Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
File: cHl9sHv21Fl6wtyL40-JKYAI8s0.mft (raw, json)
Hash identifier: zTK+3Kva2mMZc9aC/b6MXkcY0IrPXCOtOB0LH5zgx2U=
Subject key identifier: 05:17:44:E9:20:A1:85:C6:1A:A7:46:11:5A:DC:12:52:AE:E2:CC:EC
Authority key identifier: 70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
Certificate issuer: /CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Certificate serial: 019EC29249FE246298FE70163C2EB784809B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
Manifest number: 1961
Signing time: Sat 13 Jun 2026 20:00:27 +0000
Manifest this update: Sat 13 Jun 2026 20:00:27 +0000
Manifest next update: Sun 14 Jun 2026 20:00:27 +0000
Files and hashes: 1: cAt58g0xkrFHt9-N3ZykhWH0ReM.roa (hash: zJIgtJYw+ptpKpZht1FAofTALod8Sw1aXf2YLrLjs1s=)
2: cHl9sHv21Fl6wtyL40-JKYAI8s0.crl (hash: a72u2XIEgC6q3qPGqNVw5ZALAnXrxiYwpnQOHe62cHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:49:fe:24:62:98:fe:70:16:3c:2e:b7:84:80:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Validity
Not Before: Jun 13 20:00:27 2026 GMT
Not After : Jun 14 20:00:27 2026 GMT
Subject: CN=051744e920a185c61aa746115adc1252aee2ccec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5f:af:ee:1d:87:fa:04:63:4b:7d:17:f9:cc:
5f:5f:c7:f2:48:51:6a:49:df:b3:37:d2:90:d6:98:
c7:f6:f0:12:2c:d8:a8:40:71:49:84:83:d3:41:16:
b1:23:c3:2e:77:ec:82:b7:6e:3b:af:dc:d5:3c:10:
f3:e1:b5:07:aa:58:54:fa:78:92:99:e1:e0:b4:6e:
cc:64:61:6e:70:89:e8:c4:99:a6:d6:65:8a:63:d2:
63:3f:87:f0:99:59:3a:2d:2e:f2:db:3a:c0:eb:b2:
0d:ee:af:c7:de:91:eb:49:11:47:22:ca:71:70:5c:
1c:ef:12:ad:55:95:52:78:c3:9c:62:93:65:45:5a:
df:e8:0c:4f:27:d1:6b:80:14:5c:c7:69:63:b7:44:
35:1d:d0:67:9f:24:6d:1f:8e:5f:dd:b5:5f:30:f5:
ab:3d:36:b5:ed:a2:54:69:51:e4:02:84:0d:1c:3c:
32:e0:ec:ca:aa:a7:6e:f0:eb:c5:a5:14:8e:6e:9b:
1b:19:44:a4:18:c7:fd:3d:5b:2e:3d:58:66:9d:b2:
62:eb:54:22:1f:c9:52:d0:51:7c:61:65:3a:a0:f6:
de:0b:e4:79:fc:5c:34:28:d9:9e:2c:47:87:16:d0:
6e:5a:d9:0e:a5:91:42:09:29:98:2f:0d:c4:47:40:
c5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:17:44:E9:20:A1:85:C6:1A:A7:46:11:5A:DC:12:52:AE:E2:CC:EC
X509v3 Authority Key Identifier:
keyid:70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:1d:56:76:41:c7:d3:c1:8c:d3:01:02:63:68:54:b1:67:be:
68:bd:84:24:ef:39:fb:15:58:39:a2:fa:31:de:7a:b9:9e:f3:
23:ba:c0:9d:82:2b:61:63:1d:11:b3:ac:a2:51:39:fe:e8:94:
e1:0f:f2:23:01:19:51:9b:9b:a7:3b:21:9f:47:f2:d4:77:a8:
f8:ee:75:41:89:e0:74:2b:07:8b:24:d9:74:03:55:cd:31:0d:
6e:3c:df:d1:c5:c5:d1:d4:d2:6f:df:fc:ed:43:e3:2b:b9:7d:
ae:33:47:b0:87:0a:0d:92:6c:1f:ff:13:36:6d:32:48:f9:62:
09:40:cf:0d:5d:b2:46:e8:98:00:e8:ba:ba:d2:e7:85:80:e0:
e6:7d:71:24:9e:dd:f5:e7:90:93:61:76:e3:7b:56:6e:bd:1d:
b7:44:7d:75:71:0e:a5:33:5d:4c:7e:42:7d:e3:e7:13:dd:b8:
8b:7a:2c:d7:8f:9e:d0:df:f4:34:d9:66:4b:49:4b:c7:77:43:
72:1a:eb:18:1e:e9:1f:84:f7:15:30:04:e1:e0:7f:b0:7f:bc:
8b:80:b7:70:b1:dd:e5:9a:88:4c:ff:5e:c7:20:19:1f:4b:e6:
1c:b2:ef:74:f2:ac:e8:54:c0:76:a1:08:b8:d6:4e:b6:76:ad:
8a:8c:7d:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7Ckkn+JGKY/nAWPC63hICbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwNzk3ZGIwN2JmNmQ0NTk3YWMyZGM4YmUzNGY4OTI5ODAw
OGYyY2QwHhcNMjYwNjEzMjAwMDI3WhcNMjYwNjE0MjAwMDI3WjAzMTEwLwYDVQQD
EygwNTE3NDRlOTIwYTE4NWM2MWFhNzQ2MTE1YWRjMTI1MmFlZTJjY2VjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlV+v7h2H+gRjS30X+cxfX8fySFFq
Sd+zN9KQ1pjH9vASLNioQHFJhIPTQRaxI8Mud+yCt247r9zVPBDz4bUHqlhU+niS
meHgtG7MZGFucInoxJmm1mWKY9JjP4fwmVk6LS7y2zrA67IN7q/H3pHrSRFHIspx
cFwc7xKtVZVSeMOcYpNlRVrf6AxPJ9FrgBRcx2ljt0Q1HdBnnyRtH45f3bVfMPWr
PTa17aJUaVHkAoQNHDwy4OzKqqdu8OvFpRSObpsbGUSkGMf9PVsuPVhmnbJi61Qi
H8lS0FF8YWU6oPbeC+R5/Fw0KNmeLEeHFtBuWtkOpZFCCSmYLw3ER0DFEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAUXROkgoYXGGqdGEVrcElKu4szsMB8GA1UdIwQY
MBaAFHB5fbB79tRZesLci+NPiSmACPLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9jMmVlN2EtY2JiNy00NzBlLWI5NjUt
OTA3ZGFhNDY0NjNiLzEvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS9jMmVlN2EtY2JiNy00NzBlLWI5NjUtOTA3ZGFhNDY0NjNi
LzEvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXB1WdkHH
08GM0wECY2hUsWe+aL2EJO85+xVYOaL6Md56uZ7zI7rAnYIrYWMdEbOsolE5/uiU
4Q/yIwEZUZubpzshn0fy1Heo+O51QYngdCsHiyTZdANVzTENbjzf0cXF0dTSb9/8
7UPjK7l9rjNHsIcKDZJsH/8TNm0ySPliCUDPDV2yRuiYAOi6utLnhYDg5n1xJJ7d
9eeQk2F243tWbr0dt0R9dXEOpTNdTH5CfePnE924i3os14+e0N/0NNlmS0lLx3dD
chrrGB7pH4T3FTAE4eB/sH+8i4C3cLHd5ZqITP9exyAZH0vmHLLvdPKs6FTAdqEI
uNZOtnatiox9Dg==
-----END CERTIFICATE-----
Generated at Sun Jun 14 00:38:24 2026 by rpki-client