Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
File: dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft (raw, json)
Hash identifier: qHdoWcFadP/EwrBF6wztENSwdtS7ZjDYOoNtQwloBS0=
Subject key identifier: A6:DC:78:C2:F0:96:CC:25:CF:2B:AB:6E:68:17:72:1C:42:5D:9D:E9
Authority key identifier: 74:9D:8A:43:28:93:0B:93:8F:A8:60:18:B1:E4:47:EE:4D:8D:A8:F9
Certificate issuer: /CN=749d8a4328930b938fa86018b1e447ee4d8da8f9
Certificate serial: 019E32CE7C0D7434DF5770F9285E9C6068B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
Manifest number: 0289
Signing time: Sat 16 May 2026 22:00:53 +0000
Manifest this update: Sat 16 May 2026 22:00:53 +0000
Manifest next update: Sun 17 May 2026 22:00:53 +0000
Files and hashes: 1: dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl (hash: gfIDGrJTsHcwX0Buqa4An5YKylnX+cZh4BXvp4HAwQM=)
2: i5v8Z7TLwK1d1522dak6QJo-ZdI.roa (hash: dORF0I0Mm7ul7rA3/PIS0cDu8jhdXdBq0BX2+YuQ/kM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:ce:7c:0d:74:34:df:57:70:f9:28:5e:9c:60:68:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749d8a4328930b938fa86018b1e447ee4d8da8f9
Validity
Not Before: May 16 22:00:53 2026 GMT
Not After : May 17 22:00:53 2026 GMT
Subject: CN=a6dc78c2f096cc25cf2bab6e6817721c425d9de9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:2c:11:63:4c:d8:f1:60:e3:c8:d9:d6:6e:64:
ec:4b:22:93:95:9e:0f:a9:29:03:de:9d:00:fb:01:
d7:5c:d9:7a:16:f8:53:11:a5:2e:19:36:e1:45:cc:
0b:01:ec:6d:f3:15:f7:77:eb:e2:d7:be:67:80:ae:
f3:f1:43:50:56:43:ca:f9:90:bc:fe:e3:08:0f:6b:
4a:a0:5e:9b:87:fb:3e:4b:f8:7a:02:27:a4:ea:b9:
56:c6:22:3b:71:e1:e8:a2:fa:dc:4a:48:66:dd:24:
bd:0d:64:92:03:27:57:c4:ad:fc:b7:c3:fe:4e:1a:
de:25:ee:c3:9d:88:a8:0b:78:fa:31:a8:a6:52:64:
94:40:f8:47:6b:0d:f9:8d:60:cd:3f:42:20:11:5b:
ed:90:0b:f8:ba:fc:83:2e:7d:fc:5c:ef:56:b9:ad:
af:04:50:83:eb:b2:7c:08:da:f1:38:f2:ac:24:7f:
00:45:08:7e:33:5d:c7:f9:6e:60:56:7e:78:67:4c:
bd:09:14:9d:b9:7b:f4:a7:5f:72:e8:ba:aa:4a:a4:
d7:69:90:45:cc:72:89:17:8c:0b:0f:42:ef:91:48:
a7:be:1e:82:6c:32:74:ff:24:ac:94:c9:8c:cc:e1:
aa:cf:8f:b7:72:08:65:54:0a:96:9e:df:6c:d7:74:
f9:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:DC:78:C2:F0:96:CC:25:CF:2B:AB:6E:68:17:72:1C:42:5D:9D:E9
X509v3 Authority Key Identifier:
keyid:74:9D:8A:43:28:93:0B:93:8F:A8:60:18:B1:E4:47:EE:4D:8D:A8:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:d6:82:ff:5b:7d:20:33:b4:a6:cf:f2:24:a4:d7:66:ed:14:
71:1a:2b:6f:fd:59:c1:1c:75:1c:a5:78:55:14:86:cc:df:dd:
6c:ea:87:53:0c:bb:6b:4b:3e:6b:ca:c1:10:bf:63:b1:7b:63:
dd:67:9a:52:c1:16:7e:cf:42:09:3f:1e:e5:78:20:87:83:b1:
2a:40:ce:e2:4a:5b:46:0b:13:d0:6a:32:e7:78:09:8c:52:70:
52:e7:d6:62:74:46:bd:2f:6f:bc:30:9e:00:d0:1e:f5:06:77:
b6:0a:4b:78:62:bd:e5:35:57:c2:08:fd:dd:10:5b:a5:31:8d:
b3:d9:48:12:09:e6:3a:e2:1e:20:16:78:d3:26:a2:52:c2:f7:
b9:56:0c:a4:1c:56:56:1f:25:5a:aa:94:02:5e:e2:65:af:61:
bd:84:40:02:aa:63:45:b0:dc:88:66:99:e5:44:7b:1c:6a:76:
c2:f8:5a:3a:84:98:c0:ee:9f:2c:82:cd:ff:e5:dd:ae:88:57:
d0:28:b9:9d:2e:e6:af:b2:6f:5f:73:51:d8:33:34:ff:c4:aa:
f1:fd:98:83:fe:55:1c:16:c9:9a:97:8b:7c:55:fb:53:9c:fa:
c5:8e:d3:d7:df:77:e3:13:0f:8b:8e:20:47:96:6b:f2:9b:a6:
50:63:3d:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4yznwNdDTfV3D5KF6cYGi4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OWQ4YTQzMjg5MzBiOTM4ZmE4NjAxOGIxZTQ0N2VlNGQ4
ZGE4ZjkwHhcNMjYwNTE2MjIwMDUzWhcNMjYwNTE3MjIwMDUzWjAzMTEwLwYDVQQD
EyhhNmRjNzhjMmYwOTZjYzI1Y2YyYmFiNmU2ODE3NzIxYzQyNWQ5ZGU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6CwRY0zY8WDjyNnWbmTsSyKTlZ4P
qSkD3p0A+wHXXNl6FvhTEaUuGTbhRcwLAext8xX3d+vi175ngK7z8UNQVkPK+ZC8
/uMID2tKoF6bh/s+S/h6Aiek6rlWxiI7ceHoovrcSkhm3SS9DWSSAydXxK38t8P+
ThreJe7DnYioC3j6MaimUmSUQPhHaw35jWDNP0IgEVvtkAv4uvyDLn38XO9Wua2v
BFCD67J8CNrxOPKsJH8ARQh+M13H+W5gVn54Z0y9CRSduXv0p19y6LqqSqTXaZBF
zHKJF4wLD0LvkUinvh6CbDJ0/ySslMmMzOGqz4+3cghlVAqWnt9s13T5HQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKbceMLwlswlzyurbmgXchxCXZ3pMB8GA1UdIwQY
MBaAFHSdikMokwuTj6hgGLHkR+5Njaj5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEoyS1F5aVRDNU9QcUdBWXNlUkg3azJOcVBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8zZmEyMTctODVmNS00ZjE5LWI5MWUt
MDg4OWUzZWNkMWY2LzEvZEoyS1F5aVRDNU9QcUdBWXNlUkg3azJOcVBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny8zZmEyMTctODVmNS00ZjE5LWI5MWUtMDg4OWUzZWNkMWY2
LzEvZEoyS1F5aVRDNU9QcUdBWXNlUkg3azJOcVBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU9aC/1t9
IDO0ps/yJKTXZu0UcRorb/1ZwRx1HKV4VRSGzN/dbOqHUwy7a0s+a8rBEL9jsXtj
3WeaUsEWfs9CCT8e5Xggh4OxKkDO4kpbRgsT0Goy53gJjFJwUufWYnRGvS9vvDCe
ANAe9QZ3tgpLeGK95TVXwgj93RBbpTGNs9lIEgnmOuIeIBZ40yaiUsL3uVYMpBxW
Vh8lWqqUAl7iZa9hvYRAAqpjRbDciGaZ5UR7HGp2wvhaOoSYwO6fLILN/+XdrohX
0Ci5nS7mr7JvX3NR2DM0/8Sq8f2Yg/5VHBbJmpeLfFX7U5z6xY7T19934xMPi44g
R5Zr8pumUGM9oA==
-----END CERTIFICATE-----
Generated at Sun May 17 00:27:46 2026 by rpki-client