Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
File: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft (raw, json)
Hash identifier: 6FZZemEgmmNXKge0KHeNFjbC/9e7r0CaRlLsPBan01g=
Subject key identifier: 18:E0:29:63:F9:B9:DC:4F:05:E9:78:8F:71:9D:DC:C9:B3:C6:83:79
Authority key identifier: DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
Certificate issuer: /CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Certificate serial: 019E3072AE8753FA972E870E6F954FCD07EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
Manifest number: 0751
Signing time: Sat 16 May 2026 11:01:22 +0000
Manifest this update: Sat 16 May 2026 11:01:22 +0000
Manifest next update: Sun 17 May 2026 11:01:22 +0000
Files and hashes: 1: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl (hash: Ohzgtv1E981vtsmy5kytXyBKnSZblUlERl1HHYTaSdA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:ae:87:53:fa:97:2e:87:0e:6f:95:4f:cd:07:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Validity
Not Before: May 16 11:01:22 2026 GMT
Not After : May 17 11:01:22 2026 GMT
Subject: CN=18e02963f9b9dc4f05e9788f719ddcc9b3c68379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0a:af:28:e9:28:a8:d0:5f:c4:ba:26:30:d6:
ea:20:a0:cc:6f:ce:54:37:c3:74:f3:c0:b1:57:4b:
94:8b:1c:27:71:06:8d:74:49:7d:22:8e:7c:a2:a6:
64:6d:fe:15:a4:95:64:6d:b3:15:74:92:3b:52:f0:
95:cc:b4:2f:d8:94:05:ee:67:19:8b:52:89:71:df:
2c:b3:bb:30:33:8a:86:1c:4d:ba:7a:75:0b:34:18:
46:b1:05:c7:e5:49:2d:a6:7c:dd:ae:30:21:8f:b0:
31:69:77:d7:b2:bc:65:c7:c5:1c:a1:14:0e:5e:31:
fa:f1:ae:16:aa:aa:ff:55:b5:42:88:67:a8:09:24:
2f:03:10:0f:9c:c9:64:a7:75:c8:33:3a:c4:48:28:
d2:73:1d:e9:10:21:7d:7a:81:1a:41:b0:5b:66:2f:
44:96:9c:83:18:3a:6e:ad:3c:24:b9:e7:ff:74:29:
c8:91:46:a8:3f:bf:bd:18:8f:bb:65:1e:d9:5d:30:
8e:78:e4:8b:62:16:9e:35:ca:05:e1:60:8f:4b:9d:
c6:e0:39:41:4e:8b:5f:ba:38:56:2f:8c:da:55:04:
35:34:5a:da:fa:cb:0b:b5:65:94:5e:03:9d:1c:d2:
09:04:fe:c6:3f:00:b7:e9:59:a0:27:64:48:2f:5e:
2c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:E0:29:63:F9:B9:DC:4F:05:E9:78:8F:71:9D:DC:C9:B3:C6:83:79
X509v3 Authority Key Identifier:
keyid:DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:09:d0:05:dc:eb:63:a3:67:f7:00:97:79:bf:1a:25:fe:27:
73:db:08:01:a2:4b:af:34:46:d0:40:14:4f:29:85:8b:85:5c:
06:3d:63:9e:b2:dc:56:a5:dd:3f:c3:ff:cf:c6:b4:f2:73:81:
fa:07:d0:e3:37:b3:17:44:f6:fa:70:03:65:b4:69:e8:5d:3e:
60:b3:ff:22:7a:18:6b:21:09:dd:49:a9:5f:64:f5:04:2e:d9:
5d:77:33:c0:3b:76:9e:29:4a:fe:3b:ed:7b:ae:0b:57:eb:71:
38:d6:d0:a3:31:24:1a:6d:b4:b7:0f:56:f3:2b:43:04:34:1b:
de:63:6e:39:2a:45:50:f3:d0:1c:a4:de:3f:df:ab:de:70:ff:
88:e8:38:b6:f9:f2:9b:f1:45:e0:ca:dc:99:85:a7:8f:98:59:
44:46:5f:d6:1c:ee:4b:fb:72:0e:e2:32:f8:be:03:71:bb:7f:
c9:6c:af:8c:ea:20:40:4c:3e:e0:95:4f:27:de:47:90:be:20:
09:de:72:e0:0e:4a:fd:a7:06:c5:ac:d6:fc:09:86:e4:6c:83:
4d:be:c2:7d:c6:79:b1:19:d1:85:1e:2c:82:f7:95:9c:5f:97:
0d:da:0b:c3:0a:e3:d4:05:f7:b9:6a:d3:34:1d:36:7f:53:26:
c4:79:8d:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:52 2026 by rpki-client