Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
File: 2huf6PGjORf-5-Tb6fq5JeuGJak.mft (raw, json)
Hash identifier: ZyR4Sw67xVWU7Jh9i4XwTc3Xait3rWTF3bt44h5TvBI=
Subject key identifier: 3C:57:AD:D4:8D:8D:D6:59:E8:7C:77:FA:A2:74:16:A8:D7:3C:1F:90
Authority key identifier: DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9
Certificate issuer: /CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9
Certificate serial: 019E1D22785D7B359D15536960EEF34FD33F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
Manifest number: 09B7
Signing time: Tue 12 May 2026 17:00:58 +0000
Manifest this update: Tue 12 May 2026 17:00:58 +0000
Manifest next update: Wed 13 May 2026 17:00:58 +0000
Files and hashes: 1: 2huf6PGjORf-5-Tb6fq5JeuGJak.crl (hash: TPcs6g0Rx0w3QormRGXMDYz2M33mr7HKPzO+ci0qT98=)
2: lEdgyLdP8h_0PnTyGx915-RyS6g.roa (hash: tVEhNOEOaWiBJykoJU0Gzu7c+ZGByjMKsOzSEHCMGFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 17:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:78:5d:7b:35:9d:15:53:69:60:ee:f3:4f:d3:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9
Validity
Not Before: May 12 17:00:58 2026 GMT
Not After : May 13 17:00:58 2026 GMT
Subject: CN=3c57add48d8dd659e87c77faa27416a8d73c1f90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:17:a9:0a:38:fe:9e:1b:8a:84:c4:d2:d1:90:
c1:f4:c7:50:0c:77:12:a5:96:cc:fa:24:83:2d:78:
a4:57:3a:ea:41:f3:c8:18:66:09:91:dd:31:34:b6:
bc:d1:e8:ec:f8:15:ee:01:38:a3:01:2d:b7:c6:68:
40:88:cb:84:6f:78:7b:da:c6:22:d1:83:92:9d:92:
df:d0:3b:78:df:f5:b5:5e:a8:c6:70:e8:50:64:d2:
8e:c6:2e:f9:da:86:44:93:10:4f:01:bb:1b:a7:a4:
bb:b9:d1:45:e2:5a:e8:c8:ce:91:95:5b:2c:6e:8f:
3a:1c:ef:53:4a:22:45:72:7f:57:24:5f:7c:51:2d:
74:3b:87:fb:57:a2:0f:d8:75:ac:1a:19:c5:46:93:
63:8b:fe:36:17:ec:c3:1c:82:0a:7c:e6:bc:ac:39:
9b:9d:74:b0:62:0f:23:11:28:3d:8a:b0:bf:a3:44:
8c:60:d1:75:d7:cf:bb:b9:db:03:a7:a9:61:1f:84:
3b:a7:f6:57:5c:b4:7c:90:c6:b3:cc:4d:9c:0e:0d:
ba:7f:a5:61:63:80:c5:ca:5a:04:da:be:e4:99:02:
7c:6b:75:e9:e8:9e:7f:c2:92:a1:12:5d:f5:03:b8:
4f:3c:83:59:17:c6:fd:0e:23:ed:23:d1:5c:45:b9:
ea:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:57:AD:D4:8D:8D:D6:59:E8:7C:77:FA:A2:74:16:A8:D7:3C:1F:90
X509v3 Authority Key Identifier:
keyid:DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:f1:66:b8:d7:f9:a2:1f:8b:cf:08:6b:22:f3:96:41:47:0d:
17:ef:d7:95:90:3e:66:cd:3e:a3:e7:20:2d:2a:05:51:ff:db:
ef:c7:7b:b2:9b:a9:cd:a1:96:79:27:ed:19:37:ee:34:76:d4:
8b:a6:af:44:8a:8b:28:58:2d:13:16:e7:3a:06:bd:ac:65:cc:
af:15:fa:60:c1:89:cf:d6:09:94:16:34:18:36:82:9b:9f:49:
2b:07:e0:d0:2d:8d:13:c7:b4:51:d4:58:47:06:87:c1:2d:cf:
16:61:88:90:3e:b1:d5:26:9e:8b:bb:ee:b9:a1:c7:93:a4:4f:
18:fa:1b:01:9d:32:33:8d:da:7c:1d:14:6c:91:2a:92:20:6e:
5b:6f:86:3f:4a:a5:be:ca:40:d3:a5:5b:66:23:da:25:ff:af:
05:97:05:cd:83:b8:50:ed:fc:b8:f4:5c:e0:82:bd:61:31:9e:
51:e8:53:63:de:a0:50:56:16:89:6e:36:bd:c1:69:17:46:3f:
a6:4e:eb:c6:f2:15:9b:ee:d5:12:df:dc:56:e7:26:3c:fa:2c:
36:1f:27:a1:fc:55:03:42:fc:6c:a4:f9:04:6b:0d:f6:d6:10:
d7:53:e0:56:76:d3:ad:aa:5f:4b:5c:95:c2:38:16:af:4c:d2:
1f:27:95:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dInhdezWdFVNpYO7zT9M/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMWI5ZmU4ZjFhMzM5MTdmZWU3ZTRkYmU5ZmFiOTI1ZWI4
NjI1YTkwHhcNMjYwNTEyMTcwMDU4WhcNMjYwNTEzMTcwMDU4WjAzMTEwLwYDVQQD
EygzYzU3YWRkNDhkOGRkNjU5ZTg3Yzc3ZmFhMjc0MTZhOGQ3M2MxZjkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6RepCjj+nhuKhMTS0ZDB9MdQDHcS
pZbM+iSDLXikVzrqQfPIGGYJkd0xNLa80ejs+BXuATijAS23xmhAiMuEb3h72sYi
0YOSnZLf0Dt43/W1XqjGcOhQZNKOxi752oZEkxBPAbsbp6S7udFF4lroyM6RlVss
bo86HO9TSiJFcn9XJF98US10O4f7V6IP2HWsGhnFRpNji/42F+zDHIIKfOa8rDmb
nXSwYg8jESg9irC/o0SMYNF118+7udsDp6lhH4Q7p/ZXXLR8kMazzE2cDg26f6Vh
Y4DFyloE2r7kmQJ8a3Xp6J5/wpKhEl31A7hPPINZF8b9DiPtI9FcRbnqTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDxXrdSNjdZZ6Hx3+qJ0FqjXPB+QMB8GA1UdIwQY
MBaAFNobn+jxozkX/ufk2+n6uSXrhiWpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmh1ZjZQR2pPUmYtNS1UYjZmcTVKZXVHSmFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy80MmExNjYtOGE4Ni00OGRhLWJiOTYt
NzlmZDUwMjNkZTM2LzEvMmh1ZjZQR2pPUmYtNS1UYjZmcTVKZXVHSmFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy80MmExNjYtOGE4Ni00OGRhLWJiOTYtNzlmZDUwMjNkZTM2
LzEvMmh1ZjZQR2pPUmYtNS1UYjZmcTVKZXVHSmFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALvFmuNf5
oh+LzwhrIvOWQUcNF+/XlZA+Zs0+o+cgLSoFUf/b78d7spupzaGWeSftGTfuNHbU
i6avRIqLKFgtExbnOga9rGXMrxX6YMGJz9YJlBY0GDaCm59JKwfg0C2NE8e0UdRY
RwaHwS3PFmGIkD6x1Saei7vuuaHHk6RPGPobAZ0yM43afB0UbJEqkiBuW2+GP0ql
vspA06VbZiPaJf+vBZcFzYO4UO38uPRc4IK9YTGeUehTY96gUFYWiW42vcFpF0Y/
pk7rxvIVm+7VEt/cVucmPPosNh8nofxVA0L8bKT5BGsN9tYQ11PgVnbTrapfS1yV
wjgWr0zSHyeVKg==
-----END CERTIFICATE-----
Generated at Wed May 13 03:18:59 2026 by rpki-client