Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
File: Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json)
Hash identifier: Hl69kR3KOW9Z/zNYw0LqI0QCFaIoyPoM/W6js9TrTfs=
Subject key identifier: 6F:B8:DB:CF:C2:22:AB:C7:AE:B9:D5:DB:39:F6:37:C3:12:B6:8C:32
Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
Certificate issuer: /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Certificate serial: 019EB6578789C41A093CDAEF7E8507F61F72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
Manifest number: 17A6
Signing time: Thu 11 Jun 2026 11:00:50 +0000
Manifest this update: Thu 11 Jun 2026 11:00:50 +0000
Manifest next update: Fri 12 Jun 2026 11:00:50 +0000
Files and hashes: 1: 4c-GbGdVRIrY9IqPjRy0nzn_VSE.roa (hash: icjwc3qakSmAHiw3iEGT6Xw+HBGCPaCuGNR8zcJ+6LU=)
2: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: mc/VyPnSz0534MW9YSGukAZYR9NsTgiuzK3pXdkM9OY=)
3: G89I4eFQRreVo-7aKBmhJUYUtfE.roa (hash: Y0sI6cJ3p/tnjubSMmOmQUTjHM00CIS1iUsc5f8JH6o=)
4: dYdu6qoIQ4XCeyHdAC497fGCxxs.roa (hash: oc3k4EGMJTIdaq924ORNmciOrYjNG46O7CO8iE2EBZI=)
5: lgCyYbtiym8UQxlU3Wsnfuin5Po.roa (hash: Y0pYZtEe50I9gKfovWkm1yNE+nmUWXQeAcc9hn8uT60=)
6: u3tl30EyAJsURqJzM6oI5-sRJh4.roa (hash: +MJkYGw5uZPSvZdWWPtxlmooe+ag+H3pOtple6Ilz3I=)
7: zR5fs6PTrjyplvT56u1K4BvWPlc.roa (hash: O8dzuCsmazQPoLBfGqOiMn2tNXQbancZpn0bojUcLR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 11:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:57:87:89:c4:1a:09:3c:da:ef:7e:85:07:f6:1f:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Validity
Not Before: Jun 11 11:00:50 2026 GMT
Not After : Jun 12 11:00:50 2026 GMT
Subject: CN=6fb8dbcfc222abc7aeb9d5db39f637c312b68c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:91:5d:9d:6d:0a:a7:40:50:11:d0:41:b2:9e:
87:06:90:6f:e4:81:13:1a:50:43:b1:f9:b8:ad:af:
da:c8:4a:13:d2:9b:8e:35:13:06:ad:32:82:92:8e:
92:29:87:55:dd:f3:de:81:7d:d3:b9:b2:90:98:ad:
8f:d5:04:e6:7b:5e:92:b0:08:76:09:96:03:68:e8:
42:25:5b:b7:40:12:4a:27:6c:64:e9:cc:04:10:99:
01:6e:ad:bc:e7:ad:1d:87:7c:de:8e:29:eb:13:74:
b7:3f:67:22:e6:82:ee:d1:1e:45:41:09:e3:7b:39:
6b:5f:de:53:8b:05:ad:bf:53:b7:8c:e7:49:4d:b9:
f6:67:1e:12:91:d1:c5:4f:56:53:41:a2:73:69:43:
d9:af:b4:35:9e:0e:05:3c:d8:65:5b:3a:53:df:59:
17:02:8c:22:df:d1:aa:aa:b3:7e:2d:8f:6e:99:95:
78:0f:ca:1d:e0:1e:c4:f7:05:d2:ca:98:79:57:c1:
6a:1c:c0:14:e4:44:3c:d7:c6:8b:84:fe:85:1e:7a:
fd:4b:33:d7:0b:77:e2:e0:9d:45:56:b9:2d:83:3c:
ce:11:ea:d7:bc:8e:4a:f8:b5:cc:45:e1:72:83:f1:
b8:a3:92:3a:02:33:89:64:be:06:2b:e4:11:70:6b:
