Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
File: 37H24AFTpJGGEbFLawP2gS7YikM.mft (raw, json)
Hash identifier: z6IUC0on3C9O6nMX85EVHlnSBunqlt3XYwp6VYC+LE4=
Subject key identifier: AA:EC:4E:F7:22:DD:42:AD:15:81:A2:C5:34:89:2B:E5:42:47:99:90
Authority key identifier: DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
Certificate issuer: /CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Certificate serial: 019EBFFF94FA361022E176E731A1504C2DF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
Manifest number: 1267
Signing time: Sat 13 Jun 2026 08:00:58 +0000
Manifest this update: Sat 13 Jun 2026 08:00:58 +0000
Manifest next update: Sun 14 Jun 2026 08:00:58 +0000
Files and hashes: 1: 37H24AFTpJGGEbFLawP2gS7YikM.crl (hash: 7gOYD4R41e920wDcz8VpLHVgEsCFH48NTONGlsOBeOM=)
2: FhwS6oj1IU2dmxLLYCr_Dh9nNPg.roa (hash: gw4ySzsoHkhiHwNr6SgUSv5IRZbxDqYLsZYznQCEK64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:ff:94:fa:36:10:22:e1:76:e7:31:a1:50:4c:2d:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Validity
Not Before: Jun 13 08:00:58 2026 GMT
Not After : Jun 14 08:00:58 2026 GMT
Subject: CN=aaec4ef722dd42ad1581a2c534892be542479990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:7c:36:ba:5c:fa:06:3b:52:ee:32:c0:92:e6:
b6:95:30:5a:23:80:9f:d0:4f:cc:10:73:92:7b:29:
20:2b:35:10:b2:63:9f:97:c5:24:4e:3f:96:9b:90:
0b:5b:0d:2e:0a:ce:ed:d6:3a:87:30:e7:e6:1a:99:
d4:e5:09:9b:97:1f:d6:4b:d6:c7:80:8c:39:f7:00:
cd:db:70:33:d4:0e:40:d6:08:da:3b:7b:f6:fb:dc:
b5:ff:59:88:31:3b:86:15:eb:52:f8:e1:fd:e2:62:
07:97:ed:3a:e3:06:4e:5f:b8:d7:35:64:f2:cc:ef:
d8:8e:28:d8:d1:14:df:92:32:1b:f3:2a:86:9a:10:
5c:1e:da:6b:97:3d:d5:81:2f:af:7a:90:a6:8f:74:
5d:b6:46:bf:d0:23:00:c7:88:b6:9b:75:a9:91:a3:
fb:dc:45:15:87:32:49:0d:73:02:ff:c4:94:52:3b:
eb:ef:97:6e:f9:c9:f1:40:15:81:4f:66:02:6a:7a:
b0:d6:27:2d:bd:1b:4b:a9:d6:fa:81:1e:ec:6e:50:
f0:b6:9f:96:6c:91:e2:6e:89:c5:14:ee:f3:6b:e7:
cd:6f:f6:bf:5d:07:a0:2c:0f:88:ba:df:ec:b2:c1:
7c:26:24:15:1f:03:cc:0e:21:6a:af:00:28:87:f2:
17:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:EC:4E:F7:22:DD:42:AD:15:81:A2:C5:34:89:2B:E5:42:47:99:90
X509v3 Authority Key Identifier:
keyid:DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:af:2d:4d:ef:62:56:75:ee:16:c1:c7:d8:e8:74:7f:da:61:
e2:ea:2d:d0:ae:f9:64:71:0c:44:46:21:4f:3d:f4:e9:0e:58:
9f:65:fc:2b:a9:34:b0:f9:e3:1d:fc:7b:01:de:cb:be:2f:44:
97:1e:6e:79:6a:03:54:66:fd:1f:e3:ae:7b:28:da:96:37:89:
23:52:ac:4b:91:e2:bc:06:8f:62:7d:aa:bb:ae:ac:7f:92:b1:
96:e9:9d:32:ae:07:59:94:11:f3:9a:78:fd:2e:81:32:d6:f3:
b4:3a:ed:6a:53:e8:d9:26:4e:33:3c:52:c5:fe:b1:54:70:08:
bf:59:26:9e:f6:e2:31:3d:64:a7:a0:ab:97:67:20:c6:44:a8:
21:86:08:10:fc:01:87:de:2a:3f:d4:99:a6:99:67:bf:95:b2:
af:5d:67:12:b1:7a:66:09:02:fa:f8:3a:aa:c2:97:ea:77:1d:
0d:9d:89:06:be:d2:1b:a2:bf:9d:f6:61:3d:6d:ba:f0:62:a6:
f4:31:cd:f0:20:ab:21:8e:aa:5e:b7:a9:91:81:e5:9e:82:57:
66:9e:cf:e1:60:c7:f0:37:f5:a9:ac:44:1e:e9:d1:62:b4:c8:
7c:77:4f:9b:3f:d3:3f:48:d4:99:c1:d2:98:f0:32:14:49:38:
32:58:5d:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6//5T6NhAi4XbnMaFQTC3xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmYjFmNmUwMDE1M2E0OTE4NjExYjE0YjZiMDNmNjgxMmVk
ODhhNDMwHhcNMjYwNjEzMDgwMDU4WhcNMjYwNjE0MDgwMDU4WjAzMTEwLwYDVQQD
EyhhYWVjNGVmNzIyZGQ0MmFkMTU4MWEyYzUzNDg5MmJlNTQyNDc5OTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Hw2ulz6BjtS7jLAkua2lTBaI4Cf
0E/MEHOSeykgKzUQsmOfl8UkTj+Wm5ALWw0uCs7t1jqHMOfmGpnU5Qmblx/WS9bH
gIw59wDN23Az1A5A1gjaO3v2+9y1/1mIMTuGFetS+OH94mIHl+064wZOX7jXNWTy
zO/YjijY0RTfkjIb8yqGmhBcHtprlz3VgS+vepCmj3Rdtka/0CMAx4i2m3WpkaP7
3EUVhzJJDXMC/8SUUjvr75du+cnxQBWBT2YCanqw1ictvRtLqdb6gR7sblDwtp+W
bJHibonFFO7za+fNb/a/XQegLA+Iut/sssF8JiQVHwPMDiFqrwAoh/IXIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKrsTvci3UKtFYGixTSJK+VCR5mQMB8GA1UdIwQY
MBaAFN+x9uABU6SRhhGxS2sD9oEu2IpDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMzdIMjRBRlRwSkdHRWJGTGF3UDJnUzdZaWtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS81Mzc5ZTUtM2Q4NS00MWIxLTlkNzEt
ODEwNjI3ZmIyNjcxLzEvMzdIMjRBRlRwSkdHRWJGTGF3UDJnUzdZaWtNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS81Mzc5ZTUtM2Q4NS00MWIxLTlkNzEtODEwNjI3ZmIyNjcx
LzEvMzdIMjRBRlRwSkdHRWJGTGF3UDJnUzdZaWtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAla8tTe9i
VnXuFsHH2Oh0f9ph4uot0K75ZHEMREYhTz306Q5Yn2X8K6k0sPnjHfx7Ad7Lvi9E
lx5ueWoDVGb9H+OueyjaljeJI1KsS5HivAaPYn2qu66sf5KxlumdMq4HWZQR85p4
/S6BMtbztDrtalPo2SZOMzxSxf6xVHAIv1kmnvbiMT1kp6Crl2cgxkSoIYYIEPwB
h94qP9SZpplnv5Wyr11nErF6ZgkC+vg6qsKX6ncdDZ2JBr7SG6K/nfZhPW268GKm
9DHN8CCrIY6qXrepkYHlnoJXZp7P4WDH8Df1qaxEHunRYrTIfHdPmz/TP0jUmcHS
mPAyFEk4Mlhdpw==
-----END CERTIFICATE-----
Generated at Sat Jun 13 16:28:53 2026 by rpki-client