Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
File: RWF9LghjWN2nvbDcRmyhyG7U_so.mft (raw, json)
Hash identifier: yCuTzdvAafqRTa6j+S14yPn6RO2xpt4fExqj25Pr+eE=
Subject key identifier: 57:7E:EE:18:E0:3F:71:37:5E:41:CF:B0:DB:1E:21:37:F8:60:D6:2B
Authority key identifier: 45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA
Certificate issuer: /CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca
Certificate serial: 019EC1EE16E1FCD0480196E170DB706BB418
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
Manifest number: 18EF
Signing time: Sat 13 Jun 2026 17:01:06 +0000
Manifest this update: Sat 13 Jun 2026 17:01:06 +0000
Manifest next update: Sun 14 Jun 2026 17:01:06 +0000
Files and hashes: 1: 7WMHMRqYOCVJJOdVZn2toCGJ2Gg.roa (hash: u4kYKOpJoWTw0MlXSHwcNaxRXss2R6FxZn1Z49E09Go=)
2: RWF9LghjWN2nvbDcRmyhyG7U_so.crl (hash: Aeh5l/YHA+xiff9+9CHLhN1fimnGC5fMnaQ3w4U9BDY=)
3: Y9TiWW63huz2Y3RHyUrV0t01KvA.roa (hash: rNdERlf12PuGe5Ze8mFCZtIt+e3TVhdioA/m3kjwSCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:16:e1:fc:d0:48:01:96:e1:70:db:70:6b:b4:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca
Validity
Not Before: Jun 13 17:01:06 2026 GMT
Not After : Jun 14 17:01:06 2026 GMT
Subject: CN=577eee18e03f71375e41cfb0db1e2137f860d62b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:be:f8:10:51:ed:67:cc:5e:4a:47:4f:c5:30:
1c:98:82:66:9f:0c:17:f5:03:65:8e:e5:a0:bf:fa:
04:5b:29:12:31:c8:9e:a8:8a:bd:b8:91:d7:bf:39:
19:2d:70:e3:de:5e:7b:ec:47:3c:0f:fa:73:9e:d3:
99:76:3d:26:7a:e5:2a:37:4e:09:cd:bf:65:37:37:
f5:20:a6:d0:f9:17:8e:58:89:ee:c1:a5:41:db:b6:
0d:71:0e:8e:c0:7e:7f:24:26:59:41:1d:ac:c5:aa:
28:d8:81:01:8d:6e:de:a0:cc:70:65:a5:89:59:a4:
92:3f:73:d7:c0:83:af:b4:ee:40:c8:99:ba:c3:da:
40:2e:43:8a:d4:31:6e:d8:62:21:14:c8:7c:3f:1b:
d5:88:e9:e7:88:22:89:46:94:3b:8d:70:d4:71:00:
98:53:36:6c:4d:93:7d:a5:20:46:a6:8e:3c:eb:15:
3d:f0:9a:43:b0:21:e3:1f:89:a2:a2:3f:1c:9a:0e:
8d:f6:0b:50:58:5c:84:d2:91:97:90:88:84:f2:4f:
7c:36:66:dc:b2:38:47:ee:15:ee:a2:61:7d:b4:f7:
39:53:90:0f:c5:3b:a8:82:f5:f5:c8:d6:ac:25:21:
71:2a:bb:1f:f7:f8:d7:26:c7:46:d4:12:b8:29:3c:
a8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:7E:EE:18:E0:3F:71:37:5E:41:CF:B0:DB:1E:21:37:F8:60:D6:2B
X509v3 Authority Key Identifier:
keyid:45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:50:96:6e:aa:ef:a6:99:ca:11:42:df:5d:43:af:93:9b:b5:
