f8:5b:fb:d1:d9:a3:b3:bd:5a:35:00:79:80:
20:6d:70:0f:6b:17:a9:f9:15:2e:57:71:6f:31:2a:73:11:8c:
b2:f1:9b:1f:14:6e:08:b4:99:2c:70:a8:ff:0b:16:06:29:db:
98:72:79:fa:34:cd:64:ec:e1:9e:dd:91:37:6d:02:32:5d:6f:
20:98:58:34:82:c3:21:4e:94:25:b8:63:00:c1:78:b2:4e:87:
b2:45:02:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8X+URU/UeqABgyvkq8Q4oYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkM2ViYTY4NzNjNWI1MDc1YjNjNDM5ZjdmZWViNTRhZjFm
MTBkYTkwHhcNMjYwNjMwMTAwMDM5WhcNMjYwNzAxMTAwMDM5WjAzMTEwLwYDVQQD
Eyg0MWY3MWNlYTI5ZjVhZDI2MzQ3ODMyMTVhYjA4MWNkMDUxMGI5NzVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1AcKBCD7A2AJZXmybFTRisDpLBeN
W8NIFKg22WmZ3g96pmIOchzRf1jiRn1cFRocOJIuzP0wKdsW6LZKJcydWJTfbJsp
KWzpx9LJEzVpxJ5R1N3xcpNkwq2r0MxCnv/VZg2s2KpMdoHIuogIy9rZ6KUmHs07
xRAVECmswUrsvZ0+HBZmU3S9w4BgWrjoMFNqtCg7qmH70tAkDseh9X0ydIh22jm5
clqKT4757LpJJ4XzUO2gKNkrBpAXK5BlfXkwSBaB3NssA/zZrabglvvbxo+LYM6B
boBuHWmXmVHtmrtDLysaGhI6EWy/l141UTQr68iyI7CwBZqMYx2mHIlHWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEH3HOop9a0mNHgyFasIHNBRC5deMB8GA1UdIwQY
MBaAFA0+umhzxbUHWzxDn3/utUrx8Q2pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFQ2NmFIUEZ0UWRiUEVPZmYtNjFTdkh4RGFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8zMzgzZjEtMDQyOC00NjRiLWJkMWUt
Mjc5OThiZjE3NDY1LzEvRFQ2NmFIUEZ0UWRiUEVPZmYtNjFTdkh4RGFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8zMzgzZjEtMDQyOC00NjRiLWJkMWUtMjc5OThiZjE3NDY1
LzEvRFQ2NmFIUEZ0UWRiUEVPZmYtNjFTdkh4RGFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhPxZnHIp
Z759UqLU/SsGmjNMuVCrgZ+CAx7FtDVOnhVcWQJ7AFXKmeiIlMNsQmSrNvsl+Yjw
/YOFrWIFHsg6cxY8aaqWpQv6FFGMBQU/2MuPy9HL4r3G094ssPFQZe+RHEvlwBsC
ZKjcpiBH0CKULFKdXnhqXmm7Imdj5wRy+Hw1jfdGvbtDX2fbs4OsZN5RteL0/p/0
BN7yBN3voswqnXRSGolBpv34W/vR2aOzvVo1AHmAIG1wD2sXqfkVLldxbzEqcxGM
svGbHxRuCLSZLHCo/wsWBinbmHJ5+jTNZOzhnt2RN20CMl1vIJhYNILDIU6UJbhj
AMF4sk6HskUC1A==
-----END CERTIFICATE-----
Generated at Tue Jun 30 19:10:35 2026 by rpki-client