Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
File: _KmLHQ7MzE9v8afn24S0uy9VsI0.mft (raw, json)
Hash identifier: k6Pcodry0/EX1Ctc5ss/to5GPlNqAZB6buzb0H/XIuo=
Subject key identifier: C8:53:C0:5E:13:BD:79:AB:35:8D:2C:09:92:91:6F:B7:C2:12:A1:92
Authority key identifier: FC:A9:8B:1D:0E:CC:CC:4F:6F:F1:A7:E7:DB:84:B4:BB:2F:55:B0:8D
Certificate issuer: /CN=fca98b1d0ecccc4f6ff1a7e7db84b4bb2f55b08d
Certificate serial: 019EFA266F23D1CBBE4D1F8CE2CE61300D19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
Manifest number: 1940
Signing time: Wed 24 Jun 2026 15:01:23 +0000
Manifest this update: Wed 24 Jun 2026 15:01:23 +0000
Manifest next update: Thu 25 Jun 2026 15:01:23 +0000
Files and hashes: 1: AhIhHW2MibgaDu_QaZSY4Wn14lA.roa (hash: xbB2zeoDRQ7gNZ/Ox/bptd6ot/c5+mbp2c7ngkO2m1M=)
2: _KmLHQ7MzE9v8afn24S0uy9VsI0.crl (hash: r7st8UHF6nGvCMUIF43+rrLLwnNUKId8qU+2ZRRepas=)
3: cunetuj50zVdetbLOO7PDcDuLxQ.roa (hash: CwPj/a3y+H12p6L10ZWScjrKIYWmCx+U7Hr8zx98Vhg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 15:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fa:26:6f:23:d1:cb:be:4d:1f:8c:e2:ce:61:30:0d:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fca98b1d0ecccc4f6ff1a7e7db84b4bb2f55b08d
Validity
Not Before: Jun 24 15:01:23 2026 GMT
Not After : Jun 25 15:01:23 2026 GMT
Subject: CN=c853c05e13bd79ab358d2c0992916fb7c212a192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:aa:4c:8c:7b:fc:28:d8:9d:9b:70:db:8b:01:
f2:fb:5f:2f:2a:7d:9f:bd:8a:57:44:30:2a:fc:6a:
c3:20:63:df:48:52:95:08:d2:38:b3:e7:be:35:90:
dc:7e:c4:07:5c:1d:17:4b:88:4c:bc:c1:2a:48:76:
13:ae:d0:f3:67:e7:51:35:96:95:25:ec:82:06:0d:
7d:fe:2a:c5:55:69:cd:67:8d:4e:c6:d8:6d:55:93:
8a:8b:5d:3d:2e:b7:a1:d7:8c:92:f8:b0:9e:cd:64:
87:c6:4b:7e:2e:66:c5:8e:7a:d8:e4:eb:9b:c0:c9:
a7:ad:0b:05:1e:4b:4c:64:ea:4c:3b:84:e3:5a:cc:
d7:99:73:9d:b0:98:f5:1d:52:66:5b:40:da:6b:04:
c1:72:69:9b:bf:51:ce:da:58:b2:f3:c1:f6:60:6d:
3d:e5:74:df:d0:6b:ed:e4:b6:ec:46:cc:99:20:57:
9c:ea:0e:8e:80:cc:08:df:c8:91:f8:d3:6a:f1:c4:
03:e8:fb:7a:f2:38:bb:65:19:6a:ba:e3:b9:78:55:
0a:46:06:97:58:d9:8b:4f:20:ad:b1:0b:18:6e:24:
ba:0a:4e:46:6b:89:26:55:51:2c:46:ee:60:48:37:
cc:99:ba:10:86:d7:bc:57:6a:63:d0:77:90:69:c9:
e1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:53:C0:5E:13:BD:79:AB:35:8D:2C:09:92:91:6F:B7:C2:12:A1:92
X509v3 Authority Key Identifier:
keyid:FC:A9:8B:1D:0E:CC:CC:4F:6F:F1:A7:E7:DB:84:B4:BB:2F:55:B0:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:87:f3:23:e4:f2:8a:44:83:75:21:dc:13:2c:b3:f9:ad:96:
