Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: 3VG54wqxUvYYbdaT3h2UC0yIwdq18jfQQ7uNTDp0Qvg=
Subject key identifier: A5:A8:8F:92:1C:C9:25:6C:47:1D:AA:F5:AF:0A:61:AD:EC:C9:AD:7B
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 019EFC8372180396517490C149E81A6AE058
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 18DC
Signing time: Thu 25 Jun 2026 02:02:13 +0000
Manifest this update: Thu 25 Jun 2026 02:02:13 +0000
Manifest next update: Fri 26 Jun 2026 02:02:13 +0000
Files and hashes: 1: PZ_gBS2JDBR5UR9Zyi6R_A5y1vM.roa (hash: oUnwI/hWFydpEOEqwC9HOMZdSyF2a1xfxAbzlwQhdS8=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: PkzJZw5VPg/1WKdfV3sXXPhSqJH/hk3zNfkSqAIl2ck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fc:83:72:18:03:96:51:74:90:c1:49:e8:1a:6a:e0:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Jun 25 02:02:13 2026 GMT
Not After : Jun 26 02:02:13 2026 GMT
Subject: CN=a5a88f921cc9256c471daaf5af0a61adecc9ad7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:15:c8:b5:95:78:ef:17:96:b5:3c:6b:8c:01:
d1:89:4b:e9:4b:a3:6a:f1:a9:b8:b2:a1:30:a7:40:
b1:7b:08:01:68:e2:cf:89:4b:56:12:08:c7:7d:d8:
df:79:51:d5:8b:59:02:47:88:1b:af:4b:42:51:31:
53:d4:f0:22:5e:21:b4:9b:3b:73:cd:a5:64:b0:ef:
77:b1:8b:3c:90:35:0b:73:8c:84:3c:83:eb:04:d2:
f0:ce:8c:97:de:d8:19:e8:89:62:3c:cd:c1:60:b9:
81:10:7f:18:26:60:93:82:dd:d6:1e:15:da:40:d2:
dd:d9:e1:38:a5:7c:76:5f:9b:ef:59:02:51:7c:59:
4d:5c:73:14:32:6e:37:54:5f:71:a5:6c:bd:85:5a:
9f:88:e7:fd:f0:a5:cd:d7:50:ac:96:6a:e5:e8:1f:
75:0d:03:cc:00:20:b9:51:fc:2e:a7:62:76:99:c2:
ff:30:b4:73:3f:72:e8:94:b2:7c:c7:d4:b7:dd:46:
3b:74:4f:09:85:ba:5b:ab:5f:09:33:df:01:a3:d9:
d7:98:8a:43:18:a4:79:bd:af:88:de:70:a0:71:ce:
81:32:8a:85:aa:ff:52:96:e7:51:90:65:1b:00:68:
ea:89:3f:fc:8f:e2:ca:41:f2:a7:8d:47:f8:71:8d:
7a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:A8:8F:92:1C:C9:25:6C:47:1D:AA:F5:AF:0A:61:AD:EC:C9:AD:7B
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:ca:28:27:d7:ce:e3:61:f2:2f:ac:6b:91:ca:ee:0c:3e:12:
bf:23:f0:a2:2b:26:0b:06:c4:57:94:d1:6a:ac:52:66:8d:03:
07:8e:a3:9a:b3:53:bf:21:2f:c8:22:4b:c5:26:88:38:6e:55:
69:54:11:5d:ac:6b:27:01:76:64:47:f9:5b:29:78:ba:b4:b1:
7c:b5:cd:2f:bd:63:dd:c1:c6:6d:4c:67:82:3c:9d:5b:4b:42:
1d:0d:fe:4f:6c:16:8b:fa:0c:32:22:d4:12:30:d8:d4:ee:f2:
89:28:c7:b9:ba:ef:6d:25:5a:c5:92:fd:e8:e6:5a:8c:35:24:
50:60:d9:db:65:5f:ee:34:a4:33:65:4b:e6:e1:d0:d3:0f:7c:
63:38:ad:3d:97:7f:cb:e0:bc:04:15:9c:49:45:b5:ec:a8:1c:
ca:0d:3c:f5:dc:fa:5a:29:e3:c8:14:b6:a7:c6:d1:f0:ca:72:
50:4a:b3:db:88:2b:80:ca:57:6a:30:88:a9:07:75:f1:f1:07:
9e:0f:85:43:cb:2a:f9:90:01:a0:1a:09:5e:99:d4:e1:40:eb:
fd:95:3b:d9:4c:e4:0b:de:f4:42:70:f6:60:a1:a0:c5:f8:5d:
c8:79:8a:64:48:67:92:db:63:ab:60:43:3b:fb:74:d8:de:11:
b4:8a:7f:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 08:29:41 2026 by rpki-client