Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
File: 2BFKkiBvChn3M52guJZpxKX-Urk.mft (raw, json)
Hash identifier: rjf0jDppzFrbdxS2FniZCXscUwFUg8OTlk9NCjUeSKE=
Subject key identifier: FC:69:69:69:48:44:2D:85:49:29:AB:6C:6D:72:6A:B5:78:F8:D2:05
Authority key identifier: D8:11:4A:92:20:6F:0A:19:F7:33:9D:A0:B8:96:69:C4:A5:FE:52:B9
Certificate issuer: /CN=d8114a92206f0a19f7339da0b89669c4a5fe52b9
Certificate serial: 019D9D08304D72CF6385CE287517A9028B1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
Manifest number: 02A5
Signing time: Fri 17 Apr 2026 20:00:52 +0000
Manifest this update: Fri 17 Apr 2026 20:00:52 +0000
Manifest next update: Sat 18 Apr 2026 20:00:52 +0000
Files and hashes: 1: 2BFKkiBvChn3M52guJZpxKX-Urk.crl (hash: ILDbH8V4w2C8E0ckCIW2H1hlEvNKas8x95/mSQv9HA0=)
2: vVXnYinPG4h5TcTea17Iv2i5FYs.roa (hash: vQ3FQGy71ne2HeyP0gu2+P/Q4WprPJAgNPNHKJfJ9Dk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 20:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:08:30:4d:72:cf:63:85:ce:28:75:17:a9:02:8b:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8114a92206f0a19f7339da0b89669c4a5fe52b9
Validity
Not Before: Apr 17 20:00:52 2026 GMT
Not After : Apr 18 20:00:52 2026 GMT
Subject: CN=fc69696948442d854929ab6c6d726ab578f8d205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:af:1d:3b:77:c9:8e:ae:4e:d5:11:0a:f6:6f:
49:61:60:7e:ff:9e:98:46:86:14:1f:88:0b:87:72:
b2:b0:9c:a7:78:f4:7f:9d:78:fb:b4:7c:e7:d5:8c:
15:a3:c4:f3:ca:86:2c:40:7a:20:74:01:32:cd:f4:
14:5d:c5:2c:8d:f6:2f:be:62:29:25:ba:d7:32:f4:
cf:b2:01:73:23:82:69:90:b8:a5:31:cd:34:6f:b9:
69:3d:95:bb:75:58:4a:83:4f:2c:e1:7c:dc:53:ca:
2b:07:5a:c3:24:f7:eb:e4:a0:4f:b4:c8:27:7f:98:
63:70:b4:40:00:1a:5c:02:3e:22:b1:b8:73:43:7d:
e5:98:4b:3f:38:45:4d:72:e5:b4:ac:00:ba:15:d2:
7d:ea:df:99:8a:38:70:1b:d9:fc:2a:ae:b5:0c:b6:
a0:e5:66:c9:08:f5:76:f6:9b:fa:f5:b4:1b:65:3f:
20:3a:8c:23:b6:68:8f:f7:2b:70:a5:6e:c1:9e:bc:
2e:fa:9d:e3:6f:73:d6:9a:8c:2a:4c:1f:c0:d5:fa:
b6:7a:57:fb:c4:f4:f2:20:e6:c6:92:cb:60:8f:2d:
26:40:25:f5:c7:39:69:19:f5:ff:61:e9:c1:7c:89:
6d:60:d9:c2:c6:4f:d1:fa:47:c6:36:7b:99:fe:cb:
f4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:69:69:69:48:44:2D:85:49:29:AB:6C:6D:72:6A:B5:78:F8:D2:05
X509v3 Authority Key Identifier:
keyid:D8:11:4A:92:20:6F:0A:19:F7:33:9D:A0:B8:96:69:C4:A5:FE:52:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:e1:e8:86:15:3b:dd:ed:9d:1c:04:a9:42:66:ce:de:b5:57:
0d:34:42:2a:8b:42:37:f0:0d:d3:18:b4:b6:2e:bf:6b:f4:73:
b8:3f:1a:62:d7:4d:af:26:38:13:6a:56:f4:0c:ca:ef:2c:fb:
b8:9d:17:e6:9d:72:d4:be:42:d7:5f:15:d1:4b:77:74:ea:38:
e5:b4:ad:82:24:36:3b:23:74:07:88:6d:9c:45:45:89:2f:44:
8e:7f:e7:b6:8c:cd:09:1e:0a:3b:68:eb:4c:5d:be:a9:d7:3a:
69:e6:93:04:16:ea:16:bf:9e:2f:70:7c:6f:de:42:db:c2:5a:
8f:71:ca:64:21:73:c3:85:14:86:48:7e:44:7c:20:28:74:cf:
ba:05:11:72:81:25:1f:52:51:59:29:b9:fb:98:00:be:87:bf:
46:ea:b1:2f:3a:5f:d3:c7:e5:4d:c9:40:9e:8c:97:80:5c:fd:
c9:c9:e5:a3:b8:56:ed:bd:c4:53:74:ca:8a:3b:18:80:65:7f:
d3:cd:68:13:10:a7:c1:1f:0d:38:ee:dd:04:3f:d6:a3:a8:f5:
56:e8:f3:5c:d0:d0:32:dc:0b:c7:ca:2b:0e:d7:02:96:0c:53:
14:81:3f:52:a0:65:32:5b:d9:e1:2e:11:4e:bb:d5:66:1b:0c:
a3:ab:36:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2dCDBNcs9jhc4odRepAosdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MTE0YTkyMjA2ZjBhMTlmNzMzOWRhMGI4OTY2OWM0YTVm
ZTUyYjkwHhcNMjYwNDE3MjAwMDUyWhcNMjYwNDE4MjAwMDUyWjAzMTEwLwYDVQQD
EyhmYzY5Njk2OTQ4NDQyZDg1NDkyOWFiNmM2ZDcyNmFiNTc4ZjhkMjA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA568dO3fJjq5O1REK9m9JYWB+/56Y
RoYUH4gLh3KysJynePR/nXj7tHzn1YwVo8TzyoYsQHogdAEyzfQUXcUsjfYvvmIp
JbrXMvTPsgFzI4JpkLilMc00b7lpPZW7dVhKg08s4XzcU8orB1rDJPfr5KBPtMgn
f5hjcLRAABpcAj4isbhzQ33lmEs/OEVNcuW0rAC6FdJ96t+ZijhwG9n8Kq61DLag
5WbJCPV29pv69bQbZT8gOowjtmiP9ytwpW7Bnrwu+p3jb3PWmowqTB/A1fq2elf7
xPTyIObGkstgjy0mQCX1xzlpGfX/YenBfIltYNnCxk/R+kfGNnuZ/sv0yQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPxpaWlIRC2FSSmrbG1yarV4+NIFMB8GA1UdIwQY
MBaAFNgRSpIgbwoZ9zOdoLiWacSl/lK5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkJGS2tpQnZDaG4zTTUyZ3VKWnB4S1gtVXJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mZGFjZTktODIxMi00Y2UxLWE5OTkt
NTIwOGQ5ODU0MzY0LzEvMkJGS2tpQnZDaG4zTTUyZ3VKWnB4S1gtVXJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9mZGFjZTktODIxMi00Y2UxLWE5OTktNTIwOGQ5ODU0MzY0
LzEvMkJGS2tpQnZDaG4zTTUyZ3VKWnB4S1gtVXJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL+HohhU7
3e2dHASpQmbO3rVXDTRCKotCN/AN0xi0ti6/a/RzuD8aYtdNryY4E2pW9AzK7yz7
uJ0X5p1y1L5C118V0Ut3dOo45bStgiQ2OyN0B4htnEVFiS9Ejn/ntozNCR4KO2jr
TF2+qdc6aeaTBBbqFr+eL3B8b95C28Jaj3HKZCFzw4UUhkh+RHwgKHTPugURcoEl
H1JRWSm5+5gAvoe/RuqxLzpf08flTclAnoyXgFz9ycnlo7hW7b3EU3TKijsYgGV/
081oExCnwR8NOO7dBD/Wo6j1VujzXNDQMtwLx8orDtcClgxTFIE/UqBlMlvZ4S4R
TrvVZhsMo6s2ZQ==
-----END CERTIFICATE-----
Generated at Sat Apr 18 06:33:25 2026 by rpki-client