Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
File: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft (raw, json)
Hash identifier: b8kW901tpNBtMMhbn1Q31K1VuA66KQh6AGZLKMbj10c=
Subject key identifier: 58:43:22:46:C1:ED:20:73:1B:1D:94:DB:74:CF:47:53:ED:81:85:D3
Authority key identifier: DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
Certificate issuer: /CN=da0589dce63981870a1850906c8c2d1d96740096
Certificate serial: 019DB27DF100F93BAF4D4200AB5088B6C3E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
Manifest number: 0DD9
Signing time: Wed 22 Apr 2026 00:01:31 +0000
Manifest this update: Wed 22 Apr 2026 00:01:31 +0000
Manifest next update: Thu 23 Apr 2026 00:01:31 +0000
Files and hashes: 1: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl (hash: DAPylTeNmIBeuTiZJqo1Zl3OqEVfxo78XCpM03CMsJg=)
2: HWmWJflODDxV52vIx6-epHRasJA.roa (hash: f4KecipuBIXANDLC3dbZ4NbJfpK+r2CZ/EO3t/X4kJk=)
3: MFAY7_OLyA4recGDb-cluDo0Fy4.roa (hash: gbxISH9PotemB1t2Fhr1XbKqizGCUJkHo7eezE3JciE=)
4: XgNu2RkWIrg-dXAuiT5cDAoRcao.roa (hash: YfBiHj8EXpBukiSHpuqnvbNrk3kYEDe/L+q9obAeqiA=)
5: cP1lvMExnryf8cpW14P-YTW6oFM.roa (hash: 1i/eVOAe4LzQ+ZGAHO4PSAx1yAI1zK27WYnYn0/9SC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 21:56:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b2:7d:f1:00:f9:3b:af:4d:42:00:ab:50:88:b6:c3:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0589dce63981870a1850906c8c2d1d96740096
Validity
Not Before: Apr 22 00:01:31 2026 GMT
Not After : Apr 23 00:01:31 2026 GMT
Subject: CN=58432246c1ed20731b1d94db74cf4753ed8185d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c7:a7:ba:7e:95:a1:be:d4:0a:c7:d3:fb:12:
ec:c1:7b:d3:27:e6:e1:7b:19:fd:9f:53:b1:15:1e:
5f:1a:df:71:c9:fa:62:b9:8e:4f:5a:59:ed:73:87:
86:b0:f2:84:9e:3c:5d:92:36:54:66:94:20:a8:70:
ca:75:27:ec:af:3b:d3:50:e8:6a:66:5b:3a:e7:38:
e0:2c:22:09:2f:c7:61:c1:df:9a:2e:12:41:a2:50:
18:7b:17:5c:05:d8:d9:d4:c4:6d:b0:57:44:04:45:
9a:8a:67:36:3b:d0:7d:91:05:c8:39:cf:07:fc:b6:
02:ad:e0:22:6e:f6:13:3c:b6:f0:12:cb:3f:71:75:
0f:ec:6c:fd:cd:80:23:87:eb:91:56:97:fc:63:7b:
c5:4f:ab:94:ef:2b:24:ae:9c:9b:8a:ff:3b:c9:df:
db:d8:83:e5:e7:04:92:44:e6:a9:f6:09:18:3b:63:
f9:5a:0a:70:bf:53:66:ed:04:bb:a9:11:18:c5:f4:
17:db:ba:82:33:48:c1:e5:7f:19:71:70:93:67:b0:
5b:5f:a3:4e:1a:e8:41:75:36:cf:93:0c:a7:a5:f8:
3e:88:22:d2:e0:48:53:ea:e0:17:36:e8:0f:ac:ce:
9e:fb:0c:f8:4f:89:6a:3f:47:43:ba:0e:e3:16:5c:
fe:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:43:22:46:C1:ED:20:73:1B:1D:94:DB:74:CF:47:53:ED:81:85:D3
X509v3 Authority Key Identifier:
keyid:DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:27:87:41:36:32:46:69:50:8b:7e:77:19:2e:8d:f1:77:b5:
f0:eb:21:22:c5:7b:9a:5b:cd:e5:a1:5f:b6:e1:aa:73:ed:0f:
63:1f:2c:36:45:13:b7:7a:85:7b:92:97:40:bb:4d:b6:60:2a:
e1:4f:84:36:f6:1d:e3:3c:f1:39:3b:04:7c:a5:41:81:ce:1c:
41:12:58:c5:6c:6d:98:69:bd:37:85:4e:91:b4:0e:40:16:fd:
45:e1:8c:66:1c:23:e4:62:d7:86:d4:ca:db:7c:84:9d:0a:48:
b8:3c:28:7f:5a:e4:2b:25:0f:ad:97:fe:22:8a:2c:ac:a2:b6:
e0:15:94:26:a3:47:cd:d5:46:b9:95:d4:b5:56:53:28:3d:91:
b8:89:f6:14:88:bf:a4:a0:16:04:9d:e2:76:22:a9:8b:01:0f:
e6:1b:9f:6a:d2:85:28:24:03:af:6c:20:a0:bb:2f:f5:cd:08:
2f:65:3a:d4:1a:cf:f1:42:9b:9f:1d:7a:98:66:92:e0:c4:6f:
f0:0d:75:90:af:17:e6:68:2c:36:d2:62:ac:8a:a5:a5:63:cd:
75:17:ec:df:57:c9:08:17:4a:40:57:69:8a:b3:59:f4:f5:7c:
f4:79:cf:74:07:ac:d9:7b:14:57:0e:23:c6:76:c3:ff:1a:b0:
13:8d:0b:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2yffEA+TuvTUIAq1CItsPiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMDU4OWRjZTYzOTgxODcwYTE4NTA5MDZjOGMyZDFkOTY3
NDAwOTYwHhcNMjYwNDIyMDAwMTMxWhcNMjYwNDIzMDAwMTMxWjAzMTEwLwYDVQQD
Eyg1ODQzMjI0NmMxZWQyMDczMWIxZDk0ZGI3NGNmNDc1M2VkODE4NWQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcenun6Vob7UCsfT+xLswXvTJ+bh
exn9n1OxFR5fGt9xyfpiuY5PWlntc4eGsPKEnjxdkjZUZpQgqHDKdSfsrzvTUOhq
Zls65zjgLCIJL8dhwd+aLhJBolAYexdcBdjZ1MRtsFdEBEWaimc2O9B9kQXIOc8H
/LYCreAibvYTPLbwEss/cXUP7Gz9zYAjh+uRVpf8Y3vFT6uU7yskrpybiv87yd/b
2IPl5wSSROap9gkYO2P5Wgpwv1Nm7QS7qREYxfQX27qCM0jB5X8ZcXCTZ7BbX6NO
GuhBdTbPkwynpfg+iCLS4EhT6uAXNugPrM6e+wz4T4lqP0dDug7jFlz+NQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFhDIkbB7SBzGx2U23TPR1PtgYXTMB8GA1UdIwQY
MBaAFNoFidzmOYGHChhQkGyMLR2WdACWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC82MzI2YmItYmEzMy00MzM5LWI4YzYt
MTRlM2MyMDE3OTY5LzEvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC82MzI2YmItYmEzMy00MzM5LWI4YzYtMTRlM2MyMDE3OTY5
LzEvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcyeHQTYy
RmlQi353GS6N8Xe18OshIsV7mlvN5aFftuGqc+0PYx8sNkUTt3qFe5KXQLtNtmAq
4U+ENvYd4zzxOTsEfKVBgc4cQRJYxWxtmGm9N4VOkbQOQBb9ReGMZhwj5GLXhtTK
23yEnQpIuDwof1rkKyUPrZf+IoosrKK24BWUJqNHzdVGuZXUtVZTKD2RuIn2FIi/
pKAWBJ3idiKpiwEP5hufatKFKCQDr2wgoLsv9c0IL2U61BrP8UKbnx16mGaS4MRv
8A11kK8X5mgsNtJirIqlpWPNdRfs31fJCBdKQFdpirNZ9PV89HnPdAes2XsUVw4j
xnbD/xqwE40LNQ==
-----END CERTIFICATE-----
Generated at Wed Apr 22 07:06:52 2026 by rpki-client