Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: bFDmUqWJ0m4gIYn7jot2LVEbVl0JYEP3/xy3LjUi894=
Subject key identifier: 6C:1F:C2:C9:8E:00:5C:18:AD:D3:52:B5:9B:7E:A9:DC:7E:60:59:95
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 019EBEED1427159A549C9FB5773491D17E9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 0D41
Signing time: Sat 13 Jun 2026 03:01:08 +0000
Manifest this update: Sat 13 Jun 2026 03:01:08 +0000
Manifest next update: Sun 14 Jun 2026 03:01:08 +0000
Files and hashes: 1: 1gk0sLtkOinOBhMkUiRN6708AVA.roa (hash: qx4BeBMu/olO2Xz1c+ij7UE+dLcw4YvlNY6rUOImv/o=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: bXp4BdMi8AY+v1iaV2AegNAJTK/VAZEvRxzhtoU07Zc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:ed:14:27:15:9a:54:9c:9f:b5:77:34:91:d1:7e:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Jun 13 03:01:08 2026 GMT
Not After : Jun 14 03:01:08 2026 GMT
Subject: CN=6c1fc2c98e005c18add352b59b7ea9dc7e605995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ae:0f:46:e4:65:b7:11:a3:91:ff:5c:06:34:
8c:cf:17:9a:5c:54:8f:8e:44:45:c5:cd:d5:e7:d3:
53:a9:43:17:9e:65:36:b0:5f:55:a6:f7:4d:5f:ed:
6c:da:8c:bc:3b:45:89:31:26:67:91:bd:a0:1f:02:
3a:0d:7f:ae:3f:38:1a:59:8c:47:9c:24:be:43:0e:
4d:01:12:28:fb:97:77:83:55:d6:b9:33:75:3c:bf:
a4:fe:dc:e6:54:f5:45:84:68:01:c0:7f:49:43:a3:
8f:dc:05:34:36:53:ab:b3:64:25:37:cf:6f:f1:25:
41:6a:9b:c7:45:11:41:14:f2:17:d0:6c:86:14:06:
02:31:41:e1:cc:ef:47:f1:36:d7:c3:c8:50:27:e1:
cf:1f:a6:c2:4d:46:97:a3:9b:04:61:8f:2b:5c:e8:
33:1c:c2:0a:d6:0a:ca:9d:e3:0e:47:89:50:33:84:
f0:08:50:08:18:b5:47:3c:b9:ee:dc:15:72:df:7a:
76:a3:ac:68:47:09:bc:ae:07:f6:8c:48:0f:5d:90:
87:e0:c7:5e:42:c3:eb:c7:31:76:c0:30:77:9e:c7:
3c:89:dc:0f:2b:6a:f1:3e:36:f5:ef:78:d1:af:b3:
58:42:8e:fd:bd:43:f6:41:e6:9d:58:1a:f0:9b:a9:
e3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:1F:C2:C9:8E:00:5C:18:AD:D3:52:B5:9B:7E:A9:DC:7E:60:59:95
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:d9:89:b8:c7:13:4f:91:de:4b:d0:18:55:8f:ee:84:c7:5c:
f3:09:8c:57:a5:32:8c:a4:69:78:d8:6b:48:7a:79:e8:6e:6d:
56:99:ec:db:a8:d8:e4:b3:58:88:f1:24:4b:0d:f2:d4:67:0e:
94:dd:46:a7:d6:68:94:0c:f2:25:d2:e2:2e:86:18:db:a5:33:
a2:69:3a:b7:d9:41:f3:64:79:b7:34:e8:6a:a3:73:61:e2:ab:
6d:f3:4e:25:80:84:5b:7d:da:78:be:a2:4b:71:0f:6c:d6:01:
f1:c1:05:5c:af:52:97:26:93:e7:fb:ed:a1:8f:9f:07:f8:de:
29:41:35:e8:36:fb:43:1f:82:e1:2b:54:5c:d4:4b:ab:11:cf:
d0:18:18:c8:7c:60:49:c5:7a:58:1f:00:cb:67:ac:cc:92:c5:
3f:96:82:db:83:c1:2d:5c:ba:63:c0:2d:87:d3:f2:1e:66:0e:
18:65:58:e2:7b:1c:ed:b1:b4:50:50:da:a9:ce:0c:2f:32:8e:
bf:30:55:73:59:af:e4:74:ab:1b:fd:ca:ef:81:79:b6:46:e2:
23:37:40:e9:2f:fc:7e:d3:03:98:ab:5d:36:9f:2d:ef:a3:ef:
76:28:f0:ce:68:0a:a2:14:7c:a2:c7:38:a7:cb:0b:ca:f6:90:
e0:ef:22:bf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6+7RQnFZpUnJ+1dzSR0X6eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhZjdmMzJkMzNmNjY0Njc3OWE1MWZiMjMyMDFjNjQ0MmQx
NDUxY2EwHhcNMjYwNjEzMDMwMTA4WhcNMjYwNjE0MDMwMTA4WjAzMTEwLwYDVQQD
Eyg2YzFmYzJjOThlMDA1YzE4YWRkMzUyYjU5YjdlYTlkYzdlNjA1OTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsq4PRuRltxGjkf9cBjSMzxeaXFSP
jkRFxc3V59NTqUMXnmU2sF9VpvdNX+1s2oy8O0WJMSZnkb2gHwI6DX+uPzgaWYxH
nCS+Qw5NARIo+5d3g1XWuTN1PL+k/tzmVPVFhGgBwH9JQ6OP3AU0NlOrs2QlN89v
8SVBapvHRRFBFPIX0GyGFAYCMUHhzO9H8TbXw8hQJ+HPH6bCTUaXo5sEYY8rXOgz
HMIK1grKneMOR4lQM4TwCFAIGLVHPLnu3BVy33p2o6xoRwm8rgf2jEgPXZCH4Mde
QsPrxzF2wDB3nsc8idwPK2rxPjb173jRr7NYQo79vUP2QeadWBrwm6nj1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGwfwsmOAFwYrdNStZt+qdx+YFmVMB8GA1UdIwQY
MBaAFIr38y0z9mRneaUfsjIBxkQtFFHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9hZmZjYmItYzFiMy00NDRhLTg3NmMt
NWI3MmZiOTI3ZDFjLzEvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9hZmZjYmItYzFiMy00NDRhLTg3NmMtNWI3MmZiOTI3ZDFj
LzEvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPtmJuMcT
T5HeS9AYVY/uhMdc8wmMV6UyjKRpeNhrSHp56G5tVpns26jY5LNYiPEkSw3y1GcO
lN1Gp9ZolAzyJdLiLoYY26Uzomk6t9lB82R5tzToaqNzYeKrbfNOJYCEW33aeL6i
S3EPbNYB8cEFXK9SlyaT5/vtoY+fB/jeKUE16Db7Qx+C4StUXNRLqxHP0BgYyHxg
ScV6WB8Ay2eszJLFP5aC24PBLVy6Y8Ath9PyHmYOGGVY4nsc7bG0UFDaqc4MLzKO
vzBVc1mv5HSrG/3K74F5tkbiIzdA6S/8ftMDmKtdNp8t76PvdijwzmgKohR8osc4
p8sLyvaQ4O8ivw==
-----END CERTIFICATE-----
Generated at Sat Jun 13 10:54:35 2026 by rpki-client