Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: Hd0C+/2llUfpUIVD4CGZv/NuyASxj9Lu2yNhZG6OKAY=
Subject key identifier: 4F:DB:EB:92:EC:6A:12:10:8E:5E:DE:B3:D1:DD:FE:86:E1:0D:5E:70
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 019EEE90680D8BFC77C78A21B73041CE8867
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 116D
Signing time: Mon 22 Jun 2026 09:01:41 +0000
Manifest this update: Mon 22 Jun 2026 09:01:41 +0000
Manifest next update: Tue 23 Jun 2026 09:01:41 +0000
Files and hashes: 1: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: kRrnTDUIrdMoYRb4L8oWEP5GZP3SOrCau0I3GNNOU4k=)
2: f7qLZUl_FwNxE3w_k0K8MDDnPE4.roa (hash: iT3SrQGihsPU4xD+7248AXf2sfstLnnSHt1kFE/x28E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ee:90:68:0d:8b:fc:77:c7:8a:21:b7:30:41:ce:88:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Jun 22 09:01:41 2026 GMT
Not After : Jun 23 09:01:41 2026 GMT
Subject: CN=4fdbeb92ec6a12108e5edeb3d1ddfe86e10d5e70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1c:87:2a:01:ce:e2:2f:0f:d5:ca:36:d8:8a:
99:ce:bd:91:a2:81:e5:15:4d:8a:3e:48:52:35:fa:
d7:db:44:3b:5b:58:6e:5a:b8:d8:c3:1a:53:d1:2d:
35:97:0a:d3:33:23:c4:8c:93:3e:5c:7e:b8:e7:86:
96:33:ab:0e:a5:66:95:7b:8e:2d:6b:d0:bf:86:cd:
d6:e3:b4:a8:76:ba:01:99:bb:7b:dd:5c:d1:f1:1e:
e8:83:b4:53:af:82:13:5e:fe:33:e7:6a:1c:ba:07:
11:85:a1:ab:63:97:96:64:b5:31:60:6a:90:cd:40:
ed:06:ab:e4:32:07:ad:8a:e1:d1:53:8a:0b:6c:26:
db:8a:83:4a:7d:b9:97:bc:47:62:fc:31:b2:28:c6:
de:78:70:72:12:cb:d6:e3:af:1f:ed:0b:0e:80:f1:
4b:e7:00:6a:01:5f:59:04:00:a4:68:d7:a6:c9:1a:
56:5b:77:18:a0:0c:75:e7:40:6a:df:88:a4:d2:97:
65:a3:42:55:f9:84:b5:bb:03:8e:18:9d:6f:1c:78:
1c:0b:13:5e:70:56:f4:37:20:a7:5c:01:2d:75:c5:
ca:dd:9c:9f:d3:23:a6:1a:8b:9c:e2:d1:b5:3d:a2:
8a:62:b7:b1:c3:a4:ce:d5:5c:ca:d8:2f:99:fa:2b:
31:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:DB:EB:92:EC:6A:12:10:8E:5E:DE:B3:D1:DD:FE:86:E1:0D:5E:70
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:fd:b3:0a:1f:61:8d:9d:0b:d6:49:fe:c6:e5:0c:98:22:f8:
08:d7:2f:aa:50:d1:53:09:29:a5:f9:ea:0b:8d:7b:77:f3:96:
bb:10:cf:2b:30:12:70:a7:f7:23:0f:6a:4b:82:b5:12:16:ac:
a4:ed:30:de:85:6a:9b:53:a8:f8:c0:d9:f3:0c:8e:14:33:98:
4c:f5:d5:fa:a7:e5:72:1c:f2:91:c8:eb:c7:46:aa:e0:17:8d:
71:18:44:98:4c:8d:0a:9d:f4:a0:43:a3:9e:15:3f:24:1c:a8:
fa:20:3e:ea:06:33:ca:b4:dd:24:a1:a6:01:ef:1c:9e:57:6e:
14:ba:60:dd:ab:d7:f1:d5:b5:30:16:90:7c:15:3e:d7:37:51:
d2:f5:29:e5:64:4a:3e:9a:da:f2:99:22:47:28:3b:af:ce:14:
17:3c:1b:69:fb:5a:02:c2:43:1d:20:1c:e1:fa:b4:61:3f:f8:
03:c7:6c:c4:2e:8a:5b:e4:0d:1e:60:46:84:e1:ab:30:2e:39:
af:5e:0b:c6:15:1c:a7:cc:05:d2:d8:b4:c1:77:bb:5e:9f:30:
b7:cc:ff:69:8a:51:32:94:e5:16:9a:38:07:07:ea:50:16:c8:
bf:5b:fe:e3:05:75:fe:62:53:12:3a:e0:cb:07:8b:ee:57:87:
56:99:75:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7ukGgNi/x3x4ohtzBBzohnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxOGRiMjg4MjNmMzcwOGIyNTVhYTEyNGJhNmVmNzQxZDEx
M2VhZjMwHhcNMjYwNjIyMDkwMTQxWhcNMjYwNjIzMDkwMTQxWjAzMTEwLwYDVQQD
Eyg0ZmRiZWI5MmVjNmExMjEwOGU1ZWRlYjNkMWRkZmU4NmUxMGQ1ZTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3xyHKgHO4i8P1co22IqZzr2RooHl
FU2KPkhSNfrX20Q7W1huWrjYwxpT0S01lwrTMyPEjJM+XH6454aWM6sOpWaVe44t
a9C/hs3W47SodroBmbt73VzR8R7og7RTr4ITXv4z52ocugcRhaGrY5eWZLUxYGqQ
zUDtBqvkMgetiuHRU4oLbCbbioNKfbmXvEdi/DGyKMbeeHByEsvW468f7QsOgPFL
5wBqAV9ZBACkaNemyRpWW3cYoAx150Bq34ik0pdlo0JV+YS1uwOOGJ1vHHgcCxNe
cFb0NyCnXAEtdcXK3Zyf0yOmGouc4tG1PaKKYrexw6TO1VzK2C+Z+isxgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE/b65LsahIQjl7es9Hd/obhDV5wMB8GA1UdIwQY
MBaAFCGNsogj83CLJVqhJLpu90HRE+rzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQt
NzlkYzNkMGJiZWQ4LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQtNzlkYzNkMGJiZWQ4
LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm/2zCh9h
jZ0L1kn+xuUMmCL4CNcvqlDRUwkppfnqC417d/OWuxDPKzAScKf3Iw9qS4K1Ehas
pO0w3oVqm1Oo+MDZ8wyOFDOYTPXV+qflchzykcjrx0aq4BeNcRhEmEyNCp30oEOj
nhU/JByo+iA+6gYzyrTdJKGmAe8cnlduFLpg3avX8dW1MBaQfBU+1zdR0vUp5WRK
Ppra8pkiRyg7r84UFzwbaftaAsJDHSAc4fq0YT/4A8dsxC6KW+QNHmBGhOGrMC45
r14LxhUcp8wF0ti0wXe7Xp8wt8z/aYpRMpTlFpo4BwfqUBbIv1v+4wV1/mJTEjrg
yweL7leHVpl1Bg==
-----END CERTIFICATE-----
Generated at Mon Jun 22 11:07:27 2026 by rpki-client