Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
File: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft (raw, json)
Hash identifier: bNdSPhs7O/9FlZ9u0992n+g0npCfKr8RgWDpwKmWBDs=
Subject key identifier: 5E:EC:27:4F:EA:61:BA:49:BC:58:9A:53:31:6E:86:53:A6:3F:74:3A
Authority key identifier: 03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
Certificate issuer: /CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Certificate serial: 019F190C8CEBE015EBBC2B679A93276A442E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
Manifest number: 0919
Signing time: Tue 30 Jun 2026 15:01:20 +0000
Manifest this update: Tue 30 Jun 2026 15:01:20 +0000
Manifest next update: Wed 01 Jul 2026 15:01:20 +0000
Files and hashes: 1: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl (hash: gvtlCZuZFztCOWqbPsB2EfFJ6Yzd3mWdIxM1vTZuutc=)
2: fPatIQG_vn-KpCzLNpi1KmGZICQ.roa (hash: rt2SMboQCCIlzb5Lym5TzRN3RtHv+A8V2C5lF65IdPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:8c:eb:e0:15:eb:bc:2b:67:9a:93:27:6a:44:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Validity
Not Before: Jun 30 15:01:20 2026 GMT
Not After : Jul 1 15:01:20 2026 GMT
Subject: CN=5eec274fea61ba49bc589a53316e8653a63f743a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:03:67:ba:d3:92:07:68:b0:0e:6b:92:16:26:
20:36:fa:50:1f:d3:17:2b:58:10:6d:fc:5a:28:b4:
1f:57:30:68:33:ec:22:31:59:c4:01:50:c1:d5:4a:
55:1b:3d:e5:da:43:9a:48:8d:f2:ef:77:1c:a5:1f:
67:5f:21:e5:c9:e8:c7:40:84:66:a6:84:97:4b:33:
13:fc:92:c3:0b:86:32:68:c9:8e:53:fb:5b:e8:f6:
85:14:16:e4:8a:c5:21:26:9a:1a:9b:0a:2f:5f:95:
29:46:9a:ea:d6:5b:aa:1e:08:b2:cc:00:04:ea:b3:
d4:df:b4:9f:b9:d3:48:d9:b3:99:b8:aa:61:7e:23:
23:1b:ba:6b:06:94:44:2e:74:17:aa:a8:04:31:47:
a2:58:20:7d:76:b3:18:3f:b1:24:47:59:12:d9:8d:
9d:65:9b:1b:5a:09:04:80:2f:d8:50:65:30:d9:fe:
90:65:97:6a:43:82:3b:7d:b4:8f:74:ae:06:44:b1:
f5:37:ba:ce:2b:cf:37:2f:44:71:13:33:9a:55:f6:
4a:a8:30:73:2b:9d:b9:a8:2b:e1:be:65:92:f7:de:
31:7a:4a:a4:c2:6f:6a:08:41:46:be:3f:81:7c:a0:
86:84:cf:e6:f1:45:96:72:4f:de:ae:61:c5:48:49:
6c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:EC:27:4F:EA:61:BA:49:BC:58:9A:53:31:6E:86:53:A6:3F:74:3A
X509v3 Authority Key Identifier:
keyid:03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:84:95:6b:9e:00:e4:c4:33:bc:cb:c9:28:6c:d7:75:42:ad:
4e:9f:07:20:b1:d4:22:71:d8:f8:de:c2:24:59:56:95:0b:7d:
