Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
File: 2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft (raw, json)
Hash identifier: QbIEPh+TOSkAAgnaqeg/l8B2JWFAb8wLhZGl+skErJg=
Subject key identifier: 0A:58:65:3C:AF:FF:47:24:7C:65:8B:50:00:A1:19:FA:3B:47:17:1E
Authority key identifier: DA:02:4B:9C:63:DB:5C:1A:1C:F4:C5:58:1D:BE:5B:38:1C:B9:50:87
Certificate issuer: /CN=da024b9c63db5c1a1cf4c5581dbe5b381cb95087
Certificate serial: 019F17C27BD0DC11D9B53C0F39327E086142
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
Manifest number: 1987
Signing time: Tue 30 Jun 2026 09:00:49 +0000
Manifest this update: Tue 30 Jun 2026 09:00:49 +0000
Manifest next update: Wed 01 Jul 2026 09:00:49 +0000
Files and hashes: 1: 0HK9dF4eWzljAyAebYpaTc8u8tY.roa (hash: I0vU4WfKD7pZCsPBLobl6jL+dlt/Fg81XoZQCKBBTX8=)
2: 2gJLnGPbXBoc9MVYHb5bOBy5UIc.crl (hash: 8Mhwi5ZxBhQvGDy2ADq2QRS3IudkRXp+X7bN1bM0RgM=)
3: k9UuQfoQ3x1App0ZI_fz4inm010.roa (hash: 4EB2k7R0veJnPJDrivb11s4A8xWwFMnfL1uLGRvezwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c2:7b:d0:dc:11:d9:b5:3c:0f:39:32:7e:08:61:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da024b9c63db5c1a1cf4c5581dbe5b381cb95087
Validity
Not Before: Jun 30 09:00:49 2026 GMT
Not After : Jul 1 09:00:49 2026 GMT
Subject: CN=0a58653cafff47247c658b5000a119fa3b47171e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c3:88:e5:62:7c:82:91:ff:95:a2:fd:5b:57:
17:44:a8:8b:c4:7c:51:51:8a:9c:4b:32:00:5e:c7:
86:e0:ef:86:95:c7:a9:a4:76:93:b4:58:ac:89:57:
a5:72:00:1a:48:df:48:d2:2a:0f:19:2a:e6:9a:55:
73:61:e4:73:87:60:f5:7f:0b:e5:83:68:c0:2a:8f:
9b:cf:f1:de:0a:a5:fd:31:38:85:8b:2c:92:a1:f9:
99:3e:1f:92:f7:c2:44:59:cf:0e:1b:21:4e:71:d5:
f1:c3:b0:23:44:27:19:b8:6f:93:c9:30:99:2a:06:
ab:0c:f8:b0:b3:10:06:8d:55:78:16:90:5e:3f:c9:
ba:6d:92:ea:5d:47:dc:9b:8f:f1:d5:f7:7c:f8:1d:
3e:b4:ba:fc:c4:a3:63:27:88:aa:96:45:c9:cc:af:
1f:5c:23:08:50:1b:89:c2:80:4c:b7:a7:45:f4:02:
27:8f:39:fe:6d:fa:d9:7d:75:8f:07:52:e6:90:52:
02:26:72:04:ef:e9:15:aa:7e:36:fa:fc:4d:78:fe:
f2:da:fb:d5:da:0b:9c:4e:33:ea:05:ae:85:99:e7:
6c:37:e6:91:9b:52:d6:e8:8f:6d:54:fb:75:fd:58:
b8:33:8f:f1:43:23:1b:c9:c9:be:e1:09:8c:10:f5:
d7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:58:65:3C:AF:FF:47:24:7C:65:8B:50:00:A1:19:FA:3B:47:17:1E
X509v3 Authority Key Identifier:
keyid:DA:02:4B:9C:63:DB:5C:1A:1C:F4:C5:58:1D:BE:5B:38:1C:B9:50:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:ae:60:22:8e:f8:2c:4c:ad:1e:ba:51:32:14:cd:c8:6a:0a:
95:5b:90:ef:0b:84:6b:5b:82:b9:6d:ab:10:27:b2:cc:05:44:
01:6f:52:d6:8e:e8:c1:be:81:48:f9:91:c9:6f:03:93:41:48:
2c:21:16:dd:bf:be:92:b7:fb:60:50:b7:ee:19:79:b7:47:16:
f9:84:32:b1:59:71:f3:65:62:d4:4f:a4:62:d4:4e:69:b0:0f:
6e:ec:d9:0c:fc:bf:29:47:5b:af:9c:16:c1:9a:c8:4e:7a:e7:
cc:f6:a6:0b:2d:40:bb:af:a0:4d:b6:1c:1a:b7:9f:5f:9b:e2:
39:6a:7c:8e:b3:52:2f:8c:a4:dc:b4:77:ef:b5:0e:86:b3:49:
70:3a:1a:1f:24:df:6e:d4:b5:82:d3:42:f1:56:4d:c4:ea:f6:
b1:83:df:6b:c2:80:f0:63:ed:81:0e:b1:15:fe:cf:75:70:ba:
70:63:d9:87:f0:de:38:a2:07:9a:1d:b2:13:d6:76:a4:c8:ac:
d3:4f:31:e7:15:6a:84:6a:ef:8b:63:60:ba:44:40:93:90:f2:
5c:24:9e:65:ce:bd:c4:14:5d:6b:58:69:fa:30:f6:d5:63:0f:
ab:e3:47:50:30:e7:5e:7c:81:63:30:b5:c0:1c:bd:60:58:40:
e9:e4:11:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:19:18 2026 by rpki-client