Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.mft
File: cqpTdXQ1Dyam82tD3DA7njOefuw.mft (raw, json)
Hash identifier: 1Pv/JdTLBSO4+bOP/jWdxvlmB0dj0n2ii1ETvs1Sm0M=
Subject key identifier: 76:C4:E4:E1:40:AC:3D:B0:66:64:D9:4C:FB:73:1C:99:0F:7F:C4:BC
Authority key identifier: 72:AA:53:75:74:35:0F:26:A6:F3:6B:43:DC:30:3B:9E:33:9E:7E:EC
Certificate issuer: /CN=72aa537574350f26a6f36b43dc303b9e339e7eec
Certificate serial: 019EB5454DB53FE5353D62B9D19C7BC5AEAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cqpTdXQ1Dyam82tD3DA7njOefuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.mft
Manifest number: 02CA
Signing time: Thu 11 Jun 2026 06:01:18 +0000
Manifest this update: Thu 11 Jun 2026 06:01:18 +0000
Manifest next update: Fri 12 Jun 2026 06:01:18 +0000
Files and hashes: 1: LB897dXLBM36a7U6SkP9ZIBRp0U.roa (hash: syt+8t+IbVJ3QRitmZH6LwQ2EF86AutEdjHbzKfuLYY=)
2: cqpTdXQ1Dyam82tD3DA7njOefuw.crl (hash: V43Xi4cAz4/8MONoWSWhm8t18j6RsGHff4l1tm409TI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cqpTdXQ1Dyam82tD3DA7njOefuw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 06:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:45:4d:b5:3f:e5:35:3d:62:b9:d1:9c:7b:c5:ae:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72aa537574350f26a6f36b43dc303b9e339e7eec
Validity
Not Before: Jun 11 06:01:18 2026 GMT
Not After : Jun 12 06:01:18 2026 GMT
Subject: CN=76c4e4e140ac3db06664d94cfb731c990f7fc4bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:b6:ee:0a:b3:51:81:64:96:a3:59:39:f8:ad:
cd:a2:3a:0a:16:b4:2e:d6:c8:f7:62:43:cf:d5:21:
94:3a:69:51:4d:a2:f0:45:34:5b:30:af:8b:cc:99:
45:ec:35:e2:9a:fd:4d:d6:c8:aa:7f:4a:59:a8:8d:
cd:3f:87:c0:dc:14:e0:0d:fc:1d:d9:b4:d8:e2:16:
d6:ce:39:99:cd:ec:43:8b:56:a4:7d:df:1b:c8:db:
97:d1:a2:d1:b0:fc:04:55:95:a5:55:8e:16:2d:83:
47:34:b1:0d:d1:91:3b:72:99:94:47:2a:69:a7:78:
3a:1c:19:ff:83:ca:34:6d:e5:3a:d7:c6:f4:43:8a:
7b:38:34:cd:af:dd:62:a7:13:f5:55:63:d4:a2:56:
34:c4:bb:93:5f:01:36:e6:65:12:64:53:7a:6b:0e:
b2:63:e9:a5:b9:7a:a4:8e:b8:43:41:8f:d0:0a:e8:
b8:8f:b2:a0:3d:b0:e3:83:c5:ba:a9:a9:a6:2d:78:
03:e1:fd:05:a4:56:8a:62:fb:ab:8d:d8:40:98:95:
75:cb:9a:96:51:61:a8:c9:49:b8:50:00:46:34:76:
d5:da:79:e1:ce:c0:55:b4:05:24:e3:79:60:1e:13:
38:51:69:e8:bf:50:3c:9a:1a:e4:15:88:e5:82:cb:
fb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C4:E4:E1:40:AC:3D:B0:66:64:D9:4C:FB:73:1C:99:0F:7F:C4:BC
X509v3 Authority Key Identifier:
keyid:72:AA:53:75:74:35:0F:26:A6:F3:6B:43:DC:30:3B:9E:33:9E:7E:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cqpTdXQ1Dyam82tD3DA7njOefuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/0f4383-726c-4ab8-9b25-96fd02bce764/1/cqpTdXQ1Dyam82tD3DA7njOefuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:46:92:84:48:85:e0:9c:cb:c8:e2:af:34:88:35:e8:bb:16:
71:dd:3e:fe:78:ca:78:bf:96:57:89:1f:35:72:b0:c2:60:68:
a9:fc:af:a9:0b:29:a1:64:49:4e:83:6b:e1:9a:2e:21:1d:04:
07:ec:9b:45:07:90:26:28:24:e1:07:ee:47:4f:15:ea:36:67:
4f:dc:ea:04:92:25:b0:d1:f3:6f:cf:23:78:05:0e:fc:73:40:
40:62:04:42:f4:df:ca:c1:9c:00:8f:96:93:d5:fb:ef:1c:2c:
15:87:db:57:32:a3:6b:0e:1e:f7:32:24:20:4d:33:d0:c0:09:
d1:1b:b4:1c:d0:75:78:fb:0e:3e:96:f8:da:16:7e:e8:86:a6:
8c:ae:9e:ab:d2:56:7b:fa:b0:b0:78:cf:b7:b3:a2:ae:41:f2:
34:d6:19:bb:5a:a4:bc:5d:02:7e:44:6d:8c:ca:f6:3a:9a:ec:
dc:85:ec:8b:dc:5d:67:8e:7c:3a:21:d6:3d:a8:14:d4:6a:3e:
13:df:d1:d1:cb:45:5b:70:c0:d1:29:07:4d:00:f7:7d:a7:1f:
c7:d6:54:15:cf:cb:c7:7b:71:6f:f9:f7:d7:e8:c9:56:c5:e0:
67:2a:29:29:0f:0d:fc:b3:19:08:7c:41:e8:99:72:92:71:1c:
6d:a9:b9:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ61RU21P+U1PWK50Zx7xa6sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyYWE1Mzc1NzQzNTBmMjZhNmYzNmI0M2RjMzAzYjllMzM5
ZTdlZWMwHhcNMjYwNjExMDYwMTE4WhcNMjYwNjEyMDYwMTE4WjAzMTEwLwYDVQQD
Eyg3NmM0ZTRlMTQwYWMzZGIwNjY2NGQ5NGNmYjczMWM5OTBmN2ZjNGJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5LbuCrNRgWSWo1k5+K3NojoKFrQu
1sj3YkPP1SGUOmlRTaLwRTRbMK+LzJlF7DXimv1N1siqf0pZqI3NP4fA3BTgDfwd
2bTY4hbWzjmZzexDi1akfd8byNuX0aLRsPwEVZWlVY4WLYNHNLEN0ZE7cpmURypp
p3g6HBn/g8o0beU618b0Q4p7ODTNr91ipxP1VWPUolY0xLuTXwE25mUSZFN6aw6y
Y+mluXqkjrhDQY/QCui4j7KgPbDjg8W6qammLXgD4f0FpFaKYvurjdhAmJV1y5qW
UWGoyUm4UABGNHbV2nnhzsBVtAUk43lgHhM4UWnov1A8mhrkFYjlgsv7/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHbE5OFArD2wZmTZTPtzHJkPf8S8MB8GA1UdIwQY
MBaAFHKqU3V0NQ8mpvNrQ9wwO54znn7sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3FwVGRYUTFEeWFtODJ0RDNEQTduak9lZnV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8wZjQzODMtNzI2Yy00YWI4LTliMjUt
OTZmZDAyYmNlNzY0LzEvY3FwVGRYUTFEeWFtODJ0RDNEQTduak9lZnV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS8wZjQzODMtNzI2Yy00YWI4LTliMjUtOTZmZDAyYmNlNzY0
LzEvY3FwVGRYUTFEeWFtODJ0RDNEQTduak9lZnV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArUaShEiF
4JzLyOKvNIg16LsWcd0+/njKeL+WV4kfNXKwwmBoqfyvqQspoWRJToNr4ZouIR0E
B+ybRQeQJigk4QfuR08V6jZnT9zqBJIlsNHzb88jeAUO/HNAQGIEQvTfysGcAI+W
k9X77xwsFYfbVzKjaw4e9zIkIE0z0MAJ0Ru0HNB1ePsOPpb42hZ+6IamjK6eq9JW
e/qwsHjPt7OirkHyNNYZu1qkvF0CfkRtjMr2Oprs3IXsi9xdZ458OiHWPagU1Go+
E9/R0ctFW3DA0SkHTQD3facfx9ZUFc/Lx3txb/n31+jJVsXgZyopKQ8N/LMZCHxB
6JlyknEcbam5mQ==
-----END CERTIFICATE-----
Generated at Thu Jun 11 14:40:40 2026 by rpki-client