Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: l04F5W34aj02HkHaigTw6V2b7Jv4Ci8WqvIPqKOu7vE=
Subject key identifier: 22:88:A9:79:DD:38:91:6D:71:1C:2A:1E:E9:B3:35:C2:AE:D1:F0:29
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 019F18678160223C2B03799AFB8B18F1720A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 0EE0
Signing time: Tue 30 Jun 2026 12:01:04 +0000
Manifest this update: Tue 30 Jun 2026 12:01:04 +0000
Manifest next update: Wed 01 Jul 2026 12:01:04 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: ovV/z6OOFVHf0Rw8rlvwao39XrXuDxfaD73BJnhhfzs=)
2: 55I-KJfDZCQf3-WIzaOmHLDw0UA.roa (hash: CHL8cZMB7OLAW5NGioo9AKdHll+9RPJn2SB7b3DCiOk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:81:60:22:3c:2b:03:79:9a:fb:8b:18:f1:72:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: Jun 30 12:01:04 2026 GMT
Not After : Jul 1 12:01:04 2026 GMT
Subject: CN=2288a979dd38916d711c2a1ee9b335c2aed1f029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b7:b9:43:74:44:2c:4e:1a:b9:50:75:81:bf:
00:36:80:33:34:b9:02:40:98:a5:02:3f:c4:bd:9e:
b9:89:b7:7a:b9:20:c4:f8:60:cb:b2:ec:2d:b7:56:
f0:d3:ae:6f:53:b2:f9:c4:61:ed:a2:e5:50:e1:c2:
10:4d:ac:64:1c:6e:23:1c:8c:c8:29:85:00:ab:09:
1d:0f:c8:de:9a:e7:44:c3:0e:b1:b6:49:71:e9:1e:
41:3e:76:be:18:da:93:66:bf:1f:0d:8a:88:c7:bf:
a5:23:97:d8:84:d7:28:cb:33:d1:5e:d0:88:a5:c2:
fd:0c:ef:b9:43:40:9b:37:62:03:72:cc:c8:5e:46:
97:f8:37:1d:f2:8e:21:22:32:be:bc:90:ad:cc:7a:
00:d6:31:ad:28:9e:3d:df:22:82:d4:7f:a8:4c:e9:
79:bd:24:c8:71:5b:22:60:46:f7:02:40:ef:d7:3f:
cc:1b:cc:90:cb:b7:a9:26:c6:3b:e4:b4:e5:f4:ea:
da:05:53:88:d7:94:90:2d:b4:d4:78:68:10:a7:5c:
fe:4a:aa:a7:da:58:a1:c9:da:13:90:c5:11:bd:48:
66:fc:f1:94:0a:e2:38:bb:f8:70:b2:c9:d4:a5:f5:
fd:39:95:4d:31:e4:4a:00:5c:ac:2c:78:ab:1a:7b:
a1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:88:A9:79:DD:38:91:6D:71:1C:2A:1E:E9:B3:35:C2:AE:D1:F0:29
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:d2:eb:17:bb:e6:d7:4e:da:46:51:6e:d6:dd:2a:14:11:98:
f2:4f:26:37:87:a6:97:a5:c0:91:63:2e:07:d6:dd:f5:a2:b9:
c7:d8:ff:e1:3d:11:ce:a3:b9:25:4b:2b:bc:d3:21:c7:54:27:
97:76:29:62:45:6a:bf:e2:45:aa:4d:03:72:71:3c:07:58:64:
2a:c3:54:c8:ce:07:4a:99:f7:9f:20:fb:61:ed:da:d9:db:18:
d2:6b:8c:0a:82:b8:49:3e:3f:3a:77:bf:32:9b:34:6b:9e:89:
d9:cd:27:2c:cb:e1:2a:86:8a:2c:0c:5d:65:51:16:2e:d4:a9:
99:49:11:98:23:38:e4:ba:5f:9c:e2:76:d7:62:f3:6c:9d:17:
29:f3:19:b9:58:d6:c9:ff:a1:15:77:8d:8e:6a:83:8a:c2:51:
85:48:51:b4:59:bd:f3:3d:71:ad:41:34:8c:79:30:38:8b:c6:
66:31:d9:08:b9:23:da:af:d5:a9:07:90:2a:f6:d1:57:31:0b:
98:ec:6a:88:00:4e:c6:99:87:7e:9b:72:51:79:c5:00:44:55:
89:67:bc:8e:c0:81:b9:b4:c6:fb:b2:8c:93:7a:3f:ee:62:e5:
1e:1f:49:5a:43:b3:4d:27:f1:85:2f:b9:da:af:8f:e4:5a:96:
b6:f9:4b:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:22 2026 by rpki-client