Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json)
Hash identifier: 9+1MlhVbA7yVerIBmmmMPFPrF32Ze1GU9C/Sg3gdphI=
Subject key identifier: FE:9F:DF:6C:3C:34:7B:C2:47:69:7A:52:ED:7C:B9:AD:8F:F8:2C:58
Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Certificate serial: 019E30A914E84F3A5040659C55C5E95BDD24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 12:00:47 +0000
Manifest this update: Sat 16 May 2026 12:00:47 +0000
Manifest next update: Sun 17 May 2026 12:00:47 +0000
Files and hashes: 1: B923TTC0Df04C2WKB5eoCgT73fQ.roa (hash: u8SWrYqzCDPEqqAsY+pz5LjUeslP1zMGGkEQ+CEEG6g=)
2: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: /oZ9gcxkNqEUQyG/1DzBA9GHOx27p4ja2qepQlbWedg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:14:e8:4f:3a:50:40:65:9c:55:c5:e9:5b:dd:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Validity
Not Before: May 16 12:00:47 2026 GMT
Not After : May 17 12:00:47 2026 GMT
Subject: CN=fe9fdf6c3c347bc247697a52ed7cb9ad8ff82c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9d:bb:c9:94:14:61:77:2b:2b:e7:2a:19:cd:
80:f8:27:41:c9:4b:6c:f9:1b:7c:d9:92:34:44:fc:
67:12:e4:63:64:37:db:39:a7:d2:ab:a7:27:c6:74:
99:ce:37:c2:fa:c6:3a:cd:1e:93:8a:af:fc:b8:46:
5c:a3:de:c9:c9:39:c2:87:42:d9:26:a5:e2:5b:54:
4a:8a:84:85:19:de:44:ff:cb:05:4d:6c:25:af:da:
5b:88:fb:59:db:50:af:c9:40:7d:fa:a5:e0:9f:47:
b7:a4:45:47:50:8d:f5:ad:8c:54:d8:0a:d1:16:53:
df:9a:07:23:73:b6:b8:c6:3a:f2:7d:f7:ba:5f:74:
a8:bf:ee:b2:19:8a:fb:a7:d0:0e:ae:b7:28:ed:50:
6c:01:7e:1c:40:f6:e5:3e:57:89:a0:51:bf:3c:de:
6a:48:7c:69:66:74:c5:dd:a8:c8:ce:a7:85:ab:fb:
82:1e:59:40:9d:4d:98:43:39:2c:4e:04:8e:3a:18:
4b:4c:70:82:90:fc:cb:02:8d:d8:07:c6:4e:1e:83:
e0:33:cb:be:38:2e:d1:35:d8:9e:8a:38:0d:a6:e9:
8c:24:d8:2e:f7:6d:19:dd:fd:de:29:77:f5:7f:1e:
16:ca:af:64:fa:89:65:1a:42:63:11:1c:78:c9:17:
81:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:9F:DF:6C:3C:34:7B:C2:47:69:7A:52:ED:7C:B9:AD:8F:F8:2C:58
X509v3 Authority Key Identifier:
keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:7b:72:2f:13:3e:97:e3:dc:8a:41:6b:cf:57:81:2c:c3:48:
74:d5:79:98:76:ca:4f:69:81:69:cb:a3:f6:d8:05:f4:7f:37:
66:fc:bd:a0:71:3c:cc:6f:cd:e0:1c:4e:96:e0:ab:d7:0c:fb:
6d:a7:dd:eb:a6:3b:39:f9:22:2f:f0:74:e6:d8:37:2d:d6:9e:
92:aa:02:81:20:21:45:e7:3a:6e:85:5a:2e:31:b5:27:bf:ff:
7e:50:62:86:75:0b:3f:fd:7f:90:71:63:ed:76:b2:2b:a8:9e:
9b:91:b1:80:4b:e8:ec:b3:be:02:a8:ce:02:91:1f:e9:5e:29:
5a:3c:f2:37:7e:28:3c:fb:f0:bc:3e:73:00:04:41:7f:9f:e7:
0b:67:26:e4:6e:71:14:f0:4b:ca:4a:57:5b:a7:3f:73:24:1d:
aa:41:6e:05:99:3b:4d:39:40:88:4f:09:b2:0c:b7:28:04:db:
80:6b:6e:4b:77:1c:1e:00:cd:d4:d1:2b:15:69:6f:d6:2b:d7:
5c:3d:83:d9:09:94:c0:05:56:e4:bf:ca:f1:d6:cf:fb:56:e4:
0d:7b:69:88:db:e6:a1:28:a8:88:57:72:8d:c2:72:13:0d:e6:
37:c7:af:72:32:f5:69:18:bb:cd:b2:37:49:1b:fc:08:c5:5f:
b9:02:ed:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wqRToTzpQQGWcVcXpW90kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2YjdlZGVmNjE4NTg3MjNjNGFkZWJlM2VlNWE4OWY3MDA1
OGQ1ZmUwHhcNMjYwNTE2MTIwMDQ3WhcNMjYwNTE3MTIwMDQ3WjAzMTEwLwYDVQQD
EyhmZTlmZGY2YzNjMzQ3YmMyNDc2OTdhNTJlZDdjYjlhZDhmZjgyYzU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk527yZQUYXcrK+cqGc2A+CdByUts
+Rt82ZI0RPxnEuRjZDfbOafSq6cnxnSZzjfC+sY6zR6Tiq/8uEZco97JyTnCh0LZ
JqXiW1RKioSFGd5E/8sFTWwlr9pbiPtZ21CvyUB9+qXgn0e3pEVHUI31rYxU2ArR
FlPfmgcjc7a4xjryffe6X3Sov+6yGYr7p9AOrrco7VBsAX4cQPblPleJoFG/PN5q
SHxpZnTF3ajIzqeFq/uCHllAnU2YQzksTgSOOhhLTHCCkPzLAo3YB8ZOHoPgM8u+
OC7RNdieijgNpumMJNgu920Z3f3eKXf1fx4Wyq9k+ollGkJjERx4yReBBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP6f32w8NHvCR2l6Uu18ua2P+CxYMB8GA1UdIwQY
MBaAFAa37e9hhYcjxK3r4+5aifcAWNX+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUt
ODk1NTFlOGNjZTEyLzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUtODk1NTFlOGNjZTEy
LzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2HtyLxM+
l+PcikFrz1eBLMNIdNV5mHbKT2mBacuj9tgF9H83Zvy9oHE8zG/N4BxOluCr1wz7
bafd66Y7OfkiL/B05tg3LdaekqoCgSAhRec6boVaLjG1J7//flBihnULP/1/kHFj
7XayK6iem5GxgEvo7LO+AqjOApEf6V4pWjzyN34oPPvwvD5zAARBf5/nC2cm5G5x
FPBLykpXW6c/cyQdqkFuBZk7TTlAiE8Jsgy3KATbgGtuS3ccHgDN1NErFWlv1ivX
XD2D2QmUwAVW5L/K8dbP+1bkDXtpiNvmoSioiFdyjcJyEw3mN8evcjL1aRi7zbI3
SRv8CMVfuQLt5A==
-----END CERTIFICATE-----
Generated at Sat May 16 15:39:32 2026 by rpki-client