Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
File: 8u5baEnIyB9adjWVWIprpoIedns.mft (raw, json)
Hash identifier: Y8hFOcnMLZwrNNbv5zcur0Tg4aeLirqqDAcAwS8YQLc=
Subject key identifier: 4E:15:53:37:7C:A6:DD:F4:90:CF:97:B5:1D:8F:F5:2F:ED:55:D2:19
Authority key identifier: F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
Certificate issuer: /CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Certificate serial: 019EC0A43A12719C1498E8D21627376534CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
Manifest number: 0960
Signing time: Sat 13 Jun 2026 11:00:48 +0000
Manifest this update: Sat 13 Jun 2026 11:00:48 +0000
Manifest next update: Sun 14 Jun 2026 11:00:48 +0000
Files and hashes: 1: 2GTvWzpclUq6kJYm-wsP_GwJPLY.roa (hash: fYmZ9Cu3/ER+umCuIKfV6emnqQD55csuls9mkFBGOE4=)
2: 5oF3V0rjeL1pJ5lHiFSxxXlRiqk.roa (hash: MY4vTmIm6iMkCfXRGy7HULVmNJlJMi1dSNNh0tuV34c=)
3: 69uCRF0gJPayfWhDtOPkNyE4RrA.roa (hash: zk+4O7C/kwm21uLUwHJKUDfYHP0XyuVnc9Gjvk0nfWs=)
4: 8u5baEnIyB9adjWVWIprpoIedns.crl (hash: M3JUg4XoClS82fpyAm3hctmrRFLGXWigGWpg3aLDEHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:a4:3a:12:71:9c:14:98:e8:d2:16:27:37:65:34:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Validity
Not Before: Jun 13 11:00:48 2026 GMT
Not After : Jun 14 11:00:48 2026 GMT
Subject: CN=4e1553377ca6ddf490cf97b51d8ff52fed55d219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a3:08:b5:43:e1:6a:a2:be:04:06:bc:69:74:
3f:0c:7d:83:df:c4:38:c0:30:22:ef:58:02:e8:b0:
a0:d1:8c:55:eb:68:ba:c9:c1:40:fc:d0:5f:ac:a7:
29:1b:a2:fd:93:bd:21:10:bf:02:d7:50:19:bb:84:
6d:74:95:c8:e2:4a:c7:d6:f0:79:e7:6a:20:8c:c0:
eb:07:f0:97:4f:a0:82:d7:7f:17:8d:64:4c:9b:3d:
77:09:aa:93:38:78:7d:f7:a6:8f:db:50:eb:51:11:
25:04:37:bd:ab:b5:36:32:5b:83:65:04:46:65:df:
0b:01:8d:13:42:c9:90:90:f4:c1:cb:62:4f:6a:e8:
95:03:96:c4:01:b7:b5:ea:42:56:b6:32:5a:9b:46:
97:a6:5c:c3:8a:cc:74:f0:af:c3:c2:98:d5:ff:c6:
f2:f9:c0:16:ad:eb:c8:4b:24:39:16:49:0b:4b:4e:
40:b1:91:1f:98:e9:22:56:54:70:4d:eb:12:b3:83:
60:9b:97:2a:e6:7e:c6:34:22:11:a8:f2:73:52:6d:
fb:95:67:f5:59:6d:a8:bd:0d:ef:d8:14:12:fc:5e:
a3:34:92:cf:7b:6c:24:ed:b1:0c:d4:38:63:f9:b9:
a8:11:5a:56:b1:3b:0f:03:6b:d9:d1:a1:ee:6d:6f:
15:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:15:53:37:7C:A6:DD:F4:90:CF:97:B5:1D:8F:F5:2F:ED:55:D2:19
X509v3 Authority Key Identifier:
keyid:F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:15:46:e0:8f:bd:b8:a0:57:64:73:2e:a1:0e:58:42:08:2e:
b0:79:26:3f:ff:24:4a:c9:82:b6:f2:75:30:b9:86:76:bf:63:
39:a2:6c:85:df:34:69:d6:99:1d:31:d1:87:83:44:b3:a9:d6:
47:60:bb:26:18:15:e8:aa:a0:1d:02:23:0d:d4:99:9f:c8:2a:
22:ad:46:55:11:cc:84:c6:4b:53:5b:23:d0:5c:0b:95:7b:48:
0d:fd:92:76:da:3f:83:c4:6c:09:fc:49:be:ec:5d:1c:f3:33:
61:79:f4:c7:62:83:95:a3:1f:d9:3d:cc:b2:87:45:68:8b:e2:
8c:79:f1:18:82:ee:8d:6e:65:fa:9d:ef:7b:98:c8:ed:1b:4a:
c3:73:a3:e3:6b:2c:38:a2:56:b1:43:04:07:d4:6a:26:11:a5:
19:48:38:2a:22:4b:39:1c:07:d2:78:38:7d:a1:b0:b5:36:9f:
49:ec:b3:6b:04:25:53:11:48:f9:32:dd:cd:a3:9f:d7:49:25:
32:33:7d:4c:b3:17:eb:83:54:16:8b:4c:7b:0c:7c:19:05:cd:
87:66:22:14:9e:2d:f9:b8:28:b8:b9:b2:80:f1:e5:9f:f7:ec:
7c:e3:a8:81:35:f3:fe:9e:96:30:bf:29:32:91:dd:cb:da:91:
2a:6f:c9:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7ApDoScZwUmOjSFic3ZTTLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyZWU1YjY4NDljOGM4MWY1YTc2MzU5NTU4OGE2YmE2ODIx
ZTc2N2IwHhcNMjYwNjEzMTEwMDQ4WhcNMjYwNjE0MTEwMDQ4WjAzMTEwLwYDVQQD
Eyg0ZTE1NTMzNzdjYTZkZGY0OTBjZjk3YjUxZDhmZjUyZmVkNTVkMjE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqMItUPhaqK+BAa8aXQ/DH2D38Q4
wDAi71gC6LCg0YxV62i6ycFA/NBfrKcpG6L9k70hEL8C11AZu4RtdJXI4krH1vB5
52ogjMDrB/CXT6CC138XjWRMmz13CaqTOHh996aP21DrURElBDe9q7U2MluDZQRG
Zd8LAY0TQsmQkPTBy2JPauiVA5bEAbe16kJWtjJam0aXplzDisx08K/DwpjV/8by
+cAWrevISyQ5FkkLS05AsZEfmOkiVlRwTesSs4Ngm5cq5n7GNCIRqPJzUm37lWf1
WW2ovQ3v2BQS/F6jNJLPe2wk7bEM1Dhj+bmoEVpWsTsPA2vZ0aHubW8VmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE4VUzd8pt30kM+XtR2P9S/tVdIZMB8GA1UdIwQY
MBaAFPLuW2hJyMgfWnY1lViKa6aCHnZ7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHU1YmFFbkl5QjlhZGpXVldJcHJwb0llZG5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8wMDJhODgtM2E4NS00NzZmLWI0NTIt
NjBhMDM5ZGQxYmNhLzEvOHU1YmFFbkl5QjlhZGpXVldJcHJwb0llZG5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS8wMDJhODgtM2E4NS00NzZmLWI0NTItNjBhMDM5ZGQxYmNh
LzEvOHU1YmFFbkl5QjlhZGpXVldJcHJwb0llZG5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfRVG4I+9
uKBXZHMuoQ5YQggusHkmP/8kSsmCtvJ1MLmGdr9jOaJshd80adaZHTHRh4NEs6nW
R2C7JhgV6KqgHQIjDdSZn8gqIq1GVRHMhMZLU1sj0FwLlXtIDf2Sdto/g8RsCfxJ
vuxdHPMzYXn0x2KDlaMf2T3MsodFaIvijHnxGILujW5l+p3ve5jI7RtKw3Oj42ss
OKJWsUMEB9RqJhGlGUg4KiJLORwH0ng4faGwtTafSeyzawQlUxFI+TLdzaOf10kl
MjN9TLMX64NUFotMewx8GQXNh2YiFJ4t+bgouLmygPHln/fsfOOogTXz/p6WML8p
MpHdy9qRKm/J8A==
-----END CERTIFICATE-----
Generated at Sat Jun 13 14:04:22 2026 by rpki-client