Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
File: cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft (raw, json)
Hash identifier: JfNYWPeDgPOVDXGXZekTGzAsmCMiAODAU4IxJ1iOJ6U=
Subject key identifier: 76:5A:5B:EA:94:1F:ED:FF:72:10:26:6D:C9:C5:9D:C0:B3:4B:92:8C
Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Certificate serial: 019EC148C4234BCCB262FEF026E5935F0238
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
Manifest number: 17CE
Signing time: Sat 13 Jun 2026 14:00:31 +0000
Manifest this update: Sat 13 Jun 2026 14:00:31 +0000
Manifest next update: Sun 14 Jun 2026 14:00:31 +0000
Files and hashes: 1: W0kDwuE8Wzw-iZxK0RP3iilB4OI.roa (hash: LAGYp6tmx7aAjzZBlxGzQ8k1I+/BB+mHmklMRyiCKgA=)
2: cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl (hash: KfXpB7/2IgRnFkmo9gR6yh98cQ14e5IrinkbwoX2ga4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 14:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:48:c4:23:4b:cc:b2:62:fe:f0:26:e5:93:5f:02:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Validity
Not Before: Jun 13 14:00:31 2026 GMT
Not After : Jun 14 14:00:31 2026 GMT
Subject: CN=765a5bea941fedff7210266dc9c59dc0b34b928c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1f:83:bc:20:10:d4:9f:a1:10:23:b9:b0:46:
ec:c1:62:6f:13:03:b9:3f:d5:e0:4b:5e:11:83:7f:
b8:82:6f:12:e7:d3:92:61:6f:a9:ca:93:92:aa:6a:
17:55:bf:d2:b9:c8:44:76:4c:75:dc:85:85:83:bc:
13:c6:af:31:92:0a:ba:51:88:d6:b1:0f:46:65:8b:
82:2c:1d:fc:7d:31:09:5e:f2:79:75:b5:df:7f:34:
af:6b:d6:68:50:d6:47:f8:58:3f:5f:cf:75:cc:95:
4f:be:7d:76:ea:c9:93:8e:eb:06:30:1c:1b:4a:13:
68:42:ae:2c:31:77:05:b4:f2:bf:0f:ae:12:40:7b:
17:d0:3b:48:46:96:2c:2d:b5:40:9e:a9:bf:f3:5d:
83:fa:ce:99:e9:d5:e7:22:6e:40:fb:bc:fd:8d:42:
44:da:57:09:9f:6b:d7:f4:c7:a4:80:36:f0:aa:e0:
2f:c9:94:3f:eb:7e:58:ea:e5:55:41:28:92:6c:22:
66:d8:0e:d5:63:f5:b2:e5:49:25:71:80:08:14:8c:
47:60:df:1d:c6:1f:1b:9e:3a:cb:d9:bb:c8:a4:e6:
c8:58:79:5a:61:37:95:3c:96:15:ca:d3:fc:16:32:
a9:1b:b5:75:22:02:44:5c:c8:dd:b2:a9:89:5f:f4:
e1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:5A:5B:EA:94:1F:ED:FF:72:10:26:6D:C9:C5:9D:C0:B3:4B:92:8C
X509v3 Authority Key Identifier:
keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:27:aa:c0:d3:a3:c3:3b:49:a3:df:95:f8:1c:6d:e2:3a:f1:
fc:62:11:24:6a:71:9e:98:82:cb:eb:aa:2e:77:27:00:a4:fd:
32:e9:ff:6f:d7:dd:7a:aa:38:0f:a7:e4:24:d9:f5:ed:0c:51:
be:dd:48:7c:75:81:54:a3:6d:c6:d0:25:c6:3a:59:69:ea:de:
9d:dc:e0:be:ef:13:93:85:69:b1:98:3a:77:9a:e0:01:c2:6e:
0f:c9:49:af:07:fe:da:99:48:66:9a:0b:d7:22:72:87:30:02:
43:54:98:b2:57:d1:26:39:67:eb:88:91:93:cb:06:8d:bd:c0:
aa:aa:0c:d6:e7:fc:7c:49:fa:fb:a1:13:fd:c9:c1:ff:4e:67:
1d:a3:f3:ea:18:f5:6c:96:74:6a:72:3f:aa:d4:7b:50:28:fc:
a4:22:fd:eb:80:f6:52:2f:96:3c:a7:d9:ae:30:7b:be:32:2a:
02:25:b6:38:dc:e4:5a:42:47:9e:2c:22:94:1a:46:40:64:37:
15:17:b6:6d:3a:69:48:21:ae:57:be:24:f3:87:d2:19:c1:a8:
4a:4e:0c:3c:ae:fd:01:d7:a3:46:80:15:fc:91:ec:e5:99:68:
1b:14:a2:68:07:dd:8a:7c:a0:26:79:31:9e:83:16:c4:59:d9:
f7:3f:45:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7BSMQjS8yyYv7wJuWTXwI4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxOTBmNWQ1ZjkyYTQ4NjM2MjE3N2E0MmIzZDVlZmRhMjBl
MjIwZTEwHhcNMjYwNjEzMTQwMDMxWhcNMjYwNjE0MTQwMDMxWjAzMTEwLwYDVQQD
Eyg3NjVhNWJlYTk0MWZlZGZmNzIxMDI2NmRjOWM1OWRjMGIzNGI5MjhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxx+DvCAQ1J+hECO5sEbswWJvEwO5
P9XgS14Rg3+4gm8S59OSYW+pypOSqmoXVb/SuchEdkx13IWFg7wTxq8xkgq6UYjW
sQ9GZYuCLB38fTEJXvJ5dbXffzSva9ZoUNZH+Fg/X891zJVPvn126smTjusGMBwb
ShNoQq4sMXcFtPK/D64SQHsX0DtIRpYsLbVAnqm/812D+s6Z6dXnIm5A+7z9jUJE
2lcJn2vX9MekgDbwquAvyZQ/635Y6uVVQSiSbCJm2A7VY/Wy5UklcYAIFIxHYN8d
xh8bnjrL2bvIpObIWHlaYTeVPJYVytP8FjKpG7V1IgJEXMjdsqmJX/ThkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHZaW+qUH+3/chAmbcnFncCzS5KMMB8GA1UdIwQY
MBaAFHGQ9dX5KkhjYhd6QrPV79og4iDhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS82OGEwMTQtN2RiYS00NDMwLThkZGUt
MDFjODI3ZDZlMGZlLzEvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS82OGEwMTQtN2RiYS00NDMwLThkZGUtMDFjODI3ZDZlMGZl
LzEvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOyeqwNOj
wztJo9+V+Bxt4jrx/GIRJGpxnpiCy+uqLncnAKT9Mun/b9fdeqo4D6fkJNn17QxR
vt1IfHWBVKNtxtAlxjpZaerendzgvu8Tk4VpsZg6d5rgAcJuD8lJrwf+2plIZpoL
1yJyhzACQ1SYslfRJjln64iRk8sGjb3AqqoM1uf8fEn6+6ET/cnB/05nHaPz6hj1
bJZ0anI/qtR7UCj8pCL964D2Ui+WPKfZrjB7vjIqAiW2ONzkWkJHniwilBpGQGQ3
FRe2bTppSCGuV74k84fSGcGoSk4MPK79AdejRoAV/JHs5ZloGxSiaAfdinygJnkx
noMWxFnZ9z9FGg==
-----END CERTIFICATE-----
Generated at Sun Jun 14 01:17:43 2026 by rpki-client