Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json)
Hash identifier: AettgMXlmHCgAdoAsM4z5xuBdexdRvFAsT0DwTI3Y0U=
Subject key identifier: BC:94:7D:F3:2B:D0:5D:68:79:6E:72:7D:20:73:EC:5B:69:D5:43:84
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 019EBDA2AB5534C03F1412485DD7FFEE5DA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
Manifest number: 05E3
Signing time: Fri 12 Jun 2026 21:00:14 +0000
Manifest this update: Fri 12 Jun 2026 21:00:14 +0000
Manifest next update: Sat 13 Jun 2026 21:00:14 +0000
Files and hashes: 1: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: A/qODpuWVvt/exI/eNSJXrudDxUGakexDD9qrHAOV/Y=)
2: N3bXffW8yKFqU5UMm7fvxG-jz6A.roa (hash: bdRoY8TZDQQa0PscQFcX1AU8tV8n2oKXvuQ9ADHxYzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 21:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bd:a2:ab:55:34:c0:3f:14:12:48:5d:d7:ff:ee:5d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: Jun 12 21:00:14 2026 GMT
Not After : Jun 13 21:00:14 2026 GMT
Subject: CN=bc947df32bd05d68796e727d2073ec5b69d54384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:09:32:29:57:50:0c:db:e6:b5:49:93:1c:95:
16:f7:0a:22:e0:71:c2:62:84:ec:f6:00:0d:03:ee:
c1:5d:71:3c:0b:0f:69:61:41:0e:4c:56:31:f4:3c:
89:d2:92:64:73:81:69:79:5a:69:f5:6f:75:9d:36:
18:c5:5e:52:f3:cf:1c:97:21:93:9a:38:0a:c3:15:
bf:a8:92:7f:a5:88:54:3d:9f:80:57:3e:98:5b:4e:
42:96:fc:34:ea:53:da:27:80:1a:2a:fb:cc:fc:6d:
63:8d:b8:a1:1a:0b:7b:33:6e:5b:1a:27:36:52:fe:
0a:60:d9:da:a0:0a:71:fb:19:f3:3c:19:77:39:c4:
87:b8:74:07:db:d8:8a:5f:51:b5:85:9a:79:d4:bf:
78:8e:41:be:f5:76:49:17:94:41:c0:09:bd:d6:45:
9f:93:7d:94:ee:4a:2e:ae:eb:a7:56:d8:42:ee:8b:
2d:fe:55:63:32:37:79:03:63:77:44:2b:63:c7:de:
a1:ab:2c:6f:93:da:a1:61:9a:88:d4:d8:38:cc:7b:
93:9c:b3:fa:a1:51:a0:dc:1a:5b:fa:0b:cf:ac:f7:
11:47:0d:9f:31:fd:eb:d0:d0:4d:90:ce:76:e4:14:
92:0f:f9:6f:24:cd:52:f9:8c:ed:cf:5e:08:0d:7f:
67:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:94:7D:F3:2B:D0:5D:68:79:6E:72:7D:20:73:EC:5B:69:D5:43:84
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:a2:8c:ab:7a:d0:b7:55:b9:9a:8c:d2:8a:46:0f:5c:9e:f9:
42:d5:08:4c:c4:70:b9:60:4a:8f:a1:67:56:0c:f8:07:c0:60:
26:ba:ce:7a:af:da:25:a4:22:fd:ca:6f:04:f2:47:44:ac:4a:
5c:99:28:d2:75:11:58:40:7d:50:dc:dd:e4:26:ee:6a:a4:91:
f1:45:81:d4:57:70:d6:c7:65:8a:11:9a:7b:27:be:36:24:64:
b2:0a:18:39:44:7f:1e:ec:94:30:fd:3c:14:ff:19:4e:de:09:
68:cd:04:e6:5e:3c:42:36:27:6f:3e:34:88:b2:09:e8:f2:9c:
39:3e:b3:58:53:d2:2e:59:a9:bb:f4:a2:af:ae:7f:04:8a:54:
21:95:5b:28:2c:7d:a2:bf:cd:89:ec:a4:3b:ba:d1:09:1d:5f:
87:ad:ba:4b:90:b7:d7:85:1f:47:5e:34:21:96:1a:58:6a:79:
42:a3:c3:8f:52:cb:63:d5:fe:a2:d2:22:bc:5a:23:a9:55:d0:
2c:31:48:09:9a:f7:80:dc:e1:11:f0:31:3a:de:30:85:3d:a6:
e6:c7:13:06:7a:dc:4c:07:5d:68:70:af:15:f9:86:01:57:89:
7c:40:6d:ce:10:59:7b:af:45:93:ee:15:b1:27:fd:3e:df:84:
89:cb:29:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ69oqtVNMA/FBJIXdf/7l2gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmYThmYjUzOTlhMjdhNDMwYWU3MjdjNTMyY2QyMjQ5OTll
ODg2NGYwHhcNMjYwNjEyMjEwMDE0WhcNMjYwNjEzMjEwMDE0WjAzMTEwLwYDVQQD
EyhiYzk0N2RmMzJiZDA1ZDY4Nzk2ZTcyN2QyMDczZWM1YjY5ZDU0Mzg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQkyKVdQDNvmtUmTHJUW9woi4HHC
YoTs9gANA+7BXXE8Cw9pYUEOTFYx9DyJ0pJkc4FpeVpp9W91nTYYxV5S888clyGT
mjgKwxW/qJJ/pYhUPZ+AVz6YW05Clvw06lPaJ4AaKvvM/G1jjbihGgt7M25bGic2
Uv4KYNnaoApx+xnzPBl3OcSHuHQH29iKX1G1hZp51L94jkG+9XZJF5RBwAm91kWf
k32U7kouruunVthC7ost/lVjMjd5A2N3RCtjx96hqyxvk9qhYZqI1Ng4zHuTnLP6
oVGg3Bpb+gvPrPcRRw2fMf3r0NBNkM525BSSD/lvJM1S+Yztz14IDX9nTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLyUffMr0F1oeW5yfSBz7Ftp1UOEMB8GA1UdIwQY
MBaAFA+o+1OZonpDCucnxTLNIkmZ6IZPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDZqN1U1bWlla01LNXlmRk1zMGlTWm5vaGs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zODZmODEtYjEzOS00OGFmLWJjZWEt
YTcxZmI0NjM1MDY1LzEvRDZqN1U1bWlla01LNXlmRk1zMGlTWm5vaGs4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8zODZmODEtYjEzOS00OGFmLWJjZWEtYTcxZmI0NjM1MDY1
LzEvRDZqN1U1bWlla01LNXlmRk1zMGlTWm5vaGs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApaKMq3rQ
t1W5mozSikYPXJ75QtUITMRwuWBKj6FnVgz4B8BgJrrOeq/aJaQi/cpvBPJHRKxK
XJko0nURWEB9UNzd5CbuaqSR8UWB1Fdw1sdlihGaeye+NiRksgoYOUR/HuyUMP08
FP8ZTt4JaM0E5l48QjYnbz40iLIJ6PKcOT6zWFPSLlmpu/Sir65/BIpUIZVbKCx9
or/NieykO7rRCR1fh626S5C314UfR140IZYaWGp5QqPDj1LLY9X+otIivFojqVXQ
LDFICZr3gNzhEfAxOt4whT2m5scTBnrcTAddaHCvFfmGAVeJfEBtzhBZe69Fk+4V
sSf9Pt+EicspEA==
-----END CERTIFICATE-----
Generated at Sat Jun 13 06:58:21 2026 by rpki-client