Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.mft
File: 582m42RtyToNLUKV0esJR2xmvKY.mft (raw, json)
Hash identifier: VVax2Mi393juqbhzlm6XltS/kaPTFNxwLvd8/n6OOoU=
Subject key identifier: 9D:12:45:7C:18:AD:DF:56:8E:34:5E:42:D5:0D:6E:80:CC:6F:27:0A
Authority key identifier: E7:CD:A6:E3:64:6D:C9:3A:0D:2D:42:95:D1:EB:09:47:6C:66:BC:A6
Certificate issuer: /CN=e7cda6e3646dc93a0d2d4295d1eb09476c66bca6
Certificate serial: 019EC1EDC4A41612FB7EBB63B52D5D8C5285
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/582m42RtyToNLUKV0esJR2xmvKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.mft
Manifest number: 0682
Signing time: Sat 13 Jun 2026 17:00:45 +0000
Manifest this update: Sat 13 Jun 2026 17:00:45 +0000
Manifest next update: Sun 14 Jun 2026 17:00:45 +0000
Files and hashes: 1: 582m42RtyToNLUKV0esJR2xmvKY.crl (hash: JaLQQqXRChFUfMuglcqq0uBkJRsWkZssTg5bFtTGfSA=)
2: zM4gg4epclePPLRTJtVaIJWeepc.asa (hash: MRTLDlocXHNiWSSlm+nZxDJcnI87lYWJ5A0tSmJ5h6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/582m42RtyToNLUKV0esJR2xmvKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ed:c4:a4:16:12:fb:7e:bb:63:b5:2d:5d:8c:52:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cda6e3646dc93a0d2d4295d1eb09476c66bca6
Validity
Not Before: Jun 13 17:00:45 2026 GMT
Not After : Jun 14 17:00:45 2026 GMT
Subject: CN=9d12457c18addf568e345e42d50d6e80cc6f270a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7b:27:06:98:ba:c8:37:af:e9:31:69:71:c4:
86:48:1a:2e:81:98:f1:1a:b7:47:a2:0c:00:9f:04:
16:49:1b:6d:f7:b4:20:a7:ae:11:8d:61:78:d6:69:
6d:42:ee:84:66:5b:d6:a5:94:c4:ae:bb:ca:ab:f7:
73:a5:5b:b4:69:c4:6c:b2:a8:04:86:ff:dc:d7:48:
0e:74:c0:d5:44:29:29:8a:97:91:1d:df:c0:b7:21:
75:bb:90:84:d0:c0:3b:f9:d2:6f:e3:d1:7f:b3:aa:
89:41:d3:ed:94:23:35:39:ff:ce:8d:df:db:d0:84:
54:35:f4:92:c5:86:8a:03:81:3a:a8:40:e7:e6:5a:
2a:32:37:5f:23:7b:fc:10:bf:bc:93:1d:d2:98:8e:
c5:d8:34:c0:3b:0e:23:7e:73:29:cd:83:bf:a5:78:
2d:70:1d:b5:af:0f:cc:77:ad:bc:5d:5a:6f:55:7b:
a5:79:ac:6a:f7:be:eb:bc:15:24:10:5b:c4:7c:70:
ed:ff:35:4d:b3:cb:55:18:4b:2e:7d:9f:51:10:89:
bd:35:c8:39:6e:24:0d:ff:5e:d4:29:9b:da:5d:96:
ad:08:16:ac:b1:05:71:d9:e4:b9:c5:a5:c2:83:6f:
6f:24:5f:33:fd:27:ae:b9:a4:98:b9:ec:bd:a5:85:
2d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:12:45:7C:18:AD:DF:56:8E:34:5E:42:D5:0D:6E:80:CC:6F:27:0A
X509v3 Authority Key Identifier:
keyid:E7:CD:A6:E3:64:6D:C9:3A:0D:2D:42:95:D1:EB:09:47:6C:66:BC:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/582m42RtyToNLUKV0esJR2xmvKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:d8:4f:55:32:57:d5:27:a4:0b:f5:3c:df:96:55:2e:24:83:
92:5f:6d:db:39:a4:96:10:b2:85:75:6c:50:ba:5e:1e:4a:2e:
53:28:33:2b:45:04:03:c8:9f:6f:68:38:34:15:68:b0:b0:f6:
0e:ff:45:05:72:53:d9:e0:06:76:94:8d:02:be:a8:20:7c:54:
6b:5f:e4:42:c1:d5:9c:ac:e2:04:47:77:f0:de:74:2d:af:71:
f0:8c:d9:21:ac:45:14:32:cc:90:41:84:5a:4f:1e:28:73:ed:
40:49:c1:4f:88:a6:27:af:d1:96:ea:cc:6a:c0:76:5f:bf:79:
33:e9:8e:3b:ef:74:08:f6:94:3a:3b:9e:b5:d6:10:6a:f4:8d:
1a:aa:e9:ba:2a:fa:fa:7e:48:cf:dd:63:6f:01:e2:d7:81:38:
59:9a:08:de:20:6a:ac:9d:34:02:fe:74:40:d3:f9:44:54:37:
51:1a:27:5c:42:3c:4c:24:15:78:f9:10:d7:f0:df:2b:59:b2:
99:ee:29:23:0e:66:cc:40:7f:ca:5b:83:8d:c7:b7:8a:70:36:
94:6e:b7:47:87:80:26:6e:0b:5c:d8:e0:b3:3c:49:0e:7c:c5:
d6:9c:35:ed:88:a1:e1:7b:c1:2d:37:db:f3:cb:08:a9:14:da:
86:4e:48:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7B7cSkFhL7frtjtS1djFKFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3Y2RhNmUzNjQ2ZGM5M2EwZDJkNDI5NWQxZWIwOTQ3NmM2
NmJjYTYwHhcNMjYwNjEzMTcwMDQ1WhcNMjYwNjE0MTcwMDQ1WjAzMTEwLwYDVQQD
Eyg5ZDEyNDU3YzE4YWRkZjU2OGUzNDVlNDJkNTBkNmU4MGNjNmYyNzBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnXsnBpi6yDev6TFpccSGSBougZjx
GrdHogwAnwQWSRtt97Qgp64RjWF41mltQu6EZlvWpZTErrvKq/dzpVu0acRssqgE
hv/c10gOdMDVRCkpipeRHd/AtyF1u5CE0MA7+dJv49F/s6qJQdPtlCM1Of/Ojd/b
0IRUNfSSxYaKA4E6qEDn5loqMjdfI3v8EL+8kx3SmI7F2DTAOw4jfnMpzYO/pXgt
cB21rw/Md628XVpvVXuleaxq977rvBUkEFvEfHDt/zVNs8tVGEsufZ9REIm9Ncg5
biQN/17UKZvaXZatCBassQVx2eS5xaXCg29vJF8z/SeuuaSYuey9pYUtDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ0SRXwYrd9WjjReQtUNboDMbycKMB8GA1UdIwQY
MBaAFOfNpuNkbck6DS1CldHrCUdsZrymMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTgybTQyUnR5VG9OTFVLVjBlc0pSMnhtdktZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8zYTZkMjgtMWM0My00YjhiLWI3MTMt
NTY4YzQwN2IzMGY3LzEvNTgybTQyUnR5VG9OTFVLVjBlc0pSMnhtdktZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS8zYTZkMjgtMWM0My00YjhiLWI3MTMtNTY4YzQwN2IzMGY3
LzEvNTgybTQyUnR5VG9OTFVLVjBlc0pSMnhtdktZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMdhPVTJX
1SekC/U835ZVLiSDkl9t2zmklhCyhXVsULpeHkouUygzK0UEA8ifb2g4NBVosLD2
Dv9FBXJT2eAGdpSNAr6oIHxUa1/kQsHVnKziBEd38N50La9x8IzZIaxFFDLMkEGE
Wk8eKHPtQEnBT4imJ6/RlurMasB2X795M+mOO+90CPaUOjuetdYQavSNGqrpuir6
+n5Iz91jbwHi14E4WZoI3iBqrJ00Av50QNP5RFQ3URonXEI8TCQVePkQ1/DfK1my
me4pIw5mzEB/yluDjce3inA2lG63R4eAJm4LXNjgszxJDnzF1pw17Yih4XvBLTfb
88sIqRTahk5I2A==
-----END CERTIFICATE-----
Generated at Sat Jun 13 21:48:09 2026 by rpki-client