Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft
File: 2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft (raw, json)
Hash identifier: eHmj0onEjT414oqQYbxfupveiWaA3Yi9N6IEDWFd4tc=
Subject key identifier: A6:95:40:00:D8:D8:F0:F0:FB:7F:71:32:71:64:73:4E:26:A4:F6:C4
Authority key identifier: D8:82:A1:97:34:0D:35:84:E6:AC:17:C1:FB:2A:99:00:AE:4F:60:3C
Certificate issuer: /CN=d882a197340d3584e6ac17c1fb2a9900ae4f603c
Certificate serial: 019D2704C28D5853F16A726545DE0758260C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft
Manifest number: 05D8
Signing time: Wed 25 Mar 2026 22:01:56 +0000
Manifest this update: Wed 25 Mar 2026 22:01:56 +0000
Manifest next update: Thu 26 Mar 2026 22:01:56 +0000
Files and hashes: 1: 2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl (hash: ZwAIYXKgpGE7OPpiR4by+2Er1MrWRuI8RdL3uW4U8hM=)
2: DvIctBZSmJLEtaUcD7bCK6NQCY0.roa (hash: oCuijjXHgGm50a2aRFIYkyg82b9NCKAQLaPxn1yaYag=)
3: boj2I10q-Vtxm1mDxVZdZ8e5Bl8.roa (hash: DUZK7UDn7wM47XNLA1A7zjQp12qeza+x17ykgXtiqyU=)
4: ndIFovkOM59q_GrNUdf0rAGkzdk.roa (hash: IjeHyVSgVr9enrcMavU9+Zitjl1p4kguwLZr/wm0Fuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:c2:8d:58:53:f1:6a:72:65:45:de:07:58:26:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d882a197340d3584e6ac17c1fb2a9900ae4f603c
Validity
Not Before: Mar 25 22:01:56 2026 GMT
Not After : Mar 26 22:01:56 2026 GMT
Subject: CN=a6954000d8d8f0f0fb7f71327164734e26a4f6c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:76:5d:87:c8:1d:69:b0:c4:57:e1:10:51:b5:
54:c0:a5:26:4e:ee:52:9b:82:ec:2d:49:72:d0:cc:
26:11:55:18:8d:20:51:67:fc:b1:cb:46:9e:e7:cd:
9b:55:58:1e:7a:c1:db:a8:58:b5:c8:da:cf:5a:58:
ae:4d:7e:bc:21:70:1e:42:d3:45:09:5d:99:92:e2:
d8:f0:81:cc:91:f0:e6:fb:3e:26:5e:61:c3:3c:7d:
66:69:b2:10:10:83:c4:e7:a7:12:08:bb:9d:0d:27:
0b:11:69:ab:62:83:d4:a4:87:96:ac:61:e4:c5:ea:
99:50:b1:12:c8:b8:c9:dd:3d:9a:c6:54:91:2e:84:
51:0e:38:4d:21:7b:2a:b3:33:50:b2:fd:1a:fb:e2:
c0:59:e1:e1:9c:7b:f3:a8:4b:10:16:19:d1:38:32:
62:b7:ea:09:50:41:eb:ec:e5:8f:89:f7:1e:42:fe:
27:e8:bc:b1:cb:91:16:2d:5e:cf:ab:7c:f5:6b:94:
ee:34:15:9b:a9:da:1d:a7:5c:2e:92:b5:4f:3d:b7:
2f:88:43:9f:63:9e:f2:12:10:24:57:55:00:93:60:
69:fe:04:b7:22:d8:be:11:45:4a:35:7e:38:a8:02:
86:28:e4:27:03:ff:fb:0a:9a:00:d9:c3:2c:a8:ac:
da:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:95:40:00:D8:D8:F0:F0:FB:7F:71:32:71:64:73:4E:26:A4:F6:C4
X509v3 Authority Key Identifier:
