Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
File: 2PWmbP0hpcrXopuOtc2SqkYDIMM.mft (raw, json)
Hash identifier: DdNOdIAj4E9D4eZ1XiqTBBZhkadKf2f6zo9h7PMY5qQ=
Subject key identifier: 46:AF:42:39:CE:45:51:19:48:D0:85:04:BE:74:F0:8F:71:77:08:94
Authority key identifier: D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
Certificate issuer: /CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Certificate serial: 019F19432BD6ECFCD05659D641ADB61DA9F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
Manifest number: 1989
Signing time: Tue 30 Jun 2026 16:01:00 +0000
Manifest this update: Tue 30 Jun 2026 16:01:00 +0000
Manifest next update: Wed 01 Jul 2026 16:01:00 +0000
Files and hashes: 1: 2PWmbP0hpcrXopuOtc2SqkYDIMM.crl (hash: nrNVX3qTVLBdEIgEHmbcPFBWhxw4HL0VM+ZMqRKNzl8=)
2: hSitky1wYRTLv14NEnwV-zxWb_o.roa (hash: PA0bbeChQyvoxmLwu2ifsRmhbm5WEw0zyVf1Uu/ZDBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:2b:d6:ec:fc:d0:56:59:d6:41:ad:b6:1d:a9:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Validity
Not Before: Jun 30 16:01:00 2026 GMT
Not After : Jul 1 16:01:00 2026 GMT
Subject: CN=46af4239ce45511948d08504be74f08f71770894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4f:dd:f6:a8:ad:b9:bb:d1:56:e5:2d:a2:a4:
44:2e:59:02:a1:40:35:35:fb:2a:23:45:66:1f:ae:
7c:f4:54:5d:07:12:fc:07:5c:a6:7c:29:27:81:55:
7b:42:4a:6c:26:6a:2e:db:13:4b:ff:39:f2:ce:3f:
21:5c:64:b8:78:d0:d8:06:82:26:3b:16:a0:86:d0:
69:9b:dc:07:0b:a0:6b:51:b2:0c:5e:72:12:09:2b:
a6:cf:a0:c4:a6:9b:62:43:59:9a:5f:26:0e:9e:02:
24:5f:be:95:b3:6a:f7:6f:a1:22:99:ba:47:d2:06:
bf:17:7d:65:fe:a2:ba:81:de:12:3b:21:f1:a7:8b:
de:20:33:08:1b:28:09:ae:30:ad:62:41:05:3c:74:
38:c5:19:3f:9f:90:79:f8:a1:cb:ad:6d:88:8b:a7:
4d:0d:4b:f0:d5:df:20:e0:03:13:f5:31:6f:7c:6a:
4c:97:67:4d:6e:6b:ac:c1:55:6b:b6:91:58:57:67:
a3:bb:62:79:aa:0a:c9:4c:be:99:8d:33:83:e4:0d:
98:36:f1:74:b6:a9:58:dd:35:d7:e9:c0:4e:45:75:
0e:62:a4:ee:08:66:5d:6d:24:35:66:50:1c:d8:5a:
fb:71:ee:de:9e:6b:97:4b:bc:27:c2:03:96:e7:7c:
c0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:AF:42:39:CE:45:51:19:48:D0:85:04:BE:74:F0:8F:71:77:08:94
X509v3 Authority Key Identifier:
keyid:D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:d1:e3:24:74:da:0b:98:99:1d:d9:ac:36:be:2a:1b:bf:ee:
a8:4e:dc:62:22:0d:90:5d:1a:f5:9e:51:1f:25:8a:19:a9:90:
bc:5d:17:40:b1:8b:73:c0:01:b7:f1:bc:0b:85:7d:98:17:2d:
2c:f9:00:e8:b0:68:fe:78:99:ec:f7:99:a2:df:fa:c9:00:d7:
d5:9c:23:35:08:34:f1:17:ed:33:7c:ee:e3:12:90:5d:61:25:
83:8d:05:08:82:a1:2a:1b:75:64:0e:ca:1c:d6:8f:b3:ce:a4:
4f:af:92:94:82:5b:13:1d:aa:59:5f:7c:e0:3c:7b:6e:a3:32:
94:bb:dc:24:76:69:d3:d1:2c:da:ad:de:99:ea:78:ce:df:5a:
0a:cf:ae:cd:62:60:f3:02:46:a5:30:a9:92:15:01:90:63:83:
87:c3:a4:08:af:9c:37:03:53:04:6d:31:7a:2a:69:d7:ca:73:
9a:9a:f2:e7:16:99:6c:fe:74:0c:9a:1d:e6:e4:ae:24:21:f1:
39:8d:e1:a0:96:f5:7a:86:90:4d:5c:3b:0d:18:55:fb:c9:01:
4a:02:16:7d:ea:a2:e7:68:c1:ca:57:3c:ee:8f:c3:f4:4d:24:
76:8d:67:13:ad:6d:19:4d:47:ae:2f:d3:1d:b5:b1:55:a3:a4:
6a:56:78:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZQyvW7PzQVlnWQa22Han0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZjVhNjZjZmQyMWE1Y2FkN2EyOWI4ZWI1Y2Q5MmFhNDYw
MzIwYzMwHhcNMjYwNjMwMTYwMTAwWhcNMjYwNzAxMTYwMTAwWjAzMTEwLwYDVQQD
Eyg0NmFmNDIzOWNlNDU1MTE5NDhkMDg1MDRiZTc0ZjA4ZjcxNzcwODk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0/d9qitubvRVuUtoqRELlkCoUA1
NfsqI0VmH6589FRdBxL8B1ymfCkngVV7QkpsJmou2xNL/znyzj8hXGS4eNDYBoIm
OxaghtBpm9wHC6BrUbIMXnISCSumz6DEpptiQ1maXyYOngIkX76Vs2r3b6EimbpH
0ga/F31l/qK6gd4SOyHxp4veIDMIGygJrjCtYkEFPHQ4xRk/n5B5+KHLrW2Ii6dN
DUvw1d8g4AMT9TFvfGpMl2dNbmuswVVrtpFYV2eju2J5qgrJTL6ZjTOD5A2YNvF0
tqlY3TXX6cBORXUOYqTuCGZdbSQ1ZlAc2Fr7ce7enmuXS7wnwgOW53zAYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEavQjnORVEZSNCFBL508I9xdwiUMB8GA1UdIwQY
MBaAFNj1pmz9IaXK16KbjrXNkqpGAyDDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9mZTIwZmYtNjU5MC00ZmIwLWI2NTct
ODIxMGRiNzA0OWIxLzEvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9mZTIwZmYtNjU5MC00ZmIwLWI2NTctODIxMGRiNzA0OWIx
LzEvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAndHjJHTa
C5iZHdmsNr4qG7/uqE7cYiINkF0a9Z5RHyWKGamQvF0XQLGLc8ABt/G8C4V9mBct
LPkA6LBo/niZ7PeZot/6yQDX1ZwjNQg08RftM3zu4xKQXWElg40FCIKhKht1ZA7K
HNaPs86kT6+SlIJbEx2qWV984Dx7bqMylLvcJHZp09Es2q3emep4zt9aCs+uzWJg
8wJGpTCpkhUBkGODh8OkCK+cNwNTBG0xeipp18pzmpry5xaZbP50DJod5uSuJCHx
OY3hoJb1eoaQTVw7DRhV+8kBSgIWfeqi52jBylc87o/D9E0kdo1nE61tGU1Hri/T
HbWxVaOkalZ4Kg==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:47 2026 by rpki-client