Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: sO41gv0C8UE3ssAgHvkINv0LI5qzP9viLMAJY3lY1O4=
Subject key identifier: 60:14:53:CE:B3:99:7D:A3:28:33:C0:89:E2:DE:5C:BC:05:53:DC:56
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 019ECAF187C45D74723CC502CDA0EB185DB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 11FD
Signing time: Mon 15 Jun 2026 11:01:26 +0000
Manifest this update: Mon 15 Jun 2026 11:01:26 +0000
Manifest next update: Tue 16 Jun 2026 11:01:26 +0000
Files and hashes: 1: 6Lv0ELrWKZzM2WUhjrrfSxrLv5I.roa (hash: b+tPMLvT0wTQ8KNZFO7LFZXenP25HBtSk8cAgN48xuk=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: 4+ylnNy/Kma/Topr2yG5VFpWZH2HJGPXSOuOm09VYmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Jun 2026 07:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ca:f1:87:c4:5d:74:72:3c:c5:02:cd:a0:eb:18:5d:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Jun 15 11:01:26 2026 GMT
Not After : Jun 16 11:01:26 2026 GMT
Subject: CN=601453ceb3997da32833c089e2de5cbc0553dc56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2e:b5:af:f7:f8:c0:d9:97:65:4b:fd:80:75:
7b:9a:f7:21:4e:b3:1a:34:08:c1:22:4a:2c:80:cf:
df:46:25:03:2d:48:8b:1c:99:0b:ab:6d:99:c5:e5:
41:ac:74:05:ca:08:5e:e5:e8:5b:f4:01:05:11:eb:
88:40:df:15:cd:71:4d:77:66:ce:92:81:3a:cc:5e:
2b:a4:db:9e:c2:a3:7b:ae:ef:bd:cc:f3:82:f7:26:
1c:21:09:fa:10:5c:d4:46:4e:ff:78:c9:a0:b8:f5:
8b:af:47:e3:4d:0d:a9:33:de:e4:39:1f:bd:60:14:
56:c3:be:e6:16:6e:73:4e:da:50:15:34:be:5c:de:
c1:ba:e1:07:bd:be:fb:e2:8b:10:4f:38:24:9a:ac:
bf:dd:81:c1:5b:36:98:5e:4c:de:4a:b4:59:4e:33:
2c:20:a7:3e:13:45:90:05:38:d9:0e:e5:be:d9:27:
fb:e5:25:08:6a:89:68:c1:0b:1f:31:95:b5:0c:42:
25:19:45:b0:e2:58:df:a7:bf:00:de:dd:4d:c0:e3:
a0:05:39:66:ca:3b:61:db:e5:c7:4d:b3:19:af:80:
fb:4b:0e:04:50:02:61:3d:e8:4c:68:29:66:a5:5e:
7b:95:fd:c0:04:c3:a3:60:c4:d9:c1:a0:5d:2d:d4:
9f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:14:53:CE:B3:99:7D:A3:28:33:C0:89:E2:DE:5C:BC:05:53:DC:56
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:73:38:4b:ac:79:58:59:b5:e0:da:cb:dd:28:64:18:30:42:
d5:e4:46:7e:73:85:48:49:b7:8a:18:c0:26:ab:df:46:4e:df:
03:5b:54:57:62:a9:df:b1:5f:be:40:27:01:44:d3:0f:c7:b1:
c1:ee:d5:1c:73:2d:a4:06:84:d4:f3:c9:15:6d:0f:18:61:b3:
65:1f:11:31:90:56:47:7d:8a:b9:ac:a2:22:77:cb:38:6e:f8:
0d:05:24:8d:96:23:06:81:b7:0c:4c:b8:0b:04:5c:c1:1b:a6:
da:00:b3:88:d0:b0:bb:25:18:9d:65:9c:ae:a3:22:ef:46:0d:
7d:52:92:e8:22:90:db:64:2f:d4:d7:80:56:7b:9a:32:d1:31:
c3:78:38:22:7f:01:e3:ea:c4:2b:57:f9:c0:e9:c2:71:e2:2b:
e7:4f:98:e5:7c:40:70:34:65:53:47:a6:f2:3a:b9:b8:b5:16:
ea:ba:f6:f0:b8:b0:5c:e3:c3:4f:68:25:c4:6e:49:9e:02:e2:
fe:55:d1:d6:47:8f:5a:fa:18:60:1d:3b:b7:72:bb:e0:2c:52:
7c:74:91:39:fc:32:75:62:47:e6:82:a1:d2:7c:c5:ac:0d:76:
2c:d2:ae:44:f0:bc:97:b2:3a:98:ec:64:7e:bb:e9:e5:6e:2b:
eb:e2:fa:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7K8YfEXXRyPMUCzaDrGF20MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNjg1OTU5OTc5MDBkZWQzMDBlOTkyNTcwOWRhNjI3ZTkz
ZjM2M2EwHhcNMjYwNjE1MTEwMTI2WhcNMjYwNjE2MTEwMTI2WjAzMTEwLwYDVQQD
Eyg2MDE0NTNjZWIzOTk3ZGEzMjgzM2MwODllMmRlNWNiYzA1NTNkYzU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkS61r/f4wNmXZUv9gHV7mvchTrMa
NAjBIkosgM/fRiUDLUiLHJkLq22ZxeVBrHQFyghe5ehb9AEFEeuIQN8VzXFNd2bO
koE6zF4rpNuewqN7ru+9zPOC9yYcIQn6EFzURk7/eMmguPWLr0fjTQ2pM97kOR+9
YBRWw77mFm5zTtpQFTS+XN7BuuEHvb774osQTzgkmqy/3YHBWzaYXkzeSrRZTjMs
IKc+E0WQBTjZDuW+2Sf75SUIaolowQsfMZW1DEIlGUWw4ljfp78A3t1NwOOgBTlm
yjth2+XHTbMZr4D7Sw4EUAJhPehMaClmpV57lf3ABMOjYMTZwaBdLdSfIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGAUU86zmX2jKDPAieLeXLwFU9xWMB8GA1UdIwQY
MBaAFLpoWVmXkA3tMA6ZJXCdpifpPzY6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS80NzJhNGQtZmNhZS00NDU0LTk5Njct
MDJkZWQ5YjJlMGM5LzEvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS80NzJhNGQtZmNhZS00NDU0LTk5NjctMDJkZWQ5YjJlMGM5
LzEvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj3M4S6x5
WFm14NrL3ShkGDBC1eRGfnOFSEm3ihjAJqvfRk7fA1tUV2Kp37FfvkAnAUTTD8ex
we7VHHMtpAaE1PPJFW0PGGGzZR8RMZBWR32KuayiInfLOG74DQUkjZYjBoG3DEy4
CwRcwRum2gCziNCwuyUYnWWcrqMi70YNfVKS6CKQ22Qv1NeAVnuaMtExw3g4In8B
4+rEK1f5wOnCceIr50+Y5XxAcDRlU0em8jq5uLUW6rr28LiwXOPDT2glxG5JngLi
/lXR1kePWvoYYB07t3K74CxSfHSROfwydWJH5oKh0nzFrA12LNKuRPC8l7I6mOxk
frvp5W4r6+L6dg==
-----END CERTIFICATE-----
Generated at Mon Jun 15 15:36:53 2026 by rpki-client