Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
File: drTT6JcTIsZNegRYurdFqJreTeU.mft (raw, json)
Hash identifier: WQcBRUOakaCL9062n4IDMDYZeBWE3Aq6VTsL7xKcZN8=
Subject key identifier: EE:9C:09:39:3E:68:76:F8:E6:0B:81:0A:35:C0:A7:5E:F0:1F:08:5D
Authority key identifier: 76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5
Certificate issuer: /CN=76b4d3e8971322c64d7a0458bab745a89ade4de5
Certificate serial: 019E20FFEAAF6CCE7E53BE07285D82AF930C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
Manifest number: 058B
Signing time: Wed 13 May 2026 11:01:43 +0000
Manifest this update: Wed 13 May 2026 11:01:43 +0000
Manifest next update: Thu 14 May 2026 11:01:43 +0000
Files and hashes: 1: NO_NOdGhUi5NICPHN4YOqAZOhY8.roa (hash: hIEwCBK/f7i0yd0wKuRkHoyv+CruT7SE0rJgvqMAHUw=)
2: drTT6JcTIsZNegRYurdFqJreTeU.crl (hash: 3QzMjX+KC5P5ict00hT4PsDw691nSMIfUPpZjLlMs48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:ea:af:6c:ce:7e:53:be:07:28:5d:82:af:93:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76b4d3e8971322c64d7a0458bab745a89ade4de5
Validity
Not Before: May 13 11:01:43 2026 GMT
Not After : May 14 11:01:43 2026 GMT
Subject: CN=ee9c09393e6876f8e60b810a35c0a75ef01f085d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7b:da:5a:ad:7d:a0:7b:92:07:0d:ef:dc:0c:
c2:35:a1:cf:e9:a8:f7:da:84:3a:b5:1a:98:e8:b6:
b2:8d:77:08:92:63:e3:82:4f:a7:b3:ce:d4:48:5e:
5a:85:21:2d:b6:12:fb:8f:71:25:e7:16:c3:af:46:
f7:07:24:39:ac:f0:e2:97:96:c0:b4:fe:6a:cc:86:
04:c0:13:75:75:3a:82:9a:a0:29:d0:7b:74:f5:5d:
0d:88:65:26:c6:e3:76:3c:26:b9:38:4b:39:e4:09:
7c:e5:09:75:31:7f:ff:27:e6:f9:f6:90:ce:2c:43:
c3:1f:76:5a:3e:fa:3b:da:16:2d:41:eb:fe:4c:2a:
61:92:26:c1:94:d3:e8:7c:ea:dc:ae:44:05:ef:f4:
aa:29:5a:fa:06:96:19:81:eb:5f:e4:1d:1c:4a:d1:
0b:dc:e7:5e:99:9f:1b:91:d4:04:ef:b6:54:12:6c:
e6:67:7f:98:ff:0f:91:66:6c:a0:dd:c9:7f:0c:34:
f5:44:b7:8d:33:e5:59:21:d5:5c:8b:07:f5:ea:e7:
ec:53:dd:5d:99:97:2b:49:f9:03:8e:7f:66:36:3f:
bb:1b:1d:3c:3e:54:0c:1e:ee:84:08:ac:d2:84:69:
1f:03:c2:ae:f7:75:78:f8:3b:8c:3b:fc:88:9d:31:
ea:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:9C:09:39:3E:68:76:F8:E6:0B:81:0A:35:C0:A7:5E:F0:1F:08:5D
X509v3 Authority Key Identifier:
keyid:76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:5b:15:3e:26:27:ca:a1:89:52:1c:21:bb:8d:51:e2:34:cb:
ad:60:65:11:bc:2c:4f:0d:07:e5:fc:ad:33:9d:26:79:df:bb:
ae:b5:d6:05:f2:61:b3:c3:38:2d:76:88:f7:af:b9:b3:0e:5f:
7c:43:a8:f9:ff:52:07:97:1b:29:a9:53:e3:9a:4e:a8:c4:9e:
e7:7f:c3:d2:8f:f1:de:3a:46:da:0a:42:24:e7:82:82:4c:cc:
26:e0:3c:5a:19:85:26:87:de:04:57:35:48:d5:60:76:36:8b:
4a:38:bc:95:4a:cd:be:ab:f8:21:96:8a:8c:fd:a4:c8:5b:99:
06:2b:f8:d4:df:cd:c9:45:ea:83:11:de:1f:fa:8f:1d:67:46:
1b:01:6f:df:24:ca:35:21:3e:5f:1e:fa:bc:a5:1b:27:dc:b1:
0f:f5:7e:d2:1a:e5:ea:ab:94:84:ac:d3:fb:e9:44:74:f1:ef:
cb:af:1e:bf:5a:6c:cd:71:b5:62:da:69:51:5f:f5:80:d8:8e:
4b:37:57:75:f8:2f:57:3e:ee:98:c6:b7:76:99:37:d5:dc:08:
d8:52:75:6a:1a:14:0b:4f:ca:80:e5:8b:cb:a1:bd:8e:11:79:
c3:f2:22:d4:44:cf:36:7f:19:1e:8c:f8:e6:56:27:d9:e7:7c:
ee:99:6b:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4g/+qvbM5+U74HKF2Cr5MMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2YjRkM2U4OTcxMzIyYzY0ZDdhMDQ1OGJhYjc0NWE4OWFk
ZTRkZTUwHhcNMjYwNTEzMTEwMTQzWhcNMjYwNTE0MTEwMTQzWjAzMTEwLwYDVQQD
EyhlZTljMDkzOTNlNjg3NmY4ZTYwYjgxMGEzNWMwYTc1ZWYwMWYwODVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyXvaWq19oHuSBw3v3AzCNaHP6aj3
2oQ6tRqY6LayjXcIkmPjgk+ns87USF5ahSEtthL7j3El5xbDr0b3ByQ5rPDil5bA
tP5qzIYEwBN1dTqCmqAp0Ht09V0NiGUmxuN2PCa5OEs55Al85Ql1MX//J+b59pDO
LEPDH3ZaPvo72hYtQev+TCphkibBlNPofOrcrkQF7/SqKVr6BpYZgetf5B0cStEL
3OdemZ8bkdQE77ZUEmzmZ3+Y/w+RZmyg3cl/DDT1RLeNM+VZIdVciwf16ufsU91d
mZcrSfkDjn9mNj+7Gx08PlQMHu6ECKzShGkfA8Ku93V4+DuMO/yInTHqIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO6cCTk+aHb45guBCjXAp17wHwhdMB8GA1UdIwQY
MBaAFHa00+iXEyLGTXoEWLq3Raia3k3lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHJUVDZKY1RJc1pOZWdSWXVyZEZxSnJlVGVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi84OTU3ZWItZjQ5Mi00M2NiLWE2MDMt
YjYyNmYzMzE0OTJmLzEvZHJUVDZKY1RJc1pOZWdSWXVyZEZxSnJlVGVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi84OTU3ZWItZjQ5Mi00M2NiLWE2MDMtYjYyNmYzMzE0OTJm
LzEvZHJUVDZKY1RJc1pOZWdSWXVyZEZxSnJlVGVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIFsVPiYn
yqGJUhwhu41R4jTLrWBlEbwsTw0H5fytM50med+7rrXWBfJhs8M4LXaI96+5sw5f
fEOo+f9SB5cbKalT45pOqMSe53/D0o/x3jpG2gpCJOeCgkzMJuA8WhmFJofeBFc1
SNVgdjaLSji8lUrNvqv4IZaKjP2kyFuZBiv41N/NyUXqgxHeH/qPHWdGGwFv3yTK
NSE+Xx76vKUbJ9yxD/V+0hrl6quUhKzT++lEdPHvy68ev1pszXG1YtppUV/1gNiO
SzdXdfgvVz7umMa3dpk31dwI2FJ1ahoUC0/KgOWLy6G9jhF5w/Ii1ETPNn8ZHoz4
5lYn2ed87plrsg==
-----END CERTIFICATE-----
Generated at Wed May 13 13:52:13 2026 by rpki-client