Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
File: d9Vhc4owymkonMhFMN5d73SjqYI.mft (raw, json)
Hash identifier: e786xCqQs3O+c5KP2HpoBX2QbQRyKYwh+hwdwtm6tFw=
Subject key identifier: 74:79:A8:B3:54:84:C1:9C:F6:C8:0D:66:C8:7F:72:1E:A0:F5:AD:22
Authority key identifier: 77:D5:61:73:8A:30:CA:69:28:9C:C8:45:30:DE:5D:EF:74:A3:A9:82
Certificate issuer: /CN=77d561738a30ca69289cc84530de5def74a3a982
Certificate serial: 019EB8B3F7266A008464EC03B4ED64148A2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
Manifest number: 012F
Signing time: Thu 11 Jun 2026 22:01:02 +0000
Manifest this update: Thu 11 Jun 2026 22:01:02 +0000
Manifest next update: Fri 12 Jun 2026 22:01:02 +0000
Files and hashes: 1: d9Vhc4owymkonMhFMN5d73SjqYI.crl (hash: ZNn9OL/7Wvyi9Jegp/DdsaU2fj4qQhgyHW7EkkcBGWQ=)
2: wBGjgdfu_nLRR4DjOBdo0PtKJMM.roa (hash: PPK9ixZ6Q7KuFLEJo2Wk9bDSxb6ZvTbGERhmOzUiZuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:b3:f7:26:6a:00:84:64:ec:03:b4:ed:64:14:8a:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77d561738a30ca69289cc84530de5def74a3a982
Validity
Not Before: Jun 11 22:01:02 2026 GMT
Not After : Jun 12 22:01:02 2026 GMT
Subject: CN=7479a8b35484c19cf6c80d66c87f721ea0f5ad22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:3b:7a:87:ed:e4:41:b9:b4:8f:04:44:ee:de:
c5:be:b9:cb:4c:55:86:c7:32:ac:e0:97:17:12:67:
07:a6:0b:a0:2e:09:76:f8:d4:9d:33:9b:83:3d:d1:
73:10:e0:83:47:c8:ae:1c:af:80:93:e9:57:8c:98:
83:4d:17:3d:d9:fe:e8:f3:7a:c9:14:cc:c5:40:ac:
02:f3:88:45:e3:e7:02:01:72:38:d4:a6:d5:a6:73:
0f:cf:92:6a:4f:a4:39:31:a5:4d:dd:d2:f1:69:89:
df:50:c0:be:5d:2b:42:00:a7:8b:7d:d2:f2:04:1e:
c7:d5:f9:c9:5a:3c:30:01:50:00:f3:9f:7a:53:28:
3b:3b:e8:5c:73:ce:9b:81:7f:e2:68:f2:d8:da:d9:
f4:f8:0a:a9:59:14:50:23:93:1f:d7:ba:9b:5f:17:
b5:ee:50:de:59:18:6e:5b:84:7b:2a:45:1e:01:6f:
d6:c2:11:42:37:e2:00:5a:7e:d1:d1:51:28:19:f0:
4b:45:2f:b5:f6:92:22:ee:0d:47:2a:f1:b2:97:6e:
d7:08:32:ef:13:53:69:55:7a:2a:1b:9a:c2:4d:48:
5d:0c:d1:34:80:5b:32:8c:9e:29:3e:0f:16:00:42:
c3:94:3d:5c:78:47:88:9d:19:16:3b:14:80:11:a6:
ce:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:79:A8:B3:54:84:C1:9C:F6:C8:0D:66:C8:7F:72:1E:A0:F5:AD:22
X509v3 Authority Key Identifier:
keyid:77:D5:61:73:8A:30:CA:69:28:9C:C8:45:30:DE:5D:EF:74:A3:A9:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:f9:51:4e:e6:4f:31:00:7b:c1:7b:f1:45:1b:b7:6d:14:13:
b7:ed:5c:99:46:e2:35:37:3b:67:6e:d1:1a:4c:27:18:f7:d0:
43:eb:33:47:8b:55:2a:cc:d6:e4:41:0d:4a:bd:45:78:78:5a:
68:d1:7b:56:e9:76:d1:cb:9f:02:cd:c5:e6:6b:af:3f:f3:50:
21:fd:6e:53:2e:3c:34:5b:41:55:46:aa:c3:d9:e3:48:44:d3:
90:e0:af:db:b1:c6:ce:6a:75:fe:67:99:3e:5a:f3:a9:05:a2:
da:20:bf:84:b4:ec:d5:20:be:a7:96:72:8d:7b:1d:e3:8f:78:
ce:aa:ae:fb:16:a2:c5:be:62:b8:8d:a9:25:c4:f9:f8:1d:38:
1c:76:6f:50:6b:d4:c9:8b:53:61:1a:81:e5:cb:0c:d8:3e:71:
b9:0d:77:10:d7:b6:21:16:a7:36:f5:83:93:a0:30:71:95:5b:
ae:e5:3d:bb:aa:d2:17:95:08:b3:2b:26:88:b3:64:25:85:ff:
be:5f:e6:76:22:0a:d5:f7:74:ff:01:fe:32:2c:45:c2:51:27:
c8:ae:48:ef:06:e7:7d:35:22:ab:e5:cc:27:16:41:9e:9e:3c:
0e:6f:0b:0d:49:a0:e3:17:88:3d:17:36:0b:5b:f7:14:dc:0d:
82:55:ba:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ64s/cmagCEZOwDtO1kFIovMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZDU2MTczOGEzMGNhNjkyODljYzg0NTMwZGU1ZGVmNzRh
M2E5ODIwHhcNMjYwNjExMjIwMTAyWhcNMjYwNjEyMjIwMTAyWjAzMTEwLwYDVQQD
Eyg3NDc5YThiMzU0ODRjMTljZjZjODBkNjZjODdmNzIxZWEwZjVhZDIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkDt6h+3kQbm0jwRE7t7FvrnLTFWG
xzKs4JcXEmcHpgugLgl2+NSdM5uDPdFzEOCDR8iuHK+Ak+lXjJiDTRc92f7o83rJ
FMzFQKwC84hF4+cCAXI41KbVpnMPz5JqT6Q5MaVN3dLxaYnfUMC+XStCAKeLfdLy
BB7H1fnJWjwwAVAA8596Uyg7O+hcc86bgX/iaPLY2tn0+AqpWRRQI5Mf17qbXxe1
7lDeWRhuW4R7KkUeAW/WwhFCN+IAWn7R0VEoGfBLRS+19pIi7g1HKvGyl27XCDLv
E1NpVXoqG5rCTUhdDNE0gFsyjJ4pPg8WAELDlD1ceEeInRkWOxSAEabOlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHR5qLNUhMGc9sgNZsh/ch6g9a0iMB8GA1UdIwQY
MBaAFHfVYXOKMMppKJzIRTDeXe90o6mCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDlWaGM0b3d5bWtvbk1oRk1ONWQ3M1NqcVlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9jYmViZTQtYWZhNi00YTFjLTk2MWIt
NDQzMWY4OTM4NGEzLzEvZDlWaGM0b3d5bWtvbk1oRk1ONWQ3M1NqcVlJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9jYmViZTQtYWZhNi00YTFjLTk2MWItNDQzMWY4OTM4NGEz
LzEvZDlWaGM0b3d5bWtvbk1oRk1ONWQ3M1NqcVlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMvlRTuZP
MQB7wXvxRRu3bRQTt+1cmUbiNTc7Z27RGkwnGPfQQ+szR4tVKszW5EENSr1FeHha
aNF7Vul20cufAs3F5muvP/NQIf1uUy48NFtBVUaqw9njSETTkOCv27HGzmp1/meZ
PlrzqQWi2iC/hLTs1SC+p5ZyjXsd4494zqqu+xaixb5iuI2pJcT5+B04HHZvUGvU
yYtTYRqB5csM2D5xuQ13ENe2IRanNvWDk6AwcZVbruU9u6rSF5UIsysmiLNkJYX/
vl/mdiIK1fd0/wH+MixFwlEnyK5I7wbnfTUiq+XMJxZBnp48Dm8LDUmg4xeIPRc2
C1v3FNwNglW6KQ==
-----END CERTIFICATE-----
Generated at Fri Jun 12 04:38:01 2026 by rpki-client