Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
File: fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft (raw, json)
Hash identifier: RuMQkN0lLpLj8SL6ktzEsxHY+GxMsgl5VjNV38YM4iI=
Subject key identifier: 7B:7A:01:B5:D7:E4:5B:B8:78:CA:D3:F8:36:FD:67:6E:FC:03:AB:96
Authority key identifier: 7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
Certificate issuer: /CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Certificate serial: 019EC1EDD9B3032B5101835CDCED679ED975
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
Manifest number: 18ED
Signing time: Sat 13 Jun 2026 17:00:50 +0000
Manifest this update: Sat 13 Jun 2026 17:00:50 +0000
Manifest next update: Sun 14 Jun 2026 17:00:50 +0000
Files and hashes: 1: fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl (hash: wzNtPEGjI6USwa2yYmzNPSbp69asniZwuBjW4q3k4v0=)
2: uuyf9SL1IzQsxC4GwsHv2Aqvi6I.roa (hash: bWBF8Lzkc1fXhVOcL+v1lM3xBjFclLxIjyc/HWhj0fY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ed:d9:b3:03:2b:51:01:83:5c:dc:ed:67:9e:d9:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Validity
Not Before: Jun 13 17:00:50 2026 GMT
Not After : Jun 14 17:00:50 2026 GMT
Subject: CN=7b7a01b5d7e45bb878cad3f836fd676efc03ab96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bb:0f:00:e8:2a:ae:cb:83:6c:09:6a:7b:53:
c8:91:bf:81:47:c5:7d:ef:19:5a:d3:6f:e0:af:fc:
e7:ba:1e:e2:5d:c2:e7:4d:bf:94:f8:dd:84:42:83:
df:ca:34:ef:a4:25:88:7e:f9:46:76:30:db:83:93:
67:a7:01:f0:73:80:93:81:99:29:7e:0a:42:02:c4:
d0:7a:e7:e9:87:5c:c1:fc:25:27:21:c7:b0:77:06:
2a:7b:40:35:22:57:74:ce:9d:e3:f4:5e:50:a3:bf:
b5:6b:14:de:a8:c2:88:c0:cf:af:22:8d:52:8f:ce:
b8:b0:2a:0e:43:f2:51:f2:e8:93:bc:07:ff:70:6a:
70:de:8c:80:fe:45:17:08:55:74:11:0e:18:68:4f:
4c:16:dc:a8:cc:69:56:f9:cd:69:62:ab:57:67:18:
32:68:d9:8f:c7:61:8e:7b:74:28:4a:02:c6:1a:18:
9f:f4:eb:bf:e0:d0:94:f8:2e:1b:8e:79:1b:22:32:
bf:c5:bd:4b:04:b2:50:38:87:b2:af:55:7d:2a:3d:
76:49:72:1c:13:df:61:63:04:f8:65:92:54:49:c3:
38:88:b3:9d:b3:10:75:10:f5:6c:c2:e9:57:2d:c4:
2a:ef:a9:ef:01:58:6d:30:4c:e8:47:70:31:51:3c:
25:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:7A:01:B5:D7:E4:5B:B8:78:CA:D3:F8:36:FD:67:6E:FC:03:AB:96
X509v3 Authority Key Identifier:
keyid:7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:a2:53:56:8c:c7:45:b9:db:1c:ea:70:5d:78:4c:f8:f8:74:
c2:b9:d5:07:06:62:22:50:36:74:85:6e:48:58:26:06:db:c4:
c0:a7:ed:b4:66:9f:d5:48:cf:9c:3d:97:8c:48:2e:87:57:62:
c3:ce:d4:ca:ec:36:1d:c6:e2:a7:a0:06:82:08:08:d9:35:c7:
10:c9:08:63:41:c1:bf:39:89:a5:8f:4c:b4:09:f8:0f:e7:87:
e2:09:d0:09:97:92:16:b0:24:94:19:92:2f:a4:66:61:08:fb:
a7:76:be:c8:2c:e2:f3:e6:00:8c:a5:13:f5:65:1a:8e:a6:e9:
af:09:ef:4a:21:6c:99:30:6b:55:12:fd:41:9b:48:ff:f9:01:
20:fe:a8:e5:12:eb:de:df:74:c3:a1:e9:46:d1:b5:0e:bf:ad:
f3:b5:17:08:d6:a7:c5:3c:ad:65:bb:a3:45:40:dd:43:20:e6:
28:f6:15:c3:a0:e4:1d:37:a4:48:a1:e8:c6:24:7a:4a:10:82:
04:09:26:6c:30:21:a0:cb:a5:80:0f:9c:a9:7c:51:e5:10:db:
dc:f3:48:38:2f:bb:25:4b:65:30:92:6b:5d:91:ab:0c:a6:c0:
1b:ad:c9:22:84:8e:63:d7:b1:e0:09:fc:e2:2d:f7:fa:e6:56:
07:93:f5:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7B7dmzAytRAYNc3O1nntl1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMDFhNWQ5MGRjM2E4MzZjZWI2MzgxZWZjNzUzNGUxMjlm
NDNhNGMwHhcNMjYwNjEzMTcwMDUwWhcNMjYwNjE0MTcwMDUwWjAzMTEwLwYDVQQD
Eyg3YjdhMDFiNWQ3ZTQ1YmI4NzhjYWQzZjgzNmZkNjc2ZWZjMDNhYjk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLsPAOgqrsuDbAlqe1PIkb+BR8V9
7xla02/gr/znuh7iXcLnTb+U+N2EQoPfyjTvpCWIfvlGdjDbg5NnpwHwc4CTgZkp
fgpCAsTQeufph1zB/CUnIcewdwYqe0A1Ild0zp3j9F5Qo7+1axTeqMKIwM+vIo1S
j864sCoOQ/JR8uiTvAf/cGpw3oyA/kUXCFV0EQ4YaE9MFtyozGlW+c1pYqtXZxgy
aNmPx2GOe3QoSgLGGhif9Ou/4NCU+C4bjnkbIjK/xb1LBLJQOIeyr1V9Kj12SXIc
E99hYwT4ZZJUScM4iLOdsxB1EPVswulXLcQq76nvAVhtMEzoR3AxUTwlLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHt6AbXX5Fu4eMrT+Db9Z278A6uWMB8GA1UdIwQY
MBaAFH0BpdkNw6g2zrY4Hvx1NOEp9DpMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFHbDJRM0RxRGJPdGpnZV9IVTA0U24wT2t3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8yMWIwMDctYTA4Ni00MzEyLTlkMjMt
NjJmNjY2NDczYjIxLzEvZlFHbDJRM0RxRGJPdGpnZV9IVTA0U24wT2t3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi8yMWIwMDctYTA4Ni00MzEyLTlkMjMtNjJmNjY2NDczYjIx
LzEvZlFHbDJRM0RxRGJPdGpnZV9IVTA0U24wT2t3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABaJTVozH
RbnbHOpwXXhM+Ph0wrnVBwZiIlA2dIVuSFgmBtvEwKfttGaf1UjPnD2XjEguh1di
w87Uyuw2Hcbip6AGgggI2TXHEMkIY0HBvzmJpY9MtAn4D+eH4gnQCZeSFrAklBmS
L6RmYQj7p3a+yCzi8+YAjKUT9WUajqbprwnvSiFsmTBrVRL9QZtI//kBIP6o5RLr
3t90w6HpRtG1Dr+t87UXCNanxTytZbujRUDdQyDmKPYVw6DkHTekSKHoxiR6ShCC
BAkmbDAhoMulgA+cqXxR5RDb3PNIOC+7JUtlMJJrXZGrDKbAG63JIoSOY9ex4An8
4i33+uZWB5P1Zw==
-----END CERTIFICATE-----
Generated at Sat Jun 13 22:28:48 2026 by rpki-client