Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: OJBX5QI+kXyubQ+cppVFewRhFrqjOCS4ZXl/dPqZsSU=
Subject key identifier: 41:F3:08:58:39:FA:C7:52:2D:6C:13:DF:26:18:80:D2:C7:53:79:45
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 019E314DDBFE71D26F3E19F1D1B22E740452
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 15:00:46 +0000
Manifest this update: Sat 16 May 2026 15:00:46 +0000
Manifest next update: Sun 17 May 2026 15:00:46 +0000
Files and hashes: 1: 1-BTuYEiDE2mEIP2dyXdE1PSMv3c.roa (hash: tBxS565NzZV2f/vbdXm3F39V84JJovJ6zXMOf+itJ6Q=)
2: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: z4bBQOlencIFcY0OcnrLW8mphduTrkZN2O3mqQ9habw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4d:db:fe:71:d2:6f:3e:19:f1:d1:b2:2e:74:04:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: May 16 15:00:46 2026 GMT
Not After : May 17 15:00:46 2026 GMT
Subject: CN=41f3085839fac7522d6c13df261880d2c7537945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:53:95:0b:d7:ff:8a:f7:fb:26:1f:ca:6b:da:
1a:ff:92:a2:3f:6d:a4:6f:53:8e:75:da:43:51:f9:
66:20:e8:72:ae:1f:44:a0:19:d5:dc:0b:71:52:d4:
29:3a:28:f7:20:e5:6e:94:11:c9:da:0a:52:66:65:
fc:d6:f1:eb:36:5b:a4:1e:d3:b2:dd:25:c3:76:94:
67:4c:6e:7c:56:48:ca:bb:e8:f2:74:6f:c8:98:9f:
96:a6:39:63:0e:2f:22:f6:79:45:d7:09:9c:e2:e0:
f2:c1:27:dc:84:eb:5e:23:fb:7c:da:a9:4d:22:d8:
9e:ac:d7:6b:05:e6:62:8d:1c:a7:ea:99:9d:87:a2:
9a:03:f6:9d:ba:2c:c7:c3:77:99:90:00:0c:b9:fd:
58:09:b3:8d:29:63:ec:6a:d2:6b:d0:7a:06:f6:83:
43:93:2a:54:f8:29:89:ee:c0:6e:e4:3d:80:bd:38:
f6:ed:61:6d:5c:47:40:b7:26:07:ba:80:fa:b4:45:
eb:a9:81:08:1d:b4:18:37:fb:0b:0c:eb:86:cd:67:
6c:af:97:2e:b7:f3:a9:cb:06:bd:99:dc:0d:9a:2b:
51:36:4b:03:29:db:04:d8:6e:86:c1:45:59:92:37:
13:41:ae:ff:f2:b0:5b:2f:12:8a:bc:00:3a:ee:93:
26:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:F3:08:58:39:FA:C7:52:2D:6C:13:DF:26:18:80:D2:C7:53:79:45
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:d0:08:c4:13:d2:67:28:ae:4a:5e:e6:0e:43:c3:ca:74:33:
de:ff:37:d9:86:4d:c8:c7:f7:e9:f4:c4:be:95:08:b4:d8:50:
60:02:83:74:0f:bf:59:3f:be:02:28:e1:0e:5e:0a:17:27:a2:
58:54:0b:55:c8:60:89:7b:c1:14:3a:fe:2b:43:17:18:af:7d:
7c:c9:d3:8a:11:0d:5c:b6:17:13:e1:ee:b9:4e:1c:62:88:cd:
77:1a:dc:d7:c2:5f:c0:75:2e:d3:84:9c:0c:ac:b9:90:47:34:
a0:46:46:4c:29:6a:c1:3a:4c:ad:3b:9d:9b:5e:b8:8f:52:c4:
44:d7:51:59:d0:5e:97:44:a8:09:fe:3f:3b:1d:e5:e9:5e:4a:
1b:2b:47:42:55:bb:f6:c8:87:d0:fc:13:15:d0:d4:72:21:0a:
b7:44:25:d5:64:1d:2e:fc:e7:11:ff:02:68:77:02:51:37:50:
d6:91:a4:ba:41:1f:aa:ee:b8:e1:61:b2:0d:fd:02:6f:f2:e1:
6a:e7:c4:2b:73:f1:69:bf:69:de:9d:bb:29:1a:67:7a:b3:16:
18:cd:1b:ad:b2:f4:31:f7:4b:06:b3:1b:37:ea:e1:7e:e0:da:
b2:a9:c4:e6:2c:86:c0:54:cd:67:b1:00:54:6c:28:8c:f7:1c:
93:b9:65:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:56:35 2026 by rpki-client