Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json)
Hash identifier: x+zNFAW3NYb2hYfSsrx5CZn8ezfr1ovKztKMHctmTB0=
Subject key identifier: 2D:4D:E3:4D:7F:F4:15:96:42:9D:21:2C:90:30:98:63:EF:FC:87:03
Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac
Certificate serial: 019EB733278B33F7899D4B953E77851A4747
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
Manifest number: 0EEF
Signing time: Thu 11 Jun 2026 15:00:43 +0000
Manifest this update: Thu 11 Jun 2026 15:00:43 +0000
Manifest next update: Fri 12 Jun 2026 15:00:43 +0000
Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: RrA+Cksz74509ojVFmX0lvfUQmT3Gp5Bq/fhwkk2HEc=)
2: uej861Aq66aiTbTh46AGK_JiRjQ.roa (hash: u2XmnqcYHbAJLSpNo2ks9hVCb6DlSKyd8Mczf2hO9GI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:33:27:8b:33:f7:89:9d:4b:95:3e:77:85:1a:47:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac
Validity
Not Before: Jun 11 15:00:43 2026 GMT
Not After : Jun 12 15:00:43 2026 GMT
Subject: CN=2d4de34d7ff41596429d212c90309863effc8703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:36:af:8a:f0:cb:75:ff:f5:09:82:af:03:04:
e4:d5:75:fd:18:58:9a:98:63:c6:06:6c:03:d9:e7:
5a:cc:fc:b0:65:52:0a:91:03:eb:06:87:51:aa:ec:
ae:5b:7f:31:86:07:5c:f6:ba:6c:4a:a8:d9:82:fd:
de:c2:f6:37:25:25:e6:64:1e:f4:6a:5a:0c:ba:74:
64:b4:20:d1:04:37:d4:f9:e2:9b:e8:07:01:5b:4a:
2e:e4:0c:cc:1b:83:9d:8f:8a:63:f6:7c:55:11:7a:
30:df:27:a1:6c:5d:0c:b9:75:cc:38:7a:d2:8c:1c:
e1:c3:95:99:47:36:4b:65:f8:df:93:7e:a9:cb:58:
d4:f8:e5:aa:78:67:ff:5b:96:ad:94:00:1a:b7:60:
29:01:26:ba:7f:74:0c:ea:a9:c1:e3:a3:bc:c8:2e:
06:15:5b:36:a2:6e:c7:c6:a4:be:c7:dc:6a:b6:ff:
b9:84:19:64:8d:19:bb:7c:1a:b0:23:07:06:95:79:
11:ec:35:91:9f:60:91:1c:d6:fc:e3:6c:15:71:4a:
cc:bb:47:37:23:c8:d9:35:b0:3d:dc:f7:20:b0:70:
2a:bc:b4:be:dc:19:d3:b3:1b:df:63:66:47:ae:a2:
a7:d1:b5:aa:dd:0f:b6:8a:e0:e0:a0:dd:cc:32:0b:
5c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:4D:E3:4D:7F:F4:15:96:42:9D:21:2C:90:30:98:63:EF:FC:87:03
X509v3 Authority Key Identifier:
keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:df:17:ac:bb:c7:6c:c5:9f:5a:e1:a3:8f:f5:6e:df:1f:13:
66:8e:8c:66:a5:6b:4e:be:96:a0:53:bb:08:cb:f9:72:7e:e8:
93:49:2f:10:5e:17:58:82:a1:b8:e8:55:fc:6b:2d:03:cb:53:
28:ed:14:fb:bb:6e:a6:29:2f:f9:04:c6:b8:1a:f0:a0:3c:e5:
0d:ee:b7:88:eb:b0:ef:b0:fb:f5:0a:ac:8a:3a:81:38:a8:0b:
a1:bb:cb:91:30:6c:e1:62:6f:7c:41:0d:77:35:45:b0:92:6f:
3d:4f:30:60:01:c8:51:ff:70:b2:87:f9:c5:0a:5e:35:1f:cb:
72:8a:af:af:0d:e8:ed:fa:59:ec:d1:6a:98:25:c9:79:a5:06:
ac:55:87:a0:7a:b9:db:47:65:55:c3:fe:dc:24:91:1b:cf:3a:
25:19:4e:fa:1d:f3:44:54:2f:67:20:08:ca:b9:98:51:4e:da:
02:21:78:9e:ed:e8:dd:6a:01:94:fe:3b:f1:0a:ca:d7:f0:6e:
c8:0d:8e:4e:8d:98:20:cb:4d:80:48:53:a4:57:1c:7d:09:ea:
7d:96:b4:ef:41:53:e9:d2:be:77:9b:50:8d:53:15:c5:00:38:
85:f2:59:54:97:a4:da:df:df:2b:92:1e:e7:af:b8:6c:39:86:
15:83:6c:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ63MyeLM/eJnUuVPneFGkdHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMzc1ZTE2YTE5MzY3ZGU5OWJiMjRhYzExNWQyNTlhMmEw
NDgxYWMwHhcNMjYwNjExMTUwMDQzWhcNMjYwNjEyMTUwMDQzWjAzMTEwLwYDVQQD
EygyZDRkZTM0ZDdmZjQxNTk2NDI5ZDIxMmM5MDMwOTg2M2VmZmM4NzAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiDavivDLdf/1CYKvAwTk1XX9GFia
mGPGBmwD2edazPywZVIKkQPrBodRquyuW38xhgdc9rpsSqjZgv3ewvY3JSXmZB70
aloMunRktCDRBDfU+eKb6AcBW0ou5AzMG4Odj4pj9nxVEXow3yehbF0MuXXMOHrS
jBzhw5WZRzZLZfjfk36py1jU+OWqeGf/W5atlAAat2ApASa6f3QM6qnB46O8yC4G
FVs2om7HxqS+x9xqtv+5hBlkjRm7fBqwIwcGlXkR7DWRn2CRHNb842wVcUrMu0c3
I8jZNbA93PcgsHAqvLS+3BnTsxvfY2ZHrqKn0bWq3Q+2iuDgoN3MMgtc1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC1N401/9BWWQp0hLJAwmGPv/IcDMB8GA1UdIwQY
MBaAFNs3Xhahk2fembskrBFdJZoqBIGsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy85YmM1YmMtOGY5OS00MmVkLWE4Y2Ut
NWI4NmJhNTg1OTIyLzEvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy85YmM1YmMtOGY5OS00MmVkLWE4Y2UtNWI4NmJhNTg1OTIy
LzEvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP98XrLvH
bMWfWuGjj/Vu3x8TZo6MZqVrTr6WoFO7CMv5cn7ok0kvEF4XWIKhuOhV/GstA8tT
KO0U+7tupikv+QTGuBrwoDzlDe63iOuw77D79QqsijqBOKgLobvLkTBs4WJvfEEN
dzVFsJJvPU8wYAHIUf9wsof5xQpeNR/Lcoqvrw3o7fpZ7NFqmCXJeaUGrFWHoHq5
20dlVcP+3CSRG886JRlO+h3zRFQvZyAIyrmYUU7aAiF4nu3o3WoBlP478QrK1/Bu
yA2OTo2YIMtNgEhTpFccfQnqfZa070FT6dK+d5tQjVMVxQA4hfJZVJek2t/fK5Ie
56+4bDmGFYNsSA==
-----END CERTIFICATE-----
Generated at Thu Jun 11 22:41:01 2026 by rpki-client