a8:9b:0a:0a:62:87:c7:fd:09:c9:cd:10:c3:85:b3:7f:6a:3f:
9f:56:7e:fa:c6:a2:44:c8:e5:e0:b2:aa:3f:c9:18:53:37:7d:
81:a8:fb:99:3b:df:29:16:2c:bb:ae:48:85:be:6a:e5:c6:d5:
a8:eb:49:48:db:93:71:cc:d0:66:52:32:28:71:99:29:7d:70:
f9:b1:e4:04:8d:9b:a1:f4:18:17:dd:bb:a9:e0:a3:4a:82:e2:
9e:7b:ee:f0:ee:73:c2:d1:05:7a:f4:fd:6b:be:1f:48:ea:40:
1f:c6:fa:c7:3d:f3:d0:a5:0b:31:70:d7:5c:ef:a1:2f:b9:83:
d4:28:7d:55:be:df:8c:09:bb:67:30:41:c7:59:56:7c:44:c4:
2a:05:27:0e:23:3e:db:f4:0b:b3:46:d3:b1:b7:39:94:bd:c4:
7f:ea:11:bb:bb:a6:87:2e:35:38:c4:4a:44:91:0b:9c:4d:b2:
d0:9d:1c:d4:c9:9c:b4:32:7a:ae:f4:a6:e8:1a:bf:f9:5b:23:
e2:9c:49:74:26:9d:85:c7:1c:46:80:13:7e:e5:80:d8:4e:06:
49:a8:4b:2b:fc:11:de:f3:b7:ef:69:ab:22:28:ff:cc:9c:b8:
57:e9:31:03
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7B7hbh/NBIAZbhcNtwa7QYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ1NjE3ZDJlMDg2MzU4ZGRhN2JkYjBkYzQ2NmNhMWM4NmVk
NGZlY2EwHhcNMjYwNjEzMTcwMTA2WhcNMjYwNjE0MTcwMTA2WjAzMTEwLwYDVQQD
Eyg1NzdlZWUxOGUwM2Y3MTM3NWU0MWNmYjBkYjFlMjEzN2Y4NjBkNjJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4r74EFHtZ8xeSkdPxTAcmIJmnwwX
9QNljuWgv/oEWykSMcieqIq9uJHXvzkZLXDj3l577Ec8D/pzntOZdj0meuUqN04J
zb9lNzf1IKbQ+ReOWInuwaVB27YNcQ6OwH5/JCZZQR2sxaoo2IEBjW7eoMxwZaWJ
WaSSP3PXwIOvtO5AyJm6w9pALkOK1DFu2GIhFMh8PxvViOnniCKJRpQ7jXDUcQCY
UzZsTZN9pSBGpo486xU98JpDsCHjH4mioj8cmg6N9gtQWFyE0pGXkIiE8k98Nmbc
sjhH7hXuomF9tPc5U5APxTuogvX1yNasJSFxKrsf9/jXJsdG1BK4KTyojQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFd+7hjgP3E3XkHPsNseITf4YNYrMB8GA1UdIwQY
MBaAFEVhfS4IY1jdp72w3EZsochu1P7KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUldGOUxnaGpXTjJudmJEY1JteWh5RzdVX3NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9kODFiNTktYzA1YS00OGZlLWI1YjEt
MTU4OTI3MzM3Njg5LzEvUldGOUxnaGpXTjJudmJEY1JteWh5RzdVX3NvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9kODFiNTktYzA1YS00OGZlLWI1YjEtMTU4OTI3MzM3Njg5
LzEvUldGOUxnaGpXTjJudmJEY1JteWh5RzdVX3NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABVCWbqrv
ppnKEULfXUOvk5u1qJsKCmKHx/0Jyc0Qw4Wzf2o/n1Z++saiRMjl4LKqP8kYUzd9
gaj7mTvfKRYsu65Ihb5q5cbVqOtJSNuTcczQZlIyKHGZKX1w+bHkBI2bofQYF927
qeCjSoLinnvu8O5zwtEFevT9a74fSOpAH8b6xz3z0KULMXDXXO+hL7mD1Ch9Vb7f
jAm7ZzBBx1lWfETEKgUnDiM+2/QLs0bTsbc5lL3Ef+oRu7umhy41OMRKRJELnE2y
0J0c1MmctDJ6rvSm6Bq/+Vsj4pxJdCadhcccRoATfuWA2E4GSahLK/wR3vO372mr
Iij/zJy4V+kxAw==
-----END CERTIFICATE-----
Generated at Sun Jun 14 04:02:06 2026 by rpki-client