Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.mft
File: iyTYS_9MkhfR3vpd0zTIyFMiams.mft (raw, json)
Hash identifier: n9wCjnO1ebj6W5g2CmXqsOvAIvFR2+W5ZFO83VKuHt4=
Subject key identifier: 63:4E:7C:8B:C2:C9:A7:E7:77:AD:06:D9:F1:78:85:22:EB:B9:8A:11
Authority key identifier: 8B:24:D8:4B:FF:4C:92:17:D1:DE:FA:5D:D3:34:C8:C8:53:22:6A:6B
Certificate issuer: /CN=8b24d84bff4c9217d1defa5dd334c8c853226a6b
Certificate serial: 019EC17FE86B063CE166465D3F200DE30E2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iyTYS_9MkhfR3vpd0zTIyFMiams.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.mft
Manifest number: 0169
Signing time: Sat 13 Jun 2026 15:00:45 +0000
Manifest this update: Sat 13 Jun 2026 15:00:45 +0000
Manifest next update: Sun 14 Jun 2026 15:00:45 +0000
Files and hashes: 1: iyTYS_9MkhfR3vpd0zTIyFMiams.crl (hash: l4E2ElQwqRXDlkMngvny7gzerUOWnuEuRDOfW3hgTKY=)
2: uv1ygUlcXrGSDECbU5SJQezpERk.roa (hash: heh+HmefIR2zFpP0zIec4O9N2L5u5pbDsZ881lNVG4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.mft
rsync://rpki.ripe.net/repository/DEFAULT/iyTYS_9MkhfR3vpd0zTIyFMiams.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 15:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:7f:e8:6b:06:3c:e1:66:46:5d:3f:20:0d:e3:0e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b24d84bff4c9217d1defa5dd334c8c853226a6b
Validity
Not Before: Jun 13 15:00:45 2026 GMT
Not After : Jun 14 15:00:45 2026 GMT
Subject: CN=634e7c8bc2c9a7e777ad06d9f1788522ebb98a11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:58:a8:bb:34:f4:02:04:5c:76:cd:fc:f1:1a:
50:ae:2b:62:3d:55:31:39:72:8b:2a:79:dd:91:33:
22:4a:22:55:84:5f:2b:6b:5c:4e:7c:c2:08:61:07:
75:2a:74:30:48:e3:6a:9c:59:e6:d0:f3:5d:49:97:
d6:c9:31:20:67:20:95:2f:bd:4e:13:63:e9:e8:30:
5d:67:64:a5:08:c2:19:be:a8:d0:c9:70:e1:8e:eb:
48:9c:77:0f:2e:6a:8f:df:72:b2:f3:b7:64:15:cc:
06:fa:cf:55:b0:0d:83:29:56:04:a4:ae:11:8e:57:
71:12:89:d5:cb:9f:3d:d4:21:85:62:44:6f:9c:c3:
59:03:8b:fc:db:23:6c:a0:5b:1c:c5:32:d4:d2:60:
4c:d8:8b:3b:20:c5:1f:28:24:90:ec:db:5e:ba:af:
3b:7c:81:f8:05:5c:6f:c9:61:93:df:ef:43:7c:6e:
ba:11:6d:ca:b5:cd:ba:e6:af:5c:38:b0:8d:f3:60:
e8:33:f4:b7:10:f7:b1:97:8a:a8:f9:af:44:e2:d2:
d0:9d:7b:44:79:9c:85:3e:71:df:67:27:2c:9d:36:
e5:ff:46:d3:2b:b1:f2:3e:84:80:f0:4c:da:0b:23:
e8:67:ac:0f:e1:2e:63:55:1e:d3:6b:d7:5d:b3:14:
ed:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:4E:7C:8B:C2:C9:A7:E7:77:AD:06:D9:F1:78:85:22:EB:B9:8A:11
X509v3 Authority Key Identifier:
keyid:8B:24:D8:4B:FF:4C:92:17:D1:DE:FA:5D:D3:34:C8:C8:53:22:6A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iyTYS_9MkhfR3vpd0zTIyFMiams.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:22:05:85:de:8b:56:1c:06:51:07:de:8f:eb:0d:cb:4d:13:
27:95:01:76:6f:0d:ce:b4:1f:35:7b:3a:33:af:f9:9a:da:80:
74:fd:97:92:cf:d8:c5:9d:53:71:26:44:fa:f1:45:d6:95:41:
b4:0c:68:b0:c6:fc:0f:59:8f:ba:ed:97:a8:28:ae:ee:1c:be:
b3:d1:8a:ba:62:06:aa:31:42:3a:fd:a8:06:39:ad:d4:a9:d4:
d1:93:a1:d5:e6:b3:dd:f8:8c:29:e7:38:da:5f:96:5f:19:7b:
ac:14:93:0c:f8:67:5f:e8:44:eb:21:dd:27:7e:e4:4b:02:75:
9d:e5:62:81:ea:e3:f9:7d:4c:81:58:4e:06:02:bd:83:09:ed:
b1:59:ed:63:6c:c0:b5:b7:c4:2e:d3:f9:43:15:6d:47:a5:af:
56:1a:2f:db:e0:f9:37:57:81:2f:54:05:e7:cf:9e:37:f0:55:
71:ba:32:d1:d3:53:87:3e:48:78:b9:ce:60:40:64:ce:3c:4a:
d3:e5:a9:1b:24:a3:7f:11:b7:f3:7b:e5:3d:d1:00:1c:46:56:
4c:a7:7d:c9:d9:74:81:6c:5a:16:95:e5:04:26:f3:8b:11:11:
a6:7d:fd:ef:76:82:0a:e8:b3:21:f1:da:18:95:52:98:49:ab:
86:36:02:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7Bf+hrBjzhZkZdPyAN4w4tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiMjRkODRiZmY0YzkyMTdkMWRlZmE1ZGQzMzRjOGM4NTMy
MjZhNmIwHhcNMjYwNjEzMTUwMDQ1WhcNMjYwNjE0MTUwMDQ1WjAzMTEwLwYDVQQD
Eyg2MzRlN2M4YmMyYzlhN2U3NzdhZDA2ZDlmMTc4ODUyMmViYjk4YTExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh1iouzT0AgRcds388RpQritiPVUx
OXKLKnndkTMiSiJVhF8ra1xOfMIIYQd1KnQwSONqnFnm0PNdSZfWyTEgZyCVL71O
E2Pp6DBdZ2SlCMIZvqjQyXDhjutInHcPLmqP33Ky87dkFcwG+s9VsA2DKVYEpK4R
jldxEonVy5891CGFYkRvnMNZA4v82yNsoFscxTLU0mBM2Is7IMUfKCSQ7Nteuq87
fIH4BVxvyWGT3+9DfG66EW3Ktc265q9cOLCN82DoM/S3EPexl4qo+a9E4tLQnXtE
eZyFPnHfZycsnTbl/0bTK7HyPoSA8EzaCyPoZ6wP4S5jVR7Ta9ddsxTt8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGNOfIvCyafnd60G2fF4hSLruYoRMB8GA1UdIwQY
MBaAFIsk2Ev/TJIX0d76XdM0yMhTImprMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXlUWVNfOU1raGZSM3ZwZDB6VEl5Rk1pYW1zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9iNTY5YmUtNTQzYS00YjU5LThhZDAt
NjU2MGNlNGFkMDZkLzEvaXlUWVNfOU1raGZSM3ZwZDB6VEl5Rk1pYW1zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9iNTY5YmUtNTQzYS00YjU5LThhZDAtNjU2MGNlNGFkMDZk
LzEvaXlUWVNfOU1raGZSM3ZwZDB6VEl5Rk1pYW1zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeyIFhd6L
VhwGUQfej+sNy00TJ5UBdm8NzrQfNXs6M6/5mtqAdP2Xks/YxZ1TcSZE+vFF1pVB
tAxosMb8D1mPuu2XqCiu7hy+s9GKumIGqjFCOv2oBjmt1KnU0ZOh1eaz3fiMKec4
2l+WXxl7rBSTDPhnX+hE6yHdJ37kSwJ1neVigerj+X1MgVhOBgK9gwntsVntY2zA
tbfELtP5QxVtR6WvVhov2+D5N1eBL1QF58+eN/BVcboy0dNThz5IeLnOYEBkzjxK
0+WpGySjfxG383vlPdEAHEZWTKd9ydl0gWxaFpXlBCbzixERpn3973aCCuizIfHa
GJVSmEmrhjYCIw==
-----END CERTIFICATE-----
Generated at Sat Jun 13 21:25:33 2026 by rpki-client