Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
File: 2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft (raw, json)
Hash identifier: 5t4Wft0+eS8PzDBVrHYvmcra4LQmGLKGBHB/7cq4M1E=
Subject key identifier: 66:C2:50:65:13:F5:69:38:3C:68:51:7F:58:D6:A9:0A:34:E9:0A:5F
Authority key identifier: D9:49:CA:BA:3D:43:15:60:7F:4A:6D:62:7E:CE:1E:CE:A8:CB:C3:19
Certificate issuer: /CN=d949caba3d4315607f4a6d627ece1ecea8cbc319
Certificate serial: 019D99CFD866D2CD91B6DB022E8D92B48A9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
Manifest number: 0E00
Signing time: Fri 17 Apr 2026 05:00:28 +0000
Manifest this update: Fri 17 Apr 2026 05:00:28 +0000
Manifest next update: Sat 18 Apr 2026 05:00:28 +0000
Files and hashes: 1: 2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl (hash: K7iXAPI3xOY2SC/hl5NqzOhXBIm7mOPsFaC1OcC4IlY=)
2: 8mfySGwTbXk-kyUdS_kN8j97UXs.roa (hash: umX00/QtByILeR56I5S6BuyzviCNwqrKZKDQse00Reo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:d8:66:d2:cd:91:b6:db:02:2e:8d:92:b4:8a:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d949caba3d4315607f4a6d627ece1ecea8cbc319
Validity
Not Before: Apr 17 05:00:28 2026 GMT
Not After : Apr 18 05:00:28 2026 GMT
Subject: CN=66c2506513f569383c68517f58d6a90a34e90a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d3:19:cb:a5:35:a8:9a:eb:e6:7c:c0:20:c4:
8b:3d:74:25:a1:0b:d9:72:11:e3:d9:ab:ee:c2:6d:
cb:94:1f:e4:78:08:cb:a8:7a:6f:cf:a8:5c:f2:4d:
13:46:2f:07:63:82:3e:c4:95:95:be:48:ed:1b:a4:
10:30:6c:5e:44:26:0e:3e:87:41:18:4b:b3:f3:d7:
f6:d1:2e:be:a4:31:86:85:f6:48:20:62:cb:21:d6:
25:74:52:f2:00:24:ab:62:48:59:a3:8f:04:c6:e5:
a7:be:d1:aa:d3:a9:7c:02:c7:b0:62:53:65:0c:ec:
9a:b2:a6:26:ac:e5:e1:56:85:76:d0:9e:ee:96:0e:
82:93:97:ac:a1:1b:0f:2f:ef:ec:55:3e:73:7e:42:
e2:0c:67:69:b8:ef:e1:04:2e:52:19:25:0d:3d:3c:
97:28:3e:39:65:53:bc:85:04:3d:5f:f1:c4:dd:38:
22:d2:bc:0a:38:7b:e6:b1:5b:4a:84:41:3a:f2:8d:
58:3f:da:0a:7f:1c:11:9e:7f:a6:a8:e9:77:69:0b:
ed:42:50:70:20:63:2f:cc:96:0b:ce:74:15:c5:ef:
59:62:3e:73:14:47:70:e5:ca:6f:11:c5:ee:b1:5a:
0c:31:6a:e0:11:23:12:f5:17:90:57:bf:ad:d1:6f:
76:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C2:50:65:13:F5:69:38:3C:68:51:7F:58:D6:A9:0A:34:E9:0A:5F
X509v3 Authority Key Identifier:
keyid:D9:49:CA:BA:3D:43:15:60:7F:4A:6D:62:7E:CE:1E:CE:A8:CB:C3:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:ee:f7:ad:52:1d:bd:49:e4:4a:8d:bf:25:a1:65:66:19:93:
6c:9c:aa:e5:1a:1c:a1:ce:35:ea:d9:2a:10:46:f7:e3:33:c5:
ca:62:a4:c6:22:7f:33:3d:de:25:04:8c:b4:56:9a:91:12:d3:
6c:4d:2d:5f:18:e2:a9:d7:83:ea:08:74:33:d2:cc:db:fe:28:
ef:34:43:ed:71:cd:f4:4e:61:ba:48:37:09:b1:78:0b:d5:e2:
e9:bf:a3:3b:9b:fa:72:f0:48:ca:c0:36:f9:b3:9e:30:ed:df:
59:0e:d6:26:a9:eb:91:b2:d9:e4:d6:30:72:b2:7f:3e:e3:cf:
6b:d3:99:0b:ba:a7:3a:21:93:06:df:a2:a9:0a:27:52:ec:04:
ea:86:d6:d0:b6:af:3a:0a:ed:35:58:93:7c:ec:3d:54:58:62:
f5:7c:41:2a:ea:f6:3b:63:f5:86:d8:e3:49:4e:7e:33:9b:70:
16:74:9c:ca:86:0f:9f:4a:eb:e5:9a:6b:18:e8:c8:10:58:00:
7b:b9:e7:b6:94:cd:76:75:4a:91:d4:a0:1f:b2:61:61:75:3d:
56:d1:6a:a3:04:3a:29:3b:b3:8d:e9:a7:4c:80:6f:91:03:2f:
be:fa:2a:c4:70:0b:57:78:42:4c:2c:0f:97:b5:ff:46:40:8e:
75:0e:8d:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Zz9hm0s2RttsCLo2StIqbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5NDljYWJhM2Q0MzE1NjA3ZjRhNmQ2MjdlY2UxZWNlYThj
YmMzMTkwHhcNMjYwNDE3MDUwMDI4WhcNMjYwNDE4MDUwMDI4WjAzMTEwLwYDVQQD
Eyg2NmMyNTA2NTEzZjU2OTM4M2M2ODUxN2Y1OGQ2YTkwYTM0ZTkwYTVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtMZy6U1qJrr5nzAIMSLPXQloQvZ
chHj2avuwm3LlB/keAjLqHpvz6hc8k0TRi8HY4I+xJWVvkjtG6QQMGxeRCYOPodB
GEuz89f20S6+pDGGhfZIIGLLIdYldFLyACSrYkhZo48ExuWnvtGq06l8AsewYlNl
DOyasqYmrOXhVoV20J7ulg6Ck5esoRsPL+/sVT5zfkLiDGdpuO/hBC5SGSUNPTyX
KD45ZVO8hQQ9X/HE3Tgi0rwKOHvmsVtKhEE68o1YP9oKfxwRnn+mqOl3aQvtQlBw
IGMvzJYLznQVxe9ZYj5zFEdw5cpvEcXusVoMMWrgESMS9ReQV7+t0W92bwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGbCUGUT9Wk4PGhRf1jWqQo06QpfMB8GA1UdIwQY
MBaAFNlJyro9QxVgf0ptYn7OHs6oy8MZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlVuS3VqMURGV0JfU20xaWZzNGV6cWpMd3hrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9mZTY5MDQtZWI1Ni00NDkzLTkyOWMt
MWE5ZGYzOGY1OTAxLzEvMlVuS3VqMURGV0JfU20xaWZzNGV6cWpMd3hrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS9mZTY5MDQtZWI1Ni00NDkzLTkyOWMtMWE5ZGYzOGY1OTAx
LzEvMlVuS3VqMURGV0JfU20xaWZzNGV6cWpMd3hrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIe73rVId
vUnkSo2/JaFlZhmTbJyq5Rococ416tkqEEb34zPFymKkxiJ/Mz3eJQSMtFaakRLT
bE0tXxjiqdeD6gh0M9LM2/4o7zRD7XHN9E5hukg3CbF4C9Xi6b+jO5v6cvBIysA2
+bOeMO3fWQ7WJqnrkbLZ5NYwcrJ/PuPPa9OZC7qnOiGTBt+iqQonUuwE6obW0Lav
OgrtNViTfOw9VFhi9XxBKur2O2P1htjjSU5+M5twFnScyoYPn0rr5ZprGOjIEFgA
e7nntpTNdnVKkdSgH7JhYXU9VtFqowQ6KTuzjemnTIBvkQMvvvoqxHALV3hCTCwP
l7X/RkCOdQ6NUw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:26:02 2026 by rpki-client