Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
File: sK0iZDwtl71x-LY0-40dT58B9Kc.mft (raw, json)
Hash identifier: JhH8iEwmQF/ZQztGsx0b1DWrPQSDnjCtJL2Cs7qBl6w=
Subject key identifier: 51:AF:CC:29:F9:18:71:A0:C8:2D:C1:4A:37:F4:B9:AA:FA:69:33:3C
Authority key identifier: B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7
Certificate issuer: /CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
Certificate serial: 019EB5E99F5C9E4AE93B265EF122AB694100
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
Manifest number: 13B3
Signing time: Thu 11 Jun 2026 09:00:47 +0000
Manifest this update: Thu 11 Jun 2026 09:00:47 +0000
Manifest next update: Fri 12 Jun 2026 09:00:47 +0000
Files and hashes: 1: h3sE5dxGeAbRDxvt7OESDDknJfw.roa (hash: o8FzyZkryMLyMcYf+Zp1JhuP+yJeZt+99zqw52fdpd8=)
2: sK0iZDwtl71x-LY0-40dT58B9Kc.crl (hash: oMd96fc0nMIeiWVt9Oo1BACU7rT/vqYpwD2UgOCYvUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 09:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:e9:9f:5c:9e:4a:e9:3b:26:5e:f1:22:ab:69:41:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
Validity
Not Before: Jun 11 09:00:47 2026 GMT
Not After : Jun 12 09:00:47 2026 GMT
Subject: CN=51afcc29f91871a0c82dc14a37f4b9aafa69333c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fa:bf:b0:ea:9a:55:ea:03:c3:fb:9e:0d:ce:
d4:05:1f:e5:00:15:d3:41:99:cf:c6:03:0f:5b:52:
8b:76:ac:ac:42:a3:ed:3f:ae:8e:3a:b0:b2:b7:95:
69:65:bb:e2:e3:01:c7:f4:7f:3c:96:06:de:3f:43:
a9:13:ce:fb:0b:30:51:84:ad:39:fc:d6:1d:bb:81:
b0:3c:33:cf:8d:f0:a9:e2:cf:ad:83:07:d7:3a:19:
fc:53:a2:ac:11:2f:79:68:ac:1e:0a:6e:d6:c4:4e:
88:ab:66:a3:ba:06:3a:df:2e:b6:9c:fa:91:2c:41:
c9:ec:60:96:42:0e:43:2a:51:c5:54:4a:6b:f5:3d:
da:a3:63:54:b1:2c:6b:a4:11:fe:f2:5a:a8:8b:a5:
7e:6d:56:b7:8b:f1:b4:a3:e0:61:f0:ba:04:72:44:
28:a3:ff:18:52:4c:93:b1:58:4d:58:1e:4f:55:96:
5f:9e:0b:03:5f:e9:af:a2:dc:95:72:67:8d:17:c6:
0d:87:ac:6f:73:16:b3:53:ee:e5:93:0d:c1:4a:17:
63:ea:f2:30:9a:79:36:bb:9f:89:c6:4a:8a:d5:fd:
8a:99:2b:da:26:ee:01:7d:55:c6:5d:6f:eb:84:e4:
74:7e:4b:6a:6c:ee:d8:28:3d:2e:dc:05:ab:45:35:
af:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:AF:CC:29:F9:18:71:A0:C8:2D:C1:4A:37:F4:B9:AA:FA:69:33:3C
X509v3 Authority Key Identifier:
keyid:B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:11:e5:0a:18:a4:66:47:90:f6:a6:f4:20:09:c2:d9:3f:de:
02:f5:85:cf:4b:e6:06:42:be:54:3c:d8:e5:0e:ef:bb:d0:38:
67:f7:14:1d:7a:36:cb:92:c4:4a:75:98:81:c3:82:6d:f8:09:
b5:85:04:81:4c:5b:fd:1c:a9:7b:a7:8f:e1:b5:76:b1:ee:7c:
04:d7:4e:1a:5e:ce:f5:02:4a:72:99:cd:86:a7:f4:dd:b2:f5:
97:3f:10:a9:6e:86:59:db:47:db:1e:3a:af:66:a7:02:60:2a:
53:2d:fb:7f:c5:d2:f2:03:48:6c:56:1c:7f:9e:1a:a1:df:c2:
09:e5:9a:3b:62:26:e1:6f:c3:ae:d4:7c:14:f2:21:52:7e:19:
ff:e5:01:18:f5:70:b5:92:a8:15:cf:c0:23:88:f6:45:8c:97:
fd:d8:f2:9b:53:05:7c:a2:d6:12:08:39:63:a4:a2:f3:0b:ae:
84:65:39:c1:9a:60:70:88:02:cc:21:e3:f6:1a:66:b5:58:32:
02:ee:af:a4:13:8f:52:45:e3:6e:cb:a9:93:b0:00:85:b8:c8:
a6:ce:37:0b:20:6f:a2:5d:6e:c0:b4:86:7f:ac:4f:c5:ea:a7:
09:d6:96:a0:6e:3a:cd:9f:ca:f2:bd:71:c7:53:63:b5:d2:d4:
8e:27:13:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ616Z9cnkrpOyZe8SKraUEAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwYWQyMjY0M2MyZDk3YmQ3MWY4YjYzNGZiOGQxZDRmOWYw
MWY0YTcwHhcNMjYwNjExMDkwMDQ3WhcNMjYwNjEyMDkwMDQ3WjAzMTEwLwYDVQQD
Eyg1MWFmY2MyOWY5MTg3MWEwYzgyZGMxNGEzN2Y0YjlhYWZhNjkzMzNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvq/sOqaVeoDw/ueDc7UBR/lABXT
QZnPxgMPW1KLdqysQqPtP66OOrCyt5VpZbvi4wHH9H88lgbeP0OpE877CzBRhK05
/NYdu4GwPDPPjfCp4s+tgwfXOhn8U6KsES95aKweCm7WxE6Iq2ajugY63y62nPqR
LEHJ7GCWQg5DKlHFVEpr9T3ao2NUsSxrpBH+8lqoi6V+bVa3i/G0o+Bh8LoEckQo
o/8YUkyTsVhNWB5PVZZfngsDX+mvotyVcmeNF8YNh6xvcxazU+7lkw3BShdj6vIw
mnk2u5+JxkqK1f2KmSvaJu4BfVXGXW/rhOR0fktqbO7YKD0u3AWrRTWvBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFGvzCn5GHGgyC3BSjf0uar6aTM8MB8GA1UdIwQY
MBaAFLCtImQ8LZe9cfi2NPuNHU+fAfSnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0swaVpEd3RsNzF4LUxZMC00MGRUNThCOUtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8zMGIzZmYtNzAzNi00YTJlLThlYjUt
MDc0ZmZiNDIzYzEzLzEvc0swaVpEd3RsNzF4LUxZMC00MGRUNThCOUtjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi8zMGIzZmYtNzAzNi00YTJlLThlYjUtMDc0ZmZiNDIzYzEz
LzEvc0swaVpEd3RsNzF4LUxZMC00MGRUNThCOUtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWxHlChik
ZkeQ9qb0IAnC2T/eAvWFz0vmBkK+VDzY5Q7vu9A4Z/cUHXo2y5LESnWYgcOCbfgJ
tYUEgUxb/Rype6eP4bV2se58BNdOGl7O9QJKcpnNhqf03bL1lz8QqW6GWdtH2x46
r2anAmAqUy37f8XS8gNIbFYcf54aod/CCeWaO2Im4W/DrtR8FPIhUn4Z/+UBGPVw
tZKoFc/AI4j2RYyX/djym1MFfKLWEgg5Y6Si8wuuhGU5wZpgcIgCzCHj9hpmtVgy
Au6vpBOPUkXjbsupk7AAhbjIps43CyBvol1uwLSGf6xPxeqnCdaWoG46zZ/K8r1x
x1NjtdLUjicTsQ==
-----END CERTIFICATE-----
Generated at Thu Jun 11 17:53:41 2026 by rpki-client