Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
File: mK9kDIIO61-8kigcYRRPEae9cH4.mft (raw, json)
Hash identifier: PwhUih1NK0lzh45W1pvmKp0n3+hN7vJnoLXnydpVQf0=
Subject key identifier: EF:53:88:C9:D4:54:0F:47:6A:A0:72:54:4A:E8:4C:B8:F7:99:72:5E
Authority key identifier: 98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
Certificate issuer: /CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Certificate serial: 019E1DC7562EAD701D530A5E7AF56AA2C7C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
Manifest number: 065D
Signing time: Tue 12 May 2026 20:01:03 +0000
Manifest this update: Tue 12 May 2026 20:01:03 +0000
Manifest next update: Wed 13 May 2026 20:01:03 +0000
Files and hashes: 1: L314PIS9EZuLIllvbYG4hWHPUco.roa (hash: oCRJ7CpfVca9XR76mJtqFGhJ4HnpliA09q5+Ns2Ex/4=)
2: mK9kDIIO61-8kigcYRRPEae9cH4.crl (hash: kf+wPbm4J3q4lnwHav0HR0cdc55yQ7A1SXqh15WtSEY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:56:2e:ad:70:1d:53:0a:5e:7a:f5:6a:a2:c7:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Validity
Not Before: May 12 20:01:03 2026 GMT
Not After : May 13 20:01:03 2026 GMT
Subject: CN=ef5388c9d4540f476aa072544ae84cb8f799725e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4a:b5:93:5d:71:eb:1f:b3:37:3d:94:c3:45:
ea:89:f9:5c:7e:ea:5a:42:dd:34:e4:4c:9c:76:5e:
39:f5:a0:6f:b6:74:67:16:41:da:04:14:0b:50:3a:
90:61:4a:0f:6f:19:87:3c:dc:23:53:a2:8b:b6:f0:
fe:42:05:79:2e:ee:e4:6b:55:20:b4:f0:79:2c:e4:
85:1e:d2:35:e5:24:ae:7e:0f:e8:b9:20:7e:da:af:
02:71:7c:7f:62:77:eb:da:ca:59:89:b2:f3:a9:b3:
c9:02:da:11:28:a2:fc:41:ea:0f:85:23:b2:a3:8a:
55:7b:8e:53:78:d5:73:0c:ec:20:a6:93:ae:b3:c9:
48:a5:36:5f:9b:d7:68:c5:fa:89:7b:e4:90:95:3f:
1b:d4:e8:9a:c8:59:c2:e7:5a:e5:0c:6f:f2:14:b1:
f8:d1:b9:1e:7d:a0:14:6d:96:a7:41:79:6d:91:ba:
56:7a:32:9f:9d:b4:e2:10:3d:a3:43:ab:a9:dd:cd:
4f:6b:50:9e:5c:25:46:73:3b:76:1c:b2:95:c4:51:
d3:76:ac:29:19:6a:17:85:6a:4e:1f:9b:b6:e4:cb:
ff:05:7d:b8:3d:7f:54:76:b4:d2:d3:55:94:47:28:
9d:5c:16:86:d7:95:78:4a:e7:c4:0d:87:66:0e:9c:
70:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:53:88:C9:D4:54:0F:47:6A:A0:72:54:4A:E8:4C:B8:F7:99:72:5E
X509v3 Authority Key Identifier:
keyid:98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:58:52:e8:c2:81:8c:77:01:28:8e:b2:ce:ca:ad:ce:6c:93:
30:d3:fc:39:be:5e:d5:11:a8:fc:41:b2:60:ff:1e:a5:79:52:
84:14:ac:52:02:84:e8:86:49:fa:f2:ab:52:48:54:6c:64:ba:
23:ba:d1:16:99:dd:27:88:e6:26:79:13:f4:57:17:88:b7:b3:
8e:85:1b:cd:d8:65:93:7a:a0:b6:19:12:67:c7:03:bc:3a:d2:
32:db:ac:e0:b4:0d:0f:1e:6e:b8:47:43:55:93:35:4e:ea:85:
8c:e3:c8:5c:ef:95:07:92:cb:52:05:2e:8d:00:5b:be:1d:27:
ff:7d:5a:3f:f6:11:e5:9e:7c:06:31:fe:f9:cd:72:7d:1a:d7:
fb:96:c2:34:0a:4c:1e:7f:53:ab:3b:1f:b2:7f:67:cc:7e:92:
56:f4:fc:b0:ce:9f:ce:e5:1b:7b:c4:12:eb:86:14:66:77:86:
96:2c:ed:07:23:57:7d:31:22:be:42:fa:e6:f3:cf:0d:4d:48:
55:07:aa:75:08:84:12:3f:7a:30:e7:71:c3:eb:17:65:9f:9b:
39:d5:22:9f:06:fa:db:15:ba:9d:97:76:af:c5:a3:cc:fb:d1:
e5:87:c6:85:63:d5:4d:0a:d9:e7:c6:81:66:46:fe:1c:63:ef:
1f:5a:48:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dx1YurXAdUwpeevVqosfHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4YWY2NDBjODIwZWViNWZiYzkyMjgxYzYxMTQ0ZjExYTdi
ZDcwN2UwHhcNMjYwNTEyMjAwMTAzWhcNMjYwNTEzMjAwMTAzWjAzMTEwLwYDVQQD
EyhlZjUzODhjOWQ0NTQwZjQ3NmFhMDcyNTQ0YWU4NGNiOGY3OTk3MjVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUq1k11x6x+zNz2Uw0Xqiflcfupa
Qt005Eycdl459aBvtnRnFkHaBBQLUDqQYUoPbxmHPNwjU6KLtvD+QgV5Lu7ka1Ug
tPB5LOSFHtI15SSufg/ouSB+2q8CcXx/Ynfr2spZibLzqbPJAtoRKKL8QeoPhSOy
o4pVe45TeNVzDOwgppOus8lIpTZfm9doxfqJe+SQlT8b1OiayFnC51rlDG/yFLH4
0bkefaAUbZanQXltkbpWejKfnbTiED2jQ6up3c1Pa1CeXCVGczt2HLKVxFHTdqwp
GWoXhWpOH5u25Mv/BX24PX9UdrTS01WURyidXBaG15V4SufEDYdmDpxwtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO9TiMnUVA9HaqByVEroTLj3mXJeMB8GA1UdIwQY
MBaAFJivZAyCDutfvJIoHGEUTxGnvXB+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUs5a0RJSU82MS04a2lnY1lSUlBFYWU5Y0g0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8xMjJmZjQtYzRhNy00Njk4LTg3OWYt
ZWNhYjcwZWYzMmRhLzEvbUs5a0RJSU82MS04a2lnY1lSUlBFYWU5Y0g0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS8xMjJmZjQtYzRhNy00Njk4LTg3OWYtZWNhYjcwZWYzMmRh
LzEvbUs5a0RJSU82MS04a2lnY1lSUlBFYWU5Y0g0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2VhS6MKB
jHcBKI6yzsqtzmyTMNP8Ob5e1RGo/EGyYP8epXlShBSsUgKE6IZJ+vKrUkhUbGS6
I7rRFpndJ4jmJnkT9FcXiLezjoUbzdhlk3qgthkSZ8cDvDrSMtus4LQNDx5uuEdD
VZM1TuqFjOPIXO+VB5LLUgUujQBbvh0n/31aP/YR5Z58BjH++c1yfRrX+5bCNApM
Hn9Tqzsfsn9nzH6SVvT8sM6fzuUbe8QS64YUZneGliztByNXfTEivkL65vPPDU1I
VQeqdQiEEj96MOdxw+sXZZ+bOdUinwb62xW6nZd2r8WjzPvR5YfGhWPVTQrZ58aB
Zkb+HGPvH1pIFw==
-----END CERTIFICATE-----
Generated at Wed May 13 05:05:23 2026 by rpki-client