8a:73:20:3a:fe:3a:a8:19:82:78:e2:b8:f0:f9:e4:f6:86:1d:
2f:53:29:5a:1a:d0:d1:eb:fb:87:a5:8f:9e:e2:1a:2d:b5:3f:
51:d2:04:b9:99:e3:a0:00:86:e5:21:0b:dd:25:f2:88:85:3e:
dc:70:83:78:3a:39:a0:72:c1:23:be:bf:1b:a8:23:1b:39:0a:
e8:0e:50:3d:2c:78:9e:9e:d4:99:6f:e4:60:08:f6:0d:14:ce:
db:11:37:58:1f:a0:94:ed:39:ed:4a:5b:10:80:a9:25:aa:a9:
96:65:c8:16:14:84:27:ad:34:62:b0:c3:9d:95:2e:9a:9e:3a:
38:be:f1:93:42:5f:9a:58:b3:61:08:51:fb:01:b5:82:5d:e3:
d7:c9:0d:81:8a:9b:d1:36:4a:7d:5a:86:3f:27:6d:11:8a:e0:
11:c4:f4:cc:3e:10:2f:a7:33:b2:a3:75:a7:4d:51:b5:f8:00:
42:e0:79:52:e7:0a:55:7c:65:a4:d1:dc:24:6b:cb:38:8b:fb:
c4:6d:6c:e8:da:a8:9b:4a:ac:ad:63:c6:a2:25:04:65:3d:9c:
0e:8f:4b:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZDIzr4BXrvCtnmpMnakQuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzNTg0NWY4NmNiYzNjZmE5ZTBlNzk4N2EwMzgyZDVkMGRk
N2NlM2UwHhcNMjYwNjMwMTUwMTIwWhcNMjYwNzAxMTUwMTIwWjAzMTEwLwYDVQQD
Eyg1ZWVjMjc0ZmVhNjFiYTQ5YmM1ODlhNTMzMTZlODY1M2E2M2Y3NDNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQNnutOSB2iwDmuSFiYgNvpQH9MX
K1gQbfxaKLQfVzBoM+wiMVnEAVDB1UpVGz3l2kOaSI3y73ccpR9nXyHlyejHQIRm
poSXSzMT/JLDC4YyaMmOU/tb6PaFFBbkisUhJpoamwovX5UpRprq1luqHgiyzAAE
6rPU37SfudNI2bOZuKphfiMjG7prBpRELnQXqqgEMUeiWCB9drMYP7EkR1kS2Y2d
ZZsbWgkEgC/YUGUw2f6QZZdqQ4I7fbSPdK4GRLH1N7rOK883L0RxEzOaVfZKqDBz
K525qCvhvmWS994xekqkwm9qCEFGvj+BfKCGhM/m8UWWck/ermHFSElsKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF7sJ0/qYbpJvFiaUzFuhlOmP3Q6MB8GA1UdIwQY
MBaAFANYRfhsvDz6ng55h6A4LV0N184+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQTFoRi1HeThQUHFlRG5tSG9EZ3RYUTNYemo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9kMjc5ZDMtOTQ3ZS00NWM3LWE4OTAt
M2I4NGQ3OWFiZGFmLzEvQTFoRi1HeThQUHFlRG5tSG9EZ3RYUTNYemo0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9kMjc5ZDMtOTQ3ZS00NWM3LWE4OTAtM2I4NGQ3OWFiZGFm
LzEvQTFoRi1HeThQUHFlRG5tSG9EZ3RYUTNYemo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHoSVa54A
5MQzvMvJKGzXdUKtTp8HILHUInHY+N7CJFlWlQt9inMgOv46qBmCeOK48Pnk9oYd
L1MpWhrQ0ev7h6WPnuIaLbU/UdIEuZnjoACG5SEL3SXyiIU+3HCDeDo5oHLBI76/
G6gjGzkK6A5QPSx4np7UmW/kYAj2DRTO2xE3WB+glO057UpbEICpJaqplmXIFhSE
J600YrDDnZUump46OL7xk0JfmlizYQhR+wG1gl3j18kNgYqb0TZKfVqGPydtEYrg
EcT0zD4QL6czsqN1p01RtfgAQuB5UucKVXxlpNHcJGvLOIv7xG1s6Nqom0qsrWPG
oiUEZT2cDo9LaQ==
-----END CERTIFICATE-----
Generated at Tue Jun 30 19:35:46 2026 by rpki-client