Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
File: d2-uQ_c9o1_houQpZirguRdR4_s.mft (raw, json)
Hash identifier: phtySAGKMPQrQzQzVqTj2B/HAPPGoQ5coSxgUjCw6SQ=
Subject key identifier: 10:F6:7E:4C:A3:75:1E:05:BC:1E:81:D2:94:40:3E:08:BB:16:B9:EA
Authority key identifier: 77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
Certificate issuer: /CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Certificate serial: 019EB5E9C6505AAC2AF8D475611E2F64B521
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
Manifest number: 167B
Signing time: Thu 11 Jun 2026 09:00:57 +0000
Manifest this update: Thu 11 Jun 2026 09:00:57 +0000
Manifest next update: Fri 12 Jun 2026 09:00:57 +0000
Files and hashes: 1: WIBc-XhxOnD5f9bCQ8Jz0ZuTnGc.roa (hash: BEfaJedvpJl8LX0jJodXnPNHqf67lfg9OTd8BTanSlQ=)
2: biWMyLPxPMl5FtQJTRrTfAxg-wg.roa (hash: pNDoD30C6cU3KpMd8R/7fMFpHc25Pe1LLUHjt0eH4ZA=)
3: d2-uQ_c9o1_houQpZirguRdR4_s.crl (hash: CDk5+n9RYCnE9kyLuQv2+JE7a15gHj8SuXNsKoQbwjY=)
4: pInkCUNgtUwuBuyF0FBGq4Od_LA.roa (hash: 84LwnqiXuuACgBX/nkeDGPUuwEvED3Wv0F8ikRwy6Nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 08:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:e9:c6:50:5a:ac:2a:f8:d4:75:61:1e:2f:64:b5:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Validity
Not Before: Jun 11 09:00:57 2026 GMT
Not After : Jun 12 09:00:57 2026 GMT
Subject: CN=10f67e4ca3751e05bc1e81d294403e08bb16b9ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c8:5e:af:a2:1c:2f:8c:a8:0b:41:57:44:1e:
89:f4:a7:ad:13:da:6d:4f:b6:9e:a9:3d:27:40:54:
41:1f:19:11:47:36:c7:ff:a8:14:b7:fb:2c:6f:b9:
12:6d:0b:69:24:1b:91:2d:bf:fc:b3:bc:f1:a5:e8:
ea:97:f0:bc:9c:33:0a:96:e8:3f:5c:ea:d0:6a:ed:
5c:45:5b:f5:54:d3:62:5c:f2:43:99:50:a0:4d:b2:
3a:2a:7d:84:8d:a4:2f:0d:ff:32:28:4b:39:5e:17:
a6:16:54:d3:16:8c:4f:a1:ca:b3:33:84:8c:12:00:
d7:c6:ea:06:21:b2:b5:9d:d5:7d:5f:72:91:10:31:
53:96:4f:ed:87:b6:e5:82:9a:53:53:e8:23:4e:14:
72:66:94:40:ce:f4:2c:a4:0b:f4:67:b3:c6:23:e2:
a2:45:c2:7c:71:b6:0e:66:19:3a:89:3c:8f:cb:77:
c9:8b:1d:94:f4:93:eb:08:ba:30:69:26:56:90:ae:
8b:65:39:de:f5:8b:45:6f:20:b0:2d:79:30:99:da:
94:33:15:ea:cc:3b:dc:75:6f:f2:12:d3:bc:7d:30:
ff:29:98:c6:f7:1a:b4:47:6d:c6:ed:32:84:9b:a6:
04:2e:17:90:68:b0:dd:f6:43:e6:2c:48:36:35:40:
65:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F6:7E:4C:A3:75:1E:05:BC:1E:81:D2:94:40:3E:08:BB:16:B9:EA
X509v3 Authority Key Identifier:
keyid:77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:b9:4a:6f:63:12:bb:50:15:ef:d9:04:ad:0d:54:a0:57:96:
ce:4c:95:66:25:a6:9e:ee:f4:e7:4b:2c:e7:2d:7a:d8:40:f0:
1e:1a:8e:2b:7a:f3:53:56:0c:b3:fb:fd:78:0f:56:84:3a:72:
d3:8e:35:9c:4b:60:e2:68:50:18:36:bb:54:43:d0:4f:5c:7f:
d1:31:43:f0:19:a8:31:8d:5d:a6:c1:cc:b0:74:c1:84:db:d5:
1e:cd:84:a7:02:b5:14:03:26:f9:74:c9:0a:7a:20:e9:0d:63:
12:7a:1b:de:a2:dd:d0:95:bc:28:60:00:01:3b:a9:45:d5:db:
b1:4d:51:3f:ce:05:4f:b6:41:26:92:4a:74:8e:71:42:50:91:
e8:7f:ee:6c:19:01:b1:89:43:14:67:b8:74:6e:45:3b:bd:61:
38:d2:51:96:12:8b:7c:9f:24:85:06:ac:81:a8:14:3c:50:20:
d8:7f:1a:54:76:e0:bc:8f:17:62:d1:d4:24:6a:b7:2d:65:30:
8f:05:b9:b6:b8:dc:4a:27:d0:fc:aa:3e:65:53:0b:d0:6a:09:
81:14:44:c0:86:59:08:c1:3a:49:6b:fd:f0:a3:ca:46:d9:fb:
cf:65:08:0c:b3:86:02:59:e1:69:14:11:cd:f1:02:6a:bb:1a:
46:94:bf:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ616cZQWqwq+NR1YR4vZLUhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3NmZhZTQzZjczZGEzNWZlMWEyZTQyOTY2MmFlMGI5MTc1
MWUzZmIwHhcNMjYwNjExMDkwMDU3WhcNMjYwNjEyMDkwMDU3WjAzMTEwLwYDVQQD
EygxMGY2N2U0Y2EzNzUxZTA1YmMxZTgxZDI5NDQwM2UwOGJiMTZiOWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8her6IcL4yoC0FXRB6J9KetE9pt
T7aeqT0nQFRBHxkRRzbH/6gUt/ssb7kSbQtpJBuRLb/8s7zxpejql/C8nDMKlug/
XOrQau1cRVv1VNNiXPJDmVCgTbI6Kn2EjaQvDf8yKEs5XhemFlTTFoxPocqzM4SM
EgDXxuoGIbK1ndV9X3KREDFTlk/th7blgppTU+gjThRyZpRAzvQspAv0Z7PGI+Ki
RcJ8cbYOZhk6iTyPy3fJix2U9JPrCLowaSZWkK6LZTne9YtFbyCwLXkwmdqUMxXq
zDvcdW/yEtO8fTD/KZjG9xq0R23G7TKEm6YELheQaLDd9kPmLEg2NUBlgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBD2fkyjdR4FvB6B0pRAPgi7FrnqMB8GA1UdIwQY
MBaAFHdvrkP3PaNf4aLkKWYq4LkXUeP7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDItdVFfYzlvMV9ob3VRcFppcmd1UmRSNF9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8wYWNmMmQtNWQ2Mi00M2YzLThkMTQt
NGUwY2M1ODE2M2IwLzEvZDItdVFfYzlvMV9ob3VRcFppcmd1UmRSNF9zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8wYWNmMmQtNWQ2Mi00M2YzLThkMTQtNGUwY2M1ODE2M2Iw
LzEvZDItdVFfYzlvMV9ob3VRcFppcmd1UmRSNF9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXLlKb2MS
u1AV79kErQ1UoFeWzkyVZiWmnu7050ss5y162EDwHhqOK3rzU1YMs/v9eA9WhDpy
0441nEtg4mhQGDa7VEPQT1x/0TFD8BmoMY1dpsHMsHTBhNvVHs2EpwK1FAMm+XTJ
Cnog6Q1jEnob3qLd0JW8KGAAATupRdXbsU1RP84FT7ZBJpJKdI5xQlCR6H/ubBkB
sYlDFGe4dG5FO71hONJRlhKLfJ8khQasgagUPFAg2H8aVHbgvI8XYtHUJGq3LWUw
jwW5trjcSifQ/Ko+ZVML0GoJgRREwIZZCME6SWv98KPKRtn7z2UIDLOGAlnhaRQR
zfECarsaRpS/9w==
-----END CERTIFICATE-----
Generated at Thu Jun 11 13:08:04 2026 by rpki-client