Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
File: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft (raw, json)
Hash identifier: iw+bcTiXPPM9UkJIj2M8CjoLuPwqXsOOC+aKC7Mig2U=
Subject key identifier: 71:92:4F:C0:F5:16:81:60:47:5E:28:58:0F:79:5C:48:8E:9C:78:F0
Authority key identifier: D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
Certificate issuer: /CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Certificate serial: 019EFB3B3FBEE29FF3F2178F6B0C388EF2E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
Manifest number: 106B
Signing time: Wed 24 Jun 2026 20:03:44 +0000
Manifest this update: Wed 24 Jun 2026 20:03:44 +0000
Manifest next update: Thu 25 Jun 2026 20:03:44 +0000
Files and hashes: 1: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl (hash: +NUCuaqWqzSi5RQpAQwJjeEfXJFijqQEWR8aZBEGvl8=)
2: AvvuwRM1rXoB8yxstk4ZmsXgR1Q.roa (hash: G1ri1MeorzSK/rz57ShZ1na3AYjwABPoQHfjiBcWJn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 14:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fb:3b:3f:be:e2:9f:f3:f2:17:8f:6b:0c:38:8e:f2:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Validity
Not Before: Jun 24 20:03:44 2026 GMT
Not After : Jun 25 20:03:44 2026 GMT
Subject: CN=71924fc0f5168160475e28580f795c488e9c78f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:89:3d:53:5c:ac:8f:40:db:bd:f5:8c:57:3d:
18:ba:07:d8:0c:5a:87:8c:fc:1a:c7:06:e2:fd:d9:
5b:77:28:a5:95:bd:e9:d4:76:d2:f7:75:8b:ac:08:
c2:11:ce:f7:eb:8d:fc:94:29:5a:17:2f:3b:98:0a:
fe:45:c8:24:23:28:fe:ad:9d:8c:e1:9f:97:65:da:
7a:99:cb:b7:91:20:ae:eb:68:ae:a5:d9:79:12:2e:
b6:cd:27:bf:ea:45:93:63:34:8d:29:6b:7f:06:e3:
31:3b:7e:d2:9c:f4:4b:01:47:55:4e:8a:8c:47:47:
cd:29:5d:f5:1e:3e:6c:ba:00:8b:f7:a5:a4:c9:24:
6b:ac:aa:ed:ca:87:91:05:04:02:a9:16:6c:20:f3:
9a:26:06:cd:9d:a0:90:1a:85:05:be:3d:d9:36:59:
7b:4e:23:af:e2:fa:28:d0:d9:2b:1a:da:77:0b:b5:
96:38:31:f9:3f:77:fb:58:34:1e:45:ee:75:8d:aa:
93:fd:be:b7:f1:21:5a:4e:07:5c:11:80:40:f8:9d:
65:c7:06:3a:a3:e8:a8:90:57:fa:6a:80:55:c1:65:
ef:88:e4:a6:a8:0f:56:4b:92:bc:5a:73:96:3c:8e:
7f:48:3f:b5:09:57:9b:c1:55:c0:e1:21:81:35:9e:
20:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:92:4F:C0:F5:16:81:60:47:5E:28:58:0F:79:5C:48:8E:9C:78:F0
X509v3 Authority Key Identifier:
keyid:D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:5d:4c:f8:1d:7e:82:8a:dc:27:16:4c:c7:7b:25:ed:c7:64:
6b:62:50:bc:b7:ed:f6:69:4b:24:e5:3a:e0:9e:2a:73:c5:82:
17:01:78:3a:42:a2:d8:e4:eb:c2:7e:75:09:58:b1:7a:09:75:
59:3d:8c:71:d1:25:4f:1a:b4:e9:2b:e1:82:fd:bf:0a:a4:2e:
3c:15:34:50:8b:b5:4f:a3:8c:9b:d0:61:09:d4:f3:97:28:8b:
9d:c3:fc:84:b1:b6:21:91:f3:1e:98:13:a6:71:8e:6f:53:55:
5e:4a:0f:83:1b:c4:a3:ab:8d:ae:f2:c9:27:7e:37:38:63:93:
51:67:74:1a:a6:3b:42:af:dc:df:ed:2b:8d:7a:88:2b:94:e0:
6a:99:57:a0:38:8b:33:15:92:a8:bc:6a:16:cc:99:f6:e3:28:
1a:16:33:65:5b:88:20:34:8c:1e:e4:02:ef:ab:d0:d1:cb:ac:
4a:2b:9a:a3:45:0c:d6:6b:31:df:c2:22:b2:6c:5a:e9:33:2e:
99:ab:7b:36:fb:33:e0:d5:ca:75:8e:90:32:60:27:87:a9:74:
1f:34:a7:d8:ad:bf:7c:0e:f4:70:1d:d3:94:22:43:a4:a2:ef:
bb:bb:3b:7c:6a:01:db:3b:db:ab:78:76:e3:68:c4:b5:13:8a:
1d:f5:99:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ77Oz++4p/z8hePaww4jvLkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MzIwYmQ0ZWY4NThmZDYyYmIyNDg1ZDA4YjBhODY5MjBl
OTExYzEwHhcNMjYwNjI0MjAwMzQ0WhcNMjYwNjI1MjAwMzQ0WjAzMTEwLwYDVQQD
Eyg3MTkyNGZjMGY1MTY4MTYwNDc1ZTI4NTgwZjc5NWM0ODhlOWM3OGYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxIk9U1ysj0DbvfWMVz0YugfYDFqH
jPwaxwbi/dlbdyillb3p1HbS93WLrAjCEc736438lClaFy87mAr+RcgkIyj+rZ2M
4Z+XZdp6mcu3kSCu62iupdl5Ei62zSe/6kWTYzSNKWt/BuMxO37SnPRLAUdVToqM
R0fNKV31Hj5sugCL96WkySRrrKrtyoeRBQQCqRZsIPOaJgbNnaCQGoUFvj3ZNll7
TiOv4voo0NkrGtp3C7WWODH5P3f7WDQeRe51jaqT/b638SFaTgdcEYBA+J1lxwY6
o+iokFf6aoBVwWXviOSmqA9WS5K8WnOWPI5/SD+1CVebwVXA4SGBNZ4gpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHGST8D1FoFgR14oWA95XEiOnHjwMB8GA1UdIwQY
MBaAFNgyC9TvhY/WK7JIXQiwqGkg6RHBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkRJTDFPLUZqOVlyc2toZENMQ29hU0RwRWNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9iZDgxZTctMzk3ZS00ZDVkLWE1ZjEt
M2EwZmFhMjhiNWFjLzEvMkRJTDFPLUZqOVlyc2toZENMQ29hU0RwRWNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi9iZDgxZTctMzk3ZS00ZDVkLWE1ZjEtM2EwZmFhMjhiNWFj
LzEvMkRJTDFPLUZqOVlyc2toZENMQ29hU0RwRWNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB11M+B1+
gorcJxZMx3sl7cdka2JQvLft9mlLJOU64J4qc8WCFwF4OkKi2OTrwn51CVixegl1
WT2McdElTxq06Svhgv2/CqQuPBU0UIu1T6OMm9BhCdTzlyiLncP8hLG2IZHzHpgT
pnGOb1NVXkoPgxvEo6uNrvLJJ343OGOTUWd0GqY7Qq/c3+0rjXqIK5TgaplXoDiL
MxWSqLxqFsyZ9uMoGhYzZVuIIDSMHuQC76vQ0cusSiuao0UM1msx38Iismxa6TMu
mat7Nvsz4NXKdY6QMmAnh6l0HzSn2K2/fA70cB3TlCJDpKLvu7s7fGoB2zvbq3h2
42jEtROKHfWZ5Q==
-----END CERTIFICATE-----
Generated at Wed Jun 24 22:54:22 2026 by rpki-client