Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json)
Hash identifier: 0+nVk+EBwriAfR0a3yCFZhUVbN0LyFbl3Sbt22SdNjM=
Subject key identifier: 60:52:75:5C:86:E4:FD:62:77:C2:52:3D:3D:15:06:70:5C:3F:4C:C1
Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac
Certificate serial: 019DCD86C111E012F6AD6017A47BF87CF9A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
Manifest number: 0E76
Signing time: Mon 27 Apr 2026 06:00:53 +0000
Manifest this update: Mon 27 Apr 2026 06:00:53 +0000
Manifest next update: Tue 28 Apr 2026 06:00:53 +0000
Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: LHm+5+8ie+pqOyGDyvDvbbgX674CYCbIkNFowbDneno=)
2: uej861Aq66aiTbTh46AGK_JiRjQ.roa (hash: u2XmnqcYHbAJLSpNo2ks9hVCb6DlSKyd8Mczf2hO9GI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:86:c1:11:e0:12:f6:ad:60:17:a4:7b:f8:7c:f9:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac
Validity
Not Before: Apr 27 06:00:53 2026 GMT
Not After : Apr 28 06:00:53 2026 GMT
Subject: CN=6052755c86e4fd6277c2523d3d1506705c3f4cc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:62:f4:83:b8:ae:3b:bb:4a:99:4f:5e:d6:55:
25:52:a4:73:48:ad:43:a0:62:bc:d8:5d:36:38:dc:
92:95:70:d7:f1:e5:dc:9f:6a:f1:bc:88:de:39:ce:
f2:e2:84:56:fe:0d:ec:1b:5c:ad:86:60:0c:92:be:
b3:7d:ea:47:6c:1a:7d:1b:21:23:40:12:6e:0a:23:
05:73:c3:4b:df:5f:e8:cb:72:fb:33:7b:7a:56:74:
e0:65:4f:1b:b1:af:2a:ac:4b:e9:da:36:cd:de:7e:
a7:25:22:64:8f:2f:3d:2a:56:6d:fc:cb:52:66:f8:
cb:05:7d:b3:51:21:79:77:4d:2a:d1:92:fe:40:5b:
01:99:34:89:b1:af:fd:84:3a:ff:d0:70:ca:83:72:
3e:3c:ce:7b:5a:45:c6:f6:b2:d6:c6:0e:11:6b:c2:
73:d8:59:e3:39:8f:01:4d:23:cf:fa:68:64:76:dd:
97:25:c0:68:c0:da:86:37:01:d0:5b:5b:3c:b8:28:
a6:76:b4:eb:19:71:f9:f2:5b:c4:60:1c:ed:a9:c8:
16:66:06:d6:2f:17:56:11:77:8a:be:45:ad:45:6d:
ef:f7:74:f0:9a:a5:7f:2e:87:7d:55:28:e2:46:07:
fd:0f:54:36:cf:8f:bd:30:e9:b3:07:b6:07:26:cc:
73:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:52:75:5C:86:E4:FD:62:77:C2:52:3D:3D:15:06:70:5C:3F:4C:C1
X509v3 Authority Key Identifier:
keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:15:01:ca:26:73:39:0c:94:9c:cd:a9:51:c2:f2:94:5f:30:
60:5a:34:6b:97:87:e6:28:8c:ba:6a:a2:df:4a:8b:6e:19:61:
36:55:cd:1f:c5:84:40:42:79:f0:6a:03:76:18:6a:0e:4e:43:
54:63:3a:75:76:a7:53:13:34:62:f1:c2:06:b9:d5:53:36:97:
15:1c:ab:80:8e:63:91:18:4e:54:f7:7a:ae:46:b3:6e:8d:42:
0a:56:a5:16:6b:68:cf:e5:69:4b:b6:f2:e6:bf:24:68:cc:f5:
1b:c9:7c:89:0c:83:1a:9a:7e:91:ec:7a:42:8d:c2:41:b7:52:
62:ae:16:28:94:4f:c2:02:d1:9f:2f:60:b5:74:4d:c7:34:f3:
3e:d9:36:48:b4:af:e9:c6:c0:91:f0:de:c5:32:1b:2d:22:f6:
22:57:d8:44:c7:ba:44:ac:8e:6e:51:2d:fc:0e:54:da:7a:ac:
fc:5b:da:09:25:ab:37:6b:43:9a:45:77:9e:a5:41:43:d7:cb:
84:fa:23:84:6e:58:c9:b7:de:c2:fc:3b:4d:58:cb:7c:c4:08:
38:aa:4a:a6:9c:6c:e0:3d:92:08:8b:db:49:d5:fa:22:bb:6a:
71:41:da:f8:b0:af:94:c3:45:5e:ef:fc:41:5a:cb:1f:21:6e:
e2:ef:24:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 09:17:12 2026 by rpki-client