Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
File: i5HgoQS1s93x9dCOessreeDVZvk.mft (raw, json)
Hash identifier: ELqY4Zj7jVZMIMR2KivhdxQnxLZgtigyEKT5aaFClbU=
Subject key identifier: 80:D1:81:7C:71:E5:6F:AA:9F:E3:F6:42:4F:93:86:CF:2B:41:8A:85
Authority key identifier: 8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
Certificate issuer: /CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Certificate serial: 019EBDD9D9E77858BD6B510E6DC113E7F8FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
Manifest number: 1368
Signing time: Fri 12 Jun 2026 22:00:31 +0000
Manifest this update: Fri 12 Jun 2026 22:00:31 +0000
Manifest next update: Sat 13 Jun 2026 22:00:31 +0000
Files and hashes: 1: FLemcIiElnlySDQ8j4MbhOGXKNY.roa (hash: +hFqqy7o9aLIrhPQ+Vl9O2F3JN7zKRwx0wl2/DYV2As=)
2: i5HgoQS1s93x9dCOessreeDVZvk.crl (hash: Ur1KS+p/7SnSZ4gLGKvQJPQKFynMRSD/Uh9K+kp4tho=)
3: zL0BeH3r9AkOxhITJlCW5Ja8LGo.roa (hash: oLz5pL1eqyWTu6AOPoAU4vUbkw5hVQwpWZe1I3Dg04k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bd:d9:d9:e7:78:58:bd:6b:51:0e:6d:c1:13:e7:f8:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Validity
Not Before: Jun 12 22:00:31 2026 GMT
Not After : Jun 13 22:00:31 2026 GMT
Subject: CN=80d1817c71e56faa9fe3f6424f9386cf2b418a85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9f:06:45:02:25:82:9e:61:e8:66:b6:96:f5:
d2:0b:0f:93:9d:ab:fe:d6:f6:4e:ac:74:91:68:38:
6e:0b:16:63:29:6c:f1:24:54:b1:24:b2:07:a9:66:
c8:e7:82:93:05:b3:f4:ab:54:08:53:1f:1b:30:0e:
59:15:ce:11:74:a2:49:5a:52:44:35:3a:fa:9c:85:
9f:ed:19:c7:01:eb:11:a8:4d:8f:3e:28:d0:93:9f:
e8:26:2a:1d:5d:01:ef:7b:13:c0:85:ef:62:c6:91:
f3:34:69:07:93:e1:94:b0:4a:52:0d:3f:04:a3:52:
e2:dd:33:41:7a:a9:0e:d9:ee:a2:1e:9e:5e:a1:b1:
3c:a4:2f:9f:22:99:2d:e1:4d:82:bd:4a:79:8a:ff:
60:3d:4a:5c:68:ec:c3:fa:db:de:f2:52:45:34:f9:
11:f3:51:ac:d0:a0:12:7f:ac:6c:c0:1f:1c:88:93:
45:1d:33:4a:32:43:96:62:94:2e:08:2d:4e:ab:37:
4c:2d:ba:01:f4:d5:f5:58:d7:01:db:e7:70:38:6f:
08:2e:fe:6d:94:b1:c7:96:91:24:0b:28:3b:6e:ed:
58:59:d8:f9:94:00:49:ed:a5:4e:b8:1d:9e:ed:bc:
ae:b5:43:4e:47:55:cf:68:d8:e0:55:ee:98:5b:b4:
4e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:D1:81:7C:71:E5:6F:AA:9F:E3:F6:42:4F:93:86:CF:2B:41:8A:85
X509v3 Authority Key Identifier:
keyid:8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:6a:47:77:d7:da:f7:5b:f4:b7:ee:2c:d0:5f:58:87:c7:e5:
19:7e:25:de:cd:c1:b1:27:e9:24:94:65:71:f8:f3:9b:d3:dc:
5b:80:16:c8:ba:25:35:a8:55:00:28:ab:e3:c9:d9:34:97:8c:
d3:7f:42:51:49:ea:f2:67:7f:0a:f9:46:ce:45:96:e5:5c:d2:
20:66:f1:41:60:9d:43:95:1a:f8:3c:81:a7:cf:e0:15:7e:ad:
68:e3:df:31:26:02:68:a0:bf:30:51:6f:47:26:96:33:d6:6f:
f7:eb:dc:52:f7:07:99:e6:22:9e:f8:25:83:5a:9b:ad:45:46:
fe:a5:38:eb:69:59:26:d9:8a:93:65:9d:a3:47:db:fb:ac:15:
fd:45:e9:a5:4c:cf:06:f9:dc:bb:44:1c:43:7a:e8:1d:a2:64:
fa:a7:81:20:10:65:1e:e7:3c:0d:42:70:01:0d:ce:fb:bf:c9:
34:ed:c2:a7:da:9a:65:8b:a6:2f:df:6d:4d:a4:17:ef:3a:09:
70:34:93:69:22:b2:76:a5:b6:53:65:a2:dc:b2:a0:a4:b6:88:
f1:30:c7:71:8c:a7:f0:5b:90:68:07:c6:54:58:df:84:f8:68:
2d:86:55:a7:ba:52:f6:43:6d:15:75:96:d5:de:0b:27:78:b2:
c8:a6:29:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ692dnneFi9a1EObcET5/j9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiOTFlMGExMDRiNWIzZGRmMWY1ZDA4ZTdhY2IyYjc5ZTBk
NTY2ZjkwHhcNMjYwNjEyMjIwMDMxWhcNMjYwNjEzMjIwMDMxWjAzMTEwLwYDVQQD
Eyg4MGQxODE3YzcxZTU2ZmFhOWZlM2Y2NDI0ZjkzODZjZjJiNDE4YTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu58GRQIlgp5h6Ga2lvXSCw+Tnav+
1vZOrHSRaDhuCxZjKWzxJFSxJLIHqWbI54KTBbP0q1QIUx8bMA5ZFc4RdKJJWlJE
NTr6nIWf7RnHAesRqE2PPijQk5/oJiodXQHvexPAhe9ixpHzNGkHk+GUsEpSDT8E
o1Li3TNBeqkO2e6iHp5eobE8pC+fIpkt4U2CvUp5iv9gPUpcaOzD+tve8lJFNPkR
81Gs0KASf6xswB8ciJNFHTNKMkOWYpQuCC1OqzdMLboB9NX1WNcB2+dwOG8ILv5t
lLHHlpEkCyg7bu1YWdj5lABJ7aVOuB2e7byutUNOR1XPaNjgVe6YW7ROmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIDRgXxx5W+qn+P2Qk+Ths8rQYqFMB8GA1UdIwQY
MBaAFIuR4KEEtbPd8fXQjnrLK3ng1Wb5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9kZmJmYzQtY2MzZi00NzdjLThkNzYt
YThjNTc2MjI0YmEyLzEvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9kZmJmYzQtY2MzZi00NzdjLThkNzYtYThjNTc2MjI0YmEy
LzEvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg2pHd9fa
91v0t+4s0F9Yh8flGX4l3s3BsSfpJJRlcfjzm9PcW4AWyLolNahVACir48nZNJeM
039CUUnq8md/CvlGzkWW5VzSIGbxQWCdQ5Ua+DyBp8/gFX6taOPfMSYCaKC/MFFv
RyaWM9Zv9+vcUvcHmeYinvglg1qbrUVG/qU462lZJtmKk2Wdo0fb+6wV/UXppUzP
Bvncu0QcQ3roHaJk+qeBIBBlHuc8DUJwAQ3O+7/JNO3Cp9qaZYumL99tTaQX7zoJ
cDSTaSKydqW2U2Wi3LKgpLaI8TDHcYyn8FuQaAfGVFjfhPhoLYZVp7pS9kNtFXWW
1d4LJ3iyyKYpjw==
-----END CERTIFICATE-----
Generated at Sat Jun 13 07:16:15 2026 by rpki-client