Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: /Of7146V71B60/RorT8GLl5reBEiMwzojpkdIewW2oo=
Subject key identifier: 97:A0:2A:99:56:BC:35:2E:FE:A1:95:C7:50:A2:46:04:92:54:B6:A8
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 019E1D9127E8E37141227878BE8C9E671811
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 1835
Signing time: Tue 12 May 2026 19:01:52 +0000
Manifest this update: Tue 12 May 2026 19:01:52 +0000
Manifest next update: Wed 13 May 2026 19:01:52 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: tFsW2d8LBVrWDGQ9OE8coQ4OtxTlhYcxu5SI6buEel0=)
2: xhpLteHeEuI9N2i0WjCkJHYwXtM.roa (hash: ZhHw/D8clg9QeWX4KlvzTONGmYlvYOv2tFZIA342W2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:91:27:e8:e3:71:41:22:78:78:be:8c:9e:67:18:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: May 12 19:01:52 2026 GMT
Not After : May 13 19:01:52 2026 GMT
Subject: CN=97a02a9956bc352efea195c750a246049254b6a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ed:46:a4:95:4e:00:02:c6:af:08:73:c1:7b:
c8:fa:c1:c9:f5:a4:aa:e3:2f:d5:de:9b:a2:ba:f4:
1c:ca:d9:83:51:73:73:57:14:e6:8a:75:66:6c:79:
65:5c:42:42:d8:58:72:36:9d:bc:44:db:e3:1e:8d:
de:ba:24:84:14:87:35:fa:1a:1d:83:13:12:4c:d1:
b3:48:2b:05:e2:49:94:39:a8:67:ca:c6:13:62:26:
f8:de:e9:a6:0c:de:2c:b2:f4:5a:91:7a:b7:01:7d:
9a:d1:07:eb:5b:69:47:bf:cd:a1:36:a4:11:20:52:
65:9e:39:41:81:f6:3f:d7:0e:5c:5d:c4:35:7c:6b:
1e:61:c3:b6:8b:fc:90:e3:17:3b:4a:ff:b8:02:2f:
72:a4:0e:d4:23:39:56:aa:33:29:7c:b3:53:bc:58:
8d:5e:21:f4:ef:d4:fb:eb:d3:f4:2c:4c:82:03:ca:
ef:90:7c:71:3b:fe:a8:ae:a9:e4:d8:b0:a2:bf:af:
57:1c:5d:77:66:53:56:b9:9b:17:7a:29:a5:ab:7a:
4f:1b:43:4b:7b:9b:dc:54:b2:04:eb:53:2e:e6:74:
6a:f2:5a:a5:7e:48:97:66:96:e8:40:05:06:5f:b9:
68:b7:b5:ad:d1:45:e1:b5:1a:5e:6f:f8:cf:7c:1e:
28:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A0:2A:99:56:BC:35:2E:FE:A1:95:C7:50:A2:46:04:92:54:B6:A8
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:c3:22:9e:0b:f7:45:73:cc:89:45:fb:d4:43:71:68:53:43:
59:f6:17:c8:1d:ae:a7:1a:d3:89:7d:ac:9c:52:62:9d:c4:be:
db:b1:de:5e:e1:3b:7d:be:86:71:1a:04:d1:a7:09:35:0b:9d:
22:56:49:84:b8:96:ae:93:52:66:82:2e:f6:ed:37:72:78:1c:
12:fb:6e:37:80:ef:cc:3a:6d:6d:c2:9a:6c:05:be:29:16:6a:
db:ba:b8:eb:ca:b6:4d:34:85:ab:f4:3c:02:6e:11:8a:fc:ca:
2c:a6:76:4a:26:9c:61:ac:90:b6:b2:bb:43:6d:62:9e:f4:2e:
6b:ff:7b:ea:42:8a:76:04:e6:d4:47:a7:36:c6:46:ba:f1:9e:
17:97:5d:51:d7:37:8a:ff:9e:9f:44:61:b3:96:79:f2:56:bb:
d1:d7:44:23:e9:7f:18:94:f9:c3:00:e2:3e:e8:e2:b2:ba:37:
c7:96:ef:8c:72:63:5b:d3:e5:b9:47:f9:f6:d1:07:5f:cc:83:
7e:10:cc:e5:7b:3e:e2:2a:a1:32:48:32:e6:5e:bf:be:fd:9f:
29:de:8d:28:f4:57:7d:d7:48:27:18:be:20:56:1c:74:f9:21:
05:fe:3e:7c:b8:43:52:f8:df:2f:f7:f3:c2:1a:76:8b:aa:27:
bc:5e:3c:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dkSfo43FBInh4voyeZxgRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4NTAyMjI4MmUzNDY5OWZlNTQ4Yjc1Mjg1MTlhMjVhNTBk
OTEzM2EwHhcNMjYwNTEyMTkwMTUyWhcNMjYwNTEzMTkwMTUyWjAzMTEwLwYDVQQD
Eyg5N2EwMmE5OTU2YmMzNTJlZmVhMTk1Yzc1MGEyNDYwNDkyNTRiNmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAne1GpJVOAALGrwhzwXvI+sHJ9aSq
4y/V3puiuvQcytmDUXNzVxTminVmbHllXEJC2FhyNp28RNvjHo3euiSEFIc1+hod
gxMSTNGzSCsF4kmUOahnysYTYib43ummDN4ssvRakXq3AX2a0QfrW2lHv82hNqQR
IFJlnjlBgfY/1w5cXcQ1fGseYcO2i/yQ4xc7Sv+4Ai9ypA7UIzlWqjMpfLNTvFiN
XiH079T769P0LEyCA8rvkHxxO/6orqnk2LCiv69XHF13ZlNWuZsXeimlq3pPG0NL
e5vcVLIE61Mu5nRq8lqlfkiXZpboQAUGX7lot7Wt0UXhtRpeb/jPfB4o9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJegKplWvDUu/qGVx1CiRgSSVLaoMB8GA1UdIwQY
MBaAFNhQIiguNGmf5Ui3UoUZolpQ2RM6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkZBaUtDNDBhWl9sU0xkU2hSbWlXbERaRXpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy85NzU4ZWItNDEwOC00MDg3LWE4MTgt
NTBlYTY3MzI3Y2QxLzEvMkZBaUtDNDBhWl9sU0xkU2hSbWlXbERaRXpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy85NzU4ZWItNDEwOC00MDg3LWE4MTgtNTBlYTY3MzI3Y2Qx
LzEvMkZBaUtDNDBhWl9sU0xkU2hSbWlXbERaRXpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ8Mingv3
RXPMiUX71ENxaFNDWfYXyB2upxrTiX2snFJincS+27HeXuE7fb6GcRoE0acJNQud
IlZJhLiWrpNSZoIu9u03cngcEvtuN4DvzDptbcKabAW+KRZq27q468q2TTSFq/Q8
Am4RivzKLKZ2SiacYayQtrK7Q21invQua/976kKKdgTm1EenNsZGuvGeF5ddUdc3
iv+en0Rhs5Z58la70ddEI+l/GJT5wwDiPujisro3x5bvjHJjW9PluUf59tEHX8yD
fhDM5Xs+4iqhMkgy5l6/vv2fKd6NKPRXfddIJxi+IFYcdPkhBf4+fLhDUvjfL/fz
whp2i6onvF48gA==
-----END CERTIFICATE-----
Generated at Wed May 13 03:45:41 2026 by rpki-client