Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
File: 21m85hup0qDjVb4B8TQbjfdq69s.mft (raw, json)
Hash identifier: EXEjF1PHg9cFRc1tckrpS4insgk3G3pP9o0xhXzlddM=
Subject key identifier: 3C:C5:9D:9B:12:AC:CF:6C:F9:96:49:DC:66:90:59:A6:02:0A:05:2D
Authority key identifier: DB:59:BC:E6:1B:A9:D2:A0:E3:55:BE:01:F1:34:1B:8D:F7:6A:EB:DB
Certificate issuer: /CN=db59bce61ba9d2a0e355be01f1341b8df76aebdb
Certificate serial: 019EB87C695010EF68926C80FA91C823EDD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
Manifest number: 1957
Signing time: Thu 11 Jun 2026 21:00:21 +0000
Manifest this update: Thu 11 Jun 2026 21:00:21 +0000
Manifest next update: Fri 12 Jun 2026 21:00:21 +0000
Files and hashes: 1: 21m85hup0qDjVb4B8TQbjfdq69s.crl (hash: PlwO0tQ2jKquZcv6mUMwVkqTCeyeKCS90eZG+5QC+38=)
2: 61huzXEr5q5M8J__iIN7IjunhKg.roa (hash: cj477SS4T7qNzSNkI+8mGSK4iNQUtTpYpphXIshKx+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:7c:69:50:10:ef:68:92:6c:80:fa:91:c8:23:ed:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db59bce61ba9d2a0e355be01f1341b8df76aebdb
Validity
Not Before: Jun 11 21:00:21 2026 GMT
Not After : Jun 12 21:00:21 2026 GMT
Subject: CN=3cc59d9b12accf6cf99649dc669059a6020a052d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ae:9b:73:45:cf:6b:c3:65:0b:26:71:66:ba:
3d:16:18:75:af:70:a0:67:af:ee:d2:aa:6c:8e:a0:
3f:77:af:1a:37:cc:a2:af:7a:f3:1d:37:3f:79:b1:
0a:65:bd:ae:cd:45:8b:73:5d:eb:a4:6a:34:6d:d3:
f3:8b:58:29:75:7a:46:9a:a0:a2:0c:6d:9f:70:47:
1f:08:87:0b:d3:db:46:66:13:ae:24:b3:e8:3b:51:
c8:33:22:05:ce:73:fb:b8:43:7a:22:84:f7:a9:10:
b3:26:1b:80:c3:26:d4:01:df:84:82:26:58:40:ca:
9c:df:84:b4:df:08:1f:dd:fb:93:43:3c:af:5b:c1:
95:d4:6b:a4:5f:78:d2:48:bd:f4:51:2b:72:6b:0a:
24:78:46:e8:3b:bf:49:de:50:d7:b0:d3:95:0d:67:
cd:38:2b:d8:78:41:2e:f9:73:89:e7:17:d1:00:e3:
f8:b0:5c:e8:76:58:ff:c9:cc:2b:eb:29:c3:ab:0a:
af:27:4a:41:18:6e:3d:53:52:09:1b:ef:d2:3c:57:
fd:91:fd:8e:cd:71:ba:d7:f5:7c:52:4a:c7:22:53:
10:45:f8:61:35:d8:b0:ad:10:3c:ec:a8:42:1a:89:
24:b3:72:ca:40:0e:a2:70:f8:6d:07:0c:d7:56:13:
cf:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C5:9D:9B:12:AC:CF:6C:F9:96:49:DC:66:90:59:A6:02:0A:05:2D
X509v3 Authority Key Identifier:
keyid:DB:59:BC:E6:1B:A9:D2:A0:E3:55:BE:01:F1:34:1B:8D:F7:6A:EB:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:1b:ed:13:46:1f:8b:f6:41:c0:00:91:1a:72:35:b3:eb:13:
