Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
File: 2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft (raw, json)
Hash identifier: v9ADkzNLFJ3BSuUNaujhPvBVQ0dBpWTQlVmxPKIq/lk=
Subject key identifier: 4D:14:F5:40:67:A5:97:54:2B:87:3E:D5:2A:E0:7D:9B:7C:E2:01:9B
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 019E1D23431EFB9BA2D73450C6D678D1AC00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
Manifest number: 1049
Signing time: Tue 12 May 2026 17:01:50 +0000
Manifest this update: Tue 12 May 2026 17:01:50 +0000
Manifest next update: Wed 13 May 2026 17:01:50 +0000
Files and hashes: 1: 2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl (hash: OagpkNGVTqvgQHuL3p5j0zDcptdz2AuUhTOSG4qXpko=)
2: BTAvCBcRqPKnpuDR5p2Gq8wAQ3o.roa (hash: PhNCstC0mG6N6OSSLCaGAFo+BJH+pelpZfoyx1/vinI=)
3: LZIb0ymnvJVoat3eKMXkwKhNB3s.roa (hash: MiIObMs9Gh9JbmWmMRy+8OGwOPF9Eqpf22VuDL3pf3g=)
4: zWYuzq0jad5Hmb8WA-NfP-3d2Zw.roa (hash: Yyyb//vmnQwxfSQUibaXnsRT2TgMJg/Syp1I0vzXlrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:23:43:1e:fb:9b:a2:d7:34:50:c6:d6:78:d1:ac:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: May 12 17:01:50 2026 GMT
Not After : May 13 17:01:50 2026 GMT
Subject: CN=4d14f54067a597542b873ed52ae07d9b7ce2019b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a6:a4:24:be:cf:f9:90:c0:8b:96:50:fd:34:
30:ca:72:d8:43:1c:32:e4:aa:9d:f7:92:c3:c2:a5:
53:62:19:7d:3a:24:0e:2d:d9:0b:6a:d3:b1:cd:ad:
11:94:74:24:ed:6b:a0:e6:f0:27:57:80:4f:12:06:
87:50:57:6c:88:12:11:0a:9a:b2:14:ef:03:59:b7:
a4:2e:b2:05:78:0b:88:2a:04:44:75:73:4e:4d:53:
f1:a1:10:55:73:4f:44:38:ae:7b:71:f1:e3:3c:b5:
41:58:88:dd:47:0c:f5:2e:d2:e8:fc:cd:d0:77:f1:
3a:fe:a0:a8:e4:88:8e:31:44:b8:57:68:7d:de:96:
18:8c:b9:0d:c2:f4:52:55:69:ba:fb:03:23:d7:f2:
62:ab:17:35:f9:61:e8:c7:ad:ff:59:d8:f2:9d:f4:
c1:e2:4c:8d:19:56:7c:7b:c3:7b:a7:f6:5a:28:aa:
e5:b1:f8:bc:7c:d5:10:5e:73:89:1e:aa:fc:12:b9:
97:d4:d2:a2:c3:85:47:18:1c:03:a2:b9:63:3c:95:
b4:a9:69:51:32:06:81:3b:6c:ec:18:e9:ad:ee:6a:
9f:da:13:e5:b0:30:db:63:1c:bd:96:00:e5:a4:2d:
22:c3:09:11:c7:db:aa:44:f5:58:01:f8:e6:9d:4f:
0c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:14:F5:40:67:A5:97:54:2B:87:3E:D5:2A:E0:7D:9B:7C:E2:01:9B
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:8a:d8:58:e6:fc:fc:f2:20:d1:1f:7d:6c:6c:10:02:20:76:
01:13:38:31:d5:a4:f3:70:1f:ff:ac:b7:9c:73:65:e8:6b:47:
