Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
File: tYUi2sa83oxIEzNZkTKhYgDmpb4.mft (raw, json)
Hash identifier: DbjN35++8psOrqdyoE15qcNLhSqZ18AgcBZ5iDEKmIA=
Subject key identifier: 6C:89:C4:A6:25:FB:15:39:38:A0:83:9F:82:A5:44:4B:6F:A0:C3:FF
Authority key identifier: B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
Certificate issuer: /CN=b58522dac6bcde8c481333599132a16200e6a5be
Certificate serial: 019E1ED9FFB4A0CFE387A270B790334815CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
Manifest number: 0C61
Signing time: Wed 13 May 2026 01:01:03 +0000
Manifest this update: Wed 13 May 2026 01:01:03 +0000
Manifest next update: Thu 14 May 2026 01:01:03 +0000
Files and hashes: 1: 18A7L44_0ILwZodGFUSDQ2eubuc.roa (hash: TWAVfWQBRDutGoFMNTBpWa6veuSEAlw+UuaoPc+ikg4=)
2: 2BnXbJN0-tuiSw2yPhv5M-hIP_g.roa (hash: 7StJAAew0duMZOz948e0I6qxBTgJCwCzq3+RHVzjmKc=)
3: tYUi2sa83oxIEzNZkTKhYgDmpb4.crl (hash: ilTk+qGs4MzK2+TqYhZiWVQJ8nOINH6uAnR7xWym/kc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:d9:ff:b4:a0:cf:e3:87:a2:70:b7:90:33:48:15:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58522dac6bcde8c481333599132a16200e6a5be
Validity
Not Before: May 13 01:01:03 2026 GMT
Not After : May 14 01:01:03 2026 GMT
Subject: CN=6c89c4a625fb153938a0839f82a5444b6fa0c3ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4e:44:12:37:6e:73:85:7a:50:e7:6a:f1:f8:
18:0b:ae:10:97:88:ad:0e:c9:06:08:84:ba:67:d3:
35:ef:59:13:38:43:f0:11:31:27:10:a2:83:db:83:
f1:bd:3e:68:b2:33:ec:8f:3f:77:1e:25:91:39:14:
3f:bb:b9:f4:9c:9f:20:c7:dc:bc:62:f9:8c:5c:f0:
d8:8d:e3:e3:dc:21:2f:96:8d:0f:06:e4:37:ec:95:
77:49:b5:7d:9d:8e:33:a9:22:48:87:98:4b:58:05:
f5:f1:ba:c3:c8:95:f9:54:ab:9c:7c:d1:fe:f1:07:
db:88:fc:5c:ee:62:92:93:b8:7b:49:c4:35:04:dc:
29:9c:07:ec:54:0f:7f:73:03:f0:58:41:fb:40:0a:
1e:fd:c8:11:3f:84:d8:a8:1f:69:be:b0:8e:a2:ce:
82:88:e1:48:f1:a9:26:59:00:11:0a:78:71:fd:aa:
43:ce:22:cc:0a:69:e6:e1:88:13:fd:d2:c2:98:e7:
73:0c:ee:9c:0c:86:ec:0d:ce:78:fe:3a:6f:ac:ee:
db:62:14:10:e7:a7:7b:5f:26:eb:b1:0a:ba:b4:4a:
0b:51:be:a8:c7:2c:72:a7:1e:f2:73:01:8e:1e:82:
90:12:25:48:b9:0c:6a:c9:db:b2:52:0b:0e:63:73:
fe:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:89:C4:A6:25:FB:15:39:38:A0:83:9F:82:A5:44:4B:6F:A0:C3:FF
X509v3 Authority Key Identifier:
keyid:B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:25:f4:f4:9b:54:e1:61:a3:fe:93:f8:f4:c3:91:92:62:5f:
26:b4:58:9a:59:75:d4:0e:ee:b6:01:ba:b0:8f:e2:80:7b:61:
03:14:66:30:51:8c:c6:6a:ec:84:4a:82:b0:d7:71:56:78:8f:
da:3b:cb:a3:89:5d:bd:0e:89:8c:32:3d:55:4e:04:bf:33:ee:
8b:20:cd:44:b3:b1:1b:43:0b:25:97:c3:2f:e9:0e:31:44:b6:
d3:1a:6f:26:cd:c6:20:53:6b:c5:e9:70:2a:80:a0:70:0d:92:
18:25:99:4f:2e:f2:45:f6:aa:63:56:21:e3:d3:68:a4:c2:76:
b0:84:1f:18:e3:c7:e6:af:d4:29:42:b4:e3:60:03:9e:71:5a:
d2:30:42:64:7a:d5:b5:89:bd:14:fd:0d:ae:79:c8:50:dc:1b:
73:2c:c7:ce:3b:9d:b3:ae:46:5f:dc:e9:13:80:0c:9a:71:3d:
ea:1d:24:32:bf:87:98:20:ef:25:a3:0b:88:e4:d2:20:12:dd:
a1:f9:fa:0c:05:ef:23:b5:cc:a8:b9:cc:e2:7f:c1:f6:b0:93:
04:62:b5:a9:06:5e:be:16:d7:9f:92:9a:30:13:67:e6:11:49:
0d:92:93:1e:28:e1:46:f2:56:aa:57:4e:63:33:8a:ef:0e:e7:
8d:52:5f:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4e2f+0oM/jh6Jwt5AzSBXLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1ODUyMmRhYzZiY2RlOGM0ODEzMzM1OTkxMzJhMTYyMDBl
NmE1YmUwHhcNMjYwNTEzMDEwMTAzWhcNMjYwNTE0MDEwMTAzWjAzMTEwLwYDVQQD
Eyg2Yzg5YzRhNjI1ZmIxNTM5MzhhMDgzOWY4MmE1NDQ0YjZmYTBjM2ZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3U5EEjduc4V6UOdq8fgYC64Ql4it
DskGCIS6Z9M171kTOEPwETEnEKKD24PxvT5osjPsjz93HiWRORQ/u7n0nJ8gx9y8
YvmMXPDYjePj3CEvlo0PBuQ37JV3SbV9nY4zqSJIh5hLWAX18brDyJX5VKucfNH+
8QfbiPxc7mKSk7h7ScQ1BNwpnAfsVA9/cwPwWEH7QAoe/cgRP4TYqB9pvrCOos6C
iOFI8akmWQARCnhx/apDziLMCmnm4YgT/dLCmOdzDO6cDIbsDc54/jpvrO7bYhQQ
56d7XybrsQq6tEoLUb6oxyxypx7ycwGOHoKQEiVIuQxqyduyUgsOY3P+2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGyJxKYl+xU5OKCDn4KlREtvoMP/MB8GA1UdIwQY
MBaAFLWFItrGvN6MSBMzWZEyoWIA5qW+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFlVaTJzYTgzb3hJRXpOWmtUS2hZZ0RtcGI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84YjVkMmEtNGJjNC00MDZmLTk3ZDUt
YmEzOTQ3YzliMjJiLzEvdFlVaTJzYTgzb3hJRXpOWmtUS2hZZ0RtcGI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC84YjVkMmEtNGJjNC00MDZmLTk3ZDUtYmEzOTQ3YzliMjJi
LzEvdFlVaTJzYTgzb3hJRXpOWmtUS2hZZ0RtcGI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlyX09JtU
4WGj/pP49MORkmJfJrRYmll11A7utgG6sI/igHthAxRmMFGMxmrshEqCsNdxVniP
2jvLo4ldvQ6JjDI9VU4EvzPuiyDNRLOxG0MLJZfDL+kOMUS20xpvJs3GIFNrxelw
KoCgcA2SGCWZTy7yRfaqY1Yh49NopMJ2sIQfGOPH5q/UKUK042ADnnFa0jBCZHrV
tYm9FP0NrnnIUNwbcyzHzjuds65GX9zpE4AMmnE96h0kMr+HmCDvJaMLiOTSIBLd
ofn6DAXvI7XMqLnM4n/B9rCTBGK1qQZevhbXn5KaMBNn5hFJDZKTHijhRvJWqldO
YzOK7w7njVJfug==
-----END CERTIFICATE-----
Generated at Wed May 13 08:02:11 2026 by rpki-client