Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
File: mXyCWBNDX7ARVDjuP2B2N869jo4.mft (raw, json)
Hash identifier: La3W75OMD7l7KQGEq+yWZ889dUjJSZbU0Zsroh/HJnU=
Subject key identifier: CA:4B:6E:C3:D4:34:8F:40:1A:D5:01:6D:6E:EE:58:13:C4:14:F7:AE
Authority key identifier: 99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E
Certificate issuer: /CN=997c825813435fb0115438ee3f607637cebd8e8e
Certificate serial: 019E928211C6B289212374CE01243A255352
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
Manifest number: 0222
Signing time: Thu 04 Jun 2026 12:00:57 +0000
Manifest this update: Thu 04 Jun 2026 12:00:57 +0000
Manifest next update: Fri 05 Jun 2026 12:00:57 +0000
Files and hashes: 1: IqAZ7XQz7BlbCx4e-ofeDvMJfNU.roa (hash: Kp2XtcxtOkZThbBMLc4hB6JTrGLoaZOP4GbgJkvTA/A=)
2: mXyCWBNDX7ARVDjuP2B2N869jo4.crl (hash: hBDLdKVgLbA2NkvDKfRHi8NUGPFZe/sgTqMjapsEI30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:92:82:11:c6:b2:89:21:23:74:ce:01:24:3a:25:53:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997c825813435fb0115438ee3f607637cebd8e8e
Validity
Not Before: Jun 4 12:00:57 2026 GMT
Not After : Jun 5 12:00:57 2026 GMT
Subject: CN=ca4b6ec3d4348f401ad5016d6eee5813c414f7ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2d:23:a7:c9:2e:19:b5:5f:86:68:e2:88:c8:
3c:26:1e:4b:e1:a6:8d:74:5d:08:fb:64:c4:c9:d5:
b2:01:22:ce:a4:64:fd:0f:27:13:f9:c3:10:25:9b:
55:3a:c3:9b:0c:1f:20:31:e1:c9:a1:b5:26:e3:45:
07:46:10:73:3f:23:96:fd:fc:7d:eb:87:6e:da:99:
2c:e2:52:c4:c4:d6:2c:2b:bf:4c:fe:2c:5a:52:20:
d0:f8:84:b4:cf:60:ce:7d:4b:4d:89:73:7a:74:10:
ae:11:d6:ce:e9:94:4e:8d:d0:a6:5d:45:2f:a9:28:
5a:6f:2c:a8:92:c4:9e:fa:f1:71:9e:aa:af:a4:94:
37:26:1f:72:71:57:9b:f0:ad:f9:2e:60:4d:c0:9d:
e7:c3:07:5b:33:fd:9c:10:9d:0d:e0:2b:ad:2c:31:
fd:bb:1a:65:b1:a2:6e:ba:94:48:c3:82:d2:40:ba:
e2:5f:11:81:1b:e2:bb:dc:9e:1c:b7:ab:07:03:64:
d3:2b:41:3c:ea:ac:99:62:f6:86:d6:ba:0a:69:d9:
d8:57:76:20:9c:de:0a:c7:7a:84:67:45:fe:5b:ed:
f1:16:9e:b0:ae:4b:e7:81:ae:c1:ba:56:39:05:ea:
b7:88:ff:b5:fc:b5:85:a4:ea:6b:73:23:3b:1f:fc:
76:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:4B:6E:C3:D4:34:8F:40:1A:D5:01:6D:6E:EE:58:13:C4:14:F7:AE
X509v3 Authority Key Identifier:
keyid:99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:43:90:7b:da:81:ae:93:85:f6:47:33:81:6f:eb:56:d2:a2:
41:be:ea:b8:79:49:48:22:b1:cb:83:99:93:6f:1f:28:13:2b:
2b:b5:10:d8:d3:42:c5:db:6d:81:14:dd:38:93:e6:47:af:f5:
e8:16:e9:4d:90:fc:c4:16:a3:26:6c:c0:04:53:06:37:58:54:
cb:d1:fd:57:c2:73:4f:b1:e7:23:b5:65:72:7f:07:f3:dc:c0:
a1:99:40:1a:50:30:b6:d0:ce:db:98:b6:48:e1:81:ad:87:54:
f5:02:96:5e:55:9a:59:76:0e:4b:2a:2d:c0:3c:6e:e9:f7:52:
65:5f:fe:1a:94:32:8d:f4:95:dc:d9:a6:5b:1b:99:77:de:12:
9d:e6:ca:9b:e0:14:49:e3:2d:f4:f6:6f:80:43:96:be:cd:29:
07:f3:06:0b:94:b3:25:fb:af:a0:70:f7:78:27:e1:42:c4:bc:
f0:ef:15:5f:8a:8b:26:ea:e9:ef:a7:2d:34:41:c8:5e:1f:25:
9b:f4:4f:52:01:06:77:6b:82:84:78:d3:29:04:4e:9e:c3:fc:
21:10:8e:b0:a8:da:b8:72:a4:07:d6:86:e1:15:13:d1:38:f6:
6a:57:0e:db:5b:3f:11:c5:0f:a9:0e:aa:46:b6:36:5d:53:fd:
e9:d0:aa:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6SghHGsokhI3TOASQ6JVNSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5N2M4MjU4MTM0MzVmYjAxMTU0MzhlZTNmNjA3NjM3Y2Vi
ZDhlOGUwHhcNMjYwNjA0MTIwMDU3WhcNMjYwNjA1MTIwMDU3WjAzMTEwLwYDVQQD
EyhjYTRiNmVjM2Q0MzQ4ZjQwMWFkNTAxNmQ2ZWVlNTgxM2M0MTRmN2FlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzy0jp8kuGbVfhmjiiMg8Jh5L4aaN
dF0I+2TEydWyASLOpGT9DycT+cMQJZtVOsObDB8gMeHJobUm40UHRhBzPyOW/fx9
64du2pks4lLExNYsK79M/ixaUiDQ+IS0z2DOfUtNiXN6dBCuEdbO6ZROjdCmXUUv
qShabyyoksSe+vFxnqqvpJQ3Jh9ycVeb8K35LmBNwJ3nwwdbM/2cEJ0N4CutLDH9
uxplsaJuupRIw4LSQLriXxGBG+K73J4ct6sHA2TTK0E86qyZYvaG1roKadnYV3Yg
nN4Kx3qEZ0X+W+3xFp6wrkvnga7BulY5Beq3iP+1/LWFpOprcyM7H/x2ywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMpLbsPUNI9AGtUBbW7uWBPEFPeuMB8GA1UdIwQY
MBaAFJl8glgTQ1+wEVQ47j9gdjfOvY6OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8yZjU1MDItMDA3YS00NjgzLTk4NzIt
MjhmNzFhYmJhMDNhLzEvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni8yZjU1MDItMDA3YS00NjgzLTk4NzItMjhmNzFhYmJhMDNh
LzEvbVh5Q1dCTkRYN0FSVkRqdVAyQjJOODY5am80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkEOQe9qB
rpOF9kczgW/rVtKiQb7quHlJSCKxy4OZk28fKBMrK7UQ2NNCxdttgRTdOJPmR6/1
6BbpTZD8xBajJmzABFMGN1hUy9H9V8JzT7HnI7Vlcn8H89zAoZlAGlAwttDO25i2
SOGBrYdU9QKWXlWaWXYOSyotwDxu6fdSZV/+GpQyjfSV3NmmWxuZd94SnebKm+AU
SeMt9PZvgEOWvs0pB/MGC5SzJfuvoHD3eCfhQsS88O8VX4qLJurp76ctNEHIXh8l
m/RPUgEGd2uChHjTKQROnsP8IRCOsKjauHKkB9aG4RUT0Tj2alcO21s/EcUPqQ6q
RrY2XVP96dCq/A==
-----END CERTIFICATE-----
Generated at Thu Jun 4 16:02:28 2026 by rpki-client