ac:ad:fb:b6:31:c4:e1:2a:8d:55:6f:1e:dc:9e:ed:ef:31:08:
a6:c3:aa:37:01:9a:48:f4:8b:53:27:6c:99:08:21:9f:79:44:
d3:62:52:d3:bc:34:e1:39:95:a2:5e:8e:a9:33:f0:ce:a8:57:
dd:18:d4:c4:c9:ac:62:8c:f7:09:45:8f:9d:64:3d:0e:f7:a8:
32:46:41:a8:77:5b:fa:70:85:99:54:52:ea:ba:0c:80:bf:86:
fc:ad:f7:bc:49:86:2b:13:61:8a:77:c7:e6:e5:78:c3:25:ca:
5f:6d:67:d5:29:6a:d2:0f:d5:56:95:53:5c:e0:7d:6f:60:89:
0b:ba:54:2b:8d:da:7b:3a:08:6e:f9:72:25:c0:91:83:8b:89:
8f:54:16:a3:c4:eb:10:8b:8a:a3:35:11:07:cf:e7:73:e7:22:
5a:47:c2:95:c6:29:3f:7e:69:34:55:f4:60:ef:8d:51:69:f1:
7e:66:d3:de:83:c1:9c:de:16:af:0e:91:2d:82:04:30:06:0a:
dc:d2:fe:6c:ab:62:98:c9:93:4e:7c:7b:2e:d8:61:23:62:a9:
e1:d4:6a:9b:0b:fd:73:46:e0:e1:32:58:fc:be:2e:b9:56:ee:
c5:fc:01:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ64fGlQEO9okmyA+pHII+3YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiNTliY2U2MWJhOWQyYTBlMzU1YmUwMWYxMzQxYjhkZjc2
YWViZGIwHhcNMjYwNjExMjEwMDIxWhcNMjYwNjEyMjEwMDIxWjAzMTEwLwYDVQQD
EygzY2M1OWQ5YjEyYWNjZjZjZjk5NjQ5ZGM2NjkwNTlhNjAyMGEwNTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1a6bc0XPa8NlCyZxZro9Fhh1r3Cg
Z6/u0qpsjqA/d68aN8yir3rzHTc/ebEKZb2uzUWLc13rpGo0bdPzi1gpdXpGmqCi
DG2fcEcfCIcL09tGZhOuJLPoO1HIMyIFznP7uEN6IoT3qRCzJhuAwybUAd+EgiZY
QMqc34S03wgf3fuTQzyvW8GV1GukX3jSSL30UStyawokeEboO79J3lDXsNOVDWfN
OCvYeEEu+XOJ5xfRAOP4sFzodlj/ycwr6ynDqwqvJ0pBGG49U1IJG+/SPFf9kf2O
zXG61/V8UkrHIlMQRfhhNdiwrRA87KhCGokks3LKQA6icPhtBwzXVhPPCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDzFnZsSrM9s+ZZJ3GaQWaYCCgUtMB8GA1UdIwQY
MBaAFNtZvOYbqdKg41W+AfE0G433auvbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjFtODVodXAwcURqVmI0QjhUUWJqZmRxNjlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC85MjA5ZWQtNGI5OC00ODk3LThlOWIt
M2EwNDJmNzdiNzM4LzEvMjFtODVodXAwcURqVmI0QjhUUWJqZmRxNjlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC85MjA5ZWQtNGI5OC00ODk3LThlOWItM2EwNDJmNzdiNzM4
LzEvMjFtODVodXAwcURqVmI0QjhUUWJqZmRxNjlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFhvtE0Yf
i/ZBwACRGnI1s+sTrK37tjHE4SqNVW8e3J7t7zEIpsOqNwGaSPSLUydsmQghn3lE
02JS07w04TmVol6OqTPwzqhX3RjUxMmsYoz3CUWPnWQ9DveoMkZBqHdb+nCFmVRS
6roMgL+G/K33vEmGKxNhinfH5uV4wyXKX21n1Slq0g/VVpVTXOB9b2CJC7pUK43a
ezoIbvlyJcCRg4uJj1QWo8TrEIuKozURB8/nc+ciWkfClcYpP35pNFX0YO+NUWnx
fmbT3oPBnN4Wrw6RLYIEMAYK3NL+bKtimMmTTnx7LthhI2Kp4dRqmwv9c0bg4TJY
/L4uuVbuxfwBQA==
-----END CERTIFICATE-----
Generated at Fri Jun 12 03:30:16 2026 by rpki-client