Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: j5jjjHwnYgY7g8g9WKYmoZqXZvTB3tEru3h04Dj/VwI=
Subject key identifier: 2E:B7:09:75:1D:87:C1:C8:1F:CA:DC:27:94:85:A0:28:06:99:ED:B5
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 019EB98FBD9D0DE105AC971BDC3576C4F0D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 11F4
Signing time: Fri 12 Jun 2026 02:01:05 +0000
Manifest this update: Fri 12 Jun 2026 02:01:05 +0000
Manifest next update: Sat 13 Jun 2026 02:01:05 +0000
Files and hashes: 1: 6Lv0ELrWKZzM2WUhjrrfSxrLv5I.roa (hash: b+tPMLvT0wTQ8KNZFO7LFZXenP25HBtSk8cAgN48xuk=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: QwNP/Q2p0YuCJV3cKmj7I8jC+A3TrzZGNmQwTj5IaA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:8f:bd:9d:0d:e1:05:ac:97:1b:dc:35:76:c4:f0:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Jun 12 02:01:05 2026 GMT
Not After : Jun 13 02:01:05 2026 GMT
Subject: CN=2eb709751d87c1c81fcadc279485a0280699edb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:52:9d:81:c4:2a:2c:ee:87:72:cb:ed:ea:b7:
08:d3:e7:3c:c7:13:4a:a1:28:10:74:ed:d8:d2:71:
ca:df:26:c8:63:e0:ee:ff:46:47:a8:57:ca:53:e5:
c7:f9:d1:9e:fb:da:e5:34:fb:c2:da:1f:5d:18:4a:
2d:c5:b1:e0:cb:4b:07:c2:7c:de:07:89:05:7f:d8:
de:a4:72:a1:e5:5d:e0:14:74:03:88:c5:bf:0e:70:
eb:74:18:81:30:06:40:e8:8b:6e:50:bf:47:40:d5:
98:37:cf:1b:2c:0c:23:44:1c:60:3f:a3:42:cd:fe:
a4:d5:e9:81:aa:37:28:d9:bc:56:07:f7:45:34:13:
c5:35:37:5b:6b:06:50:c1:32:df:d5:02:34:d5:48:
d3:66:21:f1:23:14:d3:e4:0a:d5:bd:19:0e:9d:d1:
e9:04:a6:5d:7d:33:55:19:ce:dd:34:42:69:9d:7d:
c1:66:69:75:60:20:94:a3:a1:f5:4c:13:d5:88:a5:
08:c5:a1:10:a0:17:a9:77:6c:fb:ea:c5:4e:98:44:
db:b0:49:69:a4:63:b0:d7:72:e1:45:06:be:d4:87:
f3:ff:a1:80:a4:b2:9b:21:26:ed:15:e1:22:61:9a:
e6:93:86:80:3b:8e:d7:bf:4f:ba:2d:a8:c5:5d:df:
fd:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:B7:09:75:1D:87:C1:C8:1F:CA:DC:27:94:85:A0:28:06:99:ED:B5
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:55:20:65:cd:e5:41:50:af:41:d4:27:37:da:07:3b:5c:44:
26:4b:4c:b9:e8:95:f5:04:00:84:19:c6:e5:72:10:43:9e:7d:
67:67:48:44:8c:1e:93:b1:53:64:a4:6f:22:fc:d4:20:31:3d:
06:05:a0:f4:3f:f8:4b:bf:2a:e3:ea:4a:1a:21:be:9c:eb:ed:
93:c0:6a:5d:0b:19:d4:da:55:0a:82:bc:9a:e8:bc:f9:2e:31:
52:5e:af:cb:7c:7e:76:4a:59:90:c4:04:5a:1a:de:db:52:f9:
fe:19:ba:07:22:42:7f:cf:54:2f:0f:1b:81:be:68:53:6e:5e:
66:82:d5:5b:80:3b:53:eb:ec:f9:f6:4e:4c:34:42:52:28:bf:
4d:cb:34:ed:a7:89:6c:cd:74:a8:5a:4d:bb:e2:58:77:53:30:
5b:76:76:2f:c2:7f:96:45:bd:ea:fa:29:a4:13:d5:7c:ba:d0:
75:0a:92:10:e3:ce:f6:a6:ca:52:c6:04:05:f1:5c:34:16:b1:
2d:ad:40:90:6f:36:93:3d:d7:91:69:6b:e7:0a:3d:6b:34:78:
ba:63:81:46:96:df:e6:5c:c6:de:a1:a5:bf:8d:87:f2:a8:46:
99:7e:91:bf:7a:91:06:cb:37:7f:37:b0:c4:16:42:41:6d:52:
80:e3:51:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ65j72dDeEFrJcb3DV2xPDZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNjg1OTU5OTc5MDBkZWQzMDBlOTkyNTcwOWRhNjI3ZTkz
ZjM2M2EwHhcNMjYwNjEyMDIwMTA1WhcNMjYwNjEzMDIwMTA1WjAzMTEwLwYDVQQD
EygyZWI3MDk3NTFkODdjMWM4MWZjYWRjMjc5NDg1YTAyODA2OTllZGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAulKdgcQqLO6Hcsvt6rcI0+c8xxNK
oSgQdO3Y0nHK3ybIY+Du/0ZHqFfKU+XH+dGe+9rlNPvC2h9dGEotxbHgy0sHwnze
B4kFf9jepHKh5V3gFHQDiMW/DnDrdBiBMAZA6ItuUL9HQNWYN88bLAwjRBxgP6NC
zf6k1emBqjco2bxWB/dFNBPFNTdbawZQwTLf1QI01UjTZiHxIxTT5ArVvRkOndHp
BKZdfTNVGc7dNEJpnX3BZml1YCCUo6H1TBPViKUIxaEQoBepd2z76sVOmETbsElp
pGOw13LhRQa+1Ifz/6GApLKbISbtFeEiYZrmk4aAO47Xv0+6LajFXd/9xQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC63CXUdh8HIH8rcJ5SFoCgGme21MB8GA1UdIwQY
MBaAFLpoWVmXkA3tMA6ZJXCdpifpPzY6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS80NzJhNGQtZmNhZS00NDU0LTk5Njct
MDJkZWQ5YjJlMGM5LzEvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS80NzJhNGQtZmNhZS00NDU0LTk5NjctMDJkZWQ5YjJlMGM5
LzEvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGlUgZc3l
QVCvQdQnN9oHO1xEJktMueiV9QQAhBnG5XIQQ559Z2dIRIwek7FTZKRvIvzUIDE9
BgWg9D/4S78q4+pKGiG+nOvtk8BqXQsZ1NpVCoK8mui8+S4xUl6vy3x+dkpZkMQE
Whre21L5/hm6ByJCf89ULw8bgb5oU25eZoLVW4A7U+vs+fZOTDRCUii/Tcs07aeJ
bM10qFpNu+JYd1MwW3Z2L8J/lkW96voppBPVfLrQdQqSEOPO9qbKUsYEBfFcNBax
La1AkG82kz3XkWlr5wo9azR4umOBRpbf5lzG3qGlv42H8qhGmX6Rv3qRBss3fzew
xBZCQW1SgONRYg==
-----END CERTIFICATE-----
Generated at Fri Jun 12 05:59:26 2026 by rpki-client