9a:f6:d3:31:37:01:40:ac:cf:4a:2f:8c:34:f7:ac:fb:43:cb:
c8:bb:cf:1c:9e:36:e4:8f:32:4f:21:d8:ab:9f:01:d4:b4:de:
d3:7a:0f:a7:06:ef:67:3b:5c:6c:8d:b8:c9:3e:39:4c:13:4c:
12:3b:53:4d:d5:c8:5d:49:99:2a:d2:ef:24:dc:4d:b6:06:8f:
41:42:aa:6c:9d:9f:ca:99:6a:a4:fa:25:bc:92:58:a9:6a:f2:
9b:e4:d8:6b:eb:af:a2:92:26:92:83:7f:8d:1c:a2:8e:33:1a:
ac:cf:ff:4e:c3:f3:4d:61:0a:29:f3:0a:0b:50:e7:0c:8c:29:
f8:0f:02:a5:97:6b:da:4c:99:a5:15:7c:fb:91:b7:94:db:11:
8d:77:20:f8:6a:1e:9f:a0:c9:cb:04:d8:41:08:c4:e1:22:83:
d7:25:42:4a:24:0c:71:53:fe:66:8f:4e:fb:ee:57:53:94:0a:
a7:5e:04:85:10:84:b9:f8:28:82:da:ec:b4:1b:ac:99:20:a4:
19:51:12:b4:3a:3b:ad:01:82:72:b0:82:06:0c:b6:0c:36:8a:
2f:35:5f:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dI0Me+5ui1zRQxtZ40awAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNzBjNDQxZmI4OTJiOGM5ODE2NTM0ODg1MDY5ZmNkMzMw
MGM5YTQwHhcNMjYwNTEyMTcwMTUwWhcNMjYwNTEzMTcwMTUwWjAzMTEwLwYDVQQD
Eyg0ZDE0ZjU0MDY3YTU5NzU0MmI4NzNlZDUyYWUwN2Q5YjdjZTIwMTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl6akJL7P+ZDAi5ZQ/TQwynLYQxwy
5Kqd95LDwqVTYhl9OiQOLdkLatOxza0RlHQk7Wug5vAnV4BPEgaHUFdsiBIRCpqy
FO8DWbekLrIFeAuIKgREdXNOTVPxoRBVc09EOK57cfHjPLVBWIjdRwz1LtLo/M3Q
d/E6/qCo5IiOMUS4V2h93pYYjLkNwvRSVWm6+wMj1/Jiqxc1+WHox63/WdjynfTB
4kyNGVZ8e8N7p/ZaKKrlsfi8fNUQXnOJHqr8ErmX1NKiw4VHGBwDorljPJW0qWlR
MgaBO2zsGOmt7mqf2hPlsDDbYxy9lgDlpC0iwwkRx9uqRPVYAfjmnU8M1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE0U9UBnpZdUK4c+1SrgfZt84gGbMB8GA1UdIwQY
MBaAFNpwxEH7iSuMmBZTSIUGn80zAMmkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMm5ERVFmdUpLNHlZRmxOSWhRYWZ6VE1BeWFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9lNTNkZTUtMWI1Zi00NDY3LWE2OGMt
MTVmYzBiNjhmODQ0LzEvMm5ERVFmdUpLNHlZRmxOSWhRYWZ6VE1BeWFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS9lNTNkZTUtMWI1Zi00NDY3LWE2OGMtMTVmYzBiNjhmODQ0
LzEvMm5ERVFmdUpLNHlZRmxOSWhRYWZ6VE1BeWFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQYrYWOb8
/PIg0R99bGwQAiB2ARM4MdWk83Af/6y3nHNl6GtHmvbTMTcBQKzPSi+MNPes+0PL
yLvPHJ425I8yTyHYq58B1LTe03oPpwbvZztcbI24yT45TBNMEjtTTdXIXUmZKtLv
JNxNtgaPQUKqbJ2fyplqpPolvJJYqWrym+TYa+uvopImkoN/jRyijjMarM//TsPz
TWEKKfMKC1DnDIwp+A8CpZdr2kyZpRV8+5G3lNsRjXcg+Goen6DJywTYQQjE4SKD
1yVCSiQMcVP+Zo9O++5XU5QKp14EhRCEufgogtrstBusmSCkGVEStDo7rQGCcrCC
Bgy2DDaKLzVfcQ==
-----END CERTIFICATE-----
Generated at Tue May 12 21:15:31 2026 by rpki-client