Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
File: IkCgcYD88zY191fMFEng1dvU_bg.mft (raw, json)
Hash identifier: 65V2Yhcrdqd26Z2KhBuJFnUa3ikCju9u7mhAwEjDVv4=
Subject key identifier: D1:A9:97:A0:D5:ED:4D:EA:36:5F:62:13:48:4C:49:3D:8C:A8:30:AB
Authority key identifier: 22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
Certificate issuer: /CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Certificate serial: 019EBEED0EC1C83FF3CBECCBD6F7E06FDE50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
Manifest number: 0541
Signing time: Sat 13 Jun 2026 03:01:07 +0000
Manifest this update: Sat 13 Jun 2026 03:01:07 +0000
Manifest next update: Sun 14 Jun 2026 03:01:07 +0000
Files and hashes: 1: IkCgcYD88zY191fMFEng1dvU_bg.crl (hash: 85zEAupOHHxzJq2AZtftviKcS28ZkKJqWFhw57ywY+U=)
2: PPCzo4aoB52WIulHl2b-W42AOQQ.roa (hash: v7GTmELXw/VVFQyWL5TMg5z0A0nUbHsal/nQ+BR/mNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 03:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:ed:0e:c1:c8:3f:f3:cb:ec:cb:d6:f7:e0:6f:de:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Validity
Not Before: Jun 13 03:01:07 2026 GMT
Not After : Jun 14 03:01:07 2026 GMT
Subject: CN=d1a997a0d5ed4dea365f6213484c493d8ca830ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8f:03:02:60:a2:ce:ec:30:d7:d6:7f:e3:14:
4b:ed:bc:59:a5:78:32:84:ed:77:db:9e:bc:a6:ee:
c5:03:ba:05:0b:24:21:eb:71:f2:68:ac:e6:fe:43:
e9:5c:d3:e5:78:a7:4e:24:3a:ef:2e:d3:a0:3e:6f:
50:20:6a:51:87:96:83:4b:e2:d9:2f:29:77:b4:52:
f1:b6:ee:ae:53:76:be:a5:4a:6a:be:38:52:39:89:
c4:f0:a8:8f:88:c9:ec:a3:13:38:a6:23:5e:c0:29:
dc:24:53:43:66:20:8a:fe:46:22:59:36:9c:bb:5f:
01:a4:65:8d:3f:aa:e1:80:84:2a:a8:09:11:1e:27:
21:4a:58:a4:46:a6:39:4e:c7:72:d7:23:cd:f1:02:
a8:7c:53:69:36:a0:69:90:f4:a0:a6:ed:93:eb:c8:
06:cf:ac:de:99:ad:fd:1e:38:5d:0c:b7:5c:a6:6a:
46:cd:29:0c:e7:ec:46:2c:2e:d8:25:4d:50:4b:86:
9e:e7:60:fe:1d:51:ee:da:ca:a0:4d:77:40:10:1b:
9b:90:c7:13:c2:80:4f:c3:f0:c5:1a:c4:83:c1:37:
99:c6:b3:c7:7b:c5:83:39:e5:86:b9:91:c3:72:56:
da:0a:f5:25:48:66:75:d0:b6:1a:da:7f:ad:0f:f4:
8a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:A9:97:A0:D5:ED:4D:EA:36:5F:62:13:48:4C:49:3D:8C:A8:30:AB
X509v3 Authority Key Identifier:
keyid:22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:40:9f:79:a2:14:79:8c:81:da:76:f1:c1:2d:e0:77:56:8e:
