Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: /GIowhI5BldzcFWktTmTQg+mJYhczKY1ddm8VCpL3Zw=
Subject key identifier: C0:DE:C3:8B:95:F4:30:EA:E6:44:91:66:5E:D9:9D:2E:73:5C:37:CD
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 019E3117EB5E7143596265ADBA370F628890
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 14DE
Signing time: Sat 16 May 2026 14:01:51 +0000
Manifest this update: Sat 16 May 2026 14:01:51 +0000
Manifest next update: Sun 17 May 2026 14:01:51 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: ZXwNPmqoFLogwBUakT/r9DSWexJBhFAijtcPjj4V1kw=)
2: D5r66qCGlpT6UM1S2JZDnwLEq_g.roa (hash: AsE96zhoWPvQynJOqug2jdhORzzqgKtcCYsyjnQ29Aw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:eb:5e:71:43:59:62:65:ad:ba:37:0f:62:88:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: May 16 14:01:51 2026 GMT
Not After : May 17 14:01:51 2026 GMT
Subject: CN=c0dec38b95f430eae64491665ed99d2e735c37cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5b:ad:6e:c1:be:bc:88:2d:c0:bc:52:d7:98:
b2:97:fb:24:bf:a9:11:12:6e:9f:39:54:ed:2e:64:
1a:e6:e2:0e:0a:cd:f6:b5:5f:58:8a:c8:f9:b0:f3:
e1:44:ac:f4:60:56:c0:c1:c5:1f:7f:00:86:c3:77:
8e:7b:be:4b:58:54:c0:ab:78:2f:e8:79:98:cd:cb:
d0:77:8e:72:d7:7b:7c:51:1a:5d:01:e2:5c:86:b6:
bd:5b:18:3c:72:34:14:55:d4:ca:15:cc:2a:e2:f3:
af:6f:61:fa:af:d4:e4:a1:f3:35:ec:34:cd:24:4c:
6f:a8:c7:1a:03:e4:38:7d:54:36:da:18:f3:38:f3:
34:e7:2a:e5:c1:11:88:6a:a7:53:72:53:bb:ea:49:
f0:08:4e:9f:b3:b3:69:85:e8:a8:e2:ed:b5:69:66:
9d:9c:16:8b:20:0e:c0:7e:f1:9a:02:bd:80:4d:d6:
8b:9c:b1:1c:8b:e7:00:33:88:37:8d:d9:77:86:29:
ad:f7:57:1a:dc:58:99:3d:99:fe:7e:df:f6:34:20:
9d:ba:4d:7a:5a:76:a4:14:10:0c:7c:0a:a4:14:4d:
f6:66:b8:05:54:b7:c2:43:4f:6b:54:cb:16:20:22:
89:13:7a:c5:0a:f2:61:04:a7:6e:32:f7:85:7e:ce:
df:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:DE:C3:8B:95:F4:30:EA:E6:44:91:66:5E:D9:9D:2E:73:5C:37:CD
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:7f:a2:65:fc:0c:45:01:7e:3d:d2:60:4c:e9:69:c7:ea:68:
2d:0b:9b:0c:cd:5a:80:a0:0e:f6:56:2f:d2:e3:8a:27:99:79:
e7:dd:56:9a:66:0a:57:e2:c0:6c:aa:34:3e:99:d2:83:8e:98:
f8:59:80:25:0f:fc:36:45:80:25:af:2b:a9:3e:db:bf:57:2c:
71:77:08:0b:1f:44:4a:e8:98:be:e7:0c:09:08:0e:e4:90:5c:
38:17:01:37:ec:7e:b4:04:bc:eb:75:f8:ae:ed:db:78:23:5a:
0f:a9:3c:0e:62:02:1e:5f:b9:2f:b2:4a:38:1b:73:bf:35:08:
c6:97:a9:41:00:ba:e4:84:d4:be:5c:f8:c1:d1:ce:a2:e3:69:
f8:7b:e6:f7:62:34:e7:b8:c3:b3:32:97:12:23:15:38:c3:07:
3e:4a:c6:0b:1f:88:88:fa:e6:12:d0:a1:59:18:ac:11:74:13:
69:98:8a:ba:60:42:77:f0:ce:5e:c6:6d:10:49:2d:2f:e