Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
File: sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft (raw, json)
Hash identifier: PwJU1VHYPNkiobXBFu+uY1V4kFu0bMkQROrSLL1G5Ho=
Subject key identifier: C9:7F:36:AD:FF:09:77:AB:A5:F6:5A:86:3C:84:0B:05:D5:A9:89:47
Authority key identifier: B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
Certificate issuer: /CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Certificate serial: 019EBFC8408511FE2CD2757F8341E0511006
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
Manifest number: 0654
Signing time: Sat 13 Jun 2026 07:00:32 +0000
Manifest this update: Sat 13 Jun 2026 07:00:32 +0000
Manifest next update: Sun 14 Jun 2026 07:00:32 +0000
Files and hashes: 1: KfYGsusnHllzc3HN92AAdqUVjQo.roa (hash: gW3c/fjZpWHlQkkjPS1/2ufW3e6QoYfqV4VH4SK5fWk=)
2: sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl (hash: +xR90SkCCTnlTjPqWwps6VjaTMlIMNMms2QXPnAm7lc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 07:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c8:40:85:11:fe:2c:d2:75:7f:83:41:e0:51:10:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Validity
Not Before: Jun 13 07:00:32 2026 GMT
Not After : Jun 14 07:00:32 2026 GMT
Subject: CN=c97f36adff0977aba5f65a863c840b05d5a98947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:96:9e:10:98:fe:49:6b:4e:a1:06:4c:12:42:
ab:5c:7c:2f:f4:ef:31:9b:a2:f1:41:38:ad:90:32:
65:6f:40:4c:19:be:7d:9a:2f:02:64:c0:09:cd:90:
43:e8:1b:c8:29:74:6d:24:35:81:19:8b:0d:d8:dd:
d8:30:df:84:43:86:dc:06:d6:e5:51:48:80:c7:b6:
87:a0:39:80:b6:77:c3:6c:e8:db:1e:09:8d:9c:bd:
23:49:f5:97:3c:50:2f:2c:54:7f:5f:27:52:d7:43:
4a:94:f0:3a:c1:a9:81:68:8d:6e:0c:5a:ee:87:83:
d7:00:4f:66:ec:e3:6a:ca:e2:2c:8f:d8:f4:2e:18:
6f:09:6c:31:39:20:22:d4:bd:eb:7f:90:3b:6b:52:
a8:5e:2d:f3:34:71:d4:76:c2:54:9b:89:5e:31:b5:
73:a4:78:47:7e:95:a3:6a:77:a3:3c:6e:aa:3b:77:
cc:48:22:27:28:7e:6c:b0:a5:1f:9f:eb:38:cb:62:
11:67:14:66:dd:d4:64:ad:d1:60:05:b7:40:d0:82:
0b:97:67:30:6d:e8:41:ac:2f:d2:5f:d5:f3:30:03:
f8:8a:93:c6:5d:4c:0d:b1:d4:57:5e:e3:2b:a8:3a:
e8:3d:10:79:bd:5e:60:5d:b7:1a:f4:52:40:7c:99:
f5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:7F:36:AD:FF:09:77:AB:A5:F6:5A:86:3C:84:0B:05:D5:A9:89:47
X509v3 Authority Key Identifier:
keyid:B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:3d:43:40:43:73:82:bb:60:a8:ff:9c:96:32:6e:6d:e5:47:
ae:54:a8:ba:78:ab:cd:c9:07:e6:70:63:1e:da:39:f9:b3:b4:
39:7a:41:d2:0d:c6:7c:42:0f:5b:8b:31:5f:5e:3c:8d:ee:87:
59:99:12:26:99:3c:23:a9:a6:9f:8f:d9:17:72:14:2c:9a:41:
5a:6f:e5:42:d6:2e:36:f6:5b:f3:2c:f6:0c:f4:39:1c:a7:c0:
25:44:11:10:8f:5b:04:ca:aa:b1:c5:13:a6:4c:c2:ef:83:6b:
9b:d3:1f:33:ca:0d:86:40:3f:2c:65:42:2d:49:95:5f:c1:5d:
93:a1:ba:16:25:9d:8b:f5:96:59:98:cf:95:32:1d:f0:18:5f:
4d:93:61:46:9e:62:c1:49:a8:a0:86:61:4a:d3:b1:51:07:17:
cb:e0:2d:92:2b:b1:a5:1c:3c:bf:d2:c9:38:df:bb:cf:7f:0c:
c1:f2:c4:33:9d:59:b4:ed:12:c5:c8:ed:1e:07:93:4a:fb:e9:
d6:e5:db:bb:88:04:e5:9c:96:75:f7:c2:db:05:54:d7:66:ee:
31:db:ce:0c:67:79:fd:8e:f9:cc:f0:d4:00:5d:47:3d:3c:3a:
4f:2f:7d:16:48:76:ae:9e:6f:fe:fd:e2:da:88:10:23:a4:cd:
77:85:cf:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6/yECFEf4s0nV/g0HgURAGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxMTE1N2M5OGYyNjI3OWZjM2VlZDJkYWIzY2YxMTgzNzJi
ZGJlMWIwHhcNMjYwNjEzMDcwMDMyWhcNMjYwNjE0MDcwMDMyWjAzMTEwLwYDVQQD
EyhjOTdmMzZhZGZmMDk3N2FiYTVmNjVhODYzYzg0MGIwNWQ1YTk4OTQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAupaeEJj+SWtOoQZMEkKrXHwv9O8x
m6LxQTitkDJlb0BMGb59mi8CZMAJzZBD6BvIKXRtJDWBGYsN2N3YMN+EQ4bcBtbl
UUiAx7aHoDmAtnfDbOjbHgmNnL0jSfWXPFAvLFR/XydS10NKlPA6wamBaI1uDFru
h4PXAE9m7ONqyuIsj9j0LhhvCWwxOSAi1L3rf5A7a1KoXi3zNHHUdsJUm4leMbVz
pHhHfpWjanejPG6qO3fMSCInKH5ssKUfn+s4y2IRZxRm3dRkrdFgBbdA0IILl2cw
behBrC/SX9XzMAP4ipPGXUwNsdRXXuMrqDroPRB5vV5gXbca9FJAfJn1WwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMl/Nq3/CXerpfZahjyECwXVqYlHMB8GA1UdIwQY
MBaAFLERV8mPJiefw+7S2rPPEYNyvb4bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1JGWHlZOG1KNV9EN3RMYXM4OFJnM0s5dmhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy81MjFhNzQtZWJjOS00MjY3LWIwNDYt
ZTBhY2FjYzEwZWY1LzEvc1JGWHlZOG1KNV9EN3RMYXM4OFJnM0s5dmhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy81MjFhNzQtZWJjOS00MjY3LWIwNDYtZTBhY2FjYzEwZWY1
LzEvc1JGWHlZOG1KNV9EN3RMYXM4OFJnM0s5dmhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACz1DQENz
grtgqP+cljJubeVHrlSounirzckH5nBjHto5+bO0OXpB0g3GfEIPW4sxX148je6H
WZkSJpk8I6mmn4/ZF3IULJpBWm/lQtYuNvZb8yz2DPQ5HKfAJUQREI9bBMqqscUT
pkzC74Nrm9MfM8oNhkA/LGVCLUmVX8Fdk6G6FiWdi/WWWZjPlTId8BhfTZNhRp5i
wUmooIZhStOxUQcXy+AtkiuxpRw8v9LJON+7z38MwfLEM51ZtO0SxcjtHgeTSvvp
1uXbu4gE5ZyWdffC2wVU12buMdvODGd5/Y75zPDUAF1HPTw6Ty99Fkh2rp5v/v3i
2ogQI6TNd4XPYQ==
-----END CERTIFICATE-----
Generated at Sat Jun 13 15:53:56 2026 by rpki-client