Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.mft
File: 2bN6OM6IfTdjYEau84ehwjMVLkE.mft (raw, json)
Hash identifier: DnjO4snGtjp9LmyAAG0eh4sQ2wNPITKy0LHiuWbE9lQ=
Subject key identifier: 5D:14:AB:BB:FB:94:B2:39:3D:25:EE:E3:C4:75:62:BB:8C:10:26:5C
Authority key identifier: D9:B3:7A:38:CE:88:7D:37:63:60:46:AE:F3:87:A1:C2:33:15:2E:41
Certificate issuer: /CN=d9b37a38ce887d37636046aef387a1c233152e41
Certificate serial: 019E2F969B5F18F6507972A9AAD4CD11F377
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2bN6OM6IfTdjYEau84ehwjMVLkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.mft
Manifest number: 09A0
Signing time: Sat 16 May 2026 07:00:59 +0000
Manifest this update: Sat 16 May 2026 07:00:59 +0000
Manifest next update: Sun 17 May 2026 07:00:59 +0000
Files and hashes: 1: 2bN6OM6IfTdjYEau84ehwjMVLkE.crl (hash: x9Fz3Dc3+8yLbeDEblo8JBOeHl2MN5+FGX+dBtSk0zI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2bN6OM6IfTdjYEau84ehwjMVLkE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:96:9b:5f:18:f6:50:79:72:a9:aa:d4:cd:11:f3:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9b37a38ce887d37636046aef387a1c233152e41
Validity
Not Before: May 16 07:00:59 2026 GMT
Not After : May 17 07:00:59 2026 GMT
Subject: CN=5d14abbbfb94b2393d25eee3c47562bb8c10265c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9f:b4:39:2a:9a:b8:34:09:55:96:7c:d8:ae:
df:a0:5b:96:0f:2f:8c:32:04:34:2d:aa:90:f9:8f:
04:18:ba:95:d9:2b:bb:ae:37:50:85:b8:1f:10:39:
25:4e:9e:f6:fd:6b:30:ca:f4:7a:37:2f:97:05:a2:
58:23:38:a8:22:3b:19:a4:13:c7:62:f9:1d:19:80:
51:b1:c7:65:f9:bc:3f:7a:88:e8:45:38:e1:a5:b6:
6b:dd:3c:c2:08:a8:9c:40:e2:20:db:d4:57:49:d1:
0c:59:9d:0c:f1:27:a5:0c:ba:56:50:43:dd:5e:89:
9e:ad:f5:13:47:6b:c8:44:3c:37:b8:4e:bf:e2:1f:
b9:43:96:e9:ae:77:8b:55:74:a8:b5:9c:22:5e:26:
9d:f6:e1:06:c2:6d:73:fd:b0:7c:42:fb:fb:2f:98:
cb:a9:ae:7b:71:bc:73:44:e3:f5:b6:3f:79:78:af:
bc:f3:4d:99:7c:76:32:2d:a6:95:14:52:c3:a1:fb:
81:4e:36:a5:67:61:38:17:d8:f1:a0:02:0c:81:33:
6c:f5:3c:93:be:6b:0d:09:04:d7:12:d5:03:b8:a2:
f7:37:09:97:e5:29:3d:9e:e8:6b:6a:2d:58:b6:50:
68:e6:db:2a:9c:f8:37:23:7b:47:d8:4f:c3:e8:b5:
f9:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:14:AB:BB:FB:94:B2:39:3D:25:EE:E3:C4:75:62:BB:8C:10:26:5C
X509v3 Authority Key Identifier:
keyid:D9:B3:7A:38:CE:88:7D:37:63:60:46:AE:F3:87:A1:C2:33:15:2E:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2bN6OM6IfTdjYEau84ehwjMVLkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:88:53:0c:ff:a7:90:e7:48:4f:1a:2f:78:3f:1d:03:99:27:
5b:79:32:c9:08:1c:fb:58:33:48:3d:fc:e4:0e:c7:bf:1e:2c:
2e:cb:e6:c4:79:7c:20:00:40:2d:c6:f0:a8:7c:a5:a1:a3:20:
4b:a7:c0:8d:5c:e4:d6:c7:98:dc:b7:30:8d:84:ec:7d:56:46:
37:61:0f:fb:86:e6:35:c3:73:ed:69:df:f5:f5:d6:bb:21:a2:
22:b3:cb:5e:f1:e2:17:04:0f:3c:23:98:ad:4d:7d:bf:60:34:
41:ad:56:66:13:60:4a:cd:16:59:98:be:ab:f7:a3:80:e9:3b:
0a:18:96:64:04:81:a6:e7:6a:72:94:2b:45:12:7b:f2:a5:e2:
5e:ba:6f:af:99:ad:c8:98:2c:fa:12:6e:12:93:6a:5d:c3:60:
2a:14:59:60:57:58:b0:aa:27:4d:1e:a0:32:a0:03:f5:9e:4a:
2d:7f:1e:2e:e4:8a:fb:21:c6:18:8d:96:63:eb:55:a6:5f:d5:
c0:a9:9f:8a:91:6b:17:2e:f8:60:26:1a:82:40:4e:43:cd:41:
5c:35:99:6b:11:1e:b0:5d:92:fd:aa:9c:c1:55:86:dc:82:cb:
ca:de:a0:ed:a0:61:b2:30:9b:9b:5b:8c:32:e4:3c:e2:52:96:
34:3e:95:18
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vlptfGPZQeXKpqtTNEfN3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5YjM3YTM4Y2U4ODdkMzc2MzYwNDZhZWYzODdhMWMyMzMx
NTJlNDEwHhcNMjYwNTE2MDcwMDU5WhcNMjYwNTE3MDcwMDU5WjAzMTEwLwYDVQQD
Eyg1ZDE0YWJiYmZiOTRiMjM5M2QyNWVlZTNjNDc1NjJiYjhjMTAyNjVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJ+0OSqauDQJVZZ82K7foFuWDy+M
MgQ0LaqQ+Y8EGLqV2Su7rjdQhbgfEDklTp72/WswyvR6Ny+XBaJYIzioIjsZpBPH
YvkdGYBRscdl+bw/eojoRTjhpbZr3TzCCKicQOIg29RXSdEMWZ0M8SelDLpWUEPd
XomerfUTR2vIRDw3uE6/4h+5Q5bprneLVXSotZwiXiad9uEGwm1z/bB8Qvv7L5jL
qa57cbxzROP1tj95eK+8802ZfHYyLaaVFFLDofuBTjalZ2E4F9jxoAIMgTNs9TyT
vmsNCQTXEtUDuKL3NwmX5Sk9nuhrai1YtlBo5tsqnPg3I3tH2E/D6LX55wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF0Uq7v7lLI5PSXu48R1YruMECZcMB8GA1UdIwQY
MBaAFNmzejjOiH03Y2BGrvOHocIzFS5BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmJONk9NNklmVGRqWUVhdTg0ZWh3ak1WTGtFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS85NTQ1ZjItZmI2MC00ODc4LWFlNTgt
ZDZhYWM2MTM4MzBiLzEvMmJONk9NNklmVGRqWUVhdTg0ZWh3ak1WTGtFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS85NTQ1ZjItZmI2MC00ODc4LWFlNTgtZDZhYWM2MTM4MzBi
LzEvMmJONk9NNklmVGRqWUVhdTg0ZWh3ak1WTGtFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfYhTDP+n
kOdITxoveD8dA5knW3kyyQgc+1gzSD385A7Hvx4sLsvmxHl8IABALcbwqHyloaMg
S6fAjVzk1seY3LcwjYTsfVZGN2EP+4bmNcNz7Wnf9fXWuyGiIrPLXvHiFwQPPCOY
rU19v2A0Qa1WZhNgSs0WWZi+q/ejgOk7ChiWZASBpudqcpQrRRJ78qXiXrpvr5mt
yJgs+hJuEpNqXcNgKhRZYFdYsKonTR6gMqAD9Z5KLX8eLuSK+yHGGI2WY+tVpl/V
wKmfipFrFy74YCYagkBOQ81BXDWZaxEesF2S/aqcwVWG3ILLyt6g7aBhsjCbm1uM
MuQ84lKWND6VGA==
-----END CERTIFICATE-----
Generated at Sat May 16 15:40:11 2026 by rpki-client