Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
File: dZxU7z8HSxxmiPmXVM2KONmfbKw.mft (raw, json)
Hash identifier: M0TrUvgNQSZQI+QqGuGTo9mM0aJ06uCj0rddEOzKNgo=
Subject key identifier: 88:C3:7F:AF:A9:27:BB:5B:07:6C:4A:3D:EF:59:DF:66:E2:21:C9:9B
Authority key identifier: 75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
Certificate issuer: /CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Certificate serial: 019E9A040D19F5769066EA3459F37FC6109A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
Manifest number: 0CE6
Signing time: Fri 05 Jun 2026 23:00:17 +0000
Manifest this update: Fri 05 Jun 2026 23:00:17 +0000
Manifest next update: Sat 06 Jun 2026 23:00:17 +0000
Files and hashes: 1: 82k_FBmadDpplfRxAzsZmpXgVGU.roa (hash: 5bqVmZOT/e8gHP0DWkqPbjBNbKxoEy/SNw9KQkuz/50=)
2: dZxU7z8HSxxmiPmXVM2KONmfbKw.crl (hash: yH2NgowzQbAq3moF/7TROBl1hNQkCkrJj8L43VYRZjk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 23:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9a:04:0d:19:f5:76:90:66:ea:34:59:f3:7f:c6:10:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Validity
Not Before: Jun 5 23:00:17 2026 GMT
Not After : Jun 6 23:00:17 2026 GMT
Subject: CN=88c37fafa927bb5b076c4a3def59df66e221c99b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6c:dc:25:0e:cf:e9:7a:39:91:84:ff:76:ef:
ca:f4:f2:13:69:d7:bd:fa:b5:10:d1:dc:06:87:65:
70:16:79:27:d9:59:f0:a5:3d:86:86:91:af:2a:5e:
b7:6c:6f:88:7e:2c:17:d8:0a:6f:91:31:19:39:0a:
c9:7d:5e:5e:9a:0e:7b:37:f9:f5:c0:88:3a:27:56:
df:31:b6:fe:dd:64:33:e8:6f:46:de:88:50:82:de:
86:ac:f3:f1:99:57:dc:57:be:e8:07:99:8e:9c:62:
6c:2b:3d:ff:15:a0:05:d6:2d:87:33:aa:c9:12:e3:
05:9f:c6:7b:1f:d3:b2:d0:87:20:3e:19:15:09:f0:
2a:d4:97:e4:78:66:51:b2:bd:d8:0f:81:1d:e0:42:
e2:00:90:0c:5f:3a:1c:9a:18:f0:60:59:03:47:0c:
4c:13:ea:80:90:0e:b5:4a:9f:d0:e5:47:01:45:08:
42:fb:0e:dd:7f:9e:de:12:5f:25:31:d6:0b:88:a7:
15:4c:08:d3:fc:0e:b1:f0:a5:4d:7c:8c:3b:a3:9f:
2e:86:da:d8:50:69:a9:2b:a5:fc:b5:e9:f4:16:fe:
85:59:25:d2:13:33:b8:a0:e6:9e:cf:be:3b:fa:ae:
91:4f:11:dd:f8:63:06:de:6b:5a:87:15:68:d3:2f:
10:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C3:7F:AF:A9:27:BB:5B:07:6C:4A:3D:EF:59:DF:66:E2:21:C9:9B
X509v3 Authority Key Identifier:
keyid:75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:cc:20:a9:72:e3:a9:94:5b:f7:7c:16:2a:44:84:57:be:43:
12:c9:69:4b:e0:a5:e9:3b:c0:e0:5a:2f:b3:20:6c:37:3f:5d:
