
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
File: dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft (raw, json)
Hash identifier: YvHm78mwLjPxK5TeFpiuGQFun7+acGO1k3Ert6oc69k=
Subject key identifier: 8D:40:BA:22:7A:2B:93:53:41:CD:1A:9D:83:9D:BB:A3:47:56:5A:AB
Authority key identifier: 74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
Certificate issuer: /CN=74d7da63929999603395877448ce50ac6e0213a9
Certificate serial: 019E9D05506F741820163F309E1B75A13755
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
Manifest number: 11AF
Signing time: Sat 06 Jun 2026 13:00:31 +0000
Manifest this update: Sat 06 Jun 2026 13:00:31 +0000
Manifest next update: Sun 07 Jun 2026 13:00:31 +0000
Files and hashes: 1: SwOC6LWRUnc-Ogb7u3vxF_0mea4.roa (hash: /q8N1XNG3IXyW6BA6haLHv1Ug3hcBfXRJEVoULv8zlE=)
2: dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl (hash: 7zjjEuA0UYq40nIdBySNUx2AcHA7Uq+aVjFkW/H6rl0=)
3: iGjEi-RetR317ng4nZLQERiyp5Y.roa (hash: VlJirjJKzaqO+FqHC1L2a0e5Ten97AODI8Xgtdno6FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 12:50:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9d:05:50:6f:74:18:20:16:3f:30:9e:1b:75:a1:37:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d7da63929999603395877448ce50ac6e0213a9
Validity
Not Before: Jun 6 13:00:31 2026 GMT
Not After : Jun 7 13:00:31 2026 GMT
Subject: CN=8d40ba227a2b935341cd1a9d839dbba347565aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:58:b7:ed:46:92:37:a8:af:59:70:44:d6:01:
8f:15:a4:33:61:ce:4c:8a:89:9a:f4:94:25:ba:bf:
7b:61:b1:5d:7c:7a:18:8f:de:c6:30:2a:ea:21:1f:
03:92:1b:43:c0:1a:73:45:f1:b2:55:0b:9a:2d:08:
92:e7:9c:be:05:97:81:db:44:45:44:d0:36:54:57:
44:12:1b:7a:d9:ac:39:61:ab:ea:85:58:fc:f6:54:
36:82:73:b0:bb:71:ee:4a:92:90:97:d3:6b:e2:d2:
a6:dd:d2:73:7d:d1:0c:65:e5:a1:f3:fb:26:31:6d:
d1:31:1f:7b:d7:60:b4:f8:d0:33:73:41:98:c8:12:
cd:c9:cf:ee:85:5f:a3:4d:a8:7e:55:6f:5a:04:ce:
31:fe:8e:f4:2a:6d:2a:9f:07:ba:76:ba:6d:8f:5b:
64:2c:4e:18:fb:bb:d7:d8:0d:d1:5f:c1:80:96:36:
bd:20:4f:80:ad:ab:c5:b6:93:0e:fc:c8:ab:76:51:
62:49:12:84:77:fb:48:38:33:ba:66:61:47:c6:03:
f9:33:05:36:cc:0f:40:db:98:24:79:46:a0:65:49:
a5:7b:54:8c:d3:7c:dd:9a:92:25:9d:f8:a2:f7:c9:
f2:ef:50:32:97:e7:8d:c1:fa:cf:2a:c5:cd:d4:e9:
d0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:40:BA:22:7A:2B:93:53:41:CD:1A:9D:83:9D:BB:A3:47:56:5A:AB
X509v3 Authority Key Identifier:
keyid:74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:46:2d:16:d5:b2:66:3c:71:b6:4c:ad:4d:ca:3d:87:b7:45:
