Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: 9tv4WMabY04dE6wS4/FPJgTv136F888Ru/pHEd1WRmE=
Subject key identifier: B4:EA:59:2A:DF:53:9E:36:A6:67:00:66:83:50:BF:3B:D8:BF:E2:F0
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 019E3005426D12EE542DD13DCDB62AD1FB17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 05BE
Signing time: Sat 16 May 2026 09:01:51 +0000
Manifest this update: Sat 16 May 2026 09:01:51 +0000
Manifest next update: Sun 17 May 2026 09:01:51 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: zYyENH6tFD6w2QugT5vHVdE6Ig0h89AVKR3alHae5pk=)
2: 4vjv7ETAasx0tRKIpHxecSePkHs.roa (hash: 2AsMwZr9rbOc2Qfm0AhPalnC6K6xXB1YyB0oF7P/lrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:42:6d:12:ee:54:2d:d1:3d:cd:b6:2a:d1:fb:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: May 16 09:01:51 2026 GMT
Not After : May 17 09:01:51 2026 GMT
Subject: CN=b4ea592adf539e36a66700668350bf3bd8bfe2f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cb:8f:dd:a7:c8:8a:4e:15:94:b0:81:52:56:
dc:10:bb:99:d4:63:2b:ab:93:3e:7c:e7:09:6c:dc:
88:7e:eb:b0:6f:1e:64:2e:9d:3c:18:b0:89:8c:e6:
3b:28:f7:aa:e4:c1:b7:67:5e:8f:7b:5b:74:3b:96:
76:79:11:45:46:4a:52:96:7f:40:12:1d:fa:2b:36:
7b:c6:06:78:ba:a2:88:93:48:81:a9:ba:72:7e:4d:
a6:ee:96:d7:ec:02:c5:35:49:5f:a3:30:62:4f:1f:
02:d9:08:b6:b3:52:9b:10:e4:43:a2:22:6a:b9:80:
8c:6f:f9:c8:8b:1e:15:35:4f:28:4b:4b:60:ed:87:
02:03:0a:78:60:3c:1b:6e:c8:97:c0:60:8e:a9:98:
cc:2f:84:97:89:83:e6:3f:a4:ac:4a:da:1f:5b:c4:
17:f4:ca:b1:51:12:ee:c2:60:b3:e5:73:1e:2c:0c:
99:b1:96:82:ee:c7:4e:f4:6c:1d:a1:41:6c:30:3f:
2e:d4:79:f4:0b:5a:d0:d7:f1:ed:23:0c:41:e1:c2:
28:28:0b:7c:84:10:f6:13:98:ab:cd:15:15:b3:1b:
b9:8c:74:a4:aa:91:3b:72:87:96:98:1d:b3:76:bb:
17:52:32:88:64:9e:0f:12:a5:2f:88:a7:66:a3:97:
54:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:EA:59:2A:DF:53:9E:36:A6:67:00:66:83:50:BF:3B:D8:BF:E2:F0
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:05:4f:ae:0a:cb:0c:e6:75:20:e3:db:ad:8d:23:bb:04:bc:
a7:85:27:db:b7:c0:f1:25:8f:27:78:3b:5f:06:85:6e:76:46:
e1:5a:79:38:89:f8:00:04:86:e6:ce:1b:9d:07:ef:69:a4:0a:
f5:14:73:f6:f1:85:c7:6c:ee:c1:62:fd:79:d2:b5:7f:e9:21:
63:b3:15:72:89:bd:d8:d0:e1:12:ed:3f:45:97:1a:0f:b7:96:
77:f8:78:2d:19:ba:80:27:84:05:e4:3a:d9:4c:95:fc:9e:cc:
1a:35:74:08:39:12:9f:6e:cd:59:50:67:d5:66:02:03:b3:d7:
9f:60:a7:55:56:df:d0:c9:78:2c:a5:b8:c0:b5:c6:23:4f:0b:
81:73:05:3b:03:43:67:7c:a5:bb:b4:6d:24:ae:0d:3c:b6:8a:
d5:4f:53:9f:9b:65:d9:f6:51:07:ee:67:4e:54:c8:4d:9e:e7:
05:e4:03:9b:de:7a:8c:f7:4b:42:5b:8f:6d:58:e4:78:45:e8:
d7:4d:10:b9:56:fc:43:b8:2a:ad:74:e7:8f:09:5d:1c:07:7e:
ff:9b:4a:ac:6d:9d:7d:5d:20:bf:26:0c:e8:3a:39:df:55:3e:
d7:9d:fa:4e:19:23:88:65:eb:58:d1:f4:ca:da:c6:87:10:ea:
72:c9:0a:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:39:41 2026 by rpki-client