Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
File: 2IUFXXA5jPDHLM6sXlga1A8gPvw.mft (raw, json)
Hash identifier: 6aL1Fh5EgRZmbaEDsu0hDBmtGQMfHBeHJira68bZ03w=
Subject key identifier: E5:33:47:21:24:84:48:3A:5E:A9:DE:FE:47:BF:B2:67:43:16:E8:6F
Authority key identifier: D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC
Certificate issuer: /CN=d885055d70398cf0c72cceac5e581ad40f203efc
Certificate serial: 019D39419E1411F5A785ED31B44FD1F2461F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
Manifest number: 1059
Signing time: Sun 29 Mar 2026 11:01:34 +0000
Manifest this update: Sun 29 Mar 2026 11:01:34 +0000
Manifest next update: Mon 30 Mar 2026 11:01:34 +0000
Files and hashes: 1: 2IUFXXA5jPDHLM6sXlga1A8gPvw.crl (hash: ivdFB7CCisC9fwFw/quSfe9p82FCTn2j8pz0vLRtytE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:9e:14:11:f5:a7:85:ed:31:b4:4f:d1:f2:46:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d885055d70398cf0c72cceac5e581ad40f203efc
Validity
Not Before: Mar 29 11:01:34 2026 GMT
Not After : Mar 30 11:01:34 2026 GMT
Subject: CN=e53347212484483a5ea9defe47bfb2674316e86f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2d:28:b3:f8:2b:4e:e1:97:6d:22:e2:25:1d:
6c:c6:c5:cc:87:9b:1f:7a:3a:e9:3d:0d:a4:e2:fe:
81:93:40:f7:24:e0:c0:9d:e2:0c:7a:ec:6c:11:18:
07:cf:7b:71:e0:46:17:c4:5e:18:b3:73:6a:14:88:
b3:4d:9e:1a:b0:fb:c0:af:fd:d0:2f:e5:12:74:91:
ad:b2:20:2f:3a:49:e2:9e:0b:08:2d:0e:86:fc:dd:
e5:5e:56:dd:95:76:8b:c7:37:a9:e2:19:ad:3c:f0:
04:4d:81:65:62:27:89:b7:76:37:b2:f8:a5:1b:9c:
ef:31:98:72:c0:fb:c1:43:88:81:70:a8:67:e0:ac:
d3:c4:0a:98:bf:e1:f2:de:82:36:a5:93:3d:5c:31:
d6:0d:a6:df:d8:62:0c:91:20:34:4f:39:88:a1:fd:
fb:a4:87:4b:ad:b8:3c:bf:95:5f:70:8a:89:3a:5b:
d9:a4:2d:ad:74:31:0b:17:0a:60:f5:89:93:f8:23:
4d:17:fc:0a:21:40:f8:bd:0b:78:db:2b:ba:99:49:
5a:9d:22:39:22:b8:4c:70:2c:a1:d9:34:96:14:59:
c9:b0:e9:d4:84:a6:0e:8f:8e:77:89:da:7f:6e:c4:
a0:89:51:ec:69:de:e9:be:53:ce:f9:01:ec:05:7e:
e0:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:33:47:21:24:84:48:3A:5E:A9:DE:FE:47:BF:B2:67:43:16:E8:6F
X509v3 Authority Key Identifier:
keyid:D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:47:fa:53:fc:7a:d5:88:45:64:9c:66:a9:a0:4f:f0:6d:05:
af:d0:26:5f:0b:e5:65:b1:10:79:27:40:9c:93:10:3a:59:95:
a3:57:59:af:0e:64:0c:93:f5:02:df:06:f3:6c:6c:91:04:47:
ec:2d:69:5a:0d:e1:7b:8f:30:2a:5f:2c:9b:96:76:b0:2e:4f:
51:e3:9e:1b:3b:ba:da:3c:79:2f:43:d2:08:7b:dc:99:9c:e5:
67:93:1e:6c:5d:11:f2:8b:f5:94:84:85:ca:46:89:61:49:94:
87:32:55:b0:b5:28:fe:d1:8d:af:cc:dd:f4:99:e1:30:37:2b:
65:a0:51:e2:93:79:c8:4c:ac:c7:d8:9f:61:75:07:52:dd:a3:
52:73:fb:3d:2a:a7:aa:ab:21:93:b3:f1:8d:5f:30:64:f9:49:
ed:28:2c:65:0d:4e:59:5d:e0:a9:26:35:d6:da:84:a7:a5:5c:
53:6e:94:31:ce:8f:07:72:35:bb:50:db:d7:14:07:b7:f4:4a:
a8:15:23:3f:88:07:c8:ae:52:d9:3c:33:bb:b5:6b:16:fa:b3:
8b:65:55:dd:72:9f:ab:c3:2f:0c:d0:87:95:16:2b:68:d2:a1:
78:a4:08:7c:3f:f9:21:fe:e3:ca:1a:d4:d4:4d:e7:64:90:21:
9e:07:5e:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QZ4UEfWnhe0xtE/R8kYfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ODUwNTVkNzAzOThjZjBjNzJjY2VhYzVlNTgxYWQ0MGYy
MDNlZmMwHhcNMjYwMzI5MTEwMTM0WhcNMjYwMzMwMTEwMTM0WjAzMTEwLwYDVQQD
EyhlNTMzNDcyMTI0ODQ0ODNhNWVhOWRlZmU0N2JmYjI2NzQzMTZlODZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAti0os/grTuGXbSLiJR1sxsXMh5sf
ejrpPQ2k4v6Bk0D3JODAneIMeuxsERgHz3tx4EYXxF4Ys3NqFIizTZ4asPvAr/3Q
L+USdJGtsiAvOkningsILQ6G/N3lXlbdlXaLxzep4hmtPPAETYFlYieJt3Y3svil
G5zvMZhywPvBQ4iBcKhn4KzTxAqYv+Hy3oI2pZM9XDHWDabf2GIMkSA0TzmIof37
pIdLrbg8v5VfcIqJOlvZpC2tdDELFwpg9YmT+CNNF/wKIUD4vQt42yu6mUlanSI5
IrhMcCyh2TSWFFnJsOnUhKYOj453idp/bsSgiVHsad7pvlPO+QHsBX7gMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOUzRyEkhEg6Xqne/ke/smdDFuhvMB8GA1UdIwQY
MBaAFNiFBV1wOYzwxyzOrF5YGtQPID78MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi84MmFmMjgtYjYzNC00NjNhLWI2YmUt
MWNhM2M2N2YxNTA2LzEvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi84MmFmMjgtYjYzNC00NjNhLWI2YmUtMWNhM2M2N2YxNTA2
LzEvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANEf6U/x6
1YhFZJxmqaBP8G0Fr9AmXwvlZbEQeSdAnJMQOlmVo1dZrw5kDJP1At8G82xskQRH
7C1pWg3he48wKl8sm5Z2sC5PUeOeGzu62jx5L0PSCHvcmZzlZ5MebF0R8ov1lISF
ykaJYUmUhzJVsLUo/tGNr8zd9JnhMDcrZaBR4pN5yEysx9ifYXUHUt2jUnP7PSqn
qqshk7PxjV8wZPlJ7SgsZQ1OWV3gqSY11tqEp6VcU26UMc6PB3I1u1Db1xQHt/RK
qBUjP4gHyK5S2Twzu7VrFvqzi2VV3XKfq8MvDNCHlRYraNKheKQIfD/5If7jyhrU
1E3nZJAhngdeWw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 18:36:24 2026 by rpki-client