Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
File: S2jh-6e0SntmYjayElPX1jYtDYM.mft (raw, json)
Hash identifier: XMECYZVTLf0+Vezt0OXpGJyhU9AnRNpLCvcWj9BjBf8=
Subject key identifier: 64:82:11:41:99:85:93:C7:41:9D:BC:22:0D:BE:75:71:8F:5E:34:73
Authority key identifier: 4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
Certificate issuer: /CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Certificate serial: 019EC0365FE53E836A2BFE98C8BCC0926BCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
Manifest number: 069F
Signing time: Sat 13 Jun 2026 09:00:49 +0000
Manifest this update: Sat 13 Jun 2026 09:00:49 +0000
Manifest next update: Sun 14 Jun 2026 09:00:49 +0000
Files and hashes: 1: NuG7e-eaeYmgEKzW-gA4hm0E3yg.roa (hash: jBGdM1PIKUvp7PqxpDnR+tYU0/z5UBNUNem3R8n/8fI=)
2: S2jh-6e0SntmYjayElPX1jYtDYM.crl (hash: xvHr3cKZ35fBi6sOtXXB5JCK56QysUAfgQG87dmiTA8=)
3: cYnE7FavrDSt3SrEYya63HS7_dI.roa (hash: KGEvNenXcCeg3TCO3nqemstjyExiwPsWFQTV1a5VNaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:36:5f:e5:3e:83:6a:2b:fe:98:c8:bc:c0:92:6b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Validity
Not Before: Jun 13 09:00:49 2026 GMT
Not After : Jun 14 09:00:49 2026 GMT
Subject: CN=64821141998593c7419dbc220dbe75718f5e3473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:33:95:3f:2b:2c:49:11:88:42:f4:a4:a0:54:
e7:11:18:cc:99:82:0e:94:65:43:58:e4:c2:5c:e9:
e9:16:7d:db:03:ac:df:8d:4b:4b:81:74:bc:f4:44:
ef:af:27:15:92:69:b5:a1:d7:ec:e8:af:83:26:84:
f9:10:72:88:5f:3f:c8:ec:ab:d3:82:c4:9d:a2:47:
09:31:eb:b8:6e:1d:74:18:54:9f:ea:3a:18:cd:c4:
bf:0f:15:f1:2b:c0:cc:bc:25:0a:34:63:29:be:1d:
39:1b:06:7e:22:fb:90:c0:e4:85:75:43:31:87:2c:
bf:ce:dc:17:a4:21:d9:a8:d5:8e:a1:8c:a7:f0:0b:
cf:47:7e:cc:b1:bc:96:e4:4a:67:74:ae:37:77:4e:
b8:9e:99:02:09:42:73:1d:fb:91:7d:ce:98:48:c0:
28:ec:6d:8c:ab:01:9e:e7:89:d7:79:41:7d:cd:85:
5a:4b:f3:0b:b7:d1:48:52:f0:96:8f:1d:f3:12:90:
7c:da:84:70:18:dd:4b:de:0a:d7:75:c0:d6:c2:1c:
db:40:4e:c0:67:27:b5:27:21:f8:ad:3d:c5:27:19:
57:43:6a:72:0f:6b:8a:df:26:1f:eb:8d:ce:00:81:
be:9a:c3:fb:2d:1b:d1:b6:28:60:7e:0c:72:09:37:
22:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:82:11:41:99:85:93:C7:41:9D:BC:22:0D:BE:75:71:8F:5E:34:73
X509v3 Authority Key Identifier:
keyid:4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:08:a4:a9:0c:24:63:f0:07:2c:54:e4:38:a6:c9:94:0a:e0:
29:b1:4b:0a:d6:ce:f8:86:90:d7:c1:9d:b6:66:82:58:ac:93:
71:09:06:17:aa:40:0b:b6:16:17:9c:d2:47:12:be:34:d3:27:
45:2f:d4:97:51:3d:2a:92:18:cc:10:cb:e6:cc:65:b4:c7:e6:
c3:d3:4a:8c:75:cd:e6:f9:e8:ca:0d:11:07:c2:ed:6f:ba:92:
db:fa:26:58:0b:8b:bb:25:96:d4:a1:1b:55:0c:1f:51:94:c8:
a8:23:d3:71:ba:e8:e3:36:f8:c0:20:fd:b2:69:6a:76:3b:f2:
2d:b7:78:23:65:b1:52:77:eb:9f:be:b8:f7:8b:5e:d8:d4:ce:
0d:d0:83:92:91:9f:0a:43:4b:a7:f2:4e:85:61:1a:ff:50:91:
10:6d:b5:e1:88:bf:f0:f2:08:87:d3:80:5c:53:f8:1d:f4:fd:
c7:b2:b1:15:f2:1c:9e:25:28:18:e1:b5:ae:13:e1:3c:b1:dc:
12:f4:42:9a:3a:37:2c:5c:26:2d:11:39:4b:bb:91:e8:ca:35:
fb:09:a4:b1:de:65:7b:09:4a:1e:13:b9:b1:e4:d9:5a:c6:91:
86:7b:5b:d2:57:b7:eb:f6:7d:94:48:5e:c8:da:02:0a:28:73:
ec:b1:61:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7ANl/lPoNqK/6YyLzAkmvKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiNjhlMWZiYTdiNDRhN2I2NjYyMzZiMjEyNTNkN2Q2MzYy
ZDBkODMwHhcNMjYwNjEzMDkwMDQ5WhcNMjYwNjE0MDkwMDQ5WjAzMTEwLwYDVQQD
Eyg2NDgyMTE0MTk5ODU5M2M3NDE5ZGJjMjIwZGJlNzU3MThmNWUzNDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2TOVPyssSRGIQvSkoFTnERjMmYIO
lGVDWOTCXOnpFn3bA6zfjUtLgXS89ETvrycVkmm1odfs6K+DJoT5EHKIXz/I7KvT
gsSdokcJMeu4bh10GFSf6joYzcS/DxXxK8DMvCUKNGMpvh05GwZ+IvuQwOSFdUMx
hyy/ztwXpCHZqNWOoYyn8AvPR37MsbyW5EpndK43d064npkCCUJzHfuRfc6YSMAo
7G2MqwGe54nXeUF9zYVaS/MLt9FIUvCWjx3zEpB82oRwGN1L3grXdcDWwhzbQE7A
Zye1JyH4rT3FJxlXQ2pyD2uK3yYf643OAIG+msP7LRvRtihgfgxyCTcicQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGSCEUGZhZPHQZ28Ig2+dXGPXjRzMB8GA1UdIwQY
MBaAFEto4funtEp7ZmI2shJT19Y2LQ2DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzJqaC02ZTBTbnRtWWpheUVsUFgxall0RFlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mMTQwNzktNDExNC00YmVjLTg3OWMt
OGIwNmVjNTY0YTFiLzEvUzJqaC02ZTBTbnRtWWpheUVsUFgxall0RFlNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9mMTQwNzktNDExNC00YmVjLTg3OWMtOGIwNmVjNTY0YTFi
LzEvUzJqaC02ZTBTbnRtWWpheUVsUFgxall0RFlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVQikqQwk
Y/AHLFTkOKbJlArgKbFLCtbO+IaQ18GdtmaCWKyTcQkGF6pAC7YWF5zSRxK+NNMn
RS/Ul1E9KpIYzBDL5sxltMfmw9NKjHXN5vnoyg0RB8Ltb7qS2/omWAuLuyWW1KEb
VQwfUZTIqCPTcbro4zb4wCD9smlqdjvyLbd4I2WxUnfrn76494te2NTODdCDkpGf
CkNLp/JOhWEa/1CREG214Yi/8PIIh9OAXFP4HfT9x7KxFfIcniUoGOG1rhPhPLHc
EvRCmjo3LFwmLRE5S7uR6Mo1+wmksd5lewlKHhO5seTZWsaRhntb0le36/Z9lEhe
yNoCCihz7LFhoQ==
-----END CERTIFICATE-----
Generated at Sat Jun 13 16:59:56 2026 by rpki-client