Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
File: 2ChPGM1EYEvdbQj02HjcYUVsQP0.mft (raw, json)
Hash identifier: pkXkngFvdWtrnpnb6H/rOybDbO79vXmn9Z+7rmsOEYg=
Subject key identifier: AE:2F:96:74:9A:07:0F:25:E3:8B:A6:53:2C:54:47:B4:29:8C:6B:5F
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 019E28EF74699751E0091BEBCE1F365D17C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
Manifest number: 191D
Signing time: Fri 15 May 2026 00:00:42 +0000
Manifest this update: Fri 15 May 2026 00:00:42 +0000
Manifest next update: Sat 16 May 2026 00:00:42 +0000
Files and hashes: 1: 1tMhwz7KE8o9HGi1XERUlx-tIdY.roa (hash: W97bDT/RSA5be4fQKA6RSGAhSe3TMElDjwqiTHQoDoE=)
2: 2ChPGM1EYEvdbQj02HjcYUVsQP0.crl (hash: 3ZOJnzaMYRv3mytnHFjheM9M5e1+TDQekUIs0x/XE80=)
3: 3mS5hMWhKlnGO3h-ssMwusOTMaM.roa (hash: f29QqM6z7OhHISNe7rHupfilJIPnryz8YS8+zsLSDfs=)
4: 50O5gbvFN5Br5PFCZ0m5Epfpvv0.roa (hash: fg+fIATIpZ9606ZSveJEyeNQUDVlB2iQjr4YCU2TQXw=)
5: N3iKduG1KyGp7acBh2WOJ0MD0zU.roa (hash: jQXzbIYq6Zxo8qPqawC1/jXuZoeWXKzx3rtmVr5KlSs=)
6: ZiRnzXkcSpJurhu_MyLUWMF4fjw.roa (hash: wqIirvJk9KhRbYG9hrmkySthdI26YxcHRINCM7935BQ=)
7: dh_dM1Q__KObsaKsgasBYaz1gyo.roa (hash: GY7xesyfU+gqGkJYAJ4MHZlVcXESZ6jYpENdGF3wOCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:ef:74:69:97:51:e0:09:1b:eb:ce:1f:36:5d:17:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: May 15 00:00:42 2026 GMT
Not After : May 16 00:00:42 2026 GMT
Subject: CN=ae2f96749a070f25e38ba6532c5447b4298c6b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d3:37:b1:fe:aa:a5:79:1b:b8:8b:ee:d3:1c:
94:9b:8c:8d:b1:e9:c0:0f:6b:74:e7:66:8c:2f:1d:
af:e8:ed:56:b9:a5:7d:35:12:37:5c:c0:1d:9e:23:
b0:57:16:df:52:b4:f6:7d:5d:f4:07:a1:fb:35:2b:
95:a2:7f:66:24:07:d5:68:ae:68:f5:d5:5a:d0:7c:
14:2c:81:21:1f:cd:5d:f5:28:24:5a:3a:1f:97:ad:
52:6f:05:80:4b:bd:06:a4:2a:31:b8:4b:86:ed:ce:
35:58:2b:5e:c4:54:cc:45:d8:2a:d8:de:93:98:9a:
56:45:0c:87:50:8d:74:02:2c:c0:2b:c8:f2:28:66:
07:21:3f:06:37:94:2a:48:2c:37:2e:01:6f:49:62:
32:dc:50:7b:f6:53:72:9b:79:a0:c3:ef:05:4d:40:
79:10:70:45:f8:4a:f8:26:b7:46:79:7b:84:1c:77:
ef:8f:07:a8:df:f5:b4:90:d6:22:26:54:bd:53:6f:
79:f8:12:7b:61:3e:86:a4:49:1b:1f:59:b0:ed:69:
fe:5d:cf:94:bc:5d:69:ec:52:01:ae:3c:a1:56:f4:
9a:44:9b:7c:5e:d2:49:3c:41:b7:46:cb:00:e0:84:
ad:95:38:34:84:7b:f0:7e:f7:7a:f8:f4:b1:37:4a:
47:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:2F:96:74:9A:07:0F:25:E3:8B:A6:53:2C:54:47:B4:29:8C:6B:5F
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:f3:24:b8:9d:b0:ee:eb:89:ec:ef:ac:2a:5b:a4:b1:db:37:
14:41:99:75:3d:2b:2d:9c:0d:2b:ee:1e:47:da:32:fc:be:71:
af:51:bf:23:50:f0:5f:37:51:85:91:f9:21:8c:f8:6a:d8:db:
38:2a:bf:c7:23:d7:b7:f7:a1:12:0b:b7:83:c2:02:bb:b8:26:
c1:2e:fe:1c:77:3a:a4:f5:f5:c3:df:b3:83:ba:49:97:34:fc:
8f:bc:20:7d:5e:22:c8:7d:f2:27:c3:db:bb:00:ab:0a:46:ca:
04:bf:21:2e:63:c0:02:dd:c7:b6:81:da:e1:07:38:09:77:dc:
41:9c:9a:75:21:13:59:ce:a9:3e:46:85:ef:02:81:95:00:36:
d7:ce:8e:b3:03:76:da:7c:d7:25:be:79:75:bb:c7:94:6c:70:
a1:cf:26:64:a0:28:b5:c8:25:64:4a:28:6d:2a:e0:42:b8:bb:
d1:67:ed:50:27:5f:fb:53:9e:64:a5:2d:66:15:80:8e:a0:a6:
b1:d4:b7:c2:35:93:23:45:2c:29:22:25:3d:dd:d2:f6:f8:a3:
42:fe:4f:4f:dc:52:3a:c5:fc:d1:74:ed:04:73:a3:f7:9a:68:
7d:74:8d:1c:4f:b1:b7:23:f7:b1:19:67:e5:a7:35:bd:4f:39:
82:0f:aa:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4o73Rpl1HgCRvrzh82XRfFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4Mjg0ZjE4Y2Q0NDYwNGJkZDZkMDhmNGQ4NzhkYzYxNDU2
YzQwZmQwHhcNMjYwNTE1MDAwMDQyWhcNMjYwNTE2MDAwMDQyWjAzMTEwLwYDVQQD
EyhhZTJmOTY3NDlhMDcwZjI1ZTM4YmE2NTMyYzU0NDdiNDI5OGM2YjVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9M3sf6qpXkbuIvu0xyUm4yNsenA
D2t052aMLx2v6O1WuaV9NRI3XMAdniOwVxbfUrT2fV30B6H7NSuVon9mJAfVaK5o
9dVa0HwULIEhH81d9SgkWjofl61SbwWAS70GpCoxuEuG7c41WCtexFTMRdgq2N6T
mJpWRQyHUI10AizAK8jyKGYHIT8GN5QqSCw3LgFvSWIy3FB79lNym3mgw+8FTUB5
EHBF+Er4JrdGeXuEHHfvjweo3/W0kNYiJlS9U295+BJ7YT6GpEkbH1mw7Wn+Xc+U
vF1p7FIBrjyhVvSaRJt8XtJJPEG3RssA4IStlTg0hHvwfvd6+PSxN0pHaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK4vlnSaBw8l44umUyxUR7QpjGtfMB8GA1UdIwQY
MBaAFNgoTxjNRGBL3W0I9Nh43GFFbED9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0Zjgt
Yzc4NjkxMjg1ODJjLzEvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0ZjgtYzc4NjkxMjg1ODJj
LzEvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ/MkuJ2w
7uuJ7O+sKluksds3FEGZdT0rLZwNK+4eR9oy/L5xr1G/I1DwXzdRhZH5IYz4atjb
OCq/xyPXt/ehEgu3g8ICu7gmwS7+HHc6pPX1w9+zg7pJlzT8j7wgfV4iyH3yJ8Pb
uwCrCkbKBL8hLmPAAt3HtoHa4Qc4CXfcQZyadSETWc6pPkaF7wKBlQA2186OswN2
2nzXJb55dbvHlGxwoc8mZKAotcglZEoobSrgQri70WftUCdf+1OeZKUtZhWAjqCm
sdS3wjWTI0UsKSIlPd3S9vijQv5PT9xSOsX80XTtBHOj95pofXSNHE+xtyP3sRln
5ac1vU85gg+qlQ==
-----END CERTIFICATE-----
Generated at Fri May 15 09:07:02 2026 by rpki-client