Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
File: 43HOIIaAX5EvhRK3nF5mqcn01NI.mft (raw, json)
Hash identifier: O1MGIHs6Sb5J0TOlmssW0rJdPAb9nWomTrMqy1rfK94=
Subject key identifier: F3:A6:F2:B3:87:50:F8:2B:5F:CA:F7:76:94:A7:9C:A4:7B:93:73:FE
Authority key identifier: E3:71:CE:20:86:80:5F:91:2F:85:12:B7:9C:5E:66:A9:C9:F4:D4:D2
Certificate issuer: /CN=e371ce2086805f912f8512b79c5e66a9c9f4d4d2
Certificate serial: 019F1867F4DBD39D38687B8DFCE8002ABE2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
Manifest number: 0DE1
Signing time: Tue 30 Jun 2026 12:01:33 +0000
Manifest this update: Tue 30 Jun 2026 12:01:33 +0000
Manifest next update: Wed 01 Jul 2026 12:01:33 +0000
Files and hashes: 1: 43HOIIaAX5EvhRK3nF5mqcn01NI.crl (hash: qdcHEqU0t/1WLFYKsb3Iksy79NA6rCpYcNz47xDVZZw=)
2: Gfq6OwngWw1fRn8U15Pj1V8Qgo4.roa (hash: THRrDATBehizQuRMdoUMH27yXofDZyuSKLWoSx5aX+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:f4:db:d3:9d:38:68:7b:8d:fc:e8:00:2a:be:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e371ce2086805f912f8512b79c5e66a9c9f4d4d2
Validity
Not Before: Jun 30 12:01:33 2026 GMT
Not After : Jul 1 12:01:33 2026 GMT
Subject: CN=f3a6f2b38750f82b5fcaf77694a79ca47b9373fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0d:25:35:7a:ff:33:1c:76:27:9b:10:9a:63:
bb:83:9a:29:59:71:e7:66:96:77:f6:b4:2f:72:3b:
3b:c0:09:8c:6f:ee:a2:96:f1:60:4e:4d:5f:f9:ba:
ca:cd:c6:a9:6a:fb:61:72:74:5f:13:ac:85:9c:2a:
d4:78:2a:00:36:8a:5c:e0:47:98:22:ee:ab:ef:cf:
9a:18:60:70:40:6a:7b:5d:67:7a:84:06:8c:7a:04:
01:cc:27:4f:47:bf:e3:51:21:aa:82:f6:af:fb:83:
65:0f:da:58:ed:d1:64:f9:f9:0b:a6:9c:49:a6:68:
53:97:ae:96:ab:29:7d:48:ee:be:f4:cd:b2:ce:43:
2c:ac:83:40:20:d6:18:b0:27:74:2d:99:d6:7f:01:
57:5d:a0:d2:c2:83:48:fc:b4:cf:1e:8d:52:a5:57:
c8:b9:a4:a9:de:60:85:0b:4a:30:a4:90:31:d9:92:
cb:b2:0e:1d:7d:6b:f3:41:7c:bd:90:9c:b5:ef:20:
c8:11:6a:c9:ce:44:72:cf:e7:dc:f5:6e:4f:ad:ce:
39:38:48:cd:b6:bb:b8:7d:be:2d:86:db:cf:5a:71:
5f:27:7c:11:e2:d5:b3:d6:e1:92:fd:ad:52:e6:a2:
77:5c:ab:54:f0:96:79:bc:46:b9:57:83:6a:a7:4f:
48:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A6:F2:B3:87:50:F8:2B:5F:CA:F7:76:94:A7:9C:A4:7B:93:73:FE
X509v3 Authority Key Identifier:
keyid:E3:71:CE:20:86:80:5F:91:2F:85:12:B7:9C:5E:66:A9:C9:F4:D4:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:97:8c:25:f3:b7:ca:29:c6:50:26:7f:1e:57:2a:3a:d2:42:
a6:9b:85:33:94:65:c8:f1:da:56:1b:f0:9f:be:af:2d:df:21:
