Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: m23+rr7zAo/ckjPHR6G7mW7plxpNXyvh/sIdB5U6lWE=
Subject key identifier: E4:84:00:22:C8:24:F7:71:DF:55:55:9F:EA:97:B3:75:1E:67:7D:CB
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 019CABA1F6B66D2ED5DC2785A0C3ADE68CDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 17A9
Signing time: Sun 01 Mar 2026 23:00:44 +0000
Manifest this update: Sun 01 Mar 2026 23:00:44 +0000
Manifest next update: Mon 02 Mar 2026 23:00:44 +0000
Files and hashes: 1: PZ_gBS2JDBR5UR9Zyi6R_A5y1vM.roa (hash: oUnwI/hWFydpEOEqwC9HOMZdSyF2a1xfxAbzlwQhdS8=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: v+/pG9PyVzWk4Qc3gjDjwosBf2MRpGhhTKPUkCDST2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:f6:b6:6d:2e:d5:dc:27:85:a0:c3:ad:e6:8c:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Mar 1 23:00:44 2026 GMT
Not After : Mar 2 23:00:44 2026 GMT
Subject: CN=e4840022c824f771df55559fea97b3751e677dcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:48:8b:0d:eb:51:54:1c:18:57:20:87:0f:42:
7b:24:65:86:66:8c:b2:af:d6:ff:c4:97:6f:87:63:
c4:73:03:f7:d9:13:ff:f8:51:aa:94:a5:5e:a0:9a:
0b:a0:a0:79:ab:18:4b:fe:0b:e1:73:1f:aa:d3:ad:
40:aa:4a:c7:cd:2d:ff:b3:4d:e6:14:da:17:45:ce:
7a:46:71:e4:3a:6e:f7:03:5c:6c:0d:fb:37:bd:a2:
a5:07:a3:64:33:7a:d5:4f:54:4e:a2:0f:46:52:79:
bc:52:8f:32:02:f2:7f:dd:87:f5:0c:6c:13:cf:df:
f5:67:4f:8b:b2:c4:36:ae:a7:ce:05:3e:ab:20:6e:
7d:cf:58:b2:c9:e7:3a:fd:5d:3e:6a:ae:81:57:1d:
bd:c2:95:e3:0f:d6:85:36:11:fd:5c:f8:c6:23:ed:
02:a2:58:71:02:59:11:3d:88:08:2c:c9:7f:f3:a3:
d5:b8:c2:35:a9:61:2f:54:50:fc:1c:fb:34:b2:6e:
61:20:dc:d9:31:0c:38:16:51:73:09:85:ec:3e:b7:
e4:8c:7f:e6:7f:75:f5:34:ff:ae:6a:72:7d:62:84:
0b:47:91:f6:8e:82:bf:52:6b:46:b1:62:df:73:91:
3f:f9:6f:e7:e6:ad:c4:ee:e1:9e:59:ee:04:cd:3d:
40:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:84:00:22:C8:24:F7:71:DF:55:55:9F:EA:97:B3:75:1E:67:7D:CB
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:9b:c8:9f:be:43:86:8b:c3:6c:26:f2:49:92:55:fb:f1:79:
c4:77:09:8e:47:b6:6f:c2:e1:7e:dc:e1:a7:26:d5:fe:a5:73:
75:89:e8:6b:53:38:49:8b:a6:5c:f1:df:1f:9c:d6:ac:6f:05:
97:c0:e6:83:b2:5d:f4:79:9e:87:09:ca:6d:9e:f3:ef:3f:5d:
cb:ec:a5:32:c0:d0:cf:37:a3:c2:22:4c:8a:23:84:75:bd:67:
93:df:31:b7:94:cb:01:40:b0:65:96:fb:4b:f6:80:03:c5:46:
dd:ec:3f:2d:65:22:ca:2e:ab:06:e5:57:b5:66:94:26:14:b5:
16:aa:a2:2a:93:2e:e1:16:dc:f0:86:21:4c:4b:35:b3:08:31:
7d:3a:29:90:dd:39:e4:dd:b9:e4:f0:14:44:48:dc:33:28:74:
da:db:2b:46:63:39:be:1c:e4:7b:b4:04:09:88:df:c2:10:43:
d9:90:a1:d0:23:a0:0c:4c:62:b6:1a:d8:09:a6:75:62:f4:e8:
39:23:01:6f:fa:25:01:5f:c7:bf:f8:69:ec:11:87:19:3c:d4:
ac:de:86:35:e9:65:23:0a:ce:2f:b2:b2:48:0b:f1:3f:6f:aa:
12:dd:04:a6:22:28:82:27:28:af:53:2b:75:eb:6a:52:7b:f4:
6d:45:9a:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrofa2bS7V3CeFoMOt5ozdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmNmIzMzYxYTFhMmEwMGRiY2UzMTkwMTk4MjdmZWJiNzE1
YmQwNDQwHhcNMjYwMzAxMjMwMDQ0WhcNMjYwMzAyMjMwMDQ0WjAzMTEwLwYDVQQD
EyhlNDg0MDAyMmM4MjRmNzcxZGY1NTU1OWZlYTk3YjM3NTFlNjc3ZGNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUiLDetRVBwYVyCHD0J7JGWGZoyy
r9b/xJdvh2PEcwP32RP/+FGqlKVeoJoLoKB5qxhL/gvhcx+q061AqkrHzS3/s03m
FNoXRc56RnHkOm73A1xsDfs3vaKlB6NkM3rVT1ROog9GUnm8Uo8yAvJ/3Yf1DGwT
z9/1Z0+LssQ2rqfOBT6rIG59z1iyyec6/V0+aq6BVx29wpXjD9aFNhH9XPjGI+0C
olhxAlkRPYgILMl/86PVuMI1qWEvVFD8HPs0sm5hINzZMQw4FlFzCYXsPrfkjH/m
f3X1NP+uanJ9YoQLR5H2joK/UmtGsWLfc5E/+W/n5q3E7uGeWe4EzT1ACQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOSEACLIJPdx31VVn+qXs3UeZ33LMB8GA1UdIwQY
MBaAFP9rM2GhoqANvOMZAZgn/rtxW9BEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvXzJzellhR2lvQTI4NHhrQm1DZi11M0ZiMEVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS85NmY5YTAtODc0Ni00YjMyLTgzZWUt
ZjYyMzIwOTUxYTM2LzEvXzJzellhR2lvQTI4NHhrQm1DZi11M0ZiMEVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS85NmY5YTAtODc0Ni00YjMyLTgzZWUtZjYyMzIwOTUxYTM2
LzEvXzJzellhR2lvQTI4NHhrQm1DZi11M0ZiMEVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASJvIn75D
hovDbCbySZJV+/F5xHcJjke2b8LhftzhpybV/qVzdYnoa1M4SYumXPHfH5zWrG8F
l8Dmg7Jd9HmehwnKbZ7z7z9dy+ylMsDQzzejwiJMiiOEdb1nk98xt5TLAUCwZZb7
S/aAA8VG3ew/LWUiyi6rBuVXtWaUJhS1FqqiKpMu4Rbc8IYhTEs1swgxfTopkN05
5N255PAUREjcMyh02tsrRmM5vhzke7QECYjfwhBD2ZCh0COgDExithrYCaZ1YvTo
OSMBb/olAV/Hv/hp7BGHGTzUrN6GNellIwrOL7KySAvxP2+qEt0EpiIogicor1Mr
detqUnv0bUWaiA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:08:04 2026 by rpki-client