Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json)
Hash identifier: Ca+SBe+E92t2fI9PNpnLBM3CQgCJoDF6jxkJBzWElk8=
Subject key identifier: E9:F9:B0:A7:95:38:AF:97:0F:23:85:AD:A7:9F:A7:AC:C6:07:DA:83
Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac
Certificate serial: 019EC0DBA25306DAB91D3CCF405D8FAABBF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
Manifest number: 0EF4
Signing time: Sat 13 Jun 2026 12:01:19 +0000
Manifest this update: Sat 13 Jun 2026 12:01:19 +0000
Manifest next update: Sun 14 Jun 2026 12:01:19 +0000
Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: GSZGTl/+ClaqLLuMTPB/mtx+Bked7GgGO25PaelLtXo=)
2: uej861Aq66aiTbTh46AGK_JiRjQ.roa (hash: u2XmnqcYHbAJLSpNo2ks9hVCb6DlSKyd8Mczf2hO9GI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:a2:53:06:da:b9:1d:3c:cf:40:5d:8f:aa:bb:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac
Validity
Not Before: Jun 13 12:01:19 2026 GMT
Not After : Jun 14 12:01:19 2026 GMT
Subject: CN=e9f9b0a79538af970f2385ada79fa7acc607da83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:56:ed:67:04:4b:af:62:ba:43:95:81:ad:d7:
79:86:47:f3:da:12:42:0b:d9:7c:96:8d:2e:1b:ac:
98:61:77:bc:8a:08:fe:03:82:39:fe:85:04:a6:03:
a2:03:78:40:44:27:5d:81:cf:a9:08:99:bb:f8:00:
a7:1b:08:99:9d:e7:a2:c7:44:a8:9c:3b:61:c8:5d:
cc:64:32:4d:8a:82:83:98:5e:4c:2d:d0:17:ad:f1:
6a:61:22:e7:ed:20:92:a3:cb:a3:07:2f:c0:f8:d3:
16:19:ec:0e:6d:9c:fc:66:00:2a:17:8e:85:87:d1:
f7:25:29:45:f1:a9:66:3c:de:15:d3:ac:db:32:5b:
7e:f6:2c:fc:81:83:35:14:a9:4c:d0:0f:8e:a4:c8:
4e:ed:c6:d6:fe:29:7b:61:9b:4a:4b:d4:00:66:7c:
62:19:94:a1:e1:aa:2d:59:94:bb:a8:fe:56:cc:4d:
29:29:e5:59:3b:79:d0:4e:a9:2a:48:1d:f3:f3:33:
bd:d4:74:d3:00:5b:61:3a:e5:65:06:4c:5b:aa:e6:
e3:63:f4:ac:a7:ec:c6:f8:de:8b:d9:ad:55:3f:2b:
e1:90:1d:46:fc:d2:81:22:de:b1:c3:65:dd:f4:b8:
02:b6:ed:b4:ca:27:58:1d:1e:fc:59:c4:f6:93:d8:
3f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F9:B0:A7:95:38:AF:97:0F:23:85:AD:A7:9F:A7:AC:C6:07:DA:83
X509v3 Authority Key Identifier:
keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:58:20:5b:91:04:5d:ef:1e:89:0c:64:e7:84:04:c2:f6:2b:
a9:38:39:5c:73:63:a8:b1:07:13:dc:9c:4e:21:1d:ef:ff:e4:
c7:e7:da:9d:1e:8b:3d:fa:31:50:41:f3:b5:6d:31:21:c0:fe:
44:b3:31:92:c9:e5:7f:b3:48:33:0d:c8:ae:24:81:38:89:07:
55:bc:44:2b:6f:b6:44:73:6e:9b:0f:5e:d7:12:15:05:26:3f:
b1:e4:73:c7:11:97:5c:64:e4:6a:49:1c:a0:b5:8a:6d:50:c1:
16:3e:0d:f7:37:b4:bc:c9:95:bd:87:8c:5c:71:65:f2:81:a4:
6b:66:59:0a:e3:fc:e7:57:a2:65:af:a0:f6:c6:ec:0c:ea:7d:
ba:13:37:f6:97:80:ab:9a:d8:51:36:9b:29:2b:d3:49:80:a9:
9a:e9:6a:2b:8e:eb:50:39:2d:d1:c3:e1:6c:70:da:e9:c3:4b:
65:ee:59:05:af:39:fe:d9:f4:fe:ad:0d:c6:c5:f5:24:e5:6c:
c7:f0:92:3b:24:61:df:f9:24:e7:c1:e5:6c:5c:8c:fe:3a:a6:
db:ad:0e:42:8a:30:7c:d4:cc:e4:82:43:ff:4e:7b:57:6e:b8:
d5:e2:5e:d9:c6:be:5f:db:3b:e1:0b:da:f1:f5:39:89:21:a4:
f8:cf:ef:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7A26JTBtq5HTzPQF2PqrvyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMzc1ZTE2YTE5MzY3ZGU5OWJiMjRhYzExNWQyNTlhMmEw
NDgxYWMwHhcNMjYwNjEzMTIwMTE5WhcNMjYwNjE0MTIwMTE5WjAzMTEwLwYDVQQD
EyhlOWY5YjBhNzk1MzhhZjk3MGYyMzg1YWRhNzlmYTdhY2M2MDdkYTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFbtZwRLr2K6Q5WBrdd5hkfz2hJC
C9l8lo0uG6yYYXe8igj+A4I5/oUEpgOiA3hARCddgc+pCJm7+ACnGwiZneeix0So
nDthyF3MZDJNioKDmF5MLdAXrfFqYSLn7SCSo8ujBy/A+NMWGewObZz8ZgAqF46F
h9H3JSlF8almPN4V06zbMlt+9iz8gYM1FKlM0A+OpMhO7cbW/il7YZtKS9QAZnxi
GZSh4aotWZS7qP5WzE0pKeVZO3nQTqkqSB3z8zO91HTTAFthOuVlBkxbqubjY/Ss
p+zG+N6L2a1VPyvhkB1G/NKBIt6xw2Xd9LgCtu20yidYHR78WcT2k9g/TwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOn5sKeVOK+XDyOFraefp6zGB9qDMB8GA1UdIwQY
MBaAFNs3Xhahk2fembskrBFdJZoqBIGsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy85YmM1YmMtOGY5OS00MmVkLWE4Y2Ut
NWI4NmJhNTg1OTIyLzEvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy85YmM1YmMtOGY5OS00MmVkLWE4Y2UtNWI4NmJhNTg1OTIy
LzEvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAblggW5EE
Xe8eiQxk54QEwvYrqTg5XHNjqLEHE9ycTiEd7//kx+fanR6LPfoxUEHztW0xIcD+
RLMxksnlf7NIMw3IriSBOIkHVbxEK2+2RHNumw9e1xIVBSY/seRzxxGXXGTkakkc
oLWKbVDBFj4N9ze0vMmVvYeMXHFl8oGka2ZZCuP851eiZa+g9sbsDOp9uhM39peA
q5rYUTabKSvTSYCpmulqK47rUDkt0cPhbHDa6cNLZe5ZBa85/tn0/q0NxsX1JOVs
x/CSOyRh3/kk58HlbFyM/jqm260OQoowfNTM5IJD/057V2641eJe2ca+X9s74Qva
8fU5iSGk+M/vPw==
-----END CERTIFICATE-----
Generated at Sat Jun 13 19:38:40 2026 by rpki-client