Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
File: 2AtWXXc2dT2-f2YkvfHSvBiW98A.mft (raw, json)
Hash identifier: uXyxkaUVsK9zV6qPMRdKS316RNC287WwnYytUJ7ipmA=
Subject key identifier: FE:2A:ED:F4:46:C4:D0:E3:FD:47:8E:D5:B3:57:6C:D9:97:BD:69:82
Authority key identifier: D8:0B:56:5D:77:36:75:3D:BE:7F:66:24:BD:F1:D2:BC:18:96:F7:C0
Certificate issuer: /CN=d80b565d7736753dbe7f6624bdf1d2bc1896f7c0
Certificate serial: 019E9C29A44674B47C7C39B50B69F8F92EE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
Manifest number: 12A3
Signing time: Sat 06 Jun 2026 09:00:35 +0000
Manifest this update: Sat 06 Jun 2026 09:00:35 +0000
Manifest next update: Sun 07 Jun 2026 09:00:35 +0000
Files and hashes: 1: 2AtWXXc2dT2-f2YkvfHSvBiW98A.crl (hash: /IoUtFP5iKX69uPT6i1sNJyEFeCCJkmoQGH2GsjK7PE=)
2: 5XOq4BMraJ6-AegtlaIWTtUkqxo.roa (hash: hDvJTYUbzgM4Etq6PCbmzufkHK2RaHqzKqogboxsQ0c=)
3: iIJMhiXnC0TkNFq6MHPCGZcJKp4.roa (hash: 6M+PNBTs7Ydc22YxEOoAXWjHO6P/9d3SsLY8rQkfu3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:29:a4:46:74:b4:7c:7c:39:b5:0b:69:f8:f9:2e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d80b565d7736753dbe7f6624bdf1d2bc1896f7c0
Validity
Not Before: Jun 6 09:00:35 2026 GMT
Not After : Jun 7 09:00:35 2026 GMT
Subject: CN=fe2aedf446c4d0e3fd478ed5b3576cd997bd6982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:60:2c:15:17:a3:dd:d5:f4:c6:fe:e4:99:64:
7c:bb:8b:75:80:22:a3:d5:e7:52:6c:4a:70:ea:c9:
78:01:0e:50:e9:43:74:a1:f0:a8:f1:c8:46:12:db:
0a:7e:ca:a3:f8:2b:d6:f6:9e:aa:bf:00:b3:77:c5:
04:8d:46:b9:c8:12:47:b9:3a:1b:84:2f:bd:cb:2e:
41:35:98:cb:73:ba:97:ba:1b:bf:ec:dd:6a:21:62:
5d:ab:7a:58:1c:f7:9f:3d:b2:7f:f9:ff:2e:3d:0a:
95:2a:43:fc:3e:d1:a2:8b:e1:26:24:27:7d:d8:3a:
5d:7e:7c:d9:6f:80:44:e4:3a:e8:59:aa:0c:96:83:
e5:8c:30:c8:66:2b:9e:4d:e1:f5:24:4c:05:bc:3e:
72:80:68:c7:6c:c7:a1:34:e5:38:64:7d:d4:b3:b8:
e5:be:f9:46:d8:a8:d0:0f:37:f8:21:b4:20:20:5e:
2c:6f:9d:ad:96:32:a5:0f:59:36:6e:b5:a2:1b:b6:
d0:b5:72:56:af:2a:07:33:f5:66:cd:42:26:6f:71:
fa:d6:b9:bf:c1:95:5d:ce:fe:68:c0:93:4d:f5:60:
87:3d:da:58:61:c0:b2:cb:54:b9:a7:89:f2:8f:51:
03:5b:b7:2c:30:ac:59:be:6a:c1:3d:e7:73:48:75:
48:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:2A:ED:F4:46:C4:D0:E3:FD:47:8E:D5:B3:57:6C:D9:97:BD:69:82
X509v3 Authority Key Identifier:
keyid:D8:0B:56:5D:77:36:75:3D:BE:7F:66:24:BD:F1:D2:BC:18:96:F7:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:b0:ee:8b:9e:12:3f:4b:b3:eb:c5:8c:ed:d6:f2:b9:ed:8d:
74:2d:5b:23:87:da:52:7a:b9:f7:c3:86:a2:f3:19:96:cb:8b:
ae:e0:5f:b6:2a:05:65:c3:c6:88:a1:68:73:fa:33:8a:cd:fe:
96:a1:c9:86:6b:88:5f:7e:8d:98:43:17:ea:1c:66:c0:fe:b3:
ed:d7:49:b9:eb:e5:2c:15:0f:2a:9b:fc:ce:48:42:67:0d:2d:
a2:05:00:9c:06:2a:b8:80:e6:67:ac:d0:46:55:85:38:2f:b0:
9d:8b:a7:32:1f:56:ce:f7:fc:fe:a6:1e:5e:b2:ef:d5:e0:03:
8a:14:d6:c9:53:e4:92:d8:53:6f:fa:4e:1d:49:6d:3b:43:b2:
61:45:b9:5b:6c:39:c5:12:d8:5c:e4:e0:3d:50:5f:5b:09:7e:
03:cd:86:a9:8c:6d:7d:b7:dc:9b:9e:f6:b4:53:e6:1e:7f:36:
b9:4a:02:c1:43:ee:11:a8:da:45:f0:8c:3f:f1:ac:62:f7:b6:
56:aa:cc:c3:b3:0e:7e:63:5e:dc:46:6e:85:a2:a4:73:24:10:
95:de:83:d4:2f:b8:0b:d4:fb:b2:22:51:94:52:d0:ff:64:1d:
2f:72:13:de:f6:54:d9:b2:f3:cf:f1:1b:11:29:38:39:e4:b4:
0c:af:c9:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6cKaRGdLR8fDm1C2n4+S7iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MGI1NjVkNzczNjc1M2RiZTdmNjYyNGJkZjFkMmJjMTg5
NmY3YzAwHhcNMjYwNjA2MDkwMDM1WhcNMjYwNjA3MDkwMDM1WjAzMTEwLwYDVQQD
EyhmZTJhZWRmNDQ2YzRkMGUzZmQ0NzhlZDViMzU3NmNkOTk3YmQ2OTgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3GAsFRej3dX0xv7kmWR8u4t1gCKj
1edSbEpw6sl4AQ5Q6UN0ofCo8chGEtsKfsqj+CvW9p6qvwCzd8UEjUa5yBJHuTob
hC+9yy5BNZjLc7qXuhu/7N1qIWJdq3pYHPefPbJ/+f8uPQqVKkP8PtGii+EmJCd9
2DpdfnzZb4BE5DroWaoMloPljDDIZiueTeH1JEwFvD5ygGjHbMehNOU4ZH3Us7jl
vvlG2KjQDzf4IbQgIF4sb52tljKlD1k2brWiG7bQtXJWryoHM/VmzUImb3H61rm/
wZVdzv5owJNN9WCHPdpYYcCyy1S5p4nyj1EDW7csMKxZvmrBPedzSHVIRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP4q7fRGxNDj/UeO1bNXbNmXvWmCMB8GA1UdIwQY
MBaAFNgLVl13NnU9vn9mJL3x0rwYlvfAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkF0V1hYYzJkVDItZjJZa3ZmSFN2QmlXOThBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9mNzYzMzktMTcxNC00MDNiLTk5Mjct
MjMyNzc4MjJmZWZhLzEvMkF0V1hYYzJkVDItZjJZa3ZmSFN2QmlXOThBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9mNzYzMzktMTcxNC00MDNiLTk5MjctMjMyNzc4MjJmZWZh
LzEvMkF0V1hYYzJkVDItZjJZa3ZmSFN2QmlXOThBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXrDui54S
P0uz68WM7dbyue2NdC1bI4faUnq598OGovMZlsuLruBftioFZcPGiKFoc/ozis3+
lqHJhmuIX36NmEMX6hxmwP6z7ddJuevlLBUPKpv8zkhCZw0togUAnAYquIDmZ6zQ
RlWFOC+wnYunMh9Wzvf8/qYeXrLv1eADihTWyVPkkthTb/pOHUltO0OyYUW5W2w5
xRLYXOTgPVBfWwl+A82GqYxtfbfcm572tFPmHn82uUoCwUPuEajaRfCMP/GsYve2
VqrMw7MOfmNe3EZuhaKkcyQQld6D1C+4C9T7siJRlFLQ/2QdL3IT3vZU2bLzz/Eb
ESk4OeS0DK/JJg==
-----END CERTIFICATE-----
Generated at Sat Jun 6 12:26:40 2026 by rpki-client