75:ae:7d:a3:b7:98:2c:bb:d6:48:8c:a7:81:c4:9b:05:65:24:
a1:51:4a:c7:3f:2b:42:63:96:fc:87:03:d1:bb:48:e6:ef:78:
08:55:23:87:71:a7:62:5e:35:3d:93:b5:29:ea:a6:cd:b5:e4:
2a:10:b4:e1:57:e9:06:6a:a7:57:09:35:b4:73:b5:06:44:b8:
7e:31:73:5a:c3:91:24:b3:cc:ae:be:14:59:36:73:d8:70:23:
ec:bd:61:a1:ec:c4:5c:dd:54:30:98:1b:16:93:a1:7e:03:ee:
18:9c:f1:77:c1:f0:a0:21:82:8d:9d:7f:74:fb:08:c2:68:96:
c3:76:7f:24:21:64:cc:82:90:5a:79:86:d8:f7:56:22:a8:1d:
7a:f9:01:48:35:ef:52:e9:59:5c:78:2e:e6:b6:60:a1:8e:47:
9e:dd:a5:b9:67:3a:67:16:80:45:85:66:cc:cb:78:0a:73:08:
98:30:a7:5f:37:56:0f:6d:77:eb:d0:1d:bf:48:b0:e4:57:1f:
f9:03:1c:24:59:ba:f1:e2:06:47:2e:97:3d:f7:60:3c:7e:f1:
9a:d9:03:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6aBA0Z9XaQZuo0WfN/xhCaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1OWM1NGVmM2YwNzRiMWM2Njg4Zjk5NzU0Y2Q4YTM4ZDk5
ZjZjYWMwHhcNMjYwNjA1MjMwMDE3WhcNMjYwNjA2MjMwMDE3WjAzMTEwLwYDVQQD
Eyg4OGMzN2ZhZmE5MjdiYjViMDc2YzRhM2RlZjU5ZGY2NmUyMjFjOTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1GzcJQ7P6Xo5kYT/du/K9PITade9
+rUQ0dwGh2VwFnkn2VnwpT2GhpGvKl63bG+IfiwX2ApvkTEZOQrJfV5emg57N/n1
wIg6J1bfMbb+3WQz6G9G3ohQgt6GrPPxmVfcV77oB5mOnGJsKz3/FaAF1i2HM6rJ
EuMFn8Z7H9Oy0IcgPhkVCfAq1JfkeGZRsr3YD4Ed4ELiAJAMXzocmhjwYFkDRwxM
E+qAkA61Sp/Q5UcBRQhC+w7df57eEl8lMdYLiKcVTAjT/A6x8KVNfIw7o58uhtrY
UGmpK6X8ten0Fv6FWSXSEzO4oOaez747+q6RTxHd+GMG3mtahxVo0y8QwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIjDf6+pJ7tbB2xKPe9Z32biIcmbMB8GA1UdIwQY
MBaAFHWcVO8/B0scZoj5l1TNijjZn2ysMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFp4VTd6OEhTeHhtaVBtWFZNMktPTm1mYkt3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi81YmVhYTAtNGEzMS00MTY4LTk5YjQt
NDRkMjk2NTdiYWI3LzEvZFp4VTd6OEhTeHhtaVBtWFZNMktPTm1mYkt3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi81YmVhYTAtNGEzMS00MTY4LTk5YjQtNDRkMjk2NTdiYWI3
LzEvZFp4VTd6OEhTeHhtaVBtWFZNMktPTm1mYkt3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfMwgqXLj
qZRb93wWKkSEV75DEslpS+Cl6TvA4FovsyBsNz9dda59o7eYLLvWSIyngcSbBWUk
oVFKxz8rQmOW/IcD0btI5u94CFUjh3GnYl41PZO1KeqmzbXkKhC04VfpBmqnVwk1
tHO1BkS4fjFzWsORJLPMrr4UWTZz2HAj7L1hoezEXN1UMJgbFpOhfgPuGJzxd8Hw
oCGCjZ1/dPsIwmiWw3Z/JCFkzIKQWnmG2PdWIqgdevkBSDXvUulZXHgu5rZgoY5H
nt2luWc6ZxaARYVmzMt4CnMImDCnXzdWD21369Adv0iw5Fcf+QMcJFm68eIGRy6X
PfdgPH7xmtkDRQ==
-----END CERTIFICATE-----
Generated at Sat Jun 6 07:05:34 2026 by rpki-client