Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
File: 2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft (raw, json)
Hash identifier: xSCGo/qICNlI7cysxV+JUPCFkIO7/e0aGQPmJ36i6NA=
Subject key identifier: A2:C5:A1:46:E0:40:D0:0A:07:62:ED:3B:9E:D5:7D:E1:58:81:9A:56
Authority key identifier: DA:02:4B:9C:63:DB:5C:1A:1C:F4:C5:58:1D:BE:5B:38:1C:B9:50:87
Certificate issuer: /CN=da024b9c63db5c1a1cf4c5581dbe5b381cb95087
Certificate serial: 019E3004D2AFC6DD8047E06D34B4DDF63048
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
Manifest number: 190F
Signing time: Sat 16 May 2026 09:01:22 +0000
Manifest this update: Sat 16 May 2026 09:01:22 +0000
Manifest next update: Sun 17 May 2026 09:01:22 +0000
Files and hashes: 1: 0HK9dF4eWzljAyAebYpaTc8u8tY.roa (hash: I0vU4WfKD7pZCsPBLobl6jL+dlt/Fg81XoZQCKBBTX8=)
2: 2gJLnGPbXBoc9MVYHb5bOBy5UIc.crl (hash: 540HS2XICrq/m6p8g5FoqaZfhc5mGCac1nGM2tanMMY=)
3: k9UuQfoQ3x1App0ZI_fz4inm010.roa (hash: 4EB2k7R0veJnPJDrivb11s4A8xWwFMnfL1uLGRvezwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:04:d2:af:c6:dd:80:47:e0:6d:34:b4:dd:f6:30:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da024b9c63db5c1a1cf4c5581dbe5b381cb95087
Validity
Not Before: May 16 09:01:22 2026 GMT
Not After : May 17 09:01:22 2026 GMT
Subject: CN=a2c5a146e040d00a0762ed3b9ed57de158819a56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d0:ad:e4:16:32:cf:06:00:f0:b4:46:8e:a5:
6a:40:3a:1b:bf:14:e7:4e:42:6a:21:65:a5:13:1f:
89:c5:95:77:9c:a1:d2:c4:00:71:98:a7:c9:6c:d4:
06:82:51:eb:f5:7d:69:c2:e4:7e:f9:d8:e2:8f:f8:
17:88:af:88:96:8f:84:74:4f:1c:6e:fc:f9:24:7b:
d9:e1:2b:e2:f5:57:9e:91:f2:24:e6:9a:3d:76:02:
00:83:ed:d9:7b:fd:0f:24:5c:cc:a2:2e:90:2d:0b:
a3:f2:da:40:23:2f:7b:6e:af:40:99:f3:40:b7:f4:
c5:e8:13:79:9f:53:bf:10:d4:e3:dd:da:65:9d:33:
90:4e:de:68:02:20:02:f0:71:9a:56:06:f3:f7:74:
4b:08:9b:f3:3f:65:53:1d:e6:a1:45:83:3f:a4:9c:
2f:00:24:a3:88:c2:3b:af:c7:a4:aa:00:c0:3e:53:
a0:d7:50:df:36:18:39:36:99:d9:6e:e0:ff:7b:6b:
93:4a:7b:fd:91:f3:eb:d8:2f:a2:23:d3:12:ee:a0:
4e:d7:97:81:ee:4d:d2:b2:be:5a:c6:87:75:cc:ad:
a1:ec:7f:47:b4:d7:54:ab:0d:40:9e:85:7c:a4:9d:
89:74:7f:83:cc:d4:a7:63:3e:b2:ec:76:1f:2f:98:
ec:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:C5:A1:46:E0:40:D0:0A:07:62:ED:3B:9E:D5:7D:E1:58:81:9A:56
X509v3 Authority Key Identifier:
keyid:DA:02:4B:9C:63:DB:5C:1A:1C:F4:C5:58:1D:BE:5B:38:1C:B9:50:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:6f:09:7b:30:7d:2d:40:af:cb:6e:49:89:51:06:f3:2a:bf:
0e:39:1e:cd:9e:f2:bd:e0:21:63:63:b0:c9:6f:4f:b8:a7:1f:
09:0f:c4:7c:00:e6:33:c3:e4:74:16:32:79:8a:f4:f3:05:37:
25:7e:8f:b4:fb:eb:22:f8:1f:cc:17:0e:78:98:23:08:d5:c0:
22:e8:3a:67:53:c7:d6:5b:46:cc:b3:d8:9b:9b:2d:7e:cc:ae:
6f:d7:53:95:fc:af:42:7a:79:02:f6:a2:23:89:6e:f1:d8:91:
b6:a7:77:a4:18:d6:3f:9e:b1:7e:32:74:41:70:6a:a4:a2:93:
05:c2:83:a4:50:cd:be:9b:12:3b:b0:67:89:79:79:90:54:a7:
d6:cd:61:ea:a9:ad:2f:ee:a3:cf:22:de:6a:05:c3:90:04:5e:
ff:d2:9b:90:75:18:aa:cb:79:45:af:d2:15:9a:b8:cb:21:5b:
c0:b7:02:ae:93:47:c0:43:7e:23:ba:ba:73:33:ed:49:d1:0d:
b6:c6:f0:05:8b:aa:78:fc:4f:19:65:3a:e3:c3:a7:fd:f1:41:
af:87:7c:19:9e:80:44:7e:b5:7c:b9:d4:4d:4e:4f:3f:21:dd:
25:d5:e9:d6:fe:85:ac:85:58:13:34:00:e8:47:ac:c4:61:96:
84:f2:67:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:12:12 2026 by rpki-client