Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
File: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft (raw, json)
Hash identifier: mWCpxj8t59IXA+4C1zcGy49sak3Ink1O6bdkSeSeJvw=
Subject key identifier: 49:18:03:AC:1C:A8:FE:13:BB:0B:5B:0E:02:CF:FE:33:B7:BD:F9:16
Authority key identifier: D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09
Certificate issuer: /CN=d90d2681514aefee9d3c86e1eae35736c84d1c09
Certificate serial: 019EF4240A3C05C57ED463E4C5DD4E3A3CA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
Manifest number: 1978
Signing time: Tue 23 Jun 2026 11:01:02 +0000
Manifest this update: Tue 23 Jun 2026 11:01:02 +0000
Manifest next update: Wed 24 Jun 2026 11:01:02 +0000
Files and hashes: 1: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl (hash: V11ma6a/tyBWsoY6Dj/gpuhwge7YBH/6TIIWvOfDVXU=)
2: ffYBPHr80VYEZ9nh35N1GnYUaq0.roa (hash: eJAJO7UVqMGX5rHA6v1I/gJpbdqT70QsYP5GPkz+BRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 24 Jun 2026 11:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f4:24:0a:3c:05:c5:7e:d4:63:e4:c5:dd:4e:3a:3c:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90d2681514aefee9d3c86e1eae35736c84d1c09
Validity
Not Before: Jun 23 11:01:02 2026 GMT
Not After : Jun 24 11:01:02 2026 GMT
Subject: CN=491803ac1ca8fe13bb0b5b0e02cffe33b7bdf916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d7:c4:a2:17:69:e1:74:de:50:01:0a:15:0a:
05:e8:27:f4:e1:29:75:fe:0d:6d:7f:32:70:26:4f:
1f:49:67:ed:c6:fa:65:41:0d:7e:03:de:5e:29:c0:
6b:dc:d5:f1:4f:cf:be:57:e8:9e:90:c5:6d:38:df:
d0:83:8a:e6:2c:94:ec:5a:fe:99:30:09:6f:9c:f6:
11:f3:30:e2:61:fa:1f:b6:b0:09:7d:fc:04:89:f5:
94:b6:c0:94:35:73:fd:ae:98:dd:96:b6:5c:d0:cf:
d7:8f:9d:1b:5a:d9:74:12:83:9d:86:d0:d3:25:9a:
e6:87:af:2e:7d:ce:28:c9:8b:df:98:d5:b0:80:f5:
0e:58:37:7c:d7:c5:6f:ca:18:8e:07:aa:5e:de:84:
03:30:17:06:1c:d7:4a:6c:67:4b:36:91:76:ed:6e:
72:3c:1b:f8:06:cd:61:02:3e:34:02:c4:16:3a:0f:
a4:a6:04:01:97:af:6c:ce:65:29:7c:ea:a0:3a:c2:
6f:7a:0d:d5:ef:14:28:77:d2:31:b0:6d:44:e6:cd:
17:4f:74:89:1b:d3:86:d5:6c:ef:dd:21:a3:43:e0:
ee:72:09:ba:8d:86:bf:60:d6:4d:a1:2f:60:ef:16:
e1:76:9d:02:10:1b:d0:e6:7c:2a:08:3a:1c:42:98:
ee:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:18:03:AC:1C:A8:FE:13:BB:0B:5B:0E:02:CF:FE:33:B7:BD:F9:16
X509v3 Authority Key Identifier:
keyid:D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:e3:fa:f8:0d:ec:88:43:a0:c6:cc:5d:c0:9a:87:bf:6b:45:
7b:b0:f3:0f:6f:2e:26:2f:a5:9a:ca:26:08:e6:a6:6d:ad:5f:
2f:5a:6c:e9:22:a0:d6:52:a7:98:14:09:9d:a7:21:53:f2:9a:
cd:bb:78:35:50:75:e5:01:6d:6c:1a:2a:24:59:68:c1:c4:3b:
a1:92:57:5a:25:3c:4c:05:73:4d:9e:e9:08:11:d0:ec:46:95:
7a:03:df:1b:e2:92:93:e6:e3:70:cf:0d:59:6a:28:9b:e8:64:
e4:e7:d2:1e:6d:b7:1c:4e:21:79:da:84:20:e0:b2:70:ac:18:
01:a1:98:b2:9c:7f:06:7d:fb:50:4c:30:ba:21:70:e9:c4:f6:
52:d5:8f:da:9f:1f:e5:ee:d8:38:38:36:f4:34:4a:cc:bb:cb:
21:d9:42:ac:b0:dd:58:47:b6:43:f9:71:eb:1e:9b:9c:e5:35:
dc:5e:35:55:c3:c5:dc:a2:8b:93:7a:82:89:3c:8f:0d:71:37:
35:e9:8f:45:dd:a1:87:14:bb:82:e0:48:52:60:22:54:34:26:
12:a4:c6:fc:ae:60:24:90:9a:48:5a:7e:2b:0d:e6:c0:9e:a3:
f0:8b:53:c7:31:92:a0:fe:a3:e4:2c:75:c3:c1:7d:61:be:02:
74:0c:27:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ70JAo8BcV+1GPkxd1OOjykMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5MGQyNjgxNTE0YWVmZWU5ZDNjODZlMWVhZTM1NzM2Yzg0
ZDFjMDkwHhcNMjYwNjIzMTEwMTAyWhcNMjYwNjI0MTEwMTAyWjAzMTEwLwYDVQQD
Eyg0OTE4MDNhYzFjYThmZTEzYmIwYjViMGUwMmNmZmUzM2I3YmRmOTE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj9fEohdp4XTeUAEKFQoF6Cf04Sl1
/g1tfzJwJk8fSWftxvplQQ1+A95eKcBr3NXxT8++V+iekMVtON/Qg4rmLJTsWv6Z
MAlvnPYR8zDiYfoftrAJffwEifWUtsCUNXP9rpjdlrZc0M/Xj50bWtl0EoOdhtDT
JZrmh68ufc4oyYvfmNWwgPUOWDd818VvyhiOB6pe3oQDMBcGHNdKbGdLNpF27W5y
PBv4Bs1hAj40AsQWOg+kpgQBl69szmUpfOqgOsJveg3V7xQod9IxsG1E5s0XT3SJ
G9OG1Wzv3SGjQ+Ducgm6jYa/YNZNoS9g7xbhdp0CEBvQ5nwqCDocQpjuKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEkYA6wcqP4TuwtbDgLP/jO3vfkWMB8GA1UdIwQY
MBaAFNkNJoFRSu/unTyG4erjVzbITRwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9lMGQ5NTYtN2I4Ny00ZWRkLWI5NDQt
MWQwZjI5YjRiOTdmLzEvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC9lMGQ5NTYtN2I4Ny00ZWRkLWI5NDQtMWQwZjI5YjRiOTdm
LzEvMlEwbWdWRks3LTZkUEliaDZ1TlhOc2hOSEFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN+P6+A3s
iEOgxsxdwJqHv2tFe7DzD28uJi+lmsomCOamba1fL1ps6SKg1lKnmBQJnachU/Ka
zbt4NVB15QFtbBoqJFlowcQ7oZJXWiU8TAVzTZ7pCBHQ7EaVegPfG+KSk+bjcM8N
WWoom+hk5OfSHm23HE4hedqEIOCycKwYAaGYspx/Bn37UEwwuiFw6cT2UtWP2p8f
5e7YODg29DRKzLvLIdlCrLDdWEe2Q/lx6x6bnOU13F41VcPF3KKLk3qCiTyPDXE3
NemPRd2hhxS7guBIUmAiVDQmEqTG/K5gJJCaSFp+Kw3mwJ6j8ItTxzGSoP6j5Cx1
w8F9Yb4CdAwnVQ==
-----END CERTIFICATE-----
Generated at Tue Jun 23 19:21:39 2026 by rpki-client