Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
File: 2BFKkiBvChn3M52guJZpxKX-Urk.mft (raw, json)
Hash identifier: YwSuh+RG9W1jLrXgwi6WRsAMWiIOOU1YUV3/8ZTvyFA=
Subject key identifier: 39:5F:C7:5B:86:C4:FF:FF:B0:23:B7:B6:F6:50:F1:BC:04:E0:92:18
Authority key identifier: D8:11:4A:92:20:6F:0A:19:F7:33:9D:A0:B8:96:69:C4:A5:FE:52:B9
Certificate issuer: /CN=d8114a92206f0a19f7339da0b89669c4a5fe52b9
Certificate serial: 019EC292374CC53A44260AA859FCC36ED410
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
Manifest number: 033D
Signing time: Sat 13 Jun 2026 20:00:22 +0000
Manifest this update: Sat 13 Jun 2026 20:00:22 +0000
Manifest next update: Sun 14 Jun 2026 20:00:22 +0000
Files and hashes: 1: 2BFKkiBvChn3M52guJZpxKX-Urk.crl (hash: Y1N9LKRYlY198qkHohYS4AgBAp8VtffnUT1yWqJ5V3M=)
2: vVXnYinPG4h5TcTea17Iv2i5FYs.roa (hash: vQ3FQGy71ne2HeyP0gu2+P/Q4WprPJAgNPNHKJfJ9Dk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:37:4c:c5:3a:44:26:0a:a8:59:fc:c3:6e:d4:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8114a92206f0a19f7339da0b89669c4a5fe52b9
Validity
Not Before: Jun 13 20:00:22 2026 GMT
Not After : Jun 14 20:00:22 2026 GMT
Subject: CN=395fc75b86c4ffffb023b7b6f650f1bc04e09218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:6f:33:d3:ff:ab:2b:08:b5:f9:88:f8:54:8f:
ed:b3:27:87:c1:49:e8:54:82:0a:38:a6:fe:54:0b:
a1:ff:4e:c8:6d:c9:d9:59:ff:bf:33:05:cf:c0:31:
e5:64:c8:48:80:5c:b0:e0:89:8a:23:b2:0b:ca:cf:
a4:8a:0a:47:5b:90:17:7d:92:39:3d:b1:38:08:f8:
6b:ab:44:0f:96:63:b1:5b:85:95:1f:0c:0a:4a:95:
40:a7:cc:2a:4e:16:2b:97:e9:36:b5:49:b2:72:e3:
9b:2f:57:eb:7f:de:22:68:66:28:16:38:1f:01:3f:
83:88:e9:fd:79:6e:34:0f:0c:1d:5e:1f:16:dc:8d:
85:c6:77:6f:65:6d:ab:82:cc:af:d1:f7:00:f9:80:
5e:71:5f:f0:96:0d:78:44:25:78:2c:aa:fc:9e:af:
56:43:46:20:24:05:ad:28:86:58:e4:33:9e:12:b1:
99:c1:5f:cb:ca:db:f8:d7:11:27:c9:6f:54:d9:ef:
25:21:9c:56:39:54:9f:ca:69:b8:9c:b0:95:5a:39:
51:f4:4c:e8:62:dc:0c:e8:b6:d8:63:66:66:1b:22:
79:e4:d9:e9:42:29:c1:12:9a:19:76:97:4a:9f:be:
29:d7:d9:b0:6d:96:51:38:c5:3b:05:9e:2e:86:95:
9a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:5F:C7:5B:86:C4:FF:FF:B0:23:B7:B6:F6:50:F1:BC:04:E0:92:18
X509v3 Authority Key Identifier:
keyid:D8:11:4A:92:20:6F:0A:19:F7:33:9D:A0:B8:96:69:C4:A5:FE:52:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:59:88:7c:e4:25:a2:b3:b6:a5:91:3c:73:2e:fe:9d:9c:c5:
ef:6b:f5:85:1e:27:16:34:14:a8:55:a6:44:bc:ea:c3:cd:8d:
f0:3b:6f:9c:47:bf:9e:4f:53:74:e9:0e:31:2d:8b:c3:57:8f:
a8:a8:29:50:3b:2b:3a:79:b9:88:5e:8b:28:78:5e:63:45:67:
f2:c0:cb:4e:14:fe:ac:88:87:05:20:02:f4:6e:f0:90:a8:dd:
b3:6d:dc:74:e7:e8:77:c5:77:b9:62:5e:6f:f8:3f:48:f7:18:
96:c0:d2:2f:ae:a6:8e:23:02:08:c3:54:a8:a2:a2:2a:df:80:
86:5f:13:eb:66:10:71:35:d5:f1:1b:2e:41:e2:77:17:c4:c0:
00:37:91:42:e8:ba:56:23:e1:ca:b7:3f:87:f7:47:25:94:c3:
fd:ea:6a:1a:b3:9c:93:ee:b9:61:48:26:f0:bb:77:c4:52:2c:
c0:e1:87:a2:5e:60:4c:38:bd:a6:61:b9:ae:76:14:1e:29:e7:
a9:55:bc:a2:44:46:5f:11:9a:60:aa:ec:70:a1:6c:1b:19:3e:
fa:69:ed:74:4f:0d:15:c4:b9:bb:a4:98:0d:a6:4a:b6:8a:60:
e6:1e:66:42:59:f8:d9:e4:8b:5b:4a:50:9f:e9:2f:bc:51:74:
bd:bf:df:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:25:35 2026 by rpki-client