Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft
File: lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft (raw, json)
Hash identifier: 4ujWk61uGkbsHX3fwx4NeIDXaKoKHrS/2AgTRxv75Ps=
Subject key identifier: A6:86:74:5D:24:C3:5E:D4:FB:97:87:03:3E:08:65:F9:1A:44:86:28
Authority key identifier: 94:8D:45:CF:E3:48:2B:8F:61:DA:E0:00:B0:07:A4:67:EC:DD:4E:E6
Certificate issuer: /CN=948d45cfe3482b8f61dae000b007a467ecdd4ee6
Certificate serial: 019EC17F737D3EF324C9FD5A4E61724C9447
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lI1Fz-NIK49h2uAAsAekZ-zdTuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft
Manifest number: 1961
Signing time: Sat 13 Jun 2026 15:00:15 +0000
Manifest this update: Sat 13 Jun 2026 15:00:15 +0000
Manifest next update: Sun 14 Jun 2026 15:00:15 +0000
Files and hashes: 1: ecQlKj5CIp8VLDI4rKO0OH9DeqI.roa (hash: iQJDM30z8fYynMrfjXIbza+TCD7vD5Lcd4NjgJS6pYQ=)
2: lI1Fz-NIK49h2uAAsAekZ-zdTuY.crl (hash: ZZVQcpgavgRyxVKkZ3fq4wmvNKZvftk88JXgsf19B1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lI1Fz-NIK49h2uAAsAekZ-zdTuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 15:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:7f:73:7d:3e:f3:24:c9:fd:5a:4e:61:72:4c:94:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=948d45cfe3482b8f61dae000b007a467ecdd4ee6
Validity
Not Before: Jun 13 15:00:15 2026 GMT
Not After : Jun 14 15:00:15 2026 GMT
Subject: CN=a686745d24c35ed4fb9787033e0865f91a448628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e7:93:ca:f6:3f:b7:8a:60:f7:9c:26:31:68:
8f:9f:18:3c:99:06:af:56:c3:70:f2:8e:7c:a0:d0:
b8:6e:e5:e1:bc:e5:45:9a:ff:d8:e1:97:19:ec:76:
9c:27:c4:8f:77:4b:b6:9a:b9:d1:34:3f:b3:4e:17:
f2:ce:04:f1:3d:bf:b0:12:2a:14:bb:da:a1:ea:1a:
f2:56:50:0f:69:d2:76:27:5a:54:d5:2a:a2:9b:d1:
2a:59:e6:38:b5:7a:17:fb:52:bd:45:62:c8:4d:60:
42:62:2b:84:d7:dd:56:94:d7:a0:a8:c1:b4:f0:c2:
51:ce:9b:e1:a6:3e:e1:8d:5f:8b:cb:b1:be:ef:4b:
6c:45:67:f3:99:f1:6c:15:c4:15:6f:83:a6:1e:bc:
6c:15:ab:e8:06:06:a9:dc:f8:11:6f:d5:37:5c:02:
8e:5e:57:ef:0b:50:ba:bb:2b:d2:21:ac:77:21:7a:
7e:bb:ad:7b:c0:5e:a2:0e:3a:52:da:8d:87:4b:4b:
07:46:ec:4d:aa:e2:6c:4f:09:67:24:33:13:58:ef:
ca:ec:2f:ec:09:46:d1:39:1c:8b:66:6f:56:9e:fe:
53:a5:8f:10:f0:52:f9:e9:27:07:7a:7e:65:2a:1a:
15:6f:82:f1:7b:fb:2f:31:1d:37:6f:03:f5:8b:59:
14:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:86:74:5D:24:C3:5E:D4:FB:97:87:03:3E:08:65:F9:1A:44:86:28
X509v3 Authority Key Identifier:
keyid:94:8D:45:CF:E3:48:2B:8F:61:DA:E0:00:B0:07:A4:67:EC:DD:4E:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lI1Fz-NIK49h2uAAsAekZ-zdTuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:b4:d3:9b:29:94:59:24:37:7b:50:42:10:f3:be:02:8b:06:
c5:63:68:c3:1b:d6:fa:77:64:1c:f7:06:a2:5a:3f:c3:71:f0:
a0:4d:7d:d0:f1:11:90:37:d5:68:29:db:69:03:80:6b:93:19:
e3:85:2b:df:7e:1f:4e:5b:d0:17:3b:2b:5d:ff:6c:3b:35:d5:
ce:c5:da:99:14:2b:1c:4b:51:d7:9d:b1:a4:f0:92:48:e4:43:
33:12:0c:d7:aa:82:24:6d:fd:95:33:fb:ff:97:db:b0:1c:c3:
90:eb:eb:ec:83:93:c3:59:71:82:8a:2d:c8:19:15:55:60:e8:
9b:c2:e5:bd:3d:ba:05:00:cf:79:cd:5d:50:c3:5e:9e:dc:e4:
e7:b6:06:40:02:d0:35:ec:f1:45:58:14:c0:7c:94:34:b3:84:
ef:9c:1e:71:78:06:68:38:ae:a1:c1:6d:10:b1:79:32:86:51:
5a:3c:2c:96:8b:73:bd:5b:60:2a:5a:cc:d1:23:7f:80:4f:00:
98:31:53:7c:26:7c:4c:c2:36:f2:0a:8b:8e:d5:4d:dd:bc:83:
10:01:79:76:d3:3c:a9:14:cb:11:1e:7d:cc:be:03:0a:b9:f8:
a7:d4:11:99:ed:72:2e:50:70:db:ad:81:f2:7b:cc:98:2a:c7:
91:0d:f9:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7Bf3N9PvMkyf1aTmFyTJRHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0OGQ0NWNmZTM0ODJiOGY2MWRhZTAwMGIwMDdhNDY3ZWNk
ZDRlZTYwHhcNMjYwNjEzMTUwMDE1WhcNMjYwNjE0MTUwMDE1WjAzMTEwLwYDVQQD
EyhhNjg2NzQ1ZDI0YzM1ZWQ0ZmI5Nzg3MDMzZTA4NjVmOTFhNDQ4NjI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ueTyvY/t4pg95wmMWiPnxg8mQav
VsNw8o58oNC4buXhvOVFmv/Y4ZcZ7HacJ8SPd0u2mrnRND+zThfyzgTxPb+wEioU
u9qh6hryVlAPadJ2J1pU1Sqim9EqWeY4tXoX+1K9RWLITWBCYiuE191WlNegqMG0
8MJRzpvhpj7hjV+Ly7G+70tsRWfzmfFsFcQVb4OmHrxsFavoBgap3PgRb9U3XAKO
XlfvC1C6uyvSIax3IXp+u617wF6iDjpS2o2HS0sHRuxNquJsTwlnJDMTWO/K7C/s
CUbRORyLZm9Wnv5TpY8Q8FL56ScHen5lKhoVb4Lxe/svMR03bwP1i1kUAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKaGdF0kw17U+5eHAz4IZfkaRIYoMB8GA1UdIwQY
MBaAFJSNRc/jSCuPYdrgALAHpGfs3U7mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEkxRnotTklLNDloMnVBQXNBZWtaLXpkVHVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9mODliMmUtNTNhMy00MTU3LWE5NjAt
NDJkYWZiNGI1MWQyLzEvbEkxRnotTklLNDloMnVBQXNBZWtaLXpkVHVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9mODliMmUtNTNhMy00MTU3LWE5NjAtNDJkYWZiNGI1MWQy
LzEvbEkxRnotTklLNDloMnVBQXNBZWtaLXpkVHVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPbTTmymU
WSQ3e1BCEPO+AosGxWNowxvW+ndkHPcGolo/w3HwoE190PERkDfVaCnbaQOAa5MZ
44Ur334fTlvQFzsrXf9sOzXVzsXamRQrHEtR152xpPCSSORDMxIM16qCJG39lTP7
/5fbsBzDkOvr7IOTw1lxgootyBkVVWDom8LlvT26BQDPec1dUMNentzk57YGQALQ
NezxRVgUwHyUNLOE75wecXgGaDiuocFtELF5MoZRWjwslotzvVtgKlrM0SN/gE8A
mDFTfCZ8TMI28gqLjtVN3byDEAF5dtM8qRTLER59zL4DCrn4p9QRme1yLlBw262B
8nvMmCrHkQ35dw==
-----END CERTIFICATE-----
Generated at Sun Jun 14 01:05:25 2026 by rpki-client