Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
File: 2PuW6jr1HFMtfo_oyUN29R4epAI.mft (raw, json)
Hash identifier: lMS135zZccUcKOHDAtU878pbwA66u8YdGFkAnISbISE=
Subject key identifier: C8:6D:12:04:C9:3C:E2:BC:CA:0E:66:0D:EA:E5:9E:70:9D:0D:D6:2F
Authority key identifier: D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
Certificate issuer: /CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Certificate serial: 019E2FCD5DB84AFA189B787DDF5CF70DC6FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
Manifest number: 1734
Signing time: Sat 16 May 2026 08:00:48 +0000
Manifest this update: Sat 16 May 2026 08:00:48 +0000
Manifest next update: Sun 17 May 2026 08:00:48 +0000
Files and hashes: 1: 2PuW6jr1HFMtfo_oyUN29R4epAI.crl (hash: rnxnydMAeeJz498UP32Plm2XlzMXwDVwpwH06dz16K0=)
2: JKIhvk4nR2Yatg3LSMzcvAB5gDY.roa (hash: Wu8o0XpgB80LZ5YT5dratdi0qOmv7LG2bN4vwgSeFRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 08:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:cd:5d:b8:4a:fa:18:9b:78:7d:df:5c:f7:0d:c6:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Validity
Not Before: May 16 08:00:48 2026 GMT
Not After : May 17 08:00:48 2026 GMT
Subject: CN=c86d1204c93ce2bcca0e660deae59e709d0dd62f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:4b:00:64:2d:0f:c9:ad:d4:f9:69:69:c1:e3:
88:8d:0d:e9:b5:09:ae:c6:ec:80:2d:46:85:cd:18:
54:a1:b7:48:92:26:c1:da:99:73:b2:c2:64:0f:e2:
2c:41:89:02:75:a2:4d:81:e8:92:cd:39:78:a1:4b:
00:d2:9a:29:49:e3:57:8a:43:93:0b:cf:e5:05:76:
c4:53:fa:be:37:d0:21:8e:bc:75:c0:23:58:24:6f:
67:b3:cb:cd:4c:1e:57:a0:2a:84:8a:99:13:5a:c3:
ef:62:91:76:3b:17:0f:a2:0e:75:40:a1:b3:02:73:
e1:6c:ed:da:b7:9c:af:1a:10:40:33:99:bf:3b:93:
38:f9:0c:e5:2b:2b:2f:80:87:63:f0:dd:9c:db:08:
e3:9b:9c:0f:82:db:30:89:f6:78:9f:6a:b0:73:c4:
f1:dd:6c:58:ed:8d:13:66:ab:e2:eb:0e:2e:1f:7c:
d7:fb:df:86:8a:cc:3f:3a:b0:22:b9:b3:f2:78:d7:
72:bb:7a:95:9f:8c:8c:bc:0d:ec:cc:11:0d:2d:75:
c4:a8:60:5c:2f:8e:94:d2:aa:f2:12:0e:48:08:5f:
1b:de:99:a9:66:96:0a:df:37:81:3c:b3:eb:72:41:
8a:1e:c3:d7:b3:e3:26:0d:b2:fa:76:97:3b:8b:3e:
e6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:6D:12:04:C9:3C:E2:BC:CA:0E:66:0D:EA:E5:9E:70:9D:0D:D6:2F
X509v3 Authority Key Identifier:
keyid:D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:aa:b6:61:17:d3:74:2c:26:ad:cc:49:60:92:50:3e:7d:99:
48:80:a9:4a:9f:0a:c2:e1:0b:63:db:c5:86:53:7a:59:ab:af:
97:50:5c:4b:ea:76:11:58:3e:ab:c5:40:cf:e5:12:c7:f7:b6:
2b:60:14:40:21:cd:ca:c3:49:9d:7d:3e:e5:b3:3b:7a:80:1d:
6c:0c:7d:2f:b2:0a:b3:de:f8:dd:99:7f:55:c4:95:e6:5a:3f:
10:dd:96:76:fb:fa:73:9c:72:d3:42:ff:7b:6d:18:61:2e:a6:
05:07:18:e4:07:64:66:08:62:58:4d:18:e5:2c:d7:55:4a:65:
34:35:f0:1a:5c:04:88:4f:e9:2c:cb:5f:d7:9c:d0:a8:3e:9a:
7b:29:35:d9:18:45:d2:ad:8f:13:5c:82:c7:af:08:c1:c5:3a:
cd:43:25:bc:ca:13:8e:03:d1:b5:18:f6:4c:3c:2e:08:bd:63:
16:db:fc:51:ab:80:23:d6:c9:df:de:ef:3e:3e:7e:35:05:a5:
5c:b6:82:5a:b9:5a:6f:84:de:b5:ac:7a:09:90:b3:f0:f3:c1:
41:ab:04:1f:36:f5:6e:86:bb:47:a5:49:75:11:01:38:ab:06:
d5:11:a2:e6:40:10:cb:9f:80:de:1e:23:45:97:fe:26:39:1e:
f9:0f:03:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vzV24SvoYm3h931z3Dcb7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZmI5NmVhM2FmNTFjNTMyZDdlOGZlOGM5NDM3NmY1MWUx
ZWE0MDIwHhcNMjYwNTE2MDgwMDQ4WhcNMjYwNTE3MDgwMDQ4WjAzMTEwLwYDVQQD
EyhjODZkMTIwNGM5M2NlMmJjY2EwZTY2MGRlYWU1OWU3MDlkMGRkNjJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA10sAZC0Pya3U+WlpweOIjQ3ptQmu
xuyALUaFzRhUobdIkibB2plzssJkD+IsQYkCdaJNgeiSzTl4oUsA0popSeNXikOT
C8/lBXbEU/q+N9Ahjrx1wCNYJG9ns8vNTB5XoCqEipkTWsPvYpF2OxcPog51QKGz
AnPhbO3at5yvGhBAM5m/O5M4+QzlKysvgIdj8N2c2wjjm5wPgtswifZ4n2qwc8Tx
3WxY7Y0TZqvi6w4uH3zX+9+Gisw/OrAiubPyeNdyu3qVn4yMvA3szBENLXXEqGBc
L46U0qryEg5ICF8b3pmpZpYK3zeBPLPrckGKHsPXs+MmDbL6dpc7iz7m7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMhtEgTJPOK8yg5mDerlnnCdDdYvMB8GA1UdIwQY
MBaAFNj7luo69RxTLX6P6MlDdvUeHqQCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS81M2ZmYTAtOTA2MC00NzJjLWFhYzIt
OGViODVlMzI4M2UyLzEvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS81M2ZmYTAtOTA2MC00NzJjLWFhYzItOGViODVlMzI4M2Uy
LzEvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsqq2YRfT
dCwmrcxJYJJQPn2ZSICpSp8KwuELY9vFhlN6Wauvl1BcS+p2EVg+q8VAz+USx/e2
K2AUQCHNysNJnX0+5bM7eoAdbAx9L7IKs9743Zl/VcSV5lo/EN2Wdvv6c5xy00L/
e20YYS6mBQcY5AdkZghiWE0Y5SzXVUplNDXwGlwEiE/pLMtf15zQqD6aeyk12RhF
0q2PE1yCx68IwcU6zUMlvMoTjgPRtRj2TDwuCL1jFtv8UauAI9bJ397vPj5+NQWl
XLaCWrlab4Tetax6CZCz8PPBQasEHzb1boa7R6VJdREBOKsG1RGi5kAQy5+A3h4j
RZf+Jjke+Q8Dgw==
-----END CERTIFICATE-----
Generated at Sat May 16 15:38:03 2026 by rpki-client