Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
File: rkopxhOOLZPVSjYyi5TLH4o4Kms.mft (raw, json)
Hash identifier: VRSogJ1ebrSHFZ8ISZeek244c1pnIHkcuAqkd/Wpu3c=
Subject key identifier: 25:69:2A:A9:05:00:DA:80:C3:14:8D:65:43:8A:9E:3C:35:3E:E1:2F
Authority key identifier: AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B
Certificate issuer: /CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b
Certificate serial: 019F18D63CE19490604A503AFA6D1948724B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
Manifest number: 0E47
Signing time: Tue 30 Jun 2026 14:02:01 +0000
Manifest this update: Tue 30 Jun 2026 14:02:01 +0000
Manifest next update: Wed 01 Jul 2026 14:02:01 +0000
Files and hashes: 1: UvulvKNPlQ3DW7OFO84K_Dsu4xs.roa (hash: sbA5hsgIPFLxYaMguAK/fWfL4FZLjCI5T2S6fCZgzls=)
2: oAm1gK3PlSJ8uZpz6kuGG8_RDis.roa (hash: qyWcJhPl+RateZRWaHU5ZN6wmeIFgslBGIm52luDwjg=)
3: rkopxhOOLZPVSjYyi5TLH4o4Kms.crl (hash: M/WfN9opv+OfXCv+TWuAz48DbUnZDzR4OKwtA2D/Bx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:3c:e1:94:90:60:4a:50:3a:fa:6d:19:48:72:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b
Validity
Not Before: Jun 30 14:02:01 2026 GMT
Not After : Jul 1 14:02:01 2026 GMT
Subject: CN=25692aa90500da80c3148d65438a9e3c353ee12f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b4:4e:63:0e:26:c1:1c:08:aa:bc:db:a7:9a:
3c:8d:58:4c:d2:d3:b2:87:27:ae:2a:bb:b7:58:22:
c2:20:76:9f:ac:ee:f5:5c:46:76:0f:e9:dd:06:a1:
63:a6:21:14:75:43:c4:98:11:66:e4:7b:11:5f:c4:
10:1b:59:bb:a4:7a:2d:55:37:f5:8f:3b:42:8e:6b:
c2:10:d7:c8:6a:aa:c3:12:9b:a3:08:a0:7c:2e:8d:
85:c7:90:14:a7:05:22:3b:34:47:22:3f:80:a6:f9:
4f:9d:c3:9c:cd:92:06:af:e8:93:23:85:da:36:a6:
11:6d:dc:c3:ab:c8:1e:71:5f:cb:ac:fb:8e:ff:6b:
15:32:41:83:63:25:74:d5:46:01:7d:bf:42:1e:10:
8c:b6:c0:6b:54:c2:10:d4:ac:05:c8:ac:5a:cf:66:
3d:1f:58:db:bd:ea:04:50:36:10:16:60:b8:08:0d:
9d:35:4f:c8:f7:73:26:15:07:c2:65:3f:12:8d:5e:
c9:e2:d5:93:2a:d5:3d:da:f8:72:6b:20:d6:30:58:
61:37:ee:2c:9a:3f:46:e0:7e:c5:e2:41:3e:e9:22:
c5:0e:03:b8:76:f6:f0:0c:72:38:7c:62:93:d8:a6:
46:10:6c:47:b1:50:95:44:a6:48:14:5c:c0:32:5c:
2b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:69:2A:A9:05:00:DA:80:C3:14:8D:65:43:8A:9E:3C:35:3E:E1:2F
X509v3 Authority Key Identifier:
keyid:AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:fa:8d:51:c3:71:c0:b7:00:22:9a:b2:02:bd:9a:74:15:a3:
25:8d:db:82:3a:ca:a8:72:20:9b:35:7d:9e:90:95:ad:37:aa:
bb:70:0a:40:ab:98:46:46:e8:52:91:a3:90:e0:b1:2e:18:e7:
d4:c7:07:ce:e8:18:b7:1d:72:8c:d5:4b:68:cc:cd:19:d0:cf:
d6:3d:75:a9:9b:5c:e4:92:f2:10:1c:af:96:36:ae:07:96:cb:
3f:a2:5b:90:0f:b1:a3:de:17:b3:eb:36:5f:67:28:28:e0:b6:
73:f7:a9:3c:a8:bd:af:51:e0:82:2d:6a:3b:b5:a6:1c:43:a0:
a2:3d:4e:80:d4:45:88:3e:95:32:c8:b7:5f:34:ee:15:37:6f:
53:5f:e1:c9:0f:c4:91:01:1e:2a:27:76:b5:3c:d7:5d:a8:4f:
81:e5:6b:2f:49:58:ef:0f:dc:76:a1:63:b7:fd:aa:30:c3:ba:
46:58:fa:73:71:57:fd:e8:4b:f4:2f:74:d0:00:b4:a9:d0:7e:
33:5f:00:00:d4:78:ca:8c:fe:11:88:d3:54:4a:58:22:55:88:
36:58:e2:7f:d9:ed:31:f9:67:6d:b6:7b:d0:01:f2:ab:fc:ad:
e6:9a:4d:04:2b:24:d4:be:3f:98:c8:1f:cb:e8:50:c3:a8:ad:
75:08:3e:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8Y1jzhlJBgSlA6+m0ZSHJLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlNGEyOWM2MTM4ZTJkOTNkNTRhMzYzMjhiOTRjYjFmOGEz
ODJhNmIwHhcNMjYwNjMwMTQwMjAxWhcNMjYwNzAxMTQwMjAxWjAzMTEwLwYDVQQD
EygyNTY5MmFhOTA1MDBkYTgwYzMxNDhkNjU0MzhhOWUzYzM1M2VlMTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA37ROYw4mwRwIqrzbp5o8jVhM0tOy
hyeuKru3WCLCIHafrO71XEZ2D+ndBqFjpiEUdUPEmBFm5HsRX8QQG1m7pHotVTf1
jztCjmvCENfIaqrDEpujCKB8Lo2Fx5AUpwUiOzRHIj+ApvlPncOczZIGr+iTI4Xa
NqYRbdzDq8gecV/LrPuO/2sVMkGDYyV01UYBfb9CHhCMtsBrVMIQ1KwFyKxaz2Y9
H1jbveoEUDYQFmC4CA2dNU/I93MmFQfCZT8SjV7J4tWTKtU92vhyayDWMFhhN+4s
mj9G4H7F4kE+6SLFDgO4dvbwDHI4fGKT2KZGEGxHsVCVRKZIFFzAMlwrQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCVpKqkFANqAwxSNZUOKnjw1PuEvMB8GA1UdIwQY
MBaAFK5KKcYTji2T1Uo2MouUyx+KOCprMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmtvcHhoT09MWlBWU2pZeWk1VExING80S21zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi8zNWJlMDQtZDViNy00NGFhLWFkZTQt
MTM0MDFkMWYyMmQyLzEvcmtvcHhoT09MWlBWU2pZeWk1VExING80S21zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi8zNWJlMDQtZDViNy00NGFhLWFkZTQtMTM0MDFkMWYyMmQy
LzEvcmtvcHhoT09MWlBWU2pZeWk1VExING80S21zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfPqNUcNx
wLcAIpqyAr2adBWjJY3bgjrKqHIgmzV9npCVrTequ3AKQKuYRkboUpGjkOCxLhjn
1McHzugYtx1yjNVLaMzNGdDP1j11qZtc5JLyEByvljauB5bLP6JbkA+xo94Xs+s2
X2coKOC2c/epPKi9r1Hggi1qO7WmHEOgoj1OgNRFiD6VMsi3XzTuFTdvU1/hyQ/E
kQEeKid2tTzXXahPgeVrL0lY7w/cdqFjt/2qMMO6Rlj6c3FX/ehL9C900AC0qdB+
M18AANR4yoz+EYjTVEpYIlWINljif9ntMflnbbZ70AHyq/yt5ppNBCsk1L4/mMgf
y+hQw6itdQg+sQ==
-----END CERTIFICATE-----
Generated at Tue Jun 30 22:40:00 2026 by rpki-client