Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
File: ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft (raw, json)
Hash identifier: DMFvZAqfJmHyHUg0mbLmhg3ZbjZ5y0ddED7ffeylbSc=
Subject key identifier: F2:32:09:9E:A2:F2:E3:34:AC:95:CF:FD:E1:B2:39:30:DA:60:FD:91
Authority key identifier: 89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75
Certificate issuer: /CN=89aed2cff8ce31b334f83a0b305feef01d71da75
Certificate serial: 019F19E7FFB617947E63C356909A90F15840
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
Manifest number: 1943
Signing time: Tue 30 Jun 2026 19:01:02 +0000
Manifest this update: Tue 30 Jun 2026 19:01:02 +0000
Manifest next update: Wed 01 Jul 2026 19:01:02 +0000
Files and hashes: 1: FwqF1yEFG7mKuQRa7RkSyKPz0W0.roa (hash: arAr0Lk0kEre21H8drvKyvd7aUFHvFqu0QRUk2zIk0Y=)
2: ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl (hash: 508SWpcKlPLfU+eQUWWZ5MMa+6ih0zCYgQ+RW5oR2T0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:e7:ff:b6:17:94:7e:63:c3:56:90:9a:90:f1:58:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89aed2cff8ce31b334f83a0b305feef01d71da75
Validity
Not Before: Jun 30 19:01:02 2026 GMT
Not After : Jul 1 19:01:02 2026 GMT
Subject: CN=f232099ea2f2e334ac95cffde1b23930da60fd91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9e:fa:cb:36:9c:20:01:da:92:af:bd:3e:4c:
ec:4c:52:e4:2a:eb:a6:75:f5:e2:00:57:bb:f1:7d:
ca:f3:c7:a6:f6:41:36:e4:b2:0f:8e:2b:18:8c:20:
3b:c7:0d:50:ee:dc:89:e5:6f:08:3f:c1:eb:46:bc:
fa:6a:b2:c0:bb:27:75:a2:02:e8:6d:d2:b3:52:fc:
17:88:e2:06:e2:90:a2:e6:3f:5e:c2:e7:65:64:23:
0a:cf:81:c3:3a:33:8c:75:59:ea:0e:e3:94:c2:e8:
a4:9c:3e:47:88:e9:92:eb:3a:25:3a:c4:5a:a6:3d:
b9:21:06:73:eb:c9:3f:a5:a9:dd:c4:38:fc:0a:71:
79:76:4c:28:63:83:5b:d3:b6:69:f7:29:48:38:e5:
cd:7f:ab:b0:45:4b:b1:fa:63:41:25:80:68:e9:73:
76:0a:74:9b:44:51:f1:e7:f3:99:6c:bc:fa:88:31:
7c:5c:c7:2d:67:ae:80:62:44:b8:1d:86:1c:ee:c5:
2f:89:c0:8a:b7:40:0c:bd:b4:2b:f8:51:5d:c1:3a:
99:ae:75:7e:7f:a9:6c:92:7d:ab:59:18:bd:26:7b:
ee:1f:fc:2b:05:78:15:be:a5:37:a3:e3:fe:3c:18:
1f:0e:34:01:b5:fa:db:bc:2f:6f:8f:f5:d9:a0:89:
bb:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:32:09:9E:A2:F2:E3:34:AC:95:CF:FD:E1:B2:39:30:DA:60:FD:91
X509v3 Authority Key Identifier:
keyid:89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:c2:25:b3:b3:e1:22:96:6e:f6:78:34:4f:b0:ac:22:90:1a:
5a:11:f3:26:eb:18:29:c3:8b:da:ea:00:2c:e2:fa:1c:19:69:
bf:ef:91:f5:3d:64:43:b7:0e:99:43:c0:5d:2a:92:70:f2:26:
bc:79:49:0a:4d:b7:0f:f0:58:3a:15:f6:b6:6d:a4:f8:51:03:
2c:60:dc:60:52:c3:c8:02:d3:dc:cf:1c:7a:04:66:21:a0:9e:
67:79:d7:64:b8:ea:6a:ec:86:09:4c:02:22:84:ce:75:a1:b5:
d7:b4:59:9c:ce:11:ae:e1:64:72:a7:95:c0:55:64:06:0a:75:
da:f7:86:12:49:db:b1:9c:f7:84:c1:11:0a:70:ae:e7:e4:0e:
73:5d:43:41:bd:43:86:35:10:83:61:9d:4c:9e:d4:08:0c:55:
c9:2d:bb:98:0e:8e:53:de:e4:61:9c:92:69:63:3d:33:4e:85:
9a:6f:4e:99:30:59:0e:9f:81:cc:7d:d5:18:55:10:ac:71:b0:
6a:fc:20:35:dd:95:5c:d4:40:e3:cb:d8:57:bb:a3:71:b6:ae:
6f:9d:9f:2b:e5:f4:09:e0:56:18:04:e1:98:43:25:ad:70:ac:
68:94:31:3e:2a:fe:ff:23:ce:60:68:11:74:f1:bc:f3:f5:0d:
92:0b:4b:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8Z5/+2F5R+Y8NWkJqQ8VhAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5YWVkMmNmZjhjZTMxYjMzNGY4M2EwYjMwNWZlZWYwMWQ3
MWRhNzUwHhcNMjYwNjMwMTkwMTAyWhcNMjYwNzAxMTkwMTAyWjAzMTEwLwYDVQQD
EyhmMjMyMDk5ZWEyZjJlMzM0YWM5NWNmZmRlMWIyMzkzMGRhNjBmZDkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzp76yzacIAHakq+9PkzsTFLkKuum
dfXiAFe78X3K88em9kE25LIPjisYjCA7xw1Q7tyJ5W8IP8HrRrz6arLAuyd1ogLo
bdKzUvwXiOIG4pCi5j9ewudlZCMKz4HDOjOMdVnqDuOUwuiknD5HiOmS6zolOsRa
pj25IQZz68k/pandxDj8CnF5dkwoY4Nb07Zp9ylIOOXNf6uwRUux+mNBJYBo6XN2
CnSbRFHx5/OZbLz6iDF8XMctZ66AYkS4HYYc7sUvicCKt0AMvbQr+FFdwTqZrnV+
f6lskn2rWRi9JnvuH/wrBXgVvqU3o+P+PBgfDjQBtfrbvC9vj/XZoIm7KQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPIyCZ6i8uM0rJXP/eGyOTDaYP2RMB8GA1UdIwQY
MBaAFImu0s/4zjGzNPg6CzBf7vAdcdp1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWE3U3pfak9NYk0wLURvTE1GX3U4QjF4Mm5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9lOTBmNTEtODlhYS00OWViLTllYTYt
ZmJlOGJjNWEyOWZhLzEvaWE3U3pfak9NYk0wLURvTE1GX3U4QjF4Mm5VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9lOTBmNTEtODlhYS00OWViLTllYTYtZmJlOGJjNWEyOWZh
LzEvaWE3U3pfak9NYk0wLURvTE1GX3U4QjF4Mm5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAssIls7Ph
IpZu9ng0T7CsIpAaWhHzJusYKcOL2uoALOL6HBlpv++R9T1kQ7cOmUPAXSqScPIm
vHlJCk23D/BYOhX2tm2k+FEDLGDcYFLDyALT3M8cegRmIaCeZ3nXZLjqauyGCUwC
IoTOdaG117RZnM4RruFkcqeVwFVkBgp12veGEknbsZz3hMERCnCu5+QOc11DQb1D
hjUQg2GdTJ7UCAxVyS27mA6OU97kYZySaWM9M06Fmm9OmTBZDp+BzH3VGFUQrHGw
avwgNd2VXNRA48vYV7ujcbaub52fK+X0CeBWGAThmEMlrXCsaJQxPir+/yPOYGgR
dPG88/UNkgtLdw==
-----END CERTIFICATE-----
Generated at Tue Jun 30 22:41:22 2026 by rpki-client