Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.mft
File: 4HDNq3OhLa82gGsOFgLI2vuQk7s.mft (raw, json)
Hash identifier: p2QV5ia9KEOC0L29gIM32puLeNbgdPzw9P8DOKltNVc=
Subject key identifier: CC:F0:C6:A3:C6:60:28:A0:73:F5:EF:78:1E:E3:04:4C:AA:3B:B3:2F
Authority key identifier: E0:70:CD:AB:73:A1:2D:AF:36:80:6B:0E:16:02:C8:DA:FB:90:93:BB
Certificate issuer: /CN=e070cdab73a12daf36806b0e1602c8dafb9093bb
Certificate serial: 019F19436B72CFEF5C64DB6532E4A267F52A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4HDNq3OhLa82gGsOFgLI2vuQk7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.mft
Manifest number: 0ED2
Signing time: Tue 30 Jun 2026 16:01:16 +0000
Manifest this update: Tue 30 Jun 2026 16:01:16 +0000
Manifest next update: Wed 01 Jul 2026 16:01:16 +0000
Files and hashes: 1: 4HDNq3OhLa82gGsOFgLI2vuQk7s.crl (hash: dBwpvJWS8IN31KIdvseDbjyovlpvnaNWMmEzVG7r9Iw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/4HDNq3OhLa82gGsOFgLI2vuQk7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:6b:72:cf:ef:5c:64:db:65:32:e4:a2:67:f5:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e070cdab73a12daf36806b0e1602c8dafb9093bb
Validity
Not Before: Jun 30 16:01:16 2026 GMT
Not After : Jul 1 16:01:16 2026 GMT
Subject: CN=ccf0c6a3c66028a073f5ef781ee3044caa3bb32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f9:91:93:45:af:7e:4a:64:01:41:7d:05:69:
57:dd:7c:ce:58:a3:4b:b6:9d:37:0e:bf:66:11:84:
ff:c9:7c:80:e3:55:0a:e1:e4:c2:97:a6:ce:a0:9a:
ce:24:e7:9d:f4:e0:2b:c2:20:60:2c:94:c3:75:7f:
c9:21:6e:f7:8f:c5:05:49:69:62:c2:26:75:6b:b6:
60:fb:42:7c:a7:7c:0a:84:4a:5a:0a:eb:8c:0c:74:
1f:c2:99:34:33:7a:5c:2a:f1:e7:63:9e:01:fd:ff:
38:27:0c:fa:6d:21:5c:3e:56:c0:b6:4d:52:78:a2:
ac:02:b9:95:ee:5f:b0:5c:cf:be:1e:de:5f:be:fd:
b9:16:ff:c4:c1:b3:48:96:de:1b:1a:59:7c:51:76:
d6:48:12:7a:cd:ef:10:37:63:41:b1:24:84:24:f2:
66:d1:70:39:9a:fb:73:61:26:02:aa:06:e9:73:84:
26:10:59:52:67:9e:8b:ba:b9:ef:fc:f5:8b:4e:47:
d7:56:ea:72:20:17:43:55:4d:36:0c:d7:ef:4a:9e:
da:66:be:23:92:ce:ad:b7:7c:69:9b:06:e6:66:d2:
93:4b:27:e4:de:cc:67:b1:f1:f6:7b:b7:8d:49:25:
7a:5c:f4:e3:69:c0:53:45:70:43:3a:14:50:a7:b8:
ca:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F0:C6:A3:C6:60:28:A0:73:F5:EF:78:1E:E3:04:4C:AA:3B:B3:2F
X509v3 Authority Key Identifier:
keyid:E0:70:CD:AB:73:A1:2D:AF:36:80:6B:0E:16:02:C8:DA:FB:90:93:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4HDNq3OhLa82gGsOFgLI2vuQk7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:76:6b:e4:5b:ff:dc:53:b2:98:85:11:79:b9:da:7b:c5:36:
ee:7a:f9:ab:93:19:a7:30:d6:41:32:10:03:3a:22:e5:ef:6b:
96:fe:ab:b7:0f:8b:ba:7b:42:46:af:10:23:a8:db:c8:d0:30:
a9:df:18:d2:13:c0:6c:86:92:cd:68:57:b2:d3:ab:3e:39:d9:
2d:3d:70:da:0c:93:2a:0f:2b:d3:12:5e:93:b0:f7:a8:6d:b5:
b7:7c:16:af:6c:38:3b:7d:36:7b:0f:f8:e0:48:b0:c9:5a:10:
41:1e:b1:49:ba:cb:2d:e0:44:46:5f:f7:8a:2c:ca:bd:4b:05:
6f:e9:77:35:20:16:bd:28:d0:72:5b:db:cf:d2:79:a2:ee:7a:
72:a3:56:75:0c:94:eb:97:6f:f3:b6:af:69:0f:be:3b:aa:e9:
06:fc:22:94:ac:a9:d1:c8:60:b4:c3:fd:b1:49:15:c9:2c:0d:
3c:70:d6:40:b7:04:2a:13:be:a4:7d:33:f4:aa:17:61:20:ed:
eb:5e:77:41:95:30:4a:d7:e8:e9:b6:bd:7e:58:4d:9c:13:69:
57:16:cc:a4:31:93:9f:41:b4:aa:3c:6f:c7:82:05:19:f8:d7:
8c:f6:3e:60:60:05:c0:76:a4:c9:eb:b0:d4:69:0a:1f:8e:88:
55:a4:60:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZQ2tyz+9cZNtlMuSiZ/UqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwNzBjZGFiNzNhMTJkYWYzNjgwNmIwZTE2MDJjOGRhZmI5
MDkzYmIwHhcNMjYwNjMwMTYwMTE2WhcNMjYwNzAxMTYwMTE2WjAzMTEwLwYDVQQD
EyhjY2YwYzZhM2M2NjAyOGEwNzNmNWVmNzgxZWUzMDQ0Y2FhM2JiMzJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvmRk0WvfkpkAUF9BWlX3XzOWKNL
tp03Dr9mEYT/yXyA41UK4eTCl6bOoJrOJOed9OArwiBgLJTDdX/JIW73j8UFSWli
wiZ1a7Zg+0J8p3wKhEpaCuuMDHQfwpk0M3pcKvHnY54B/f84Jwz6bSFcPlbAtk1S
eKKsArmV7l+wXM++Ht5fvv25Fv/EwbNIlt4bGll8UXbWSBJ6ze8QN2NBsSSEJPJm
0XA5mvtzYSYCqgbpc4QmEFlSZ56Lurnv/PWLTkfXVupyIBdDVU02DNfvSp7aZr4j
ks6tt3xpmwbmZtKTSyfk3sxnsfH2e7eNSSV6XPTjacBTRXBDOhRQp7jKvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMzwxqPGYCigc/XveB7jBEyqO7MvMB8GA1UdIwQY
MBaAFOBwzatzoS2vNoBrDhYCyNr7kJO7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEhETnEzT2hMYTgyZ0dzT0ZnTEkydnVRazdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84ZTAxY2EtMmNjZi00OTEyLTkxNGIt
OTE2ODgyNmNkMzU1LzEvNEhETnEzT2hMYTgyZ0dzT0ZnTEkydnVRazdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84ZTAxY2EtMmNjZi00OTEyLTkxNGItOTE2ODgyNmNkMzU1
LzEvNEhETnEzT2hMYTgyZ0dzT0ZnTEkydnVRazdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACHZr5Fv/
3FOymIURebnae8U27nr5q5MZpzDWQTIQAzoi5e9rlv6rtw+LuntCRq8QI6jbyNAw
qd8Y0hPAbIaSzWhXstOrPjnZLT1w2gyTKg8r0xJek7D3qG21t3wWr2w4O302ew/4
4EiwyVoQQR6xSbrLLeBERl/3iizKvUsFb+l3NSAWvSjQclvbz9J5ou56cqNWdQyU
65dv87avaQ++O6rpBvwilKyp0chgtMP9sUkVySwNPHDWQLcEKhO+pH0z9KoXYSDt
6153QZUwStfo6ba9flhNnBNpVxbMpDGTn0G0qjxvx4IFGfjXjPY+YGAFwHakyeuw
1GkKH46IVaRgYA==
-----END CERTIFICATE-----
Generated at Tue Jun 30 19:34:19 2026 by rpki-client