Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json)
Hash identifier: C7bsdDnF+3vgt36Ambua3JMhWtGL5Z5HK8lyqEDZyOo=
Subject key identifier: D6:8D:21:C6:72:8E:B3:3E:32:FD:1D:C0:55:55:2C:19:88:40:EC:E2
Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Certificate serial: 019F17F9DC6E605D4A36F9D5057F0E177C11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
Manifest number: 0FDE
Signing time: Tue 30 Jun 2026 10:01:18 +0000
Manifest this update: Tue 30 Jun 2026 10:01:18 +0000
Manifest next update: Wed 01 Jul 2026 10:01:18 +0000
Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: /8OdCztPgkxa66cq7BRbC+GMqZsTWSGY/FwFeaeNHgc=)
2: ol_JEp9GJvGNVjYx1Pw8RWe4xLQ.roa (hash: tRtrIVFRMFtnff6mODXc8+s312Nmn2BxI0riNWUQx48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:dc:6e:60:5d:4a:36:f9:d5:05:7f:0e:17:7c:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Validity
Not Before: Jun 30 10:01:18 2026 GMT
Not After : Jul 1 10:01:18 2026 GMT
Subject: CN=d68d21c6728eb33e32fd1dc055552c198840ece2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:79:2f:38:54:80:e1:fd:50:1f:a5:02:4c:84:
53:a7:b2:a5:3a:29:e2:99:18:85:97:8d:92:00:4d:
c6:7a:2b:59:a6:3c:4f:49:6a:13:40:25:d2:fd:52:
92:72:71:a7:a1:9d:ae:e2:89:70:4a:42:51:3e:6d:
19:78:2a:64:2c:a6:62:6e:2d:63:5b:60:6c:1c:ae:
c4:22:8c:fc:6e:44:a4:5e:43:94:89:49:21:5b:8f:
2e:be:e8:54:ed:82:85:a9:18:02:57:00:98:1a:c5:
d8:72:83:d6:57:57:50:16:6b:0f:1d:1f:19:ad:55:
ca:e6:99:eb:c4:2e:4e:15:b5:09:3f:77:67:86:7b:
17:0a:66:0b:9d:50:13:3e:e4:ba:c6:57:09:06:4b:
d4:16:9f:b2:05:3f:8e:52:39:d7:cc:40:7a:e4:a8:
87:2a:aa:b6:39:e6:b1:62:50:ab:80:8e:4a:0c:47:
69:d7:d5:0d:ce:59:b1:0d:10:0c:4b:97:34:ec:cc:
5a:e0:e9:8f:6a:2f:33:26:04:2a:d2:ff:55:08:2e:
3b:75:14:10:d1:39:0f:2a:b6:79:10:b4:94:f2:b9:
0f:10:8e:a9:72:e4:01:eb:55:79:81:15:b7:9d:dd:
d7:42:69:30:59:6d:d3:9d:8f:48:da:38:b1:e0:32:
c3:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:8D:21:C6:72:8E:B3:3E:32:FD:1D:C0:55:55:2C:19:88:40:EC:E2
X509v3 Authority Key Identifier:
keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:3f:90:cd:bd:68:e6:51:5d:62:9e:da:37:d9:be:4a:80:cd:
11:ae:ab:58:43:44:44:6d:a7:d9:b0:a0:6a:e5:24:bf:b4:d1:
ed:a8:da:42:39:b6:0d:90:59:bf:d3:72:89:94:30:49:03:ff:
94:c3:05:9d:98:5b:80:8a:d4:86:e0:3e:7c:ac:5c:71:54:8e:
30:16:d7:82:72:71:6b:cd:12:14:54:9e:4c:af:53:84:3d:29:
c9:3c:26:41:89:d2:42:29:df:ec:ef:88:8d:81:93:88:3f:04:
eb:2f:b4:88:43:f6:ea:a7:c4:cb:d1:cf:88:a0:a6:42:1d:39:
a5:86:65:68:d8:04:0f:5e:df:81:10:2f:cc:27:e3:98:e1:8f:
25:64:75:af:dc:14:54:eb:82:cd:22:38:ed:1e:27:29:a0:56:
3a:1c:80:9a:f1:2a:64:f2:a0:43:02:9e:dd:f1:15:c4:04:ad:
ea:75:3a:cb:ab:96:71:f6:a7:76:e8:c0:46:f6:5f:83:ab:18:
4b:b1:eb:3b:57:87:81:41:98:8f:06:96:53:66:59:c2:02:ba:
21:11:d1:21:ef:35:1d:fe:66:62:9f:30:97:b9:f4:40:6c:ca:
8a:53:5a:37:3e:f7:68:4f:b0:ce:ff:64:f4:ae:03:2f:72:22:
01:25:81:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8X+dxuYF1KNvnVBX8OF3wRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2M2ZlOWMxMzQwNDFjZWJkYTU2OGI5ZjkwOGUyYWVmMzhh
YjdmNzUwHhcNMjYwNjMwMTAwMTE4WhcNMjYwNzAxMTAwMTE4WjAzMTEwLwYDVQQD
EyhkNjhkMjFjNjcyOGViMzNlMzJmZDFkYzA1NTU1MmMxOTg4NDBlY2UyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXkvOFSA4f1QH6UCTIRTp7KlOini
mRiFl42SAE3GeitZpjxPSWoTQCXS/VKScnGnoZ2u4olwSkJRPm0ZeCpkLKZibi1j
W2BsHK7EIoz8bkSkXkOUiUkhW48uvuhU7YKFqRgCVwCYGsXYcoPWV1dQFmsPHR8Z
rVXK5pnrxC5OFbUJP3dnhnsXCmYLnVATPuS6xlcJBkvUFp+yBT+OUjnXzEB65KiH
Kqq2OeaxYlCrgI5KDEdp19UNzlmxDRAMS5c07Mxa4OmPai8zJgQq0v9VCC47dRQQ
0TkPKrZ5ELSU8rkPEI6pcuQB61V5gRW3nd3XQmkwWW3TnY9I2jix4DLD6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNaNIcZyjrM+Mv0dwFVVLBmIQOziMB8GA1UdIwQY
MBaAFPY/6cE0BBzr2laLn5COKu84q391MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYt
NWFlYzc2NmE0OWI0LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9iMzlkM2EtMjc4NC00MjU1LTkwNjYtNWFlYzc2NmE0OWI0
LzEvOWpfcHdUUUVIT3ZhVm91ZmtJNHE3emlyZjNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArT+Qzb1o
5lFdYp7aN9m+SoDNEa6rWENERG2n2bCgauUkv7TR7ajaQjm2DZBZv9NyiZQwSQP/
lMMFnZhbgIrUhuA+fKxccVSOMBbXgnJxa80SFFSeTK9ThD0pyTwmQYnSQinf7O+I
jYGTiD8E6y+0iEP26qfEy9HPiKCmQh05pYZlaNgED17fgRAvzCfjmOGPJWR1r9wU
VOuCzSI47R4nKaBWOhyAmvEqZPKgQwKe3fEVxASt6nU6y6uWcfandujARvZfg6sY
S7HrO1eHgUGYjwaWU2ZZwgK6IRHRIe81Hf5mYp8wl7n0QGzKilNaNz73aE+wzv9k
9K4DL3IiASWBeA==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:52 2026 by rpki-client