Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
File: dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft (raw, json)
Hash identifier: ZGisjHCkApbMWjwE+QPlU30TQv4R1xFhJWn2A0g0StY=
Subject key identifier: 1C:A3:5F:A9:80:26:C6:92:98:E3:D6:F8:FA:4A:4D:37:60:03:0E:7C
Authority key identifier: 76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
Certificate issuer: /CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Certificate serial: 019EB80F391B61F6AA97ED767497C0EA20D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
Manifest number: 16A1
Signing time: Thu 11 Jun 2026 19:01:05 +0000
Manifest this update: Thu 11 Jun 2026 19:01:05 +0000
Manifest next update: Fri 12 Jun 2026 19:01:05 +0000
Files and hashes: 1: KTiF2AJ-jYhH5MwBEq6DBqpHZIU.roa (hash: QZiMXdBbvocZooloHKXavt9Kr4OE8mOVpmaFum5U1Uk=)
2: dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl (hash: yequWWDbQjQvho7k95OigYWymcmWK68phLrQV1mK10k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 19:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:0f:39:1b:61:f6:aa:97:ed:76:74:97:c0:ea:20:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Validity
Not Before: Jun 11 19:01:05 2026 GMT
Not After : Jun 12 19:01:05 2026 GMT
Subject: CN=1ca35fa98026c69298e3d6f8fa4a4d3760030e7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:79:ee:f6:2b:41:b1:7d:0e:ab:bc:e3:99:51:
7e:12:af:4a:ed:c3:dc:0d:10:3a:d1:9a:60:a7:8e:
f7:eb:c0:c9:77:02:66:ae:64:29:d2:ea:1b:31:d1:
74:43:a2:63:97:ac:24:aa:79:cb:b7:24:8e:16:21:
7b:bd:07:e5:50:d5:39:ab:f4:42:25:73:b0:67:c1:
bf:ff:42:49:2b:ca:db:37:f9:b5:aa:e5:a4:40:72:
b6:99:7a:d3:40:77:9b:c9:10:3d:d9:fe:d7:ca:d6:
14:54:21:28:23:d7:16:4a:4a:9b:e8:1a:06:55:45:
09:8b:a5:1b:70:8f:66:63:2f:6b:7d:1d:6d:70:11:
ba:4f:a5:75:e4:b4:a8:fd:23:21:74:e4:3f:87:8f:
0f:93:22:2b:2b:87:06:02:2b:32:6d:e8:6c:be:7c:
14:ad:3d:01:e7:79:84:b6:cc:b7:e5:ca:b5:f3:0d:
37:98:24:85:a1:da:fc:16:8c:26:94:0f:fa:e7:51:
e4:5c:be:6a:ed:91:42:11:86:13:6c:ea:98:52:ff:
a1:18:f0:0b:a7:b3:97:f0:10:3a:2a:9a:46:8f:7f:
a6:c7:9f:a7:42:63:41:01:a7:5c:1d:46:c6:7f:bf:
e1:6b:09:35:8a:78:52:b2:39:ab:e1:a6:29:54:3d:
c2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A3:5F:A9:80:26:C6:92:98:E3:D6:F8:FA:4A:4D:37:60:03:0E:7C
X509v3 Authority Key Identifier:
keyid:76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:52:8b:0c:49:a5:cd:a9:ef:bf:2a:17:30:83:35:1b:67:82:
f7:46:05:7a:f3:c3:d2:25:dc:5b:03:1a:d6:ad:ab:02:76:0b:
e6:94:93:ca:3a:88:d5:89:80:96:31:9d:a5:9a:fd:14:31:94:
af:5d:21:0a:c6:a2:4c:a9:da:34:d3:29:99:c1:ef:d6:38:4a:
98:89:bd:cb:61:6d:93:7e:84:9f:33:cb:49:8f:50:71:04:6e:
3f:15:a4:00:f1:a0:79:42:8b:88:10:d2:e1:e8:59:30:aa:33:
04:5b:8b:8c:7a:a0:b2:42:77:c3:56:1b:9e:f3:e7:4e:3e:f7:
7f:72:79:9e:1f:b7:c1:f3:89:15:61:63:d5:11:47:31:e4:e2:
ba:6a:ce:5c:2f:59:98:10:15:3c:75:1c:27:0c:63:5f:48:fc:
b8:53:58:9d:d3:f9:85:59:f9:3f:fb:65:80:3c:25:98:18:78:
2e:91:9e:06:9c:7b:aa:86:5c:58:9e:2f:70:8b:81:83:34:b3:
f9:9b:b5:57:17:cd:12:a0:1d:7b:45:a8:6d:eb:b7:ff:c1:0d:
ce:c4:29:db:3c:2c:52:15:17:b7:b3:ef:26:7c:2d:43:0c:62:
69:91:90:1c:f4:35:df:fe:17:ba:25:48:1a:21:d5:fe:34:03:
8f:db:a6:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ64DzkbYfaql+12dJfA6iDYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2N2JjMDJhNTg1OTYyM2Y1NjNlYTg0YTZiYjBhMjkyMGQ1
YjNlOTEwHhcNMjYwNjExMTkwMTA1WhcNMjYwNjEyMTkwMTA1WjAzMTEwLwYDVQQD
EygxY2EzNWZhOTgwMjZjNjkyOThlM2Q2ZjhmYTRhNGQzNzYwMDMwZTdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3nu9itBsX0Oq7zjmVF+Eq9K7cPc
DRA60Zpgp47368DJdwJmrmQp0uobMdF0Q6Jjl6wkqnnLtySOFiF7vQflUNU5q/RC
JXOwZ8G//0JJK8rbN/m1quWkQHK2mXrTQHebyRA92f7XytYUVCEoI9cWSkqb6BoG
VUUJi6UbcI9mYy9rfR1tcBG6T6V15LSo/SMhdOQ/h48PkyIrK4cGAisybehsvnwU
rT0B53mEtsy35cq18w03mCSFodr8FowmlA/651HkXL5q7ZFCEYYTbOqYUv+hGPAL
p7OX8BA6KppGj3+mx5+nQmNBAadcHUbGf7/hawk1inhSsjmr4aYpVD3C+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFByjX6mAJsaSmOPW+PpKTTdgAw58MB8GA1UdIwQY
MBaAFHZ7wCpYWWI/Vj6oSmuwopINWz6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG52QUtsaFpZajlXUHFoS2E3Q2lrZzFiUHBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9jZGFiYzQtYmFlNS00ZDk5LTllMTct
NjgxNTU0OGJmMzNmLzEvZG52QUtsaFpZajlXUHFoS2E3Q2lrZzFiUHBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9jZGFiYzQtYmFlNS00ZDk5LTllMTctNjgxNTU0OGJmMzNm
LzEvZG52QUtsaFpZajlXUHFoS2E3Q2lrZzFiUHBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK1KLDEml
zanvvyoXMIM1G2eC90YFevPD0iXcWwMa1q2rAnYL5pSTyjqI1YmAljGdpZr9FDGU
r10hCsaiTKnaNNMpmcHv1jhKmIm9y2Ftk36EnzPLSY9QcQRuPxWkAPGgeUKLiBDS
4ehZMKozBFuLjHqgskJ3w1YbnvPnTj73f3J5nh+3wfOJFWFj1RFHMeTiumrOXC9Z
mBAVPHUcJwxjX0j8uFNYndP5hVn5P/tlgDwlmBh4LpGeBpx7qoZcWJ4vcIuBgzSz
+Zu1VxfNEqAde0Wobeu3/8ENzsQp2zwsUhUXt7PvJnwtQwxiaZGQHPQ13/4XuiVI
GiHV/jQDj9umFQ==
-----END CERTIFICATE-----
Generated at Fri Jun 12 05:26:57 2026 by rpki-client