Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
File: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft (raw, json)
Hash identifier: um4CbO67mbLepFCAmAWKft0JOwbvu1jHvWOhDaRXgbQ=
Subject key identifier: 4A:F0:E4:9F:26:FB:D7:BD:D1:39:EA:FD:9A:47:92:98:67:78:3C:4F
Authority key identifier: D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53
Certificate issuer: /CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753
Certificate serial: 019DA378B9B66AACB1D71FADD81D940BFDD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
Manifest number: 06D0
Signing time: Sun 19 Apr 2026 02:01:31 +0000
Manifest this update: Sun 19 Apr 2026 02:01:31 +0000
Manifest next update: Mon 20 Apr 2026 02:01:31 +0000
Files and hashes: 1: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl (hash: Z44ksvbRd766gG8cWbNcswq6qQvhFYQMYTsN0cr4sDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:78:b9:b6:6a:ac:b1:d7:1f:ad:d8:1d:94:0b:fd:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753
Validity
Not Before: Apr 19 02:01:31 2026 GMT
Not After : Apr 20 02:01:31 2026 GMT
Subject: CN=4af0e49f26fbd7bdd139eafd9a47929867783c4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:69:a8:21:4b:28:ad:96:90:cc:8c:bc:cf:1e:
a9:d5:76:e6:fd:5c:63:3a:25:9a:a0:30:0b:41:cc:
bc:fe:e2:2e:4f:d5:0a:87:10:5d:1f:71:7a:dd:a7:
c3:03:6f:2c:e8:28:16:79:14:14:fb:c1:3a:d2:9e:
c6:2e:f8:64:be:a0:fc:29:d0:29:ab:45:68:08:e0:
04:e6:2d:ce:4d:aa:5b:76:4c:57:c6:a3:f4:38:d0:
5e:74:1d:3c:92:17:0f:cd:4d:05:cd:1c:a9:1c:ed:
f4:f6:e2:e6:97:de:c1:4b:b8:a1:f7:c4:76:e5:88:
22:61:7a:f0:ae:46:8f:15:7f:85:8d:e2:d3:5e:b4:
c2:c8:cc:32:04:a3:7a:42:25:ee:6b:f6:be:5f:ac:
9a:29:af:cd:09:e3:6c:ed:2a:7a:99:51:77:94:67:
b6:bf:fb:75:7a:a3:00:72:30:a2:06:c6:10:2e:bb:
0c:c7:e1:2c:33:8b:a9:98:17:31:1c:28:f1:95:80:
7e:a7:01:b8:4e:04:49:89:5e:81:d7:a2:e2:b4:3e:
f8:77:5a:4b:f1:b2:b9:7f:4f:6a:b5:6d:1a:ba:99:
60:64:7d:9b:19:89:e9:d3:d4:81:14:ff:17:af:b9:
cb:4e:a4:bc:63:2c:d4:b5:30:54:66:1d:9c:b0:84:
8c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F0:E4:9F:26:FB:D7:BD:D1:39:EA:FD:9A:47:92:98:67:78:3C:4F
X509v3 Authority Key Identifier:
keyid:D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:38:76:ee:6b:40:d8:ce:0b:90:a4:25:1c:3c:6e:fb:d9:76:
c1:f0:a6:f2:17:ef:51:04:26:c8:84:26:5f:bd:d2:71:00:9f:
87:78:f3:91:5f:7b:56:e5:9f:e1:07:60:a5:f7:99:d2:90:9b:
38:be:cc:9a:8b:c3:88:18:77:52:7f:48:82:5f:07:ca:89:e8:
e0:6e:9c:e9:06:2c:22:64:6a:f3:6b:84:f7:35:55:d9:b7:69:
95:e3:0b:66:5e:37:c0:30:a0:b6:77:13:07:8a:e0:1b:04:35:
13:d5:9d:83:1f:57:e5:82:63:fb:33:84:9f:ea:5f:8b:fd:03:
68:93:ad:4f:78:9d:8e:a9:e3:9d:c3:e9:d1:fc:8d:18:8a:67:
67:c2:c6:68:b5:f3:0a:5b:c4:54:56:b0:69:c4:42:41:e4:41:
23:40:1b:04:d2:42:55:af:c8:66:e3:31:c2:74:6c:36:39:8c:
cd:bf:35:80:ed:8d:3b:e6:0d:47:3b:12:49:19:44:f5:4c:13:
cd:ce:d2:53:80:c1:bd:a6:bf:91:f1:31:00:af:d2:09:70:cc:
a2:18:b4:e4:6e:86:c7:28:39:cf:b1:2a:74:d0:e7:f2:83:b8:
4f:29:cf:39:8f:dd:b9:87:86:e5:15:17:ba:cd:f1:be:91:e1:
b1:80:a3:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2jeLm2aqyx1x+t2B2UC/3WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MTFkZDIyZjdlYWYyNzJiYzRiZjNlYmIxNTJkMzY0YmI0
ZDk3NTMwHhcNMjYwNDE5MDIwMTMxWhcNMjYwNDIwMDIwMTMxWjAzMTEwLwYDVQQD
Eyg0YWYwZTQ5ZjI2ZmJkN2JkZDEzOWVhZmQ5YTQ3OTI5ODY3NzgzYzRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmmmoIUsorZaQzIy8zx6p1Xbm/Vxj
OiWaoDALQcy8/uIuT9UKhxBdH3F63afDA28s6CgWeRQU+8E60p7GLvhkvqD8KdAp
q0VoCOAE5i3OTapbdkxXxqP0ONBedB08khcPzU0FzRypHO309uLml97BS7ih98R2
5YgiYXrwrkaPFX+FjeLTXrTCyMwyBKN6QiXua/a+X6yaKa/NCeNs7Sp6mVF3lGe2
v/t1eqMAcjCiBsYQLrsMx+EsM4upmBcxHCjxlYB+pwG4TgRJiV6B16LitD74d1pL
8bK5f09qtW0auplgZH2bGYnp09SBFP8Xr7nLTqS8YyzUtTBUZh2csISMRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFErw5J8m+9e90Tnq/ZpHkphneDxPMB8GA1UdIwQY
MBaAFNgR3SL36vJyvEvz67FS02S7TZdTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkJIZEl2ZnE4bks4U19QcnNWTFRaTHRObDFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC80NzYyYzYtNWVhZi00ZTdjLWE4MjQt
ZjcwYWRmMWRjMGZlLzEvMkJIZEl2ZnE4bks4U19QcnNWTFRaTHRObDFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC80NzYyYzYtNWVhZi00ZTdjLWE4MjQtZjcwYWRmMWRjMGZl
LzEvMkJIZEl2ZnE4bks4U19QcnNWTFRaTHRObDFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASDh27mtA
2M4LkKQlHDxu+9l2wfCm8hfvUQQmyIQmX73ScQCfh3jzkV97VuWf4QdgpfeZ0pCb
OL7MmovDiBh3Un9Igl8Hyono4G6c6QYsImRq82uE9zVV2bdpleMLZl43wDCgtncT
B4rgGwQ1E9Wdgx9X5YJj+zOEn+pfi/0DaJOtT3idjqnjncPp0fyNGIpnZ8LGaLXz
ClvEVFawacRCQeRBI0AbBNJCVa/IZuMxwnRsNjmMzb81gO2NO+YNRzsSSRlE9UwT
zc7SU4DBvaa/kfExAK/SCXDMohi05G6Gxyg5z7EqdNDn8oO4TynPOY/duYeG5RUX
us3xvpHhsYCjIA==
-----END CERTIFICATE-----
Generated at Sun Apr 19 11:35:45 2026 by rpki-client