keyid:D8:82:A1:97:34:0D:35:84:E6:AC:17:C1:FB:2A:99:00:AE:4F:60:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:58:1f:21:b1:ea:91:84:64:8d:0c:29:f3:33:28:3f:27:dc:
69:41:fa:4c:c0:f7:61:b8:c4:f0:d9:37:a5:60:a2:87:70:cb:
e4:18:9c:a3:db:64:8f:c0:98:f6:f0:38:d2:6c:4d:24:59:c1:
93:06:1b:e5:42:ca:19:64:f1:29:db:95:b0:3d:d9:d4:64:4e:
a0:fa:02:c1:77:28:f7:63:75:18:08:68:ac:bd:c5:c9:b9:7b:
ec:91:c5:54:5b:be:65:cb:4f:eb:1e:0c:af:62:9b:98:a6:de:
04:32:66:6a:8e:a1:85:26:68:e7:bf:2c:56:bc:db:38:b6:4e:
c0:ac:66:c8:87:17:6b:ff:25:a5:fc:90:f5:2a:b7:f5:40:94:
72:49:02:0d:32:86:3a:49:a6:42:9a:30:7a:a6:8c:4f:74:ce:
70:9c:12:cf:16:24:07:c0:a4:0f:fc:f2:ee:28:2e:d3:34:22:
35:b4:3c:11:98:ae:3c:6c:19:9f:b9:f4:f7:ce:06:cf:10:3d:
fe:3a:9b:99:d5:f8:f8:6a:7b:5f:31:46:21:a1:2d:b2:81:a7:
02:7b:86:dd:26:4c:63:49:0d:fe:09:c2:60:dc:33:60:a5:4c:
6f:28:d7:0e:0a:fb:22:ae:f7:84:49:f5:e3:7f:60:c1:ab:e3:
ce:45:2b:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBMKNWFPxanJlRd4HWCYMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ODJhMTk3MzQwZDM1ODRlNmFjMTdjMWZiMmE5OTAwYWU0
ZjYwM2MwHhcNMjYwMzI1MjIwMTU2WhcNMjYwMzI2MjIwMTU2WjAzMTEwLwYDVQQD
EyhhNjk1NDAwMGQ4ZDhmMGYwZmI3ZjcxMzI3MTY0NzM0ZTI2YTRmNmM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHZdh8gdabDEV+EQUbVUwKUmTu5S
m4LsLUly0MwmEVUYjSBRZ/yxy0ae582bVVgeesHbqFi1yNrPWliuTX68IXAeQtNF
CV2ZkuLY8IHMkfDm+z4mXmHDPH1mabIQEIPE56cSCLudDScLEWmrYoPUpIeWrGHk
xeqZULESyLjJ3T2axlSRLoRRDjhNIXsqszNQsv0a++LAWeHhnHvzqEsQFhnRODJi
t+oJUEHr7OWPifceQv4n6Lyxy5EWLV7Pq3z1a5TuNBWbqdodp1wukrVPPbcviEOf
Y57yEhAkV1UAk2Bp/gS3Iti+EUVKNX44qAKGKOQnA//7CpoA2cMsqKzakwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKaVQADY2PDw+39xMnFkc04mpPbEMB8GA1UdIwQY
MBaAFNiCoZc0DTWE5qwXwfsqmQCuT2A8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMklLaGx6UU5OWVRtckJmQi15cVpBSzVQWUR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS84NDFjNDMtMDI2OS00Mjg5LThmYTUt
YjA1YWU1Y2EyZDVlLzEvMklLaGx6UU5OWVRtckJmQi15cVpBSzVQWUR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS84NDFjNDMtMDI2OS00Mjg5LThmYTUtYjA1YWU1Y2EyZDVl
LzEvMklLaGx6UU5OWVRtckJmQi15cVpBSzVQWUR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlFgfIbHq
kYRkjQwp8zMoPyfcaUH6TMD3YbjE8Nk3pWCih3DL5Bico9tkj8CY9vA40mxNJFnB
kwYb5ULKGWTxKduVsD3Z1GROoPoCwXco92N1GAhorL3Fybl77JHFVFu+ZctP6x4M
r2KbmKbeBDJmao6hhSZo578sVrzbOLZOwKxmyIcXa/8lpfyQ9Sq39UCUckkCDTKG
OkmmQpoweqaMT3TOcJwSzxYkB8CkD/zy7igu0zQiNbQ8EZiuPGwZn7n0984GzxA9
/jqbmdX4+Gp7XzFGIaEtsoGnAnuG3SZMY0kN/gnCYNwzYKVMbyjXDgr7Iq73hEn1
439gwavjzkUrUw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:55:14 2026 by rpki-client