Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
File: 2BFKkiBvChn3M52guJZpxKX-Urk.mft (raw, json)
Hash identifier: t6mYqY40Ou9WGIzwfSJNR+ZA3G2PsuJotHWfwJLrlAU=
Subject key identifier: 78:19:B2:D6:A1:8A:F8:77:AC:15:73:EC:DA:1C:3C:30:FC:E9:31:9D
Authority key identifier: D8:11:4A:92:20:6F:0A:19:F7:33:9D:A0:B8:96:69:C4:A5:FE:52:B9
Certificate issuer: /CN=d8114a92206f0a19f7339da0b89669c4a5fe52b9
Certificate serial: 019EBAD928644EBABE51E2F2CC5AD35F0458
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
Manifest number: 0339
Signing time: Fri 12 Jun 2026 08:00:54 +0000
Manifest this update: Fri 12 Jun 2026 08:00:54 +0000
Manifest next update: Sat 13 Jun 2026 08:00:54 +0000
Files and hashes: 1: 2BFKkiBvChn3M52guJZpxKX-Urk.crl (hash: DnJUG2WWqWpO5z9kYGsLzAh23CNI3fKPx95SVz/fjs4=)
2: vVXnYinPG4h5TcTea17Iv2i5FYs.roa (hash: vQ3FQGy71ne2HeyP0gu2+P/Q4WprPJAgNPNHKJfJ9Dk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 07:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ba:d9:28:64:4e:ba:be:51:e2:f2:cc:5a:d3:5f:04:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8114a92206f0a19f7339da0b89669c4a5fe52b9
Validity
Not Before: Jun 12 08:00:54 2026 GMT
Not After : Jun 13 08:00:54 2026 GMT
Subject: CN=7819b2d6a18af877ac1573ecda1c3c30fce9319d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:06:d1:53:63:8a:9d:46:f1:cd:2c:e0:f3:08:
17:2a:b4:02:85:48:4c:1c:f3:f9:96:aa:ad:40:b6:
a2:47:c9:c6:05:3f:9e:0e:3e:7f:4a:68:62:fd:a4:
70:ce:a5:14:63:f8:cf:e7:22:3b:d2:5f:3b:14:8d:
22:9e:55:ea:08:85:b5:b9:88:a1:93:4d:89:af:af:
8e:3f:69:e5:af:05:62:89:45:11:b6:04:65:46:5a:
c9:f1:3b:64:c7:39:48:4e:be:08:9f:76:01:48:1c:
c2:4c:91:9b:9e:c8:14:02:ce:ad:b3:a6:00:43:9f:
e4:2e:12:81:e7:b1:1b:7c:9f:0e:82:7d:9f:84:45:
a1:85:71:bb:c9:69:5e:3b:bd:29:a6:ec:26:15:72:
96:10:c8:ff:45:2e:e3:7c:dd:d5:5d:3a:8f:88:0c:
a0:b3:9e:2d:be:4e:b2:11:2c:fe:55:f4:0c:86:d3:
de:35:e8:6d:56:e8:77:59:1a:15:68:35:27:90:3b:
68:d0:98:56:91:c4:dc:3a:9b:48:31:1c:19:c8:31:
5d:b0:25:43:f4:91:7d:9e:0c:22:54:67:8e:d6:30:
c8:cd:0f:f7:fd:d1:a0:3a:cc:94:78:d3:8f:7e:fb:
44:b3:a2:cd:aa:aa:51:91:b4:e8:90:27:78:0e:e8:
53:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:19:B2:D6:A1:8A:F8:77:AC:15:73:EC:DA:1C:3C:30:FC:E9:31:9D
X509v3 Authority Key Identifier:
keyid:D8:11:4A:92:20:6F:0A:19:F7:33:9D:A0:B8:96:69:C4:A5:FE:52:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:84:25:7d:d6:89:8a:d6:58:58:36:ab:b0:31:b0:8b:d5:c3:
10:5c:9a:55:29:5f:5e:e4:0a:50:8a:5b:f4:04:5e:c6:ca:93:
3c:a1:05:12:77:96:18:f6:60:a5:9c:97:d7:30:69:dd:ea:0a:
a9:3c:b5:79:7f:3f:cb:04:22:db:8e:fd:b0:91:52:05:ba:53:
71:cd:ce:ba:a1:e5:bd:08:e3:f1:e0:d4:ab:90:04:5f:c1:ef:
c6:95:16:ec:d6:73:d2:c0:1f:dc:6d:07:3a:7c:29:41:0e:6f:
d6:db:1d:d7:21:0f:c3:7b:38:99:30:1f:76:73:8c:67:6f:36:
54:07:c0:f0:d7:7b:07:bb:b8:31:fa:19:ca:a1:8a:84:da:18:
85:31:f0:2a:a3:3b:d9:02:22:72:88:a4:84:6f:0e:c9:c7:1d:
6c:da:91:f6:4f:be:3d:c2:0b:47:40:50:36:ba:4a:9e:3e:df:
65:82:c8:3c:15:d2:e1:eb:b4:fe:63:b6:bc:38:9c:aa:d4:b4:
a8:5a:d9:5e:d2:3d:db:d1:23:c4:8e:f3:d2:92:3c:89:1d:29:
d9:0a:86:f2:96:16:0d:3b:e7:4d:d0:ec:75:65:6a:82:89:d5:
b6:6e:4f:ff:69:19:09:18:88:68:66:10:92:d4:d0:f3:25:58:
08:b1:66:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ662ShkTrq+UeLyzFrTXwRYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MTE0YTkyMjA2ZjBhMTlmNzMzOWRhMGI4OTY2OWM0YTVm
ZTUyYjkwHhcNMjYwNjEyMDgwMDU0WhcNMjYwNjEzMDgwMDU0WjAzMTEwLwYDVQQD
Eyg3ODE5YjJkNmExOGFmODc3YWMxNTczZWNkYTFjM2MzMGZjZTkzMTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwwbRU2OKnUbxzSzg8wgXKrQChUhM
HPP5lqqtQLaiR8nGBT+eDj5/Smhi/aRwzqUUY/jP5yI70l87FI0inlXqCIW1uYih
k02Jr6+OP2nlrwViiUURtgRlRlrJ8TtkxzlITr4In3YBSBzCTJGbnsgUAs6ts6YA
Q5/kLhKB57EbfJ8Ogn2fhEWhhXG7yWleO70ppuwmFXKWEMj/RS7jfN3VXTqPiAyg
s54tvk6yESz+VfQMhtPeNehtVuh3WRoVaDUnkDto0JhWkcTcOptIMRwZyDFdsCVD
9JF9ngwiVGeO1jDIzQ/3/dGgOsyUeNOPfvtEs6LNqqpRkbTokCd4DuhTUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHgZstahivh3rBVz7NocPDD86TGdMB8GA1UdIwQY
MBaAFNgRSpIgbwoZ9zOdoLiWacSl/lK5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkJGS2tpQnZDaG4zTTUyZ3VKWnB4S1gtVXJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mZGFjZTktODIxMi00Y2UxLWE5OTkt
NTIwOGQ5ODU0MzY0LzEvMkJGS2tpQnZDaG4zTTUyZ3VKWnB4S1gtVXJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9mZGFjZTktODIxMi00Y2UxLWE5OTktNTIwOGQ5ODU0MzY0
LzEvMkJGS2tpQnZDaG4zTTUyZ3VKWnB4S1gtVXJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS4QlfdaJ
itZYWDarsDGwi9XDEFyaVSlfXuQKUIpb9ARexsqTPKEFEneWGPZgpZyX1zBp3eoK
qTy1eX8/ywQi2479sJFSBbpTcc3OuqHlvQjj8eDUq5AEX8HvxpUW7NZz0sAf3G0H
OnwpQQ5v1tsd1yEPw3s4mTAfdnOMZ282VAfA8Nd7B7u4MfoZyqGKhNoYhTHwKqM7
2QIicoikhG8OyccdbNqR9k++PcILR0BQNrpKnj7fZYLIPBXS4eu0/mO2vDicqtS0
qFrZXtI929EjxI7z0pI8iR0p2QqG8pYWDTvnTdDsdWVqgonVtm5P/2kZCRiIaGYQ
ktTQ8yVYCLFm8w==
-----END CERTIFICATE-----
Generated at Fri Jun 12 09:57:39 2026 by rpki-client