Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier: xR7AANp12yCwFxamb9HJSi2nvYMdFGZQQ6u8qYcRDw8=
Subject key identifier: DC:4C:8C:C8:E6:0F:67:FD:E8:1B:67:0F:A3:21:53:B3:2D:22:1F:EC
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial: 019EC36DE354699F28FD895E3BB6136AA6A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number: 0467
Signing time: Sun 14 Jun 2026 00:00:19 +0000
Manifest this update: Sun 14 Jun 2026 00:00:19 +0000
Manifest next update: Mon 15 Jun 2026 00:00:19 +0000
Files and hashes: 1: W-L9Z-et_hk_ElQE4x3JidtYxJ8.roa (hash: H+ygr+3swIT2aBvGxAFeyCAkH1uxCN9KnvrpdAVtIB8=)
2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: 55u9Dwo2vXSNUqpgWW2XDQARX0qmpXiwPFEVAJgHjRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:6d:e3:54:69:9f:28:fd:89:5e:3b:b6:13:6a:a6:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Validity
Not Before: Jun 14 00:00:19 2026 GMT
Not After : Jun 15 00:00:19 2026 GMT
Subject: CN=dc4c8cc8e60f67fde81b670fa32153b32d221fec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2b:81:ae:f4:fc:f7:0a:d1:4d:33:28:0e:fa:
c0:90:7b:da:7d:61:cf:7d:11:e6:8e:88:cc:56:a9:
58:1f:ea:40:ce:c5:d9:c1:53:a8:60:1e:92:e5:04:
01:e7:48:a0:5d:24:a2:7c:f8:51:c1:08:14:36:f0:
06:ef:30:6b:18:0b:ec:c9:84:91:98:1f:37:a0:85:
d3:e7:9e:f6:f1:f2:92:d7:e7:a9:cb:3f:e8:32:cb:
d5:82:ee:2d:9f:0e:42:fd:78:20:97:d9:42:88:d0:
9c:ee:9f:bd:61:7b:ba:a5:65:7b:1c:6a:4a:50:8b:
c3:ce:6a:34:21:3d:8b:9a:6f:2f:ef:3a:09:55:68:
22:60:31:00:d8:91:8e:1a:32:b9:69:90:f8:f7:ae:
2c:c2:9f:e0:92:e6:f1:01:78:09:f1:69:88:d2:90:
91:8d:d1:8b:6a:52:97:18:73:35:75:33:e9:c9:54:
51:0a:a3:13:22:01:98:31:f3:5f:3e:e3:c6:13:1c:
ab:cb:d7:05:48:19:8d:eb:f9:bc:2c:12:38:2a:a6:
74:e0:77:fc:15:99:6c:1f:39:3c:57:f6:ef:ec:3a:
37:ca:19:76:9b:06:5c:88:b0:17:81:5b:33:69:02:
9d:ee:ca:e5:0e:30:80:56:ae:fa:19:a5:ee:e8:d7:
fc:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:4C:8C:C8:E6:0F:67:FD:E8:1B:67:0F:A3:21:53:B3:2D:22:1F:EC
X509v3 Authority Key Identifier:
keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:63:ae:a9:4b:9c:8f:8c:9a:b0:79:c1:a6:86:4d:a4:11:f4:
a0:21:c3:d4:ce:8f:58:f8:4a:bc:81:e8:a7:22:9d:41:50:16:
76:39:22:55:67:6b:e6:38:e6:3e:4c:5e:3e:6a:07:86:2e:27:
f0:37:37:8d:60:bf:1c:15:b5:d5:df:2e:f0:0a:05:ba:fd:58:
3c:b1:84:bc:e5:c2:ec:9d:8e:d5:d4:6a:6f:e7:19:f3:ee:37:
7f:7b:9f:3a:62:76:b8:08:ef:2e:5f:61:ab:ed:db:74:69:a7:
94:21:04:71:c9:a1:ca:66:00:57:95:1f:e1:61:a4:7f:38:71:
e1:57:15:9b:c8:54:fb:ca:2c:8e:2f:d9:3f:c4:b1:69:d4:87:
e0:ab:93:b1:39:30:16:8b:46:58:72:03:3c:1d:ff:dc:c8:3b:
4b:ca:14:23:ca:21:89:dc:49:e0:56:91:56:6f:ba:5e:b9:43:
22:4f:0d:a3:e8:55:95:48:17:bb:62:00:9b:32:18:d3:78:e4:
31:6f:ea:2c:6d:1d:9f:ef:f1:23:4e:0b:34:bd:c0:43:af:0e:
0a:89:2b:2a:77:15:11:ff:b8:9d:3d:24:9a:e2:9d:12:15:fd:
50:37:4a:59:5d:ee:aa:3f:5f:fa:41:fb:db:24:98:2c:87:58:
ff:9e:99:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 03:04:23 2026 by rpki-client