Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
File: 2671wyvqS1TRfiQbXMyvB7wKjuk.mft (raw, json)
Hash identifier: ER3x/c1Tpy/0D8t0qmjP+AmjYcE1LhRk2rPiy8YztSM=
Subject key identifier: F0:FA:A8:DB:99:2B:16:CC:70:10:86:1A:4F:79:09:1D:FB:96:A4:E6
Authority key identifier: DB:AE:F5:C3:2B:EA:4B:54:D1:7E:24:1B:5C:CC:AF:07:BC:0A:8E:E9
Certificate issuer: /CN=dbaef5c32bea4b54d17e241b5cccaf07bc0a8ee9
Certificate serial: 019E303BCD1864E67AE74E021ACCB9E76E23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
Manifest number: 1289
Signing time: Sat 16 May 2026 10:01:25 +0000
Manifest this update: Sat 16 May 2026 10:01:25 +0000
Manifest next update: Sun 17 May 2026 10:01:25 +0000
Files and hashes: 1: 1-95gw9KACRY59GXkCu6E44De0Qk.roa (hash: iKh5qfmB78EvSPQTYq74QtU0CuU4qb/tMvQfB/d/g9c=)
2: 2671wyvqS1TRfiQbXMyvB7wKjuk.crl (hash: MybY7+VOhjpqACxRdp1gzb2JcgZJQYhAftI55Lg8U0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:cd:18:64:e6:7a:e7:4e:02:1a:cc:b9:e7:6e:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbaef5c32bea4b54d17e241b5cccaf07bc0a8ee9
Validity
Not Before: May 16 10:01:25 2026 GMT
Not After : May 17 10:01:25 2026 GMT
Subject: CN=f0faa8db992b16cc7010861a4f79091dfb96a4e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2d:50:62:43:84:0c:ba:79:91:90:44:d6:ec:
08:b4:78:13:37:a1:5a:37:5b:13:1e:3f:61:bf:75:
39:c7:78:ca:84:57:a1:7f:8c:b3:f1:9b:69:77:49:
8a:52:d9:e4:d7:b1:67:c2:d2:38:33:a7:c0:a8:08:
51:d0:c3:2c:48:9b:43:a5:bb:cf:95:87:91:1b:89:
86:1d:c3:fb:15:d6:a7:97:24:73:41:27:48:75:a6:
66:3d:28:04:70:c8:8c:d9:9a:99:50:53:a9:00:8b:
7c:5a:f0:6e:cb:e3:61:35:2d:85:2b:22:27:ba:02:
fa:f8:cf:70:f5:2f:0e:a7:d7:42:db:a7:20:53:79:
77:01:c9:de:71:a7:a7:a1:f6:6c:a9:24:1b:04:b8:
a1:5a:4b:1c:a9:8a:00:78:da:9c:d4:b8:cc:69:0a:
74:8c:87:7b:d6:9d:08:cf:3c:d2:d5:72:39:e7:ce:
67:8c:a8:85:17:d6:89:b6:0c:a1:47:35:aa:ca:d1:
3b:0c:cd:1f:34:d4:58:75:46:6e:5c:d8:31:0c:84:
b9:f4:6c:2c:8a:b6:e3:11:63:30:a2:18:34:62:01:
0b:b3:85:16:56:2b:ee:ec:60:f5:3c:d5:ce:8d:a1:
76:ca:e9:b2:b8:f7:78:de:f7:01:4e:53:6d:6d:b8:
d0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:FA:A8:DB:99:2B:16:CC:70:10:86:1A:4F:79:09:1D:FB:96:A4:E6
X509v3 Authority Key Identifier:
keyid:DB:AE:F5:C3:2B:EA:4B:54:D1:7E:24:1B:5C:CC:AF:07:BC:0A:8E:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:44:c2:b8:41:c9:61:e8:84:59:b6:5e:df:ce:26:34:73:86:
a0:ac:a4:af:01:ee:cf:92:54:e1:58:cc:6f:77:6b:f2:96:d3:
e7:e4:5f:e9:77:ad:f0:b5:4a:d8:e8:28:f7:4a:ea:43:cc:c9:
08:37:80:e5:02:2d:df:61:83:09:41:b0:93:82:71:3e:1e:66:
32:62:18:13:5a:46:d5:7a:84:f0:e4:c6:f6:82:75:bb:ca:c4:
23:77:65:81:79:c2:9f:0d:aa:fd:22:c9:4e:29:37:08:d8:46:
91:65:fb:ca:06:e4:bf:08:c8:25:1c:63:0d:88:73:ae:14:e9:
a6:e7:49:a1:0b:df:ea:23:68:7e:7e:2d:36:de:01:34:9e:5a:
2f:6f:cb:f1:d6:c7:82:3f:a7:e8:5b:14:9d:5d:97:78:1d:af:
83:b4:dd:59:d3:8c:0a:6a:c5:b8:44:30:3f:63:fc:c7:a3:e7:
10:5c:69:ff:4a:ff:ba:10:43:97:f9:e1:c1:47:e2:ec:2d:3e:
0d:c8:12:a5:fc:07:2c:f3:29:a6:8c:ce:7b:81:8a:36:4b:65:
0d:c9:c2:ec:2d:16:7f:e0:37:fb:37:f3:09:71:03:5f:5f:33:
40:ce:6f:b3:8b:04:7d:fb:b3:3b:e5:c3:88:e0:e9:5e:b9:08:
03:84:da:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wO80YZOZ6504CGsy5524jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiYWVmNWMzMmJlYTRiNTRkMTdlMjQxYjVjY2NhZjA3YmMw
YThlZTkwHhcNMjYwNTE2MTAwMTI1WhcNMjYwNTE3MTAwMTI1WjAzMTEwLwYDVQQD
EyhmMGZhYThkYjk5MmIxNmNjNzAxMDg2MWE0Zjc5MDkxZGZiOTZhNGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjy1QYkOEDLp5kZBE1uwItHgTN6Fa
N1sTHj9hv3U5x3jKhFehf4yz8Ztpd0mKUtnk17FnwtI4M6fAqAhR0MMsSJtDpbvP
lYeRG4mGHcP7FdanlyRzQSdIdaZmPSgEcMiM2ZqZUFOpAIt8WvBuy+NhNS2FKyIn
ugL6+M9w9S8Op9dC26cgU3l3AcnecaenofZsqSQbBLihWkscqYoAeNqc1LjMaQp0
jId71p0IzzzS1XI5585njKiFF9aJtgyhRzWqytE7DM0fNNRYdUZuXNgxDIS59Gws
irbjEWMwohg0YgELs4UWVivu7GD1PNXOjaF2yumyuPd43vcBTlNtbbjQ7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPD6qNuZKxbMcBCGGk95CR37lqTmMB8GA1UdIwQY
MBaAFNuu9cMr6ktU0X4kG1zMrwe8Co7pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjY3MXd5dnFTMVRSZmlRYlhNeXZCN3dLanVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9kZWU2NmYtNDVjYy00Y2I0LTlmYmIt
NjQyY2U2NzRmOTc0LzEvMjY3MXd5dnFTMVRSZmlRYlhNeXZCN3dLanVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9kZWU2NmYtNDVjYy00Y2I0LTlmYmItNjQyY2U2NzRmOTc0
LzEvMjY3MXd5dnFTMVRSZmlRYlhNeXZCN3dLanVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN0TCuEHJ
YeiEWbZe384mNHOGoKykrwHuz5JU4VjMb3dr8pbT5+Rf6Xet8LVK2Ogo90rqQ8zJ
CDeA5QIt32GDCUGwk4JxPh5mMmIYE1pG1XqE8OTG9oJ1u8rEI3dlgXnCnw2q/SLJ
Tik3CNhGkWX7ygbkvwjIJRxjDYhzrhTppudJoQvf6iNofn4tNt4BNJ5aL2/L8dbH
gj+n6FsUnV2XeB2vg7TdWdOMCmrFuEQwP2P8x6PnEFxp/0r/uhBDl/nhwUfi7C0+
DcgSpfwHLPMppozOe4GKNktlDcnC7C0Wf+A3+zfzCXEDX18zQM5vs4sEffuzO+XD
iODpXrkIA4Talg==
-----END CERTIFICATE-----
Generated at Sat May 16 17:55:42 2026 by rpki-client