Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
File: 2KmU2EbLZpboicHMMiheCyOvx3c.mft (raw, json)
Hash identifier: I8ht9gz/D68cYcI4IcjBdcNu54MOSa+/KPMjZYXSemc=
Subject key identifier: 1D:21:48:EE:3D:CC:25:AE:F1:94:18:BB:85:24:8A:2E:BB:1C:FF:EC
Authority key identifier: D8:A9:94:D8:46:CB:66:96:E8:89:C1:CC:32:28:5E:0B:23:AF:C7:77
Certificate issuer: /CN=d8a994d846cb6696e889c1cc32285e0b23afc777
Certificate serial: 019D984FDC01A8B3C6B17DF2E31AD87D20BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KmU2EbLZpboicHMMiheCyOvx3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
Manifest number: 17AB
Signing time: Thu 16 Apr 2026 22:01:03 +0000
Manifest this update: Thu 16 Apr 2026 22:01:03 +0000
Manifest next update: Fri 17 Apr 2026 22:01:03 +0000
Files and hashes: 1: 2KmU2EbLZpboicHMMiheCyOvx3c.crl (hash: kUPHPQNy5m2vRCwW7eFEh56DJt11UBJB32YeQPvjUhk=)
2: F4iAzCEfDLvdpiMWWckwjJJrSsI.roa (hash: YFjFAwlmoqlWOtp7nZ0zL9vJHXGTyX16GUXYOVErggo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KmU2EbLZpboicHMMiheCyOvx3c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:4f:dc:01:a8:b3:c6:b1:7d:f2:e3:1a:d8:7d:20:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a994d846cb6696e889c1cc32285e0b23afc777
Validity
Not Before: Apr 16 22:01:03 2026 GMT
Not After : Apr 17 22:01:03 2026 GMT
Subject: CN=1d2148ee3dcc25aef19418bb85248a2ebb1cffec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:67:7b:f2:2f:7a:19:01:1f:b5:37:9d:59:9f:
35:f1:58:f7:27:4a:f0:16:48:18:4d:11:24:94:83:
15:a2:c8:f0:f7:ac:90:2a:e3:a3:2c:9f:6b:ea:05:
71:2d:9b:c5:5f:ff:fd:3a:dd:ee:37:98:f5:c2:13:
96:ac:c8:70:67:f2:ab:ce:a2:af:4b:57:e9:19:70:
a6:fe:16:b6:5b:3b:40:c2:e2:9f:4d:48:ef:27:ba:
7f:eb:fd:a0:14:da:d1:08:f7:ce:84:d0:ec:2c:bf:
b3:37:53:4d:66:04:2b:90:28:e0:71:d8:1b:c8:4c:
aa:f5:6f:3a:d1:af:7d:86:cf:fb:46:93:7d:84:ed:
a3:e6:9e:9e:f5:63:15:55:a9:ea:65:ba:02:f1:91:
58:2a:69:70:21:48:69:bc:78:f9:7d:22:8e:93:ca:
0e:8e:3c:20:32:26:a3:cb:09:e7:cd:12:bc:c2:72:
4f:1a:f0:b1:0c:78:f3:9c:02:3b:50:a6:ba:76:80:
fd:b9:1e:c4:8e:e8:40:bc:bc:8a:26:e8:49:03:b3:
16:64:73:5d:a0:50:56:6b:5e:5f:94:08:32:e2:a2:
59:f1:f9:88:b5:e0:fc:8b:48:64:73:9c:a3:58:c2:
d5:b9:f2:0c:75:40:ab:5d:73:54:91:ec:0f:10:bd:
38:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:21:48:EE:3D:CC:25:AE:F1:94:18:BB:85:24:8A:2E:BB:1C:FF:EC
X509v3 Authority Key Identifier:
keyid:D8:A9:94:D8:46:CB:66:96:E8:89:C1:CC:32:28:5E:0B:23:AF:C7:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KmU2EbLZpboicHMMiheCyOvx3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e9:d7:70:65:4b:f6:b4:b1:41:7f:98:85:40:54:62:13:04:ac:
