Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
File: 2qM7UIN5nEnPntwAhit8nCGMZhM.mft (raw, json)
Hash identifier: +3iCLtsIX3bFl5gmm7yTeI/0M/kV4cF0YIGImpGSrk0=
Subject key identifier: 93:EB:C5:B3:AC:21:0A:2F:0D:40:C6:FD:24:0B:80:A2:C4:94:C6:27
Authority key identifier: DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
Certificate issuer: /CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Certificate serial: 019F190D23A8960053779DA5613AC3DD4C97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
Manifest number: 0711
Signing time: Tue 30 Jun 2026 15:01:59 +0000
Manifest this update: Tue 30 Jun 2026 15:01:59 +0000
Manifest next update: Wed 01 Jul 2026 15:01:59 +0000
Files and hashes: 1: 2qM7UIN5nEnPntwAhit8nCGMZhM.crl (hash: s9criyNgQd86qSaYt++SDm0SpCjBennqE65k8/VsZuE=)
2: S_RLG-qdyAaQjiZGgL5sIfI-AYY.roa (hash: yQu9ZmP/q7jsTu4yw/AuWtFPXstyX5q6aeR1beEfVWY=)
3: U6As8UUX9Mg8l6zjGbZFCAxy-Pk.roa (hash: RA50m9VAkp/7GXmqEXtG2sTYJiK0WAUeyva3ilsrFA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0d:23:a8:96:00:53:77:9d:a5:61:3a:c3:dd:4c:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Validity
Not Before: Jun 30 15:01:59 2026 GMT
Not After : Jul 1 15:01:59 2026 GMT
Subject: CN=93ebc5b3ac210a2f0d40c6fd240b80a2c494c627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:53:ce:f2:3c:86:12:f4:86:2c:c7:c1:ec:ba:
25:7f:12:fe:fb:72:11:0a:43:97:6d:a8:68:71:f4:
ea:fb:d9:79:32:1b:46:89:29:ea:4c:2c:72:fd:1b:
60:70:08:81:4d:fe:f0:cc:45:97:25:92:3b:0b:60:
00:be:99:a2:fa:8c:ed:f6:91:a1:a8:d6:80:4e:3e:
f4:75:ed:79:a7:8b:1f:74:03:99:fe:09:b4:24:6a:
89:ed:27:1d:32:2b:57:29:34:1a:53:a2:53:84:83:
4f:14:3d:96:32:7c:a9:b6:96:9c:a0:c9:f0:c9:39:
43:c4:e4:d8:66:6a:73:54:e4:fc:8f:0c:46:b2:0c:
6c:29:16:6d:2b:52:a0:f0:27:39:5b:b3:7b:f1:06:
18:46:8d:d2:2e:e1:85:ab:a1:21:4f:fd:b3:e2:57:
09:14:10:13:bd:e3:0e:87:90:48:a5:42:10:25:2a:
f0:ff:0f:17:23:41:9d:81:c4:55:4a:ca:ed:78:b4:
38:ee:a9:66:e7:de:0a:d4:f9:6a:3f:18:91:4d:fb:
5a:68:16:aa:36:cb:0a:8c:b4:1c:e4:f9:6a:e5:48:
af:c5:0d:1e:d6:2e:a5:5f:9a:ff:31:30:ad:d5:67:
85:8e:61:65:ec:4f:70:84:08:7b:67:55:d2:45:d1:
65:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:EB:C5:B3:AC:21:0A:2F:0D:40:C6:FD:24:0B:80:A2:C4:94:C6:27
X509v3 Authority Key Identifier:
keyid:DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:78:9a:d2:c7:8a:26:34:98:4f:30:49:d3:76:bc:81:91:c6:
bf:ab:65:06:ba:02:17:3a:7c:07:21:37:f7:42:7c:a8:08:bb:
3f:e7:58:1a:72:c7:16:70:95:52:a3:06:d9:a9:b9:3a:38:2b:
9c:ac:19:24:25:d0:07:75:cb:5b:f7:3e:9a:21:47:8b:26:13:
10:1d:b2:9b:75:33:db:4b:c6:76:5d:94:ae:8d:78:74:bd:b5:
0f:73:07:3d:53:f5:6a:ed:be:e4:84:b4:24:64:d7:80:08:4c:
12:10:9b:a8:f8:d4:b6:38:c9:70:8e:75:a8:29:26:a1:c4:46:
5e:3e:aa:e9:4c:1e:4c:37:e0:8e:18:92:b7:a3:3e:12:a2:dd:
66:1b:94:0c:78:f1:82:1e:bf:e1:97:9c:48:67:bf:ff:2e:3b:
86:80:e9:08:3e:b7:36:43:ab:27:d0:19:da:16:18:d9:8e:36:
2a:d2:8c:38:f1:42:e0:40:0b:89:de:09:92:31:71:f1:20:6b:
e5:dd:0e:e4:d5:fd:62:57:15:21:5c:0a:f7:3c:6f:ca:19:b6:
74:e5:70:88:8b:d2:0a:fc:67:57:e6:4f:99:70:de:45:aa:46:
9c:3b:11:a8:82:9d:a3:20:7f:8b:da:55:71:d3:ee:91:5e:4a:
08:28:bb:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZDSOolgBTd52lYTrD3UyXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYTMzYjUwODM3OTljNDljZjllZGMwMDg2MmI3YzljMjE4
YzY2MTMwHhcNMjYwNjMwMTUwMTU5WhcNMjYwNzAxMTUwMTU5WjAzMTEwLwYDVQQD
Eyg5M2ViYzViM2FjMjEwYTJmMGQ0MGM2ZmQyNDBiODBhMmM0OTRjNjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1PO8jyGEvSGLMfB7LolfxL++3IR
CkOXbahocfTq+9l5MhtGiSnqTCxy/RtgcAiBTf7wzEWXJZI7C2AAvpmi+ozt9pGh
qNaATj70de15p4sfdAOZ/gm0JGqJ7ScdMitXKTQaU6JThINPFD2WMnyptpacoMnw
yTlDxOTYZmpzVOT8jwxGsgxsKRZtK1Kg8Cc5W7N78QYYRo3SLuGFq6EhT/2z4lcJ
FBATveMOh5BIpUIQJSrw/w8XI0GdgcRVSsrteLQ47qlm594K1PlqPxiRTftaaBaq
NssKjLQc5Plq5UivxQ0e1i6lX5r/MTCt1WeFjmFl7E9whAh7Z1XSRdFlJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJPrxbOsIQovDUDG/SQLgKLElMYnMB8GA1UdIwQY
MBaAFNqjO1CDeZxJz57cAIYrfJwhjGYTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnFNN1VJTjVuRW5QbnR3QWhpdDhuQ0dNWmhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS9jZjMxOGUtODk1MS00ZTFlLWJiZTMt
MTZmNDNkYmEyYWJjLzEvMnFNN1VJTjVuRW5QbnR3QWhpdDhuQ0dNWmhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS9jZjMxOGUtODk1MS00ZTFlLWJiZTMtMTZmNDNkYmEyYWJj
LzEvMnFNN1VJTjVuRW5QbnR3QWhpdDhuQ0dNWmhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPHia0seK
JjSYTzBJ03a8gZHGv6tlBroCFzp8ByE390J8qAi7P+dYGnLHFnCVUqMG2am5Ojgr
nKwZJCXQB3XLW/c+miFHiyYTEB2ym3Uz20vGdl2Uro14dL21D3MHPVP1au2+5IS0
JGTXgAhMEhCbqPjUtjjJcI51qCkmocRGXj6q6UweTDfgjhiSt6M+EqLdZhuUDHjx
gh6/4ZecSGe//y47hoDpCD63NkOrJ9AZ2hYY2Y42KtKMOPFC4EALid4JkjFx8SBr
5d0O5NX9YlcVIVwK9zxvyhm2dOVwiIvSCvxnV+ZPmXDeRapGnDsRqIKdoyB/i9pV
cdPukV5KCCi7zQ==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:23:57 2026 by rpki-client