Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
File: riYajfUykscw4q4d_PxP4_92sdA.mft (raw, json)
Hash identifier: MTO/mNwEB8AdzG3spKIjTfyxbLFQpvQv7A7xBZ22V/g=
Subject key identifier: 2D:65:3E:61:1A:DE:6D:EF:78:3E:8E:27:F9:14:4F:5D:FD:C9:CF:2E
Authority key identifier: AE:26:1A:8D:F5:32:92:C7:30:E2:AE:1D:FC:FC:4F:E3:FF:76:B1:D0
Certificate issuer: /CN=ae261a8df53292c730e2ae1dfcfc4fe3ff76b1d0
Certificate serial: 019F11C0B4AE80A0E116A092275D60DD7B5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
Manifest number: 19C2
Signing time: Mon 29 Jun 2026 05:01:09 +0000
Manifest this update: Mon 29 Jun 2026 05:01:09 +0000
Manifest next update: Tue 30 Jun 2026 05:01:09 +0000
Files and hashes: 1: Br8jDqLYrkaBjiJL6wr8w6b0avs.roa (hash: W7Sv+CJ6euSWOJRS/NssioWUOsmXYLBpEHMl3h7F400=)
2: DOQ8AlxWLE2vY7KBlqArp_D5uNk.roa (hash: v0cgDIGN25wK3dPZkNRB0dnbjCCauMeW+83WdAY4Puo=)
3: X4D9lHTk8PnxZTblZAtVaE1dNQQ.roa (hash: 6uloBsTlbb42wmCR8mdc3PElXKD6suKGJ+NWpe9F6Hc=)
4: khJQh_gOJAhdH_kny7OeYEA7vpE.roa (hash: APga9Ti26SSiaeHSYmmvz0zsM85wvjZCduJHpw3sCos=)
5: mzjq_E9j-9cKk2TKoQGkLBC5u4Q.roa (hash: 2CE2j2LCoSSQcA7NTRzO1EXIEEufcX6KVxq3KWqXbTI=)
6: qoAheOHH9UlqCoE7XA-QfCZLxZw.roa (hash: VVjSLN2hXu/mswe8VPF+IlHQVMhQLF+wIH35GZEPXZ0=)
7: riYajfUykscw4q4d_PxP4_92sdA.crl (hash: aODz2o1ulc0ocCfYx4yGDkJyl2GtOKcgDdi9ZB+tj0Y=)
8: xJ55egTi-SOwIls63DtlY0C_yhc.roa (hash: kC3zkfZ5rMjuoKk4EnSBPzpT5cCfNNDGdDzD8ejaa+g=)
9: yh54kqFVQkBUGD2L64gmg0WiwgQ.roa (hash: fbRZrlQ7uDmusRMcXTaTF8xAN1V4wdzB4QikocdzyJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 05:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:b4:ae:80:a0:e1:16:a0:92:27:5d:60:dd:7b:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae261a8df53292c730e2ae1dfcfc4fe3ff76b1d0
Validity
Not Before: Jun 29 05:01:09 2026 GMT
Not After : Jun 30 05:01:09 2026 GMT
Subject: CN=2d653e611ade6def783e8e27f9144f5dfdc9cf2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2a:71:b7:ec:b8:b2:9d:25:fc:c8:7d:21:62:
97:17:6a:de:c8:0c:1d:b3:33:61:c1:ff:3d:91:65:
36:18:2b:11:93:5f:32:21:c6:b5:0c:de:b4:e7:ef:
70:ae:fe:56:7c:30:47:0f:91:96:06:a4:fc:12:b7:
1f:6a:af:66:95:7b:54:47:e5:39:15:91:c5:a6:d9:
c1:14:35:a7:1a:1e:6f:61:bf:4e:bd:d5:51:d1:1a:
f1:c7:11:59:4e:a0:ff:13:bc:c6:c0:fc:72:49:14:
7f:43:b6:be:c6:6c:b3:29:c9:44:88:c9:0f:41:11:
87:c8:ad:f4:34:a3:a4:3f:08:76:4a:da:44:6a:57:
47:eb:18:04:8e:53:f8:01:2f:6f:12:f2:a8:4a:af:
52:a2:bf:a3:47:c8:a7:ae:13:ba:e0:e5:e0:91:c4:
da:77:bb:a3:06:21:a7:e0:d3:89:bb:c7:b4:ec:65:
93:6c:a8:8c:c3:3f:79:2e:d0:e6:d6:44:1f:fa:2c:
ec:1c:c5:8e:50:06:5f:bf:e7:48:37:d4:44:01:2e:
8d:30:c0:63:9c:5a:ff:8a:d4:a1:5e:27:1a:bf:3c:
aa:0b:37:85:31:29:d8:7f:f8:99:43:3f:5a:db:bf:
9e:80:99:97:92:6f:cc:29:3b:e1:47:3f:c1:70:a2:
ea:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:65:3E:61:1A:DE:6D:EF:78:3E:8E:27:F9:14:4F:5D:FD:C9:CF:2E
X509v3 Authority Key Identifier:
keyid:AE:26:1A:8D:F5:32:92:C7:30:E2:AE:1D:FC:FC:4F:E3:FF:76:B1:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:5c:8a:b1:c7:d5:cd:0d:49:93:f8:14:26:f0:c3:23:86:ae:
34:90:9f:09:fd:66:50:37:f4:cd:a5:55:0a:78:d0:99:65:dc:
4a:50:f3:1d:0c:7e:e2:67:d0:d6:a5:bc:bb:62:d5:c2:5c:27:
22:be:2f:ad:e0:7e:ac:d6:fe:1f:16:0e:de:62:38:72:25:56:
9c:df:fa:ee:3b:7b:02:7c:92:48:60:a3:26:9a:08:04:d4:41:
38:d5:de:cf:9e:55:00:9f:b0:62:e9:c0:b8:81:09:7c:1e:71:
95:23:06:0c:00:06:67:33:5d:88:7c:3b:68:0c:f1:82:ed:71:
69:54:89:bd:8f:2b:e6:c9:0b:b5:dd:0e:56:a8:ce:a3:34:02:
13:f4:e0:da:56:4c:f4:f7:6d:62:7f:79:95:5a:66:b0:53:52:
f7:57:d1:11:dd:ef:1e:55:bc:6c:9a:12:f9:70:74:a7:ad:f5:
ef:6c:a3:01:fd:b5:00:0b:18:21:fc:25:1c:44:a6:01:6b:8f:
62:3d:3a:ad:c8:49:4e:a4:17:06:5d:13:64:ab:8c:1e:2a:71:
33:92:a6:2a:e6:f7:0b:57:d9:3c:53:9a:7d:f4:c8:fc:83:df:
fb:75:ae:25:7d:64:15:57:f1:35:cc:eb:72:81:30:45:65:e2:
d5:36:75:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8RwLSugKDhFqCSJ11g3XtfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlMjYxYThkZjUzMjkyYzczMGUyYWUxZGZjZmM0ZmUzZmY3
NmIxZDAwHhcNMjYwNjI5MDUwMTA5WhcNMjYwNjMwMDUwMTA5WjAzMTEwLwYDVQQD
EygyZDY1M2U2MTFhZGU2ZGVmNzgzZThlMjdmOTE0NGY1ZGZkYzljZjJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyipxt+y4sp0l/Mh9IWKXF2reyAwd
szNhwf89kWU2GCsRk18yIca1DN605+9wrv5WfDBHD5GWBqT8Ercfaq9mlXtUR+U5
FZHFptnBFDWnGh5vYb9OvdVR0RrxxxFZTqD/E7zGwPxySRR/Q7a+xmyzKclEiMkP
QRGHyK30NKOkPwh2StpEaldH6xgEjlP4AS9vEvKoSq9Sor+jR8inrhO64OXgkcTa
d7ujBiGn4NOJu8e07GWTbKiMwz95LtDm1kQf+izsHMWOUAZfv+dIN9REAS6NMMBj
nFr/itShXicavzyqCzeFMSnYf/iZQz9a27+egJmXkm/MKTvhRz/BcKLq4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC1lPmEa3m3veD6OJ/kUT139yc8uMB8GA1UdIwQY
MBaAFK4mGo31MpLHMOKuHfz8T+P/drHQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmlZYWpmVXlrc2N3NHE0ZF9QeFA0Xzkyc2RBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy8xYTg0OWUtODYxYy00YzRkLWJjZjQt
NTY5NWQ4OWQ3YjM2LzEvcmlZYWpmVXlrc2N3NHE0ZF9QeFA0Xzkyc2RBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy8xYTg0OWUtODYxYy00YzRkLWJjZjQtNTY5NWQ4OWQ3YjM2
LzEvcmlZYWpmVXlrc2N3NHE0ZF9QeFA0Xzkyc2RBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn1yKscfV
zQ1Jk/gUJvDDI4auNJCfCf1mUDf0zaVVCnjQmWXcSlDzHQx+4mfQ1qW8u2LVwlwn
Ir4vreB+rNb+HxYO3mI4ciVWnN/67jt7AnySSGCjJpoIBNRBONXez55VAJ+wYunA
uIEJfB5xlSMGDAAGZzNdiHw7aAzxgu1xaVSJvY8r5skLtd0OVqjOozQCE/Tg2lZM
9PdtYn95lVpmsFNS91fREd3vHlW8bJoS+XB0p63172yjAf21AAsYIfwlHESmAWuP
Yj06rchJTqQXBl0TZKuMHipxM5KmKub3C1fZPFOaffTI/IPf+3WuJX1kFVfxNczr
coEwRWXi1TZ1LA==
-----END CERTIFICATE-----
Generated at Mon Jun 29 15:42:37 2026 by rpki-client