Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e4cdc7-4001-4d09-9b28-de4af229e3ba/1/2N0PBmo-JPGmYxEqHyjp2DsuzXM.mft
File: 2N0PBmo-JPGmYxEqHyjp2DsuzXM.mft (raw, json)
Hash identifier: VlE5J0+A/DPAFemCO5YoSjpE+8ALvUEs3XWWtTTRKUQ=
Subject key identifier: 14:71:64:D7:FC:16:03:6E:EF:85:00:02:57:98:2F:6F:7C:4D:87:0F
Authority key identifier: D8:DD:0F:06:6A:3E:24:F1:A6:63:11:2A:1F:28:E9:D8:3B:2E:CD:73
Certificate issuer: /CN=d8dd0f066a3e24f1a663112a1f28e9d83b2ecd73
Certificate serial: 019E1C0FBB7E1DAD6E4FEA0C39B428AD4518
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2N0PBmo-JPGmYxEqHyjp2DsuzXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e4cdc7-4001-4d09-9b28-de4af229e3ba/1/2N0PBmo-JPGmYxEqHyjp2DsuzXM.mft
Manifest number: 012C
Signing time: Tue 12 May 2026 12:00:53 +0000
Manifest this update: Tue 12 May 2026 12:00:53 +0000
Manifest next update: Wed 13 May 2026 12:00:53 +0000
Files and hashes: 1: 2N0PBmo-JPGmYxEqHyjp2DsuzXM.crl (hash: iUnAFc+YxODjjTorlR6yyGnbCgCy9fh3uqX413LPmGI=)
2: kpMx_jDvAD2J4w_3QrPa_7EmM7k.roa (hash: s8PvuEvsSULDst+nlshWZnZoN6R6lxtcg9VvUqcdZGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e4cdc7-4001-4d09-9b28-de4af229e3ba/1/2N0PBmo-JPGmYxEqHyjp2DsuzXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e4cdc7-4001-4d09-9b28-de4af229e3ba/1/2N0PBmo-JPGmYxEqHyjp2DsuzXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2N0PBmo-JPGmYxEqHyjp2DsuzXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:0f:bb:7e:1d:ad:6e:4f:ea:0c:39:b4:28:ad:45:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8dd0f066a3e24f1a663112a1f28e9d83b2ecd73
Validity
Not Before: May 12 12:00:53 2026 GMT
Not After : May 13 12:00:53 2026 GMT
Subject: CN=147164d7fc16036eef85000257982f6f7c4d870f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:52:db:9f:2b:29:c0:3b:f4:eb:d4:1e:42:9c:
25:e4:5a:33:90:77:95:a0:ae:07:3c:e8:1a:8f:06:
d7:d6:47:8e:0b:f2:c8:77:15:4c:2a:01:70:32:56:
b3:0b:ba:79:23:37:1d:84:67:06:15:95:3f:de:17:
48:1c:77:a9:08:3f:af:1f:60:4e:11:0d:94:ba:4f:
a9:4d:b2:4d:9c:e6:d3:3f:3b:5d:6b:4d:4b:ae:bd:
03:a6:c4:6e:79:91:77:65:56:cc:ea:99:07:ba:14:
e0:dd:04:45:22:c8:21:72:7d:e4:3e:7c:e7:26:06:
9a:fc:b8:8f:d8:f0:31:0c:be:d4:b2:d0:f2:d1:22:
55:45:23:00:86:5a:e7:fe:55:86:ee:52:5b:c7:ae:
03:4a:c2:ad:ae:6d:19:72:f1:1a:cc:dd:15:c1:58:
3a:14:11:5a:a0:a6:23:c1:4a:a2:1e:da:26:2e:6b:
ca:a3:42:15:19:02:f1:f4:ac:07:0a:87:ec:0b:55:
31:a2:b3:5b:23:6a:31:a3:f4:f3:4e:d8:b3:d5:f0:
af:26:a8:79:e2:b4:a6:66:13:b9:9d:05:7d:f6:1d:
11:b1:c1:eb:cd:c3:02:e4:85:c1:4b:b7:02:55:ef:
87:83:2e:8a:60:eb:5c:ad:9e:ea:df:f7:7a:b0:ea:
1d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:71:64:D7:FC:16:03:6E:EF:85:00:02:57:98:2F:6F:7C:4D:87:0F
X509v3 Authority Key Identifier:
keyid:D8:DD:0F:06:6A:3E:24:F1:A6:63:11:2A:1F:28:E9:D8:3B:2E:CD:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2N0PBmo-JPGmYxEqHyjp2DsuzXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e4cdc7-4001-4d09-9b28-de4af229e3ba/1/2N0PBmo-JPGmYxEqHyjp2DsuzXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e4cdc7-4001-4d09-9b28-de4af229e3ba/1/2N0PBmo-JPGmYxEqHyjp2DsuzXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:7c:9f:01:f5:47:26:b2:18:bd:90:60:b0:e0:00:71:82:ed:
d0:d7:37:76:35:ec:57:ba:eb:39:6e:91:8d:e2:93:fc:a0:e2:
70:e4:93:c5:20:55:49:da:be:eb:95:1c:c4:ba:cd:c6:47:c5:
96:a5:81:98:89:d6:3d:e6:b8:63:b3:2e:f0:7a:ec:ee:97:1e:
a9:e7:40:4a:1c:b1:d3:b3:9c:8a:62:11:48:8d:a3:c8:6d:b9:
77:8b:95:4b:01:be:aa:29:86:6c:ea:6e:8c:7e:42:e8:62:95:
ad:cb:87:2e:d2:d3:bf:7b:c0:23:33:3d:40:8f:bc:ba:68:2d:
67:84:f2:64:64:84:59:68:2d:9e:5c:e8:e2:c5:8c:05:12:b9:
cf:d2:64:78:24:5d:48:0f:aa:5d:e3:04:1e:92:77:99:f3:25:
6b:28:09:4d:97:e6:12:6e:b1:2a:8d:9f:e9:5a:ec:60:12:9b:
12:b8:89:98:d3:e5:d8:7d:62:65:6f:75:ba:33:23:f2:62:a7:
de:ea:9b:7e:00:ff:fa:c1:fe:be:3c:bf:15:02:cc:d1:d1:d4:
3a:46:fd:ed:a6:32:7d:30:d0:7d:b7:d5:13:94:46:09:62:1f:
98:ea:d8:a5:87:d4:e5:0a:64:46:93:bc:1d:fa:ae:09:21:a8:
3d:ce:37:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4cD7t+Ha1uT+oMObQorUUYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZGQwZjA2NmEzZTI0ZjFhNjYzMTEyYTFmMjhlOWQ4M2Iy
ZWNkNzMwHhcNMjYwNTEyMTIwMDUzWhcNMjYwNTEzMTIwMDUzWjAzMTEwLwYDVQQD
EygxNDcxNjRkN2ZjMTYwMzZlZWY4NTAwMDI1Nzk4MmY2ZjdjNGQ4NzBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAulLbnyspwDv069QeQpwl5FozkHeV
oK4HPOgajwbX1keOC/LIdxVMKgFwMlazC7p5IzcdhGcGFZU/3hdIHHepCD+vH2BO
EQ2Uuk+pTbJNnObTPztda01Lrr0DpsRueZF3ZVbM6pkHuhTg3QRFIsghcn3kPnzn
Jgaa/LiP2PAxDL7UstDy0SJVRSMAhlrn/lWG7lJbx64DSsKtrm0ZcvEazN0VwVg6
FBFaoKYjwUqiHtomLmvKo0IVGQLx9KwHCofsC1UxorNbI2oxo/TzTtiz1fCvJqh5
4rSmZhO5nQV99h0RscHrzcMC5IXBS7cCVe+Hgy6KYOtcrZ7q3/d6sOodvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBRxZNf8FgNu74UAAleYL298TYcPMB8GA1UdIwQY
MBaAFNjdDwZqPiTxpmMRKh8o6dg7Ls1zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk4wUEJtby1KUEdtWXhFcUh5anAyRHN1elhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lNGNkYzctNDAwMS00ZDA5LTliMjgt
ZGU0YWYyMjllM2JhLzEvMk4wUEJtby1KUEdtWXhFcUh5anAyRHN1elhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9lNGNkYzctNDAwMS00ZDA5LTliMjgtZGU0YWYyMjllM2Jh
LzEvMk4wUEJtby1KUEdtWXhFcUh5anAyRHN1elhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAinyfAfVH
JrIYvZBgsOAAcYLt0Nc3djXsV7rrOW6RjeKT/KDicOSTxSBVSdq+65UcxLrNxkfF
lqWBmInWPea4Y7Mu8Hrs7pceqedAShyx07OcimIRSI2jyG25d4uVSwG+qimGbOpu
jH5C6GKVrcuHLtLTv3vAIzM9QI+8umgtZ4TyZGSEWWgtnlzo4sWMBRK5z9JkeCRd
SA+qXeMEHpJ3mfMlaygJTZfmEm6xKo2f6VrsYBKbEriJmNPl2H1iZW91ujMj8mKn
3uqbfgD/+sH+vjy/FQLM0dHUOkb97aYyfTDQfbfVE5RGCWIfmOrYpYfU5QpkRpO8
HfquCSGoPc43Ig==
-----END CERTIFICATE-----
Generated at Tue May 12 21:42:45 2026 by rpki-client