Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
File: 2f-H9S43t2bsv0s_nLJlWN0wiCA.mft (raw, json)
Hash identifier: oDAQADMNeErm1zXEBljKvFK3Es9Qx30w6bmuiCgqWAQ=
Subject key identifier: E2:A7:0B:59:46:B3:5A:B0:FA:74:BC:93:01:7D:19:A3:5C:C3:C1:61
Authority key identifier: D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
Certificate issuer: /CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Certificate serial: 019E303B5B702306DB8FC2768531673EA2B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
Manifest number: 0EDE
Signing time: Sat 16 May 2026 10:00:56 +0000
Manifest this update: Sat 16 May 2026 10:00:56 +0000
Manifest next update: Sun 17 May 2026 10:00:56 +0000
Files and hashes: 1: 2f-H9S43t2bsv0s_nLJlWN0wiCA.crl (hash: oWDI/4z3svaS4JuqWVHdp4MCQf1E4xIdGljiJ8vEsMc=)
2: 4FYy4IVc0E0edu7Aspaqd269s3k.roa (hash: AewBAICqPk/AoyYo2Nui0QpeK5+BqYlSJNp/7pYYLxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:5b:70:23:06:db:8f:c2:76:85:31:67:3e:a2:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Validity
Not Before: May 16 10:00:56 2026 GMT
Not After : May 17 10:00:56 2026 GMT
Subject: CN=e2a70b5946b35ab0fa74bc93017d19a35cc3c161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cb:81:a4:21:36:2d:ce:49:ee:de:5f:6d:78:
82:bf:cc:ca:cb:f1:de:bd:17:96:20:13:64:07:4e:
29:99:a1:5c:b1:9c:bc:3c:a4:85:92:e8:2b:be:70:
62:46:e9:f5:80:0e:d1:3b:ef:58:57:cd:03:9b:e8:
4f:80:5e:4f:5a:aa:a4:b9:f6:ec:4a:2e:c4:db:d3:
68:56:12:1d:74:e2:1f:05:91:c6:3b:73:4a:41:d6:
14:06:ac:25:e9:ae:ea:8c:31:1e:36:e4:fc:06:af:
98:66:e4:c4:a6:89:8d:f7:03:1f:5d:92:14:ec:16:
d4:e9:8f:d2:58:6a:30:1a:52:bb:ef:63:f4:f6:9e:
09:79:5d:2d:af:2a:86:5f:c7:cf:1e:c3:f4:07:df:
2e:6c:45:a7:57:91:e9:8f:2e:06:db:af:dc:f4:40:
76:a8:fd:7b:70:51:a4:3d:50:39:37:ca:e3:d7:cd:
d6:6d:ed:24:dd:80:74:c1:06:43:a0:b4:0b:b2:48:
d0:ab:a5:28:55:64:be:59:af:9a:23:f0:2e:02:e6:
fe:b6:93:63:12:c1:d7:3b:fa:71:cf:92:09:80:fc:
88:fe:a1:fe:7e:68:22:c2:1c:e6:a8:d7:f2:b2:4d:
6e:1d:d0:f0:20:f7:c6:a9:c7:9f:94:2d:a3:70:bd:
d0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A7:0B:59:46:B3:5A:B0:FA:74:BC:93:01:7D:19:A3:5C:C3:C1:61
X509v3 Authority Key Identifier:
keyid:D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:a1:e1:9f:e4:83:4e:48:7d:fc:8a:9f:82:fd:16:07:d6:3d:
18:16:67:ea:49:4c:1a:ed:7c:d4:14:b0:ed:f1:26:e3:28:73:
cd:1a:a6:ff:75:00:d1:df:fd:33:86:82:ed:1f:21:ea:6c:e7:
56:2b:9f:da:c7:43:23:ea:22:72:aa:df:bb:fe:e8:f7:ad:5c:
11:af:12:7b:88:05:97:36:b0:a1:c6:c3:49:99:18:69:41:9b:
b3:17:f2:12:ac:a4:2a:c6:a5:66:92:40:28:78:f5:83:a1:0b:
a0:19:a7:43:74:3b:e8:c0:f3:c1:a0:09:a3:8a:d9:9d:42:80:
04:58:f8:0a:37:4d:db:b0:74:a3:00:5c:00:67:74:45:3f:e6:
39:bf:aa:41:42:fa:de:ab:47:1b:da:1a:a9:89:a4:38:11:51:
75:b1:32:d4:f5:d3:13:65:61:30:2a:68:3d:59:84:b0:c7:66:
95:e8:1c:19:78:c2:ff:28:02:7f:83:48:0f:13:4c:21:20:d9:
e9:7d:5b:3d:99:20:3c:c8:e6:a8:75:f0:72:14:62:a9:78:5d:
13:07:06:e4:23:73:c3:77:88:6e:69:2f:0c:72:9a:d4:49:0c:
1e:73:8b:cc:d5:d4:a1:88:bd:00:ce:22:3e:03:85:aa:f9:29:
57:22:e9:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:11 2026 by rpki-client