Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
File: S2jh-6e0SntmYjayElPX1jYtDYM.mft (raw, json)
Hash identifier: o6R3f9rBmgLeFaY4885YjtPC2xOawtm4gNUZTDTd9fw=
Subject key identifier: D1:72:AE:DE:27:AC:CD:B2:74:84:CE:35:A8:35:21:9E:07:15:5A:53
Authority key identifier: 4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
Certificate issuer: /CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Certificate serial: 019D9AABD21C51DA638A9639A4B5365C354F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
Manifest number: 0607
Signing time: Fri 17 Apr 2026 09:00:44 +0000
Manifest this update: Fri 17 Apr 2026 09:00:44 +0000
Manifest next update: Sat 18 Apr 2026 09:00:44 +0000
Files and hashes: 1: NuG7e-eaeYmgEKzW-gA4hm0E3yg.roa (hash: jBGdM1PIKUvp7PqxpDnR+tYU0/z5UBNUNem3R8n/8fI=)
2: S2jh-6e0SntmYjayElPX1jYtDYM.crl (hash: Hrxg9g5hxk25/f0CoZyz9QaK2K+Yf0a1KBCXwUBbQt8=)
3: cYnE7FavrDSt3SrEYya63HS7_dI.roa (hash: KGEvNenXcCeg3TCO3nqemstjyExiwPsWFQTV1a5VNaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:d2:1c:51:da:63:8a:96:39:a4:b5:36:5c:35:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Validity
Not Before: Apr 17 09:00:44 2026 GMT
Not After : Apr 18 09:00:44 2026 GMT
Subject: CN=d172aede27accdb27484ce35a835219e07155a53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:01:64:61:da:a7:ee:75:c7:0a:60:d9:25:d5:
c6:cd:56:4c:4f:23:a8:cd:80:76:44:51:ee:ff:7e:
a9:54:99:28:a3:7e:6c:10:06:de:14:e9:14:40:c2:
dc:8d:a8:3e:db:c2:a9:1c:fa:f3:01:6a:cc:1d:43:
d8:87:40:37:b1:df:f7:fc:61:34:f9:03:2a:eb:61:
4f:a2:96:9d:3e:df:17:31:63:79:44:3d:ba:bc:61:
30:44:e7:ee:5f:f8:75:5a:75:b5:94:af:51:84:c7:
2e:e5:e5:aa:47:43:f8:62:ae:17:18:0f:a4:a5:1b:
d5:3b:62:38:bc:19:83:df:2a:e9:51:51:50:13:3c:
fa:7a:80:6c:ed:69:47:07:32:4d:fd:2a:d2:b1:3a:
3f:75:91:2f:60:29:69:aa:f1:c3:82:df:82:9f:67:
6d:74:4d:9f:f9:4b:03:f4:4f:d0:18:4a:da:4a:a2:
51:9d:6f:b5:31:fd:ac:eb:45:4e:cd:e0:44:75:93:
49:e5:94:bf:a1:d1:98:a0:13:5e:e5:cc:03:d5:a9:
8a:46:1d:a9:6b:3e:0b:7f:2c:9d:b7:80:35:1d:e6:
a1:5c:89:e1:3f:7e:ba:98:41:50:b4:d2:fc:c0:05:
0f:7a:1d:5d:e4:09:01:2f:a4:21:91:67:7c:2e:cc:
85:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:72:AE:DE:27:AC:CD:B2:74:84:CE:35:A8:35:21:9E:07:15:5A:53
X509v3 Authority Key Identifier:
keyid:4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:75:0d:90:5a:60:30:b2:7b:60:4f:ed:42:13:98:db:0e:48:
f4:f7:5e:e4:76:8a:99:cb:46:86:78:10:ae:ea:61:b0:56:57:
7b:4c:83:57:00:88:6c:67:d1:50:b1:88:e5:e2:0a:36:76:d7:
a6:20:35:49:07:79:30:57:6d:70:72:62:6e:3d:40:2d:b3:fc:
96:64:8a:ff:7f:15:9e:5e:76:d9:d2:1e:b4:c8:e4:6e:65:e2:
d7:67:f6:6e:71:9d:86:26:a0:c3:dd:e3:55:8f:67:20:e4:5b:
c9:41:00:f5:58:8f:05:e4:17:34:18:b4:c3:78:a7:96:58:d8:
8c:d5:cf:0e:3f:89:9f:d0:d9:f8:09:ea:7b:a1:49:62:7d:d4:
2e:aa:0a:5e:78:82:25:ec:20:45:2d:10:7a:e8:e5:85:ea:db:
1e:44:59:84:75:1b:fb:5d:cc:33:35:0d:cc:d6:56:ce:b2:75:
3d:10:e5:c8:a2:58:7e:79:ef:69:e9:91:e3:aa:83:23:b4:7a:
9d:03:e6:a9:d1:70:56:44:fb:52:10:27:4f:bd:d6:3c:45:55:
37:72:c5:bb:02:0d:d4:1c:e0:88:2b:4d:c4:a3:ae:56:47:5c:
e6:d9:ce:55:e1:91:1e:3f:c1:38:bd:34:7f:e1:19:00:c9:5c:
fa:6c:45:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aq9IcUdpjipY5pLU2XDVPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiNjhlMWZiYTdiNDRhN2I2NjYyMzZiMjEyNTNkN2Q2MzYy
ZDBkODMwHhcNMjYwNDE3MDkwMDQ0WhcNMjYwNDE4MDkwMDQ0WjAzMTEwLwYDVQQD
EyhkMTcyYWVkZTI3YWNjZGIyNzQ4NGNlMzVhODM1MjE5ZTA3MTU1YTUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswFkYdqn7nXHCmDZJdXGzVZMTyOo
zYB2RFHu/36pVJkoo35sEAbeFOkUQMLcjag+28KpHPrzAWrMHUPYh0A3sd/3/GE0
+QMq62FPopadPt8XMWN5RD26vGEwROfuX/h1WnW1lK9RhMcu5eWqR0P4Yq4XGA+k
pRvVO2I4vBmD3yrpUVFQEzz6eoBs7WlHBzJN/SrSsTo/dZEvYClpqvHDgt+Cn2dt
dE2f+UsD9E/QGEraSqJRnW+1Mf2s60VOzeBEdZNJ5ZS/odGYoBNe5cwD1amKRh2p
az4Lfyydt4A1HeahXInhP366mEFQtNL8wAUPeh1d5AkBL6QhkWd8LsyF9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNFyrt4nrM2ydITONag1IZ4HFVpTMB8GA1UdIwQY
MBaAFEto4funtEp7ZmI2shJT19Y2LQ2DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzJqaC02ZTBTbnRtWWpheUVsUFgxall0RFlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mMTQwNzktNDExNC00YmVjLTg3OWMt
OGIwNmVjNTY0YTFiLzEvUzJqaC02ZTBTbnRtWWpheUVsUFgxall0RFlNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9mMTQwNzktNDExNC00YmVjLTg3OWMtOGIwNmVjNTY0YTFi
LzEvUzJqaC02ZTBTbnRtWWpheUVsUFgxall0RFlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABHUNkFpg
MLJ7YE/tQhOY2w5I9Pde5HaKmctGhngQruphsFZXe0yDVwCIbGfRULGI5eIKNnbX
piA1SQd5MFdtcHJibj1ALbP8lmSK/38Vnl522dIetMjkbmXi12f2bnGdhiagw93j
VY9nIORbyUEA9ViPBeQXNBi0w3inlljYjNXPDj+Jn9DZ+Anqe6FJYn3ULqoKXniC
JewgRS0QeujlherbHkRZhHUb+13MMzUNzNZWzrJ1PRDlyKJYfnnvaemR46qDI7R6
nQPmqdFwVkT7UhAnT73WPEVVN3LFuwIN1BzgiCtNxKOuVkdc5tnOVeGRHj/BOL00
f+EZAMlc+mxFDQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 14:10:47 2026 by rpki-client