1f:a1:be:38:37:7d:39:50:2b:87:50:5d:db:d9:3b:b5:ce:d0:
40:89:28:98:93:f7:90:ca:ac:55:46:bf:9a:79:aa:8a:3f:49:
93:45:fd:25:21:44:cf:e4:f2:3e:ff:39:36:a0:01:cf:30:5b:
df:a1:02:3e:bd:f5:5a:e1:9d:99:8f:bf:d0:80:b9:88:03:0d:
bf:fd:3d:d9:85:74:a4:9b:01:94:cb:1f:17:ab:a9:1e:d9:2e:
39:3c:75:b1:c3:ff:14:f4:ce:82:e8:4c:83:8a:e0:c8:50:cc:
56:f7:f0:a0:31:1d:81:8f:7a:05:f6:ac:96:93:15:d2:cf:c1:
00:de:5d:cd:9f:15:cc:4e:8a:9b:57:5b:e0:41:c4:30:22:ee:
44:51:70:44:1c:16:10:ea:57:6b:21:4e:0c:9d:dd:4d:b7:49:
b0:e1:65:eb:c4:5f:59:05:ed:4e:7a:b3:4b:ac:84:89:92:3f:
eb:b5:3e:21:8f:e8:5e:d5:bf:cf:ee:a9:4f:f9:6a:6f:b2:12:
63:2b:c6:0f:c9:97:d6:85:fe:b5:0a:74:91:fb:49:70:f5:b0:
79:25:78:b2:d0:24:04:8d:4e:f3:8b:19:50:ea:06:d7:3d:f8:
26:0b:cf:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6+7Q7ByD/zy+zL1vfgb95QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyNDBhMDcxODBmY2YzMzYzNWY3NTdjYzE0NDllMGQ1ZGJk
NGZkYjgwHhcNMjYwNjEzMDMwMTA3WhcNMjYwNjE0MDMwMTA3WjAzMTEwLwYDVQQD
EyhkMWE5OTdhMGQ1ZWQ0ZGVhMzY1ZjYyMTM0ODRjNDkzZDhjYTgzMGFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoo8DAmCizuww19Z/4xRL7bxZpXgy
hO132568pu7FA7oFCyQh63HyaKzm/kPpXNPleKdOJDrvLtOgPm9QIGpRh5aDS+LZ
Lyl3tFLxtu6uU3a+pUpqvjhSOYnE8KiPiMnsoxM4piNewCncJFNDZiCK/kYiWTac
u18BpGWNP6rhgIQqqAkRHichSlikRqY5Tsdy1yPN8QKofFNpNqBpkPSgpu2T68gG
z6zema39HjhdDLdcpmpGzSkM5+xGLC7YJU1QS4ae52D+HVHu2sqgTXdAEBubkMcT
woBPw/DFGsSDwTeZxrPHe8WDOeWGuZHDclbaCvUlSGZ10LYa2n+tD/SKJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNGpl6DV7U3qNl9iE0hMST2MqDCrMB8GA1UdIwQY
MBaAFCJAoHGA/PM2NfdXzBRJ4NXb1P24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9hMzE0Y2MtMDY2ZS00YzA5LWEzNmEt
ZDBiZDBlODAzZmQxLzEvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9hMzE0Y2MtMDY2ZS00YzA5LWEzNmEtZDBiZDBlODAzZmQx
LzEvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnUCfeaIU
eYyB2nbxwS3gd1aOH6G+ODd9OVArh1Bd29k7tc7QQIkomJP3kMqsVUa/mnmqij9J
k0X9JSFEz+TyPv85NqABzzBb36ECPr31WuGdmY+/0IC5iAMNv/092YV0pJsBlMsf
F6upHtkuOTx1scP/FPTOguhMg4rgyFDMVvfwoDEdgY96BfaslpMV0s/BAN5dzZ8V
zE6Km1db4EHEMCLuRFFwRBwWEOpXayFODJ3dTbdJsOFl68RfWQXtTnqzS6yEiZI/
67U+IY/oXtW/z+6pT/lqb7ISYyvGD8mX1oX+tQp0kftJcPWweSV4stAkBI1O84sZ
UOoG1z34JgvPVw==
-----END CERTIFICATE-----
Generated at Sat Jun 13 13:09:08 2026 by rpki-client