Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
File: 2PuW6jr1HFMtfo_oyUN29R4epAI.mft (raw, json)
Hash identifier: fn42QlNVZ7sGeIwHMGyXWGAWe2BxQY1idomu4vwAQf4=
Subject key identifier: A0:A9:55:A9:1C:A0:9A:75:41:39:A1:C8:79:25:C1:83:7D:FC:27:C2
Authority key identifier: D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
Certificate issuer: /CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Certificate serial: 019F178C45C38609B03A3855CBE769DE27E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
Manifest number: 17AC
Signing time: Tue 30 Jun 2026 08:01:36 +0000
Manifest this update: Tue 30 Jun 2026 08:01:36 +0000
Manifest next update: Wed 01 Jul 2026 08:01:36 +0000
Files and hashes: 1: 2PuW6jr1HFMtfo_oyUN29R4epAI.crl (hash: RtwypKktHA6NGwzUvKKZsZ0rZt8Z1gk93BnZzc6NlBE=)
2: JKIhvk4nR2Yatg3LSMzcvAB5gDY.roa (hash: Wu8o0XpgB80LZ5YT5dratdi0qOmv7LG2bN4vwgSeFRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 08:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:8c:45:c3:86:09:b0:3a:38:55:cb:e7:69:de:27:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Validity
Not Before: Jun 30 08:01:36 2026 GMT
Not After : Jul 1 08:01:36 2026 GMT
Subject: CN=a0a955a91ca09a754139a1c87925c1837dfc27c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:20:90:bc:1e:62:a8:18:41:e2:26:1a:41:4d:
23:d8:d7:38:e8:fd:86:46:c0:29:71:c3:70:04:d0:
20:02:1a:0f:86:61:32:fc:bd:ee:0e:1d:9d:11:e1:
42:98:df:fc:42:e9:74:33:db:41:0b:b5:b9:b3:b4:
6e:0d:a0:9a:29:37:65:9a:fc:88:21:ec:c4:bc:76:
c3:b8:d2:eb:58:4d:51:b8:07:e3:d9:35:b3:e1:ba:
2a:7f:98:99:87:5c:43:44:2c:7d:0a:b7:b6:fd:69:
09:b4:39:51:19:b6:98:0a:35:bf:4d:98:aa:51:67:
df:e1:d2:c6:17:ad:3a:84:c1:64:d8:cd:a1:1f:30:
66:e5:af:3a:5a:23:52:7c:bf:8a:a1:67:c0:d8:d0:
b4:9c:17:41:5a:6e:ef:67:88:b6:d7:3e:55:14:b0:
b5:65:ff:b5:5b:25:bc:de:2a:d0:ea:df:6f:9b:37:
e2:5a:f7:44:e7:7d:89:25:86:24:5d:ee:ff:34:fd:
0f:91:30:57:57:e1:af:33:b2:c3:3d:0e:dd:24:11:
18:b4:4b:8a:b1:7a:ca:fa:22:d2:8e:23:a1:aa:bd:
8e:f1:39:81:07:b4:06:da:a1:97:44:c0:7d:d7:f0:
dc:e2:02:9c:bb:45:9e:09:1d:16:23:66:98:55:fc:
3b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A9:55:A9:1C:A0:9A:75:41:39:A1:C8:79:25:C1:83:7D:FC:27:C2
X509v3 Authority Key Identifier:
keyid:D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:1d:f4:bc:ee:61:a7:5f:4e:99:f2:01:d6:4e:00:19:02:a7:
41:50:49:59:23:a7:d8:ba:53:49:e3:73:96:a8:4b:64:e7:d2:
f4:ee:23:4e:6e:6e:1b:56:bf:1c:64:c4:2e:5a:31:7c:c1:a2:
32:b7:1d:b4:cb:c5:90:04:3e:28:1b:d0:26:9b:25:01:8d:ed:
0f:4d:3e:b8:88:f9:f5:b5:55:70:eb:13:57:60:24:1b:08:e9:
40:53:c9:cc:71:02:f1:84:36:a1:c4:84:e3:cd:ae:da:95:e8:
74:93:57:95:63:5d:c8:22:ca:38:53:51:51:bf:ae:86:61:c9:
38:07:de:63:a4:04:7d:47:7c:05:dd:40:78:31:09:27:a9:b1:
09:b0:ad:d2:03:55:11:8e:dd:af:26:07:53:b0:a4:6b:a2:b6:
d2:1a:5e:50:8e:2e:0c:0b:87:bf:04:e9:19:14:39:78:67:4c:
fd:f6:34:4d:1f:bc:b2:6b:ae:1f:c7:2e:f4:f8:7f:1a:6a:ea:
13:76:64:a9:73:75:ec:3f:01:23:77:04:c8:74:4b:63:bb:df:
19:c8:a0:76:31:bf:c6:78:db:c2:91:a7:59:3c:95:8d:29:6a:
7d:74:1f:4e:84:69:c6:82:0e:58:99:9a:b0:41:7a:be:53:95:
1c:51:b2:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:23:13 2026 by rpki-client