0b:de:fc:6c:ba:81:d7:85:32:84:99:55:22:31:6d:81:78:ff:
b7:95:04:2a:03:7e:82:df:6d:e2:3b:e0:70:f5:13:c3:fe:0b:
9c:57:32:54:c2:42:4b:37:94:78:d7:a5:7a:5b:c8:ab:e9:f2:
f7:c7:88:75:8d:57:46:7f:55:ad:0d:1c:00:a0:ed:ed:cf:08:
dc:7a:1c:ef:6d:85:c1:e8:31:b9:6d:9d:68:63:45:4d:d0:9f:
1c:27:52:81:f0:e6:8e:f3:ed:ad:6a:97:35:6f:ff:30:c6:7b:
16:65:96:c5:f7:52:58:ce:b8:45:72:15:dd:06:7f:fa:71:d0:
28:52:27:53:fa:09:4c:f0:96:01:d3:d5:fa:48:ff:db:05:b0:
70:a3:82:33:bf:9d:ce:9e:3f:8e:73:51:09:8c:a7:6b:05:6c:
b9:67:28:74:fc:2c:4c:2c:40:cb:bc:ce:16:cf:f9:35:f4:65:
c1:46:2b:f2:db:e0:88:1e:93:73:eb:4f:b7:24:00:f8:b5:06:
20:e5:33:49:b1:b8:4b:05:da:49:36:b0:62:9e:05:9a:88:71:
a8:c2:ed:65:53:fd:48:c0:20:f8:05:55:ae:43:63:b0:0b:e9:
26:c4:65:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6dBVBvdBggFj8wnht1oTdVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0ZDdkYTYzOTI5OTk5NjAzMzk1ODc3NDQ4Y2U1MGFjNmUw
MjEzYTkwHhcNMjYwNjA2MTMwMDMxWhcNMjYwNjA3MTMwMDMxWjAzMTEwLwYDVQQD
Eyg4ZDQwYmEyMjdhMmI5MzUzNDFjZDFhOWQ4MzlkYmJhMzQ3NTY1YWFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVi37UaSN6ivWXBE1gGPFaQzYc5M
ioma9JQlur97YbFdfHoYj97GMCrqIR8DkhtDwBpzRfGyVQuaLQiS55y+BZeB20RF
RNA2VFdEEht62aw5YavqhVj89lQ2gnOwu3HuSpKQl9Nr4tKm3dJzfdEMZeWh8/sm
MW3RMR9712C0+NAzc0GYyBLNyc/uhV+jTah+VW9aBM4x/o70Km0qnwe6drptj1tk
LE4Y+7vX2A3RX8GAlja9IE+AravFtpMO/MirdlFiSRKEd/tIODO6ZmFHxgP5MwU2
zA9A25gkeUagZUmle1SM03zdmpIlnfii98ny71Ayl+eNwfrPKsXN1OnQDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI1AuiJ6K5NTQc0anYOdu6NHVlqrMB8GA1UdIwQY
MBaAFHTX2mOSmZlgM5WHdEjOUKxuAhOpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZE5mYVk1S1ptV0F6bFlkMFNNNVFyRzRDRTZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8wZWI4NTItYWYzNC00Y2I5LTg3MmUt
NGI1ZDVkNWY4Njk5LzEvZE5mYVk1S1ptV0F6bFlkMFNNNVFyRzRDRTZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC8wZWI4NTItYWYzNC00Y2I5LTg3MmUtNGI1ZDVkNWY4Njk5
LzEvZE5mYVk1S1ptV0F6bFlkMFNNNVFyRzRDRTZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkEYtFtWy
ZjxxtkytTco9h7dFC978bLqB14UyhJlVIjFtgXj/t5UEKgN+gt9t4jvgcPUTw/4L
nFcyVMJCSzeUeNelelvIq+ny98eIdY1XRn9VrQ0cAKDt7c8I3Hoc722FwegxuW2d
aGNFTdCfHCdSgfDmjvPtrWqXNW//MMZ7FmWWxfdSWM64RXIV3QZ/+nHQKFInU/oJ
TPCWAdPV+kj/2wWwcKOCM7+dzp4/jnNRCYynawVsuWcodPwsTCxAy7zOFs/5NfRl
wUYr8tvgiB6Tc+tPtyQA+LUGIOUzSbG4SwXaSTawYp4FmohxqMLtZVP9SMAg+AVV
rkNjsAvpJsRlWQ==
-----END CERTIFICATE-----
Generated at Sat Jun 6 15:01:00 2026 by rpki-client