ae:c8:6d:e4:20:2d:5c:11:a2:69:2a:80:6e:af:e2:30:10:47:
c9:ee:6b:64:5f:75:31:31:3c:e3:26:47:78:6f:f4:01:66:cb:
ff:02:8b:f1:ff:dc:aa:c6:cf:3e:9e:76:08:2f:8f:89:32:77:
84:66:09:63:01:d9:b2:21:ec:ee:ec:64:fa:46:fa:79:e3:af:
9f:3d:81:5d:f1:dc:e0:75:6e:03:93:a4:56:05:40:17:08:59:
84:60:a9:93:2c:aa:35:62:0d:f6:f9:91:7f:8c:df:f2:a3:c4:
f7:42:29:9c:c6:69:ec:f6:e0:0e:81:93:ed:52:a1:7a:98:04:
a3:cd:ea:60:b5:a5:c7:76:e1:52:93:b2:9b:03:83:af:9c:aa:
10:e6:27:5e:8e:fb:62:9e:38:5c:9d:68:dc:7d:62:0b:4d:9a:
cf:16:49:20:56:b6:d0:a8:cd:ef:8a:2e:99:5d:3e:ae:d8:6a:
81:b9:e0:d5:fc:8f:b7:85:ef:d0:17:5e:ad:92:18:29:62:1f:
e9:01:07:fa:c3:54:72:a2:aa:38:79:6c:88:33:ff:ad:5d:46:
db:52:ca:87:bc:68:ca:4d:16:7a:23:91:1e:bc:64:fa:9e:62:
79:6f:57:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ76Jm8j0cu+TR+M4s5hMA0ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjYTk4YjFkMGVjY2NjNGY2ZmYxYTdlN2RiODRiNGJiMmY1
NWIwOGQwHhcNMjYwNjI0MTUwMTIzWhcNMjYwNjI1MTUwMTIzWjAzMTEwLwYDVQQD
EyhjODUzYzA1ZTEzYmQ3OWFiMzU4ZDJjMDk5MjkxNmZiN2MyMTJhMTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxapMjHv8KNidm3DbiwHy+18vKn2f
vYpXRDAq/GrDIGPfSFKVCNI4s+e+NZDcfsQHXB0XS4hMvMEqSHYTrtDzZ+dRNZaV
JeyCBg19/irFVWnNZ41OxthtVZOKi109Lreh14yS+LCezWSHxkt+LmbFjnrY5Oub
wMmnrQsFHktMZOpMO4TjWszXmXOdsJj1HVJmW0DaawTBcmmbv1HO2liy88H2YG09
5XTf0Gvt5LbsRsyZIFec6g6OgMwI38iR+NNq8cQD6Pt68ji7ZRlquuO5eFUKRgaX
WNmLTyCtsQsYbiS6Ck5Ga4kmVVEsRu5gSDfMmboQhte8V2pj0HeQacnhPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMhTwF4TvXmrNY0sCZKRb7fCEqGSMB8GA1UdIwQY
MBaAFPypix0OzMxPb/Gn59uEtLsvVbCNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX0ttTEhRN016RTl2OGFmbjI0UzB1eTlWc0kwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85NzFlNzMtZmE4My00NTc5LTg1MzIt
NThmMGYzMjVjMmI4LzEvX0ttTEhRN016RTl2OGFmbjI0UzB1eTlWc0kwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS85NzFlNzMtZmE4My00NTc5LTg1MzItNThmMGYzMjVjMmI4
LzEvX0ttTEhRN016RTl2OGFmbjI0UzB1eTlWc0kwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO4fzI+Ty
ikSDdSHcEyyz+a2Wrsht5CAtXBGiaSqAbq/iMBBHye5rZF91MTE84yZHeG/0AWbL
/wKL8f/cqsbPPp52CC+PiTJ3hGYJYwHZsiHs7uxk+kb6eeOvnz2BXfHc4HVuA5Ok
VgVAFwhZhGCpkyyqNWIN9vmRf4zf8qPE90IpnMZp7PbgDoGT7VKhepgEo83qYLWl
x3bhUpOymwODr5yqEOYnXo77Yp44XJ1o3H1iC02azxZJIFa20KjN74oumV0+rthq
gbng1fyPt4Xv0BderZIYKWIf6QEH+sNUcqKqOHlsiDP/rV1G21LKh7xoyk0WeiOR
Hrxk+p5ieW9XYA==
-----END CERTIFICATE-----
Generated at Thu Jun 25 01:26:00 2026 by rpki-client