Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: gfQ1Wl2J2HVfXtvrMyjTvQ7O1pFpjRnHC6OCTpXE3zQ=
Subject key identifier: 72:B7:31:5B:91:6F:53:B2:1B:2B:37:61:A1:E6:2E:CF:4E:44:18:2E
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 019EB9C616D0865B95D5B187798C770EE6F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 1956
Signing time: Fri 12 Jun 2026 03:00:27 +0000
Manifest this update: Fri 12 Jun 2026 03:00:27 +0000
Manifest next update: Sat 13 Jun 2026 03:00:27 +0000
Files and hashes: 1: 3ZbP8D4oyhCe4u5mlugxkhUP_G4.roa (hash: mYQ4ggMgVLrFbz01ZBuOhgHTwYfwTmz0/Kv0k+37TBo=)
2: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: 5+SiJRtI3c36FFN3BgOBt/g7I8ULBbVqxA8QshOOTyw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 22:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:c6:16:d0:86:5b:95:d5:b1:87:79:8c:77:0e:e6:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Jun 12 03:00:27 2026 GMT
Not After : Jun 13 03:00:27 2026 GMT
Subject: CN=72b7315b916f53b21b2b3761a1e62ecf4e44182e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ac:17:91:72:db:a5:97:69:63:af:81:fd:12:
4c:75:d8:c9:ae:d4:c2:7f:d6:52:55:bc:96:1a:f7:
3f:90:79:6f:57:d7:ec:f5:56:64:7a:68:16:c6:e1:
97:b6:72:ae:17:f6:91:d3:61:19:79:0a:f6:7a:25:
53:d7:01:4d:e4:78:4a:d6:7d:12:b3:8a:2e:8d:7b:
cd:84:7b:98:54:9a:c6:4f:71:0e:03:64:02:0a:89:
07:ac:72:f3:98:9f:dc:80:d8:29:f9:e8:05:fc:c2:
78:85:09:61:93:05:e4:e4:d4:68:75:3a:67:3c:42:
15:86:82:58:e1:d9:b4:3b:b2:45:e8:56:f4:ca:3d:
96:19:c9:da:a9:13:aa:19:5f:33:b9:1e:d2:d0:39:
4b:3e:f8:b4:d3:bb:8e:a4:01:6f:a1:67:c9:1e:21:
f1:a5:dc:c1:5b:20:d2:d9:5f:25:76:c6:38:52:52:
41:1f:dc:ba:bc:f6:8b:94:e1:7f:09:cb:a7:93:60:
35:74:41:41:33:1e:61:a3:84:d8:25:91:9a:8a:25:
06:51:7b:1e:36:db:7d:8a:81:7d:6e:5b:25:f8:fb:
56:da:10:04:8a:2d:e3:2e:95:b7:1d:cf:55:38:1c:
a3:a4:10:67:52:f0:76:12:90:e6:e8:dc:a4:b6:45:
3a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B7:31:5B:91:6F:53:B2:1B:2B:37:61:A1:E6:2E:CF:4E:44:18:2E
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:d9:96:70:61:58:a0:8a:db:56:4b:50:8a:b5:83:0a:a0:5a:
72:3f:74:51:b5:da:2c:95:82:89:4a:b4:3f:56:d4:4c:d8:d8:
cb:ea:9b:c9:3c:49:99:c6:4a:fd:77:30:b1:e0:9e:2e:55:8e:
5d:f4:8e:03:d4:10:7e:a8:6f:7c:37:0a:f0:73:82:b9:e8:24:
c6:78:e1:da:be:20:b9:8d:4b:fe:5d:ad:5c:2e:dc:23:34:3e:
5f:d8:e9:30:05:39:91:fb:bb:dc:20:28:c6:f0:54:94:3f:e5:
e0:84:fa:5b:33:64:2a:58:e5:b4:03:3a:4e:0b:a2:ab:f5:e2:
63:10:60:5e:86:a7:50:99:e0:93:b2:0f:95:53:ba:9c:66:14:
0d:36:83:7b:60:62:fb:42:6b:93:da:2c:51:5c:13:e0:a6:bc:
b1:2b:a9:0c:27:9d:37:47:f6:47:3b:32:c5:a1:5f:6d:9d:86:
49:dd:b4:d6:75:ed:40:c7:95:a1:ec:68:3b:2f:f3:fa:d2:9b:
69:7b:8e:d2:bf:64:2e:46:0d:fc:dc:34:3d:21:cd:7d:56:3c:
68:8d:c7:89:67:a1:fe:11:1d:3c:0d:28:27:24:70:52:d9:f7:
c8:8e:00:bf:aa:0a:2e:c5:4c:09:fc:22:fb:71:3d:7a:e4:32:
9b:74:7d:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ65xhbQhluV1bGHeYx3Dub2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzMzkzNDNjYzZkNTFkZGI4ZTM2MzgyOTlhMWJiNDk1ZjQ1
ODA5MjEwHhcNMjYwNjEyMDMwMDI3WhcNMjYwNjEzMDMwMDI3WjAzMTEwLwYDVQQD
Eyg3MmI3MzE1YjkxNmY1M2IyMWIyYjM3NjFhMWU2MmVjZjRlNDQxODJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1KwXkXLbpZdpY6+B/RJMddjJrtTC
f9ZSVbyWGvc/kHlvV9fs9VZkemgWxuGXtnKuF/aR02EZeQr2eiVT1wFN5HhK1n0S
s4oujXvNhHuYVJrGT3EOA2QCCokHrHLzmJ/cgNgp+egF/MJ4hQlhkwXk5NRodTpn
PEIVhoJY4dm0O7JF6Fb0yj2WGcnaqROqGV8zuR7S0DlLPvi007uOpAFvoWfJHiHx
pdzBWyDS2V8ldsY4UlJBH9y6vPaLlOF/Ccunk2A1dEFBMx5ho4TYJZGaiiUGUXse
Ntt9ioF9blsl+PtW2hAEii3jLpW3Hc9VOByjpBBnUvB2EpDm6NyktkU6YwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHK3MVuRb1OyGys3YaHmLs9ORBguMB8GA1UdIwQY
MBaAFPM5NDzG1R3bjjY4KZobtJX0WAkhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDIt
Mzc3ZDI1YmU1OTRkLzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDItMzc3ZDI1YmU1OTRk
LzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN9mWcGFY
oIrbVktQirWDCqBacj90UbXaLJWCiUq0P1bUTNjYy+qbyTxJmcZK/XcwseCeLlWO
XfSOA9QQfqhvfDcK8HOCuegkxnjh2r4guY1L/l2tXC7cIzQ+X9jpMAU5kfu73CAo
xvBUlD/l4IT6WzNkKljltAM6Tguiq/XiYxBgXoanUJngk7IPlVO6nGYUDTaDe2Bi
+0Jrk9osUVwT4Ka8sSupDCedN0f2RzsyxaFfbZ2GSd201nXtQMeVoexoOy/z+tKb
aXuO0r9kLkYN/Nw0PSHNfVY8aI3HiWeh/hEdPA0oJyRwUtn3yI4Av6oKLsVMCfwi
+3E9euQym3R9Jw==
-----END CERTIFICATE-----
Generated at Fri Jun 12 08:09:41 2026 by rpki-client