b9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B8:DB:CF:C2:22:AB:C7:AE:B9:D5:DB:39:F6:37:C3:12:B6:8C:32
X509v3 Authority Key Identifier:
keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:67:90:06:a3:99:48:3e:17:fa:f3:dc:cb:5e:ce:43:af:62:
03:cf:09:d5:89:88:1f:21:a8:88:34:2d:17:7c:d3:e8:d0:4b:
bd:52:6e:ce:92:6f:20:79:c4:d0:2b:da:21:cc:ac:3c:db:1a:
a4:41:9b:a9:20:34:55:a0:21:1f:83:a3:b9:f7:37:dd:58:cb:
5b:a7:24:40:5d:cc:57:fa:e1:a4:13:b3:02:f6:cd:23:58:a1:
d7:82:f5:6e:76:f6:05:f2:1f:d1:db:01:ae:32:60:db:92:80:
ea:18:f8:bf:4c:77:ef:1e:7d:2d:ea:b9:6b:09:9b:33:b5:e3:
fc:b9:f0:f0:01:07:0d:52:29:f4:a6:8e:5a:a6:55:e6:81:c5:
90:cb:a9:3a:26:6f:e9:a6:cc:e2:45:d6:8e:e2:4c:21:06:45:
8f:19:5a:d9:00:65:c3:45:7f:be:82:30:ca:7a:75:aa:be:4e:
74:7e:23:fc:c0:54:94:b1:44:89:d0:bd:bf:30:a9:9c:38:a3:
4f:37:5e:ed:47:71:db:db:cc:54:9c:f4:67:a8:0f:5b:de:8a:
bb:c3:34:60:30:b2:79:42:8f:c2:6d:a4:d2:e9:5b:5f:c7:e5:
da:a7:13:dc:b9:c1:68:19:81:d9:54:f3:09:63:37:ae:c5:6a:
2a:61:42:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ62V4eJxBoJPNrvfoUH9h9yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZGNmMWU4OTdlNTk4ZWMzZjFhYjYwYmQ0NDMzMjg3MjZk
ZWRhZTQwHhcNMjYwNjExMTEwMDUwWhcNMjYwNjEyMTEwMDUwWjAzMTEwLwYDVQQD
Eyg2ZmI4ZGJjZmMyMjJhYmM3YWViOWQ1ZGIzOWY2MzdjMzEyYjY4YzMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy5FdnW0Kp0BQEdBBsp6HBpBv5IET
GlBDsfm4ra/ayEoT0puONRMGrTKCko6SKYdV3fPegX3TubKQmK2P1QTme16SsAh2
CZYDaOhCJVu3QBJKJ2xk6cwEEJkBbq28560dh3zejinrE3S3P2ci5oLu0R5FQQnj
ezlrX95TiwWtv1O3jOdJTbn2Zx4SkdHFT1ZTQaJzaUPZr7Q1ng4FPNhlWzpT31kX
Aowi39GqqrN+LY9umZV4D8od4B7E9wXSyph5V8FqHMAU5EQ818aLhP6FHnr9SzPX
C3fi4J1FVrktgzzOEerXvI5K+LXMReFyg/G4o5I6AjOJZL4GK+QRcGu5lwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG+428/CIqvHrrnV2zn2N8MStowyMB8GA1UdIwQY
MBaAFAnc8eiX5ZjsPxq2C9RDMocm3trkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC85YmM0Y2MtYjY0Ni00NzAxLTg5NzUt
NjIzZTE5OWZkYmU5LzEvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC85YmM0Y2MtYjY0Ni00NzAxLTg5NzUtNjIzZTE5OWZkYmU5
LzEvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeGeQBqOZ
SD4X+vPcy17OQ69iA88J1YmIHyGoiDQtF3zT6NBLvVJuzpJvIHnE0CvaIcysPNsa
pEGbqSA0VaAhH4Ojufc33VjLW6ckQF3MV/rhpBOzAvbNI1ih14L1bnb2BfIf0dsB
rjJg25KA6hj4v0x37x59Leq5awmbM7Xj/Lnw8AEHDVIp9KaOWqZV5oHFkMupOiZv
6abM4kXWjuJMIQZFjxla2QBlw0V/voIwynp1qr5OdH4j/MBUlLFEidC9vzCpnDij
Tzde7Udx29vMVJz0Z6gPW96Ku8M0YDCyeUKPwm2k0ulbX8fl2qcT3LnBaBmB2VTz
CWM3rsVqKmFCkQ==
-----END CERTIFICATE-----
Generated at Thu Jun 11 17:53:57 2026 by rpki-client