26:bd:ef:a2:42:7b:81:ae:ab:09:8f:a3:df:34:92:7e:7a:cd:
fa:fe:76:51:96:9c:5c:f7:71:f7:27:c0:f2:2d:1d:e2:3c:96:
fc:7d:50:a1:c7:85:a4:d2:60:3c:61:98:91:cc:73:1f:68:a4:
57:9f:75:c8:06:fe:38:d5:eb:04:33:de:1c:ba:fd:4d:7e:4e:
a1:29:f0:d0:bc:16:40:9f:16:8d:6e:fb:65:b6:41:b3:67:61:
18:c9:d8:5e:06:6d:f0:df:1e:0d:8e:df:42:b7:81:a7:6e:c5:
08:4c:eb:bf:f4:cc:9d:42:71:d6:31:3c:35:04:29:06:1a:e3:
a8:f6:43:2a:81:11:0f:b0:73:d8:4d:6a:3d:2d:8a:3b:71:a4:
3f:79:bd:25:ee:92:72:a0:2a:6c:6b:d5:00:d0:a5:49:cc:6e:
0f:b0:ce:58:e0:e1:64:90:71:33:9c:78:5f:2e:0b:2a:d8:5f:
5e:af:1b:e3:b4:44:d7:b3:8f:c0:ab:92:69:2d:c0:74:81:8d:
71:9f:52:55:cc:21:a0:f1:7a:18:3f:17:6b:c4:80:38:04:3c:
a7:96:67:46
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8YZ/Tb0504aHuN/OgAKr4rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzNzFjZTIwODY4MDVmOTEyZjg1MTJiNzljNWU2NmE5Yzlm
NGQ0ZDIwHhcNMjYwNjMwMTIwMTMzWhcNMjYwNzAxMTIwMTMzWjAzMTEwLwYDVQQD
EyhmM2E2ZjJiMzg3NTBmODJiNWZjYWY3NzY5NGE3OWNhNDdiOTM3M2ZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAow0lNXr/Mxx2J5sQmmO7g5opWXHn
ZpZ39rQvcjs7wAmMb+6ilvFgTk1f+brKzcapavthcnRfE6yFnCrUeCoANopc4EeY
Iu6r78+aGGBwQGp7XWd6hAaMegQBzCdPR7/jUSGqgvav+4NlD9pY7dFk+fkLppxJ
pmhTl66Wqyl9SO6+9M2yzkMsrINAINYYsCd0LZnWfwFXXaDSwoNI/LTPHo1SpVfI
uaSp3mCFC0owpJAx2ZLLsg4dfWvzQXy9kJy17yDIEWrJzkRyz+fc9W5Prc45OEjN
tru4fb4thtvPWnFfJ3wR4tWz1uGS/a1S5qJ3XKtU8JZ5vEa5V4Nqp09IGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPOm8rOHUPgrX8r3dpSnnKR7k3P+MB8GA1UdIwQY
MBaAFONxziCGgF+RL4USt5xeZqnJ9NTSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNDNIT0lJYUFYNUV2aFJLM25GNW1xY24wMU5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC82ZGJkYWYtNTQ5NS00Y2M1LWI3NzAt
NzM1OTBhYTI5MGYxLzEvNDNIT0lJYUFYNUV2aFJLM25GNW1xY24wMU5JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC82ZGJkYWYtNTQ5NS00Y2M1LWI3NzAtNzM1OTBhYTI5MGYx
LzEvNDNIT0lJYUFYNUV2aFJLM25GNW1xY24wMU5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiZeMJfO3
yinGUCZ/HlcqOtJCppuFM5RlyPHaVhvwn76vLd8hJr3vokJ7ga6rCY+j3zSSfnrN
+v52UZacXPdx9yfA8i0d4jyW/H1QoceFpNJgPGGYkcxzH2ikV591yAb+ONXrBDPe
HLr9TX5OoSnw0LwWQJ8WjW77ZbZBs2dhGMnYXgZt8N8eDY7fQreBp27FCEzrv/TM
nUJx1jE8NQQpBhrjqPZDKoERD7Bz2E1qPS2KO3GkP3m9Je6ScqAqbGvVANClScxu
D7DOWODhZJBxM5x4Xy4LKthfXq8b47RE17OPwKuSaS3AdIGNcZ9SVcwhoPF6GD8X
a8SAOAQ8p5ZnRg==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:19:51 2026 by rpki-client