ef:6b:c7:00:a0:55:29:4c:de:61:5c:ba:54:38:ed:11:33:38:
2e:49:a9:c8:a4:2d:c1:bd:5e:1c:c3:25:82:41:29:28:02:f6:
bd:47:82:12:66:d6:fe:48:b5:a9:91:36:ff:5f:80:a1:8e:aa:
3b:31:68:52:3d:b9:e7:63:fe:69:70:26:fa:89:39:3e:3a:fe:
a0:65:6c:8b:26:5e:57:98:8d:c7:bb:2c:e8:00:70:e9:8f:6c:
fb:69:09:ed:79:4c:b2:a1:43:48:76:df:99:12:aa:cf:2a:da:
53:e6:2d:e2:2d:8c:b5:ef:3b:fd:ff:c4:52:c3:22:35:d8:45:
af:96:cb:5d:c3:6a:ca:99:02:d4:7c:7e:95:81:35:0f:d3:a2:
71:e6:64:02:5b:62:28:f2:7b:be:4d:f8:f1:0f:b4:9e:7a:92:
61:0d:0f:9b:e9:1e:ea:e7:74:10:58:a1:10:c5:cd:26:85:d7:
c7:b4:e4:2c:05:5e:db:23:68:af:a0:7a:47:b2:32:c3:b7:2c:
c0:a6:aa:25:09:7d:2c:74:25:a9:74:4a:77:63:5e:95:8a:e3:
d3:df:4c:87:36:d8:23:ce:21:cf:dd:b1:c0:ca:d5:18:64:31:
b0:ca:01:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2YT9wBqLPGsX3y4xrYfSC+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YTk5NGQ4NDZjYjY2OTZlODg5YzFjYzMyMjg1ZTBiMjNh
ZmM3NzcwHhcNMjYwNDE2MjIwMTAzWhcNMjYwNDE3MjIwMTAzWjAzMTEwLwYDVQQD
EygxZDIxNDhlZTNkY2MyNWFlZjE5NDE4YmI4NTI0OGEyZWJiMWNmZmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArWd78i96GQEftTedWZ818Vj3J0rw
FkgYTREklIMVosjw96yQKuOjLJ9r6gVxLZvFX//9Ot3uN5j1whOWrMhwZ/KrzqKv
S1fpGXCm/ha2WztAwuKfTUjvJ7p/6/2gFNrRCPfOhNDsLL+zN1NNZgQrkCjgcdgb
yEyq9W860a99hs/7RpN9hO2j5p6e9WMVVanqZboC8ZFYKmlwIUhpvHj5fSKOk8oO
jjwgMiajywnnzRK8wnJPGvCxDHjznAI7UKa6doD9uR7EjuhAvLyKJuhJA7MWZHNd
oFBWa15flAgy4qJZ8fmIteD8i0hkc5yjWMLVufIMdUCrXXNUkewPEL04xwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB0hSO49zCWu8ZQYu4Ukii67HP/sMB8GA1UdIwQY
MBaAFNiplNhGy2aW6InBzDIoXgsjr8d3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkttVTJFYkxacGJvaWNITU1paGVDeU92eDNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9kZDA4ZjctYjZmNC00YjQyLTgxZDct
MjNhYjU5Nzk4NDIxLzEvMkttVTJFYkxacGJvaWNITU1paGVDeU92eDNjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9kZDA4ZjctYjZmNC00YjQyLTgxZDctMjNhYjU5Nzk4NDIx
LzEvMkttVTJFYkxacGJvaWNITU1paGVDeU92eDNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA6ddwZUv2
tLFBf5iFQFRiEwSs72vHAKBVKUzeYVy6VDjtETM4LkmpyKQtwb1eHMMlgkEpKAL2
vUeCEmbW/ki1qZE2/1+AoY6qOzFoUj2552P+aXAm+ok5Pjr+oGVsiyZeV5iNx7ss
6ABw6Y9s+2kJ7XlMsqFDSHbfmRKqzyraU+Yt4i2Mte87/f/EUsMiNdhFr5bLXcNq
ypkC1Hx+lYE1D9OiceZkAltiKPJ7vk348Q+0nnqSYQ0Pm+ke6ud0EFihEMXNJoXX
x7TkLAVe2yNor6B6R7Iyw7cswKaqJQl9LHQlqXRKd2NelYrj099MhzbYI84hz92x
wMrVGGQxsMoB6A==
-----END CERTIFICATE-----
Generated at Fri Apr 17 03:09:44 2026 by rpki-client