Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
File: cNvqB1PfCD5XgrufOAtdeZy3igY.mft (raw, json)
Hash identifier: Oj3UJz+mghoZwA2P5dW9UVgoyKZBVMoxXJUf3W761ag=
Subject key identifier: 11:7B:52:D9:6E:EB:B7:05:76:8A:3F:90:0D:23:93:C2:D8:C4:4A:2E
Authority key identifier: 70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
Certificate issuer: /CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Certificate serial: 019EB7338F930910E705168AB245CC5ADF57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
Manifest number: 18E9
Signing time: Thu 11 Jun 2026 15:01:09 +0000
Manifest this update: Thu 11 Jun 2026 15:01:09 +0000
Manifest next update: Fri 12 Jun 2026 15:01:09 +0000
Files and hashes: 1: YeLaacDEqyOHodEKhBUtu92hvRw.roa (hash: Ji1cHzcmwBaizYoDGG5KY1yTxLM1jIXJ3gtR7NQt17s=)
2: cNvqB1PfCD5XgrufOAtdeZy3igY.crl (hash: 3xq5TPYY6dg/2q2vq0dl1vtyInV37S4cg4UZThE4yKA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 15:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:33:8f:93:09:10:e7:05:16:8a:b2:45:cc:5a:df:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Validity
Not Before: Jun 11 15:01:09 2026 GMT
Not After : Jun 12 15:01:09 2026 GMT
Subject: CN=117b52d96eebb705768a3f900d2393c2d8c44a2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ff:ad:ec:bf:84:2f:2b:8a:17:a1:34:99:9e:
fd:dd:7f:d8:74:ec:05:9b:65:5a:0c:3f:39:0a:8d:
34:53:58:7c:4d:fa:eb:91:41:46:17:f8:fe:38:90:
f6:33:89:5c:eb:04:8e:f6:79:62:f2:65:f0:d5:82:
c5:ce:0f:9e:b2:07:0b:4b:ac:9b:5f:1f:97:e9:f1:
8e:80:ff:52:0b:07:73:3b:76:af:b5:9a:03:d7:56:
f6:a8:4e:20:6a:44:99:45:1e:9e:dc:8e:57:25:f7:
8c:4e:2c:ec:5a:73:4d:af:46:0a:bf:67:75:c0:7c:
85:47:cf:9d:a3:d8:94:af:16:b5:32:4e:1d:38:51:
21:78:13:b3:d9:b9:ee:8e:e1:0a:72:ae:4e:82:ab:
70:26:1f:1d:0a:58:8d:c1:6c:79:20:e6:74:4f:e0:
69:8d:83:aa:b9:ec:ea:c4:cb:4e:99:c4:dd:3c:38:
de:47:3d:45:d6:57:3c:69:5c:ff:be:41:2e:65:ee:
4e:94:5c:a9:06:33:65:e9:34:25:55:b6:c1:71:e0:
62:21:aa:a6:fd:79:cd:ea:84:08:7d:73:3d:83:6d:
53:05:17:cd:3a:20:a3:db:91:4e:87:a8:fa:0d:d1:
96:a5:4e:3f:b5:2b:8a:79:fc:01:a6:0f:8f:97:15:
d8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:7B:52:D9:6E:EB:B7:05:76:8A:3F:90:0D:23:93:C2:D8:C4:4A:2E
X509v3 Authority Key Identifier:
keyid:70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:91:51:0c:c6:e6:72:84:6e:61:85:06:51:4f:13:15:26:e3:
f8:2a:24:9a:43:1a:27:c7:89:74:6a:bc:0d:50:b3:9e:21:64:
b1:16:5d:b5:02:c5:2d:5c:8a:e0:f8:fd:86:47:4c:ca:a3:bb:
f1:6b:2a:03:59:e8:b4:c1:61:ee:ca:5a:70:00:15:5d:e8:2f:
66:c0:4a:c1:aa:c1:f4:8d:a0:bc:82:36:ab:b0:9c:e5:53:80:
d7:2e:81:39:91:14:f1:68:5f:ae:15:3f:d1:b0:84:df:2e:fc:
9b:24:a1:92:e5:15:94:ea:3d:15:b3:e4:de:20:d8:f1:b7:21:
70:46:a5:ba:67:c4:dd:d5:89:c0:0c:ef:70:7d:df:2e:46:a3:
a4:d1:e3:3b:8d:bd:41:80:ea:aa:13:cc:4a:9a:20:14:0a:fb:
34:62:83:67:39:d7:71:fc:7e:de:64:d8:15:61:3e:0e:5e:11:
b0:cb:27:66:20:2b:c2:9f:5a:86:76:5b:ca:db:c3:06:6e:b9:
83:52:53:8a:92:9d:23:b7:97:82:09:03:ee:c1:97:cf:5f:1c:
3e:fd:07:b9:57:47:bd:a0:96:9c:62:4c:f8:0b:f1:10:2a:4d:
9d:b1:98:c6:90:7a:c4:9b:86:8e:fa:99:95:a0:3e:45:ae:cd:
3a:a5:cf:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ63M4+TCRDnBRaKskXMWt9XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZGJlYTA3NTNkZjA4M2U1NzgyYmI5ZjM4MGI1ZDc5OWNi
NzhhMDYwHhcNMjYwNjExMTUwMTA5WhcNMjYwNjEyMTUwMTA5WjAzMTEwLwYDVQQD
EygxMTdiNTJkOTZlZWJiNzA1NzY4YTNmOTAwZDIzOTNjMmQ4YzQ0YTJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiv+t7L+ELyuKF6E0mZ793X/YdOwF
m2VaDD85Co00U1h8TfrrkUFGF/j+OJD2M4lc6wSO9nli8mXw1YLFzg+esgcLS6yb
Xx+X6fGOgP9SCwdzO3avtZoD11b2qE4gakSZRR6e3I5XJfeMTizsWnNNr0YKv2d1
wHyFR8+do9iUrxa1Mk4dOFEheBOz2bnujuEKcq5OgqtwJh8dCliNwWx5IOZ0T+Bp
jYOquezqxMtOmcTdPDjeRz1F1lc8aVz/vkEuZe5OlFypBjNl6TQlVbbBceBiIaqm
/XnN6oQIfXM9g21TBRfNOiCj25FOh6j6DdGWpU4/tSuKefwBpg+PlxXY6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBF7Utlu67cFdoo/kA0jk8LYxEouMB8GA1UdIwQY
MBaAFHDb6gdT3wg+V4K7nzgLXXmct4oGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY052cUIxUGZDRDVYZ3J1Zk9BdGRlWnkzaWdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9kZWVjMmUtMGNkNi00MTEzLWIyYjkt
MmEwY2YxMzE3M2Q4LzEvY052cUIxUGZDRDVYZ3J1Zk9BdGRlWnkzaWdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9kZWVjMmUtMGNkNi00MTEzLWIyYjktMmEwY2YxMzE3M2Q4
LzEvY052cUIxUGZDRDVYZ3J1Zk9BdGRlWnkzaWdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT5FRDMbm
coRuYYUGUU8TFSbj+CokmkMaJ8eJdGq8DVCzniFksRZdtQLFLVyK4Pj9hkdMyqO7
8WsqA1notMFh7spacAAVXegvZsBKwarB9I2gvII2q7Cc5VOA1y6BOZEU8WhfrhU/
0bCE3y78myShkuUVlOo9FbPk3iDY8bchcEalumfE3dWJwAzvcH3fLkajpNHjO429
QYDqqhPMSpogFAr7NGKDZznXcfx+3mTYFWE+Dl4RsMsnZiArwp9ahnZbytvDBm65
g1JTipKdI7eXggkD7sGXz18cPv0HuVdHvaCWnGJM+AvxECpNnbGYxpB6xJuGjvqZ
laA+Ra7NOqXPEw==
-----END CERTIFICATE-----
Generated at Thu Jun 11 23:52:13 2026 by rpki-client