Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
File: 2xTnpr6Xzsb1vBpninbqbRYZwwY.mft (raw, json)
Hash identifier: vFkWCABdFLACuI9LTuInBJfeY+C3zTwGbHplTMMcuYk=
Subject key identifier: CD:7D:B1:F6:2D:0C:C8:06:DA:9B:99:2C:05:67:F1:8D:C2:38:F4:E2
Authority key identifier: DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
Certificate issuer: /CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Certificate serial: 019E307221DF20AA60D9F1D9AFF27106A36D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
Manifest number: 16D3
Signing time: Sat 16 May 2026 11:00:46 +0000
Manifest this update: Sat 16 May 2026 11:00:46 +0000
Manifest next update: Sun 17 May 2026 11:00:46 +0000
Files and hashes: 1: 2xTnpr6Xzsb1vBpninbqbRYZwwY.crl (hash: b9DPoIhkpqPaMi7XDrSL7qjzFbq44zPIe5kyDih5lsc=)
2: hJR5NdWu4-Lv4WFC0Lu_BxFdjI8.roa (hash: N6VCG9vXtUWHshJ3njO134sBkm0kEo7esti0M/kqZCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:21:df:20:aa:60:d9:f1:d9:af:f2:71:06:a3:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Validity
Not Before: May 16 11:00:46 2026 GMT
Not After : May 17 11:00:46 2026 GMT
Subject: CN=cd7db1f62d0cc806da9b992c0567f18dc238f4e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:53:da:36:f4:6c:e1:f3:6a:70:77:28:9a:54:
db:66:8c:68:79:4c:8e:ce:f3:0b:a7:8c:18:13:65:
94:69:ce:54:73:ef:d6:37:3d:2d:2e:7c:eb:b0:a8:
ed:37:2a:a6:c7:3e:42:ed:44:f3:81:6f:b1:3e:5e:
60:d6:67:16:af:fe:c5:37:c3:42:08:f7:9a:19:41:
60:df:11:24:69:8f:79:74:d5:8d:7c:de:ae:ec:8a:
a0:ea:a4:56:34:33:5e:b1:88:d8:04:05:9e:cd:f1:
05:da:55:71:9a:93:78:2e:97:ba:11:b8:af:b8:b3:
dd:22:7d:84:f1:75:14:41:ff:95:b0:5d:3e:ab:ba:
86:b8:50:86:63:d3:1d:3d:4e:e4:ff:d5:a2:66:8e:
d4:1f:19:e7:5c:93:2b:5b:9a:db:db:b5:fa:5d:d5:
70:d5:f6:5f:a3:f7:e0:87:75:58:c7:8e:a3:92:d6:
12:ef:55:2a:7d:e6:cd:51:75:11:d7:f1:24:e3:22:
e0:ae:7c:a8:ef:57:48:a2:f6:d2:60:f5:38:c9:c2:
e7:9a:58:3c:64:27:21:b6:d8:a3:5c:99:73:1f:a0:
45:b7:0c:28:35:f0:48:08:76:d1:26:c6:3b:20:e0:
a6:57:a6:81:0a:8c:04:65:43:c0:9d:46:6b:87:00:
64:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:7D:B1:F6:2D:0C:C8:06:DA:9B:99:2C:05:67:F1:8D:C2:38:F4:E2
X509v3 Authority Key Identifier:
keyid:DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:e8:53:9c:fe:48:ad:9b:b0:a1:ab:16:ca:e4:51:0e:0b:58:
c3:2e:15:44:f4:66:46:40:3d:fe:61:a5:41:72:6a:85:bd:cc:
13:55:72:46:70:9e:d1:fd:8e:e6:7c:7f:52:8a:63:c3:5d:66:
45:91:d3:a3:a3:2e:25:ad:d3:3c:fa:32:86:da:ae:f0:cc:f8:
c3:e0:3e:97:ce:4f:bc:0f:69:c3:53:e4:0d:cd:38:5b:3b:e2:
ae:18:16:b3:37:3a:5a:c2:a8:cc:7e:aa:8d:d7:8c:3f:33:3b:
b3:67:92:3c:30:1c:da:75:41:b5:85:fa:3f:60:40:da:92:a6:
3c:55:87:d3:46:bf:97:2a:d7:79:d1:d6:e1:c3:19:26:94:ae:
14:77:bf:eb:6a:e9:c3:0c:af:80:69:4e:04:67:d8:82:31:ea:
d2:50:63:c1:b9:4a:16:39:ac:df:8a:6e:45:d4:48:ec:64:e6:
ca:21:f4:2f:91:b9:12:1e:f5:03:fb:fe:fb:0a:de:f0:8f:d5:
a3:70:0e:c4:84:41:1e:a0:34:1b:ad:d1:d6:c6:d2:62:d5:22:
e9:ab:da:b9:c4:df:2b:2f:f0:92:31:79:f1:2d:64:49:bb:36:
9c:40:3e:27:13:1a:9d:e4:cb:f9:8f:96:0f:6b:e4:73:35:6a:
72:26:da:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:25:44 2026 by rpki-client