Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft
File: 2D73FCmY5OZWYFPixjpwgIxuojc.mft (raw, json)
Hash identifier: VZpa6lWUuhjljmwf7RhdVjLE6RX+awiCsY15qcT8xsQ=
Subject key identifier: 49:28:B9:6A:AC:D9:61:5C:CA:79:06:A7:B6:50:2E:A5:A8:2A:AC:9B
Authority key identifier: D8:3E:F7:14:29:98:E4:E6:56:60:53:E2:C6:3A:70:80:8C:6E:A2:37
Certificate issuer: /CN=d83ef7142998e4e6566053e2c63a70808c6ea237
Certificate serial: 019E1DC731A3E3AA4A06B3F4D9E98FD6CF92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2D73FCmY5OZWYFPixjpwgIxuojc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft
Manifest number: 0486
Signing time: Tue 12 May 2026 20:00:54 +0000
Manifest this update: Tue 12 May 2026 20:00:54 +0000
Manifest next update: Wed 13 May 2026 20:00:54 +0000
Files and hashes: 1: 2D73FCmY5OZWYFPixjpwgIxuojc.crl (hash: lHfLoO/dQEAogzyK81iw689sF4+gRuPfWmFSmtC4eKk=)
2: nNN8oPaWzwsAkuqBUkdubOWtVpo.roa (hash: 0qPiY5OdqzEcTjsFlVm1KfW2HObtyaiMymvYvbm7kPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2D73FCmY5OZWYFPixjpwgIxuojc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:31:a3:e3:aa:4a:06:b3:f4:d9:e9:8f:d6:cf:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d83ef7142998e4e6566053e2c63a70808c6ea237
Validity
Not Before: May 12 20:00:54 2026 GMT
Not After : May 13 20:00:54 2026 GMT
Subject: CN=4928b96aacd9615cca7906a7b6502ea5a82aac9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:46:ca:7c:2b:ab:0b:25:42:1a:7b:9c:1c:ed:
aa:f4:d7:d2:62:09:ba:0b:b1:45:d5:ce:77:95:13:
01:d6:68:e9:b5:9a:18:5c:f4:3a:4b:28:a1:c1:d4:
97:17:c5:53:50:aa:26:f3:82:92:a2:53:0c:a8:ff:
9b:68:fd:19:34:cb:22:c9:49:f2:d7:3e:08:9e:44:
d6:08:18:b7:1b:81:db:bc:c5:f4:76:34:ed:e1:5c:
de:76:7d:b9:42:ba:97:17:2f:17:8e:0f:9b:f2:bd:
0a:3d:99:24:02:13:bc:36:2b:93:80:6c:53:8b:92:
c5:a8:71:4f:a8:6e:b2:b8:74:d6:2a:15:16:be:ca:
36:07:6b:7f:8d:b8:c6:df:b0:d0:98:1f:f8:37:01:
3f:d8:05:5b:ca:fd:5b:bd:6f:56:6e:e0:c0:ea:5b:
26:f4:f6:33:79:a2:d6:c3:85:94:6b:4b:32:a4:62:
70:c2:03:a0:ae:0e:fd:3f:38:2e:9e:d0:3f:37:6b:
b4:70:8f:c8:9b:bc:fb:b8:6a:9b:c8:8f:c2:6a:20:
70:6d:20:72:53:38:e4:23:fd:73:72:2a:17:d6:fb:
e1:49:e3:ad:2a:c1:f5:1b:40:65:71:ca:dd:b1:a7:
b3:e7:10:9d:71:9a:af:be:6c:e7:a5:5a:ba:64:7c:
5d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:28:B9:6A:AC:D9:61:5C:CA:79:06:A7:B6:50:2E:A5:A8:2A:AC:9B
X509v3 Authority Key Identifier:
keyid:D8:3E:F7:14:29:98:E4:E6:56:60:53:E2:C6:3A:70:80:8C:6E:A2:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2D73FCmY5OZWYFPixjpwgIxuojc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:3e:82:52:8c:d7:d8:47:cb:df:e2:13:2f:25:b8:5c:83:e9:
d8:ae:67:bc:e3:25:84:df:cf:c0:1a:33:48:3d:e5:8b:26:75:
37:51:15:31:d8:51:1f:f0:0e:1b:c6:f2:ac:d3:fe:2c:d7:59:
1c:44:16:41:72:5d:8d:c4:2c:8f:9e:39:85:b7:c7:3a:8b:eb:
99:7a:19:00:cf:b4:e6:7a:e9:38:51:c8:30:75:20:a3:0e:fe:
81:84:15:ab:14:86:8a:10:3e:e3:5d:c0:21:3b:8c:54:16:c6:
60:f6:bb:46:84:6e:ea:5f:8c:d7:13:3d:77:34:7b:25:69:14:
9a:12:f9:6e:71:9b:9f:cc:39:b1:f6:0e:6b:93:b6:c2:95:00:
5d:0b:59:4d:4c:b2:1f:5d:c7:55:5a:26:7d:c0:4d:cf:2d:38:
33:28:cf:b6:a5:78:e9:60:4c:fa:4d:07:4c:18:6f:21:0c:f6:
62:5b:28:e8:26:df:99:d5:30:e2:33:27:78:28:24:33:6d:01:
d1:92:88:cd:18:4b:cd:14:e3:35:dc:b4:88:c5:6f:54:34:c4:
48:31:e0:ed:df:a2:22:e7:99:62:c9:f3:92:c1:2d:f4:7e:1f:
80:ed:ff:ce:d9:77:86:c6:3c:c5:49:e8:6f:8a:f0:0c:3c:f5:
e3:83:b1:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dxzGj46pKBrP02emP1s+SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4M2VmNzE0Mjk5OGU0ZTY1NjYwNTNlMmM2M2E3MDgwOGM2
ZWEyMzcwHhcNMjYwNTEyMjAwMDU0WhcNMjYwNTEzMjAwMDU0WjAzMTEwLwYDVQQD
Eyg0OTI4Yjk2YWFjZDk2MTVjY2E3OTA2YTdiNjUwMmVhNWE4MmFhYzliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUbKfCurCyVCGnucHO2q9NfSYgm6
C7FF1c53lRMB1mjptZoYXPQ6SyihwdSXF8VTUKom84KSolMMqP+baP0ZNMsiyUny
1z4InkTWCBi3G4HbvMX0djTt4Vzedn25QrqXFy8Xjg+b8r0KPZkkAhO8NiuTgGxT
i5LFqHFPqG6yuHTWKhUWvso2B2t/jbjG37DQmB/4NwE/2AVbyv1bvW9WbuDA6lsm
9PYzeaLWw4WUa0sypGJwwgOgrg79PzguntA/N2u0cI/Im7z7uGqbyI/CaiBwbSBy
UzjkI/1zcioX1vvhSeOtKsH1G0Blccrdsaez5xCdcZqvvmznpVq6ZHxdXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEkouWqs2WFcynkGp7ZQLqWoKqybMB8GA1UdIwQY
MBaAFNg+9xQpmOTmVmBT4sY6cICMbqI3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkQ3M0ZDbVk1T1pXWUZQaXhqcHdnSXh1b2pjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy83ZmNiMzUtNDQwOC00MjE4LTk4NjIt
N2Y3NWExYjEwZWMzLzEvMkQ3M0ZDbVk1T1pXWUZQaXhqcHdnSXh1b2pjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy83ZmNiMzUtNDQwOC00MjE4LTk4NjItN2Y3NWExYjEwZWMz
LzEvMkQ3M0ZDbVk1T1pXWUZQaXhqcHdnSXh1b2pjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHz6CUozX
2EfL3+ITLyW4XIPp2K5nvOMlhN/PwBozSD3liyZ1N1EVMdhRH/AOG8byrNP+LNdZ
HEQWQXJdjcQsj545hbfHOovrmXoZAM+05nrpOFHIMHUgow7+gYQVqxSGihA+413A
ITuMVBbGYPa7RoRu6l+M1xM9dzR7JWkUmhL5bnGbn8w5sfYOa5O2wpUAXQtZTUyy
H13HVVomfcBNzy04MyjPtqV46WBM+k0HTBhvIQz2Ylso6CbfmdUw4jMneCgkM20B
0ZKIzRhLzRTjNdy0iMVvVDTESDHg7d+iIueZYsnzksEt9H4fgO3/ztl3hsY8xUno
b4rwDDz144Ox0A==
-----END CERTIFICATE-----
Generated at Wed May 13 05:21:42 2026 by rpki-client