Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: jU9aJpd7Vnb6K8tukI4m9lTdamaM+JP+RYl486SxG30=
Subject key identifier: C0:43:2E:3D:4F:2A:4E:F8:61:3E:F5:1A:59:25:CD:B9:B3:6F:7F:95
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 019D9962DA40A509328488CF54D83EF573CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 0570
Signing time: Fri 17 Apr 2026 03:01:25 +0000
Manifest this update: Fri 17 Apr 2026 03:01:25 +0000
Manifest next update: Sat 18 Apr 2026 03:01:25 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: IXQGsYPxv7FZ4zxo7P6BvnJ7qygQkUa3QH+aTgvwaO8=)
2: 4vjv7ETAasx0tRKIpHxecSePkHs.roa (hash: 2AsMwZr9rbOc2Qfm0AhPalnC6K6xXB1YyB0oF7P/lrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:da:40:a5:09:32:84:88:cf:54:d8:3e:f5:73:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: Apr 17 03:01:25 2026 GMT
Not After : Apr 18 03:01:25 2026 GMT
Subject: CN=c0432e3d4f2a4ef8613ef51a5925cdb9b36f7f95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b7:c0:0d:76:b0:7e:2a:5b:db:e7:10:e4:50:
ed:f4:bb:7a:12:85:5d:d1:28:62:6b:3e:4e:27:c6:
98:6d:d9:cb:52:36:72:76:0b:3b:ff:4d:ec:61:8f:
2a:c5:e5:97:2f:76:df:bd:c4:b6:b3:27:81:aa:84:
7a:56:79:91:4a:19:73:1d:30:f8:06:ff:c8:9f:4d:
d2:26:af:04:7a:f7:9f:32:b5:5f:59:f2:52:24:a1:
84:be:71:86:a0:a4:a8:06:8c:d8:5d:08:76:55:7b:
bf:45:60:b4:59:13:ea:85:b8:e5:d8:6a:b4:2b:5d:
38:ff:9c:5d:e3:8e:00:36:ef:57:14:da:fb:c3:0e:
ac:b5:09:0b:2b:58:a8:de:95:bc:23:0a:7c:cc:09:
6b:1a:a6:02:62:d4:b7:ca:66:e3:fd:57:c0:9c:aa:
5b:dd:ce:62:32:a0:1f:07:f9:c5:9a:da:5a:3c:c7:
3c:40:b4:a0:18:37:d1:13:fa:db:31:41:79:ac:4a:
fc:21:a5:b7:2d:c4:c8:3e:c0:93:c9:d2:d8:c1:cd:
e0:21:14:3b:7d:df:fb:64:d8:9a:0d:80:7a:db:ff:
30:79:91:ef:2b:f4:7f:03:bb:31:7f:12:c2:a0:b9:
9e:49:d5:97:d8:3a:62:31:80:85:3d:18:45:61:b3:
2b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:43:2E:3D:4F:2A:4E:F8:61:3E:F5:1A:59:25:CD:B9:B3:6F:7F:95
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:93:cb:f5:fe:ae:45:59:59:f0:5b:50:c7:95:41:78:cd:53:
48:75:75:fd:0a:f1:ce:28:19:82:52:88:a6:f2:63:3c:26:8c:
bf:28:ae:5f:8a:74:35:71:5b:05:22:1b:a9:5a:04:a0:9e:83:
51:d3:4c:a8:81:5e:8f:95:f4:65:1c:eb:23:b9:e6:77:3f:7d:
2d:6c:b0:78:28:87:83:98:39:f2:e7:70:44:76:61:60:7f:d5:
26:fd:37:ce:5b:0c:84:87:7c:1b:dc:0b:9e:c6:65:9e:0c:cd:
e3:dd:41:47:50:41:5c:3c:aa:7e:29:07:c4:8c:e7:ab:1d:45:
00:00:b0:01:1c:b5:ec:13:97:a7:0d:db:9e:0d:65:40:04:e0:
73:ee:17:7f:b7:66:1f:60:d4:2e:6f:ce:01:7c:2b:9d:84:a6:
bf:c3:32:e3:17:32:e7:20:36:22:42:ba:4f:d0:ee:3a:2d:e8:
b7:bf:b1:a1:b3:1b:c4:12:a6:db:45:62:82:d6:2a:8b:91:70:
b4:d4:90:a8:ed:1e:8c:68:b3:6e:f8:2b:44:66:61:b5:c8:a8:
db:11:ed:9e:72:95:0d:c1:e1:66:44:c7:9a:18:f6:9e:18:c5:
5e:f6:4f:85:25:b8:33:2d:e0:d9:07:e8:61:38:01:4b:fc:49:
11:50:dd:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZYtpApQkyhIjPVNg+9XPPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4OWYxNmY1NzQ5MjQzMzc4ZjgxNGM5NGIyNDAzNGQ3NGIz
OTI3ZGYwHhcNMjYwNDE3MDMwMTI1WhcNMjYwNDE4MDMwMTI1WjAzMTEwLwYDVQQD
EyhjMDQzMmUzZDRmMmE0ZWY4NjEzZWY1MWE1OTI1Y2RiOWIzNmY3Zjk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybfADXawfipb2+cQ5FDt9Lt6EoVd
0Shiaz5OJ8aYbdnLUjZydgs7/03sYY8qxeWXL3bfvcS2syeBqoR6VnmRShlzHTD4
Bv/In03SJq8EevefMrVfWfJSJKGEvnGGoKSoBozYXQh2VXu/RWC0WRPqhbjl2Gq0
K104/5xd444ANu9XFNr7ww6stQkLK1io3pW8Iwp8zAlrGqYCYtS3ymbj/VfAnKpb
3c5iMqAfB/nFmtpaPMc8QLSgGDfRE/rbMUF5rEr8IaW3LcTIPsCTydLYwc3gIRQ7
fd/7ZNiaDYB62/8weZHvK/R/A7sxfxLCoLmeSdWX2DpiMYCFPRhFYbMrpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMBDLj1PKk74YT71Glklzbmzb3+VMB8GA1UdIwQY
MBaAFNifFvV0kkM3j4FMlLJANNdLOSffMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMko4VzlYU1NRemVQZ1V5VXNrQTAxMHM1Sjk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi83OTdlNjUtM2RhMC00ZDZlLWI2OTUt
MzQ2YmQ5NzNjODQzLzEvMko4VzlYU1NRemVQZ1V5VXNrQTAxMHM1Sjk4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi83OTdlNjUtM2RhMC00ZDZlLWI2OTUtMzQ2YmQ5NzNjODQz
LzEvMko4VzlYU1NRemVQZ1V5VXNrQTAxMHM1Sjk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAApPL9f6u
RVlZ8FtQx5VBeM1TSHV1/QrxzigZglKIpvJjPCaMvyiuX4p0NXFbBSIbqVoEoJ6D
UdNMqIFej5X0ZRzrI7nmdz99LWyweCiHg5g58udwRHZhYH/VJv03zlsMhId8G9wL
nsZlngzN491BR1BBXDyqfikHxIznqx1FAACwARy17BOXpw3bng1lQATgc+4Xf7dm
H2DULm/OAXwrnYSmv8My4xcy5yA2IkK6T9DuOi3ot7+xobMbxBKm20VigtYqi5Fw
tNSQqO0ejGizbvgrRGZhtcio2xHtnnKVDcHhZkTHmhj2nhjFXvZPhSW4My3g2Qfo
YTgBS/xJEVDd3w==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:50:15 2026 by rpki-client