Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: dBXNWnOkUdx2S7LPgCO60G9g9ZXKO+L3H5iR0uyuYcM=
Subject key identifier: 9F:03:88:EB:F8:D6:A7:55:5A:96:29:9D:C5:C4:9E:7D:3D:FF:8B:DD
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 019E30A97FE59AC37F68BDE87C773A25C852
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 0E68
Signing time: Sat 16 May 2026 12:01:15 +0000
Manifest this update: Sat 16 May 2026 12:01:15 +0000
Manifest next update: Sun 17 May 2026 12:01:15 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: FTRYU7HUXJWGwL2hmAh9lXZtF+LpEtQf1zwt4j1gfQE=)
2: 55I-KJfDZCQf3-WIzaOmHLDw0UA.roa (hash: CHL8cZMB7OLAW5NGioo9AKdHll+9RPJn2SB7b3DCiOk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:7f:e5:9a:c3:7f:68:bd:e8:7c:77:3a:25:c8:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: May 16 12:01:15 2026 GMT
Not After : May 17 12:01:15 2026 GMT
Subject: CN=9f0388ebf8d6a7555a96299dc5c49e7d3dff8bdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f9:5e:af:58:d7:19:43:93:6a:f8:6d:22:81:
63:9e:c6:d1:fb:6c:56:fd:b3:a8:22:bd:cb:f4:ca:
af:46:3a:d4:c3:8a:a8:64:bf:fd:cc:f6:a8:96:0f:
b9:c4:a1:eb:98:2c:c7:e2:bc:20:fa:e1:b3:5c:b6:
e6:ad:a0:0b:5e:21:3e:e8:fd:22:ad:3d:17:44:53:
9f:3a:97:76:13:57:5a:dc:8c:03:b0:73:a2:ee:eb:
44:2e:91:2b:a3:35:56:fa:66:a4:a9:28:92:8b:27:
cb:7f:cd:a6:92:54:86:29:0d:51:52:c8:76:c1:19:
df:f2:b4:e8:de:1f:94:5a:b3:2e:54:0d:bf:af:05:
de:91:12:d2:1b:76:22:64:4d:39:76:4d:90:b1:e2:
11:38:40:96:3b:52:d7:79:e2:2a:26:6f:e4:70:c8:
c0:9b:55:50:a1:8e:b6:cd:dc:93:30:4e:7c:e4:51:
92:fe:90:20:c4:c9:50:f4:71:55:4f:43:09:a7:20:
5d:1c:81:61:d4:9b:7b:1a:05:82:e7:b7:a0:d0:23:
0d:81:ea:38:01:06:cb:ae:03:48:b5:0e:22:85:f2:
b4:46:08:d5:64:70:be:26:fb:b7:a6:76:84:dc:58:
d3:a3:1a:36:85:b3:dd:17:43:9d:ef:a8:5c:31:b9:
85:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:03:88:EB:F8:D6:A7:55:5A:96:29:9D:C5:C4:9E:7D:3D:FF:8B:DD
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:4c:75:45:0b:bd:5a:47:d9:d4:81:b8:3a:4e:ec:77:02:57:
1e:6e:8d:b1:c3:4e:5c:4c:86:54:5c:db:f6:b6:d7:2c:96:09:
f3:ff:e5:5c:3b:3d:cb:a5:c2:7b:16:d0:7a:b3:14:59:9c:16:
d1:9f:bd:f3:f9:b6:62:eb:cc:87:10:f5:80:01:30:d6:79:8b:
c7:ce:d0:bd:90:23:04:f6:ea:b3:82:f3:aa:ae:ff:55:be:e8:
cf:eb:89:0e:c7:71:0b:0f:6f:5d:bc:41:8d:0b:7e:be:47:98:
97:35:a8:0b:94:f2:0b:30:6a:28:d4:d8:fd:52:4e:3d:53:f3:
ef:ad:75:de:07:ca:75:8f:9c:a5:83:f8:e4:d7:92:89:61:16:
3f:5a:28:a4:d9:c6:95:a5:2d:1d:3c:10:77:a8:c4:77:1d:6a:
c2:8e:6a:bf:b3:ad:67:54:d6:73:7f:45:66:6a:d9:47:d8:d0:
91:07:b1:55:f2:90:89:73:1f:e2:c3:12:fa:76:6f:3c:1b:0b:
84:e9:38:5b:ca:47:0b:ef:1e:65:3a:1a:86:a0:3f:d1:bb:f6:
58:7a:e0:de:19:f9:a2:26:70:ea:fc:67:0d:cf:0a:2e:fa:aa:
cc:af:d5:ed:3d:f5:e7:47:16:97:51:a3:b7:ba:99:36:4e:a3:
f5:1d:72:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:25:36 2026 by rpki-client