Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
File: 2xjQrivPZ9QUonXLOE8tOWCoN70.mft (raw, json)
Hash identifier: u1UwueUBUs9bN/p1qD+dskKHvSWZ428+x1K0uYYMpe0=
Subject key identifier: 0A:00:FB:0C:25:36:A8:B2:3B:68:4D:22:2A:A0:C8:E5:E0:88:5C:23
Authority key identifier: DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
Certificate issuer: /CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Certificate serial: 019F17C2D9A621431BA4576E2F53D91ACC9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
Manifest number: 10FF
Signing time: Tue 30 Jun 2026 09:01:13 +0000
Manifest this update: Tue 30 Jun 2026 09:01:13 +0000
Manifest next update: Wed 01 Jul 2026 09:01:13 +0000
Files and hashes: 1: 2xjQrivPZ9QUonXLOE8tOWCoN70.crl (hash: g/QGYoNeCIycdN4YnSvthdW5DzmzNuzVbS1kUvJPb3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c2:d9:a6:21:43:1b:a4:57:6e:2f:53:d9:1a:cc:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Validity
Not Before: Jun 30 09:01:13 2026 GMT
Not After : Jul 1 09:01:13 2026 GMT
Subject: CN=0a00fb0c2536a8b23b684d222aa0c8e5e0885c23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:68:19:f4:ef:54:e0:4a:eb:37:63:28:a4:b6:
de:4f:17:07:9d:a4:41:3e:9c:57:61:37:89:ea:a1:
66:1a:7b:81:aa:e4:8f:92:fb:81:43:66:d3:98:1f:
3a:3a:bc:64:b3:a2:ef:2c:90:55:8d:94:ea:a6:b6:
32:1b:7a:d4:67:53:69:0d:42:80:5d:1c:25:26:21:
39:d2:ff:c3:ac:b5:b7:52:84:51:12:ef:c4:0a:48:
d7:7f:9f:e0:39:68:77:2f:ed:72:3b:7b:e5:8e:45:
75:e0:e5:08:d5:5c:45:ba:3d:7b:40:86:53:f0:c6:
e0:ae:e2:99:e7:5b:bf:1d:f3:04:56:17:fc:d9:66:
47:9c:8e:2b:96:98:08:49:1a:2f:0e:7f:2d:9b:5d:
74:85:6a:aa:04:bd:db:4e:4e:d6:75:1b:b7:3f:be:
45:bc:b7:49:cd:8b:eb:33:39:23:cd:2f:41:ab:2f:
be:33:78:f9:79:2c:66:bb:29:b5:ae:6d:07:14:fe:
cc:2f:82:b2:c0:12:4a:43:3b:15:08:52:55:34:9a:
40:bc:05:fe:6e:4e:b5:af:42:52:85:07:1b:ab:cc:
f3:89:86:82:b2:22:b9:8c:10:14:a5:94:4d:6a:d9:
13:b6:b6:33:00:09:36:94:c0:6e:55:56:2f:b9:ac:
75:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:00:FB:0C:25:36:A8:B2:3B:68:4D:22:2A:A0:C8:E5:E0:88:5C:23
X509v3 Authority Key Identifier:
keyid:DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:2f:34:76:28:b3:3a:ec:ca:a0:9d:96:30:af:68:63:7a:e1:
db:e2:dc:62:56:67:ff:b5:95:b6:fc:de:cb:e7:6c:5e:98:21:
f1:a6:86:eb:3c:07:45:4c:be:42:27:30:9f:b9:aa:6f:f3:78:
c4:d3:be:f4:00:57:1f:e6:23:bb:c2:0d:6e:52:5f:27:62:b4:
7c:09:bb:6a:cf:3f:b4:5a:2a:ab:2c:46:bd:95:71:f3:17:13:
be:57:60:8a:cd:8a:69:d5:c8:b7:88:eb:f9:a7:9b:7a:6b:dd:
8e:eb:20:c9:c5:29:86:ff:41:4d:02:37:17:87:07:c0:4d:c5:
4b:28:fd:e7:ed:76:05:9c:0c:78:b9:81:c2:a2:de:3e:0f:9d:
38:ea:85:b6:90:13:3b:3b:22:01:ec:87:78:db:13:c9:9a:9b:
3d:49:c0:fd:6e:ba:2d:34:9b:02:5d:2b:6e:4c:b7:08:cd:76:
ac:f1:78:64:d7:d9:1d:00:7b:56:7e:d1:e6:6a:d1:50:1a:0f:
5f:f6:7e:8e:1c:0f:91:e6:e9:7f:0e:35:a8:a4:2a:07:00:58:
67:57:75:f0:b4:22:25:ad:b4:56:43:db:4a:66:fc:43:6f:11:
1d:c2:db:fd:d5:bf:8b:6a:fe:1f:3e:03:df:5a:94:73:a8:bb:
57:21:5e:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8XwtmmIUMbpFduL1PZGsyaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMThkMGFlMmJjZjY3ZDQxNGEyNzVjYjM4NGYyZDM5NjBh
ODM3YmQwHhcNMjYwNjMwMDkwMTEzWhcNMjYwNzAxMDkwMTEzWjAzMTEwLwYDVQQD
EygwYTAwZmIwYzI1MzZhOGIyM2I2ODRkMjIyYWEwYzhlNWUwODg1YzIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGgZ9O9U4ErrN2MopLbeTxcHnaRB
PpxXYTeJ6qFmGnuBquSPkvuBQ2bTmB86Orxks6LvLJBVjZTqprYyG3rUZ1NpDUKA
XRwlJiE50v/DrLW3UoRREu/ECkjXf5/gOWh3L+1yO3vljkV14OUI1VxFuj17QIZT
8MbgruKZ51u/HfMEVhf82WZHnI4rlpgISRovDn8tm110hWqqBL3bTk7WdRu3P75F
vLdJzYvrMzkjzS9Bqy++M3j5eSxmuym1rm0HFP7ML4KywBJKQzsVCFJVNJpAvAX+
bk61r0JShQcbq8zziYaCsiK5jBAUpZRNatkTtrYzAAk2lMBuVVYvuax1cwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAoA+wwlNqiyO2hNIiqgyOXgiFwjMB8GA1UdIwQY
MBaAFNsY0K4rz2fUFKJ1yzhPLTlgqDe9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnhqUXJpdlBaOVFVb25YTE9FOHRPV0NvTjcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9jZWY4OTYtZjk2OC00YzJmLTgwYzQt
MGFjZWJhYTY3Yjc5LzEvMnhqUXJpdlBaOVFVb25YTE9FOHRPV0NvTjcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9jZWY4OTYtZjk2OC00YzJmLTgwYzQtMGFjZWJhYTY3Yjc5
LzEvMnhqUXJpdlBaOVFVb25YTE9FOHRPV0NvTjcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZi80diiz
OuzKoJ2WMK9oY3rh2+LcYlZn/7WVtvzey+dsXpgh8aaG6zwHRUy+Qicwn7mqb/N4
xNO+9ABXH+Yju8INblJfJ2K0fAm7as8/tFoqqyxGvZVx8xcTvldgis2KadXIt4jr
+aebemvdjusgycUphv9BTQI3F4cHwE3FSyj95+12BZwMeLmBwqLePg+dOOqFtpAT
OzsiAeyHeNsTyZqbPUnA/W66LTSbAl0rbky3CM12rPF4ZNfZHQB7Vn7R5mrRUBoP
X/Z+jhwPkebpfw41qKQqBwBYZ1d18LQiJa20VkPbSmb8Q28RHcLb/dW/i2r+Hz4D
31qUc6i7VyFesg==
-----END CERTIFICATE-----
Generated at Tue Jun 30 19:31:35 2026 by rpki-client