Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: a1AJ0cI6Upq4bxappt/k0I6IZ07lq5sV13cxci5g3Tk=
Subject key identifier: 39:88:98:60:48:56:01:7D:CC:D7:B5:71:4F:DA:EF:29:E8:F6:70:F9
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 019D9AAC4B4D7F10660D915BF4BCD216199D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 09:01:15 +0000
Manifest this update: Fri 17 Apr 2026 09:01:15 +0000
Manifest next update: Sat 18 Apr 2026 09:01:15 +0000
Files and hashes: 1: 1-BTuYEiDE2mEIP2dyXdE1PSMv3c.roa (hash: tBxS565NzZV2f/vbdXm3F39V84JJovJ6zXMOf+itJ6Q=)
2: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: PifaEpgMlOl/LbF51dmkfrrbhI3EswGPa4KrrLihVfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ac:4b:4d:7f:10:66:0d:91:5b:f4:bc:d2:16:19:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Apr 17 09:01:15 2026 GMT
Not After : Apr 18 09:01:15 2026 GMT
Subject: CN=398898604856017dccd7b5714fdaef29e8f670f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6d:ab:ef:b7:9c:f4:47:0c:2d:02:07:0e:aa:
ab:a7:14:4b:8e:e9:0e:d2:fe:cb:ff:89:a7:1f:df:
51:46:74:b2:f3:16:db:a8:39:ac:d9:c1:39:70:0c:
e0:17:a1:32:84:f7:ea:82:da:91:51:ec:6d:f9:83:
2e:a9:2c:70:5f:9e:75:65:27:cb:9b:3d:34:63:7b:
11:4d:97:46:da:3d:82:e9:33:04:75:34:3e:f4:10:
f9:ee:f9:a3:a1:23:eb:80:3c:56:c8:86:1f:9c:b7:
12:2a:66:33:6c:19:d4:95:86:c3:68:51:54:e1:6d:
af:df:4b:62:ef:c9:49:72:d8:2c:4a:06:6f:89:ae:
5e:9f:a7:b5:d9:51:98:3e:d7:e8:8b:a9:b8:5e:8a:
1a:b4:00:ef:d5:a0:92:15:42:b1:b8:a8:0d:dc:76:
21:fa:c8:71:e1:1f:17:9c:dd:74:f9:5c:2e:a9:e5:
50:73:d4:55:f2:ed:fe:8b:04:95:c6:4a:b1:0d:4b:
4f:36:64:71:dd:8e:64:90:28:42:0f:d7:65:32:13:
77:13:0e:f4:a4:78:f8:46:27:27:51:e3:13:d1:da:
09:c2:4a:11:54:a9:42:26:e7:f6:ef:af:2c:c8:38:
da:ca:57:f2:7e:b8:a4:84:68:0d:71:d4:a0:0d:ac:
93:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:88:98:60:48:56:01:7D:CC:D7:B5:71:4F:DA:EF:29:E8:F6:70:F9
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:14:72:c2:11:f7:82:b2:48:1a:32:b6:cc:5c:38:2b:ac:73:
78:49:fd:53:09:fd:d4:47:50:28:87:2a:9f:26:2f:6a:3a:d1:
85:2f:8e:d5:28:e2:6f:ad:08:30:a9:55:23:23:4b:d2:d2:3d:
17:eb:10:b4:47:72:34:12:d9:a6:f3:94:2d:44:65:07:fd:92:
c9:63:3c:38:ec:13:a8:e9:15:e4:c8:e8:87:d6:33:09:66:52:
e1:40:2e:58:44:bd:87:c0:e2:57:be:73:96:31:0a:ab:44:76:
14:1c:66:43:91:48:d9:bc:a6:95:36:48:a5:4f:3a:38:5e:61:
17:7b:e2:68:d4:e4:6f:b6:11:f5:95:9a:87:40:f0:45:c2:44:
af:97:d1:75:5a:3b:6d:a0:1a:d8:64:dc:6e:d7:b9:cb:50:fc:
df:e2:2f:24:d3:99:dd:ec:46:33:a8:da:a4:c6:1e:cc:c8:62:
de:5b:d0:40:f9:09:07:ec:88:8a:29:89:95:c9:2f:f8:c4:ed:
dd:12:67:a4:c2:21:68:cf:6f:b8:c6:b9:6f:db:b7:5b:f1:48:
87:b9:e9:d8:a7:c0:12:8c:72:36:a8:42:e0:9e:71:9e:d1:37:
77:aa:b7:3b:01:77:25:71:5f:b2:f1:fd:d3:43:98:11:10:f3:
e5:2c:15:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2arEtNfxBmDZFb9LzSFhmdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4NDNmMWFhMDQ5OGQ4NGY3OTUzMjNjMWZmNmJhZTNhZjQw
MjA2ZDEwHhcNMjYwNDE3MDkwMTE1WhcNMjYwNDE4MDkwMTE1WjAzMTEwLwYDVQQD
EygzOTg4OTg2MDQ4NTYwMTdkY2NkN2I1NzE0ZmRhZWYyOWU4ZjY3MGY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlm2r77ec9EcMLQIHDqqrpxRLjukO
0v7L/4mnH99RRnSy8xbbqDms2cE5cAzgF6EyhPfqgtqRUext+YMuqSxwX551ZSfL
mz00Y3sRTZdG2j2C6TMEdTQ+9BD57vmjoSPrgDxWyIYfnLcSKmYzbBnUlYbDaFFU
4W2v30ti78lJctgsSgZvia5en6e12VGYPtfoi6m4XooatADv1aCSFUKxuKgN3HYh
+shx4R8XnN10+VwuqeVQc9RV8u3+iwSVxkqxDUtPNmRx3Y5kkChCD9dlMhN3Ew70
pHj4RicnUeMT0doJwkoRVKlCJuf2768syDjaylfyfrikhGgNcdSgDayTmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDmImGBIVgF9zNe1cU/a7yno9nD5MB8GA1UdIwQY
MBaAFNhD8aoEmNhPeVMjwf9rrjr0AgbRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9kYTRkZDktNTk0ZC00NTZjLTlmNzEt
NzZhMTk0NTU0YjA1LzEvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9kYTRkZDktNTk0ZC00NTZjLTlmNzEtNzZhMTk0NTU0YjA1
LzEvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqRRywhH3
grJIGjK2zFw4K6xzeEn9Uwn91EdQKIcqnyYvajrRhS+O1Sjib60IMKlVIyNL0tI9
F+sQtEdyNBLZpvOULURlB/2SyWM8OOwTqOkV5Mjoh9YzCWZS4UAuWES9h8DiV75z
ljEKq0R2FBxmQ5FI2bymlTZIpU86OF5hF3viaNTkb7YR9ZWah0DwRcJEr5fRdVo7
baAa2GTcbte5y1D83+IvJNOZ3exGM6japMYezMhi3lvQQPkJB+yIiimJlckv+MTt
3RJnpMIhaM9vuMa5b9u3W/FIh7np2KfAEoxyNqhC4J5xntE3d6q3OwF3JXFfsvH9
00OYERDz5SwV5A==
-----END CERTIFICATE-----
Generated at Fri Apr 17 15:40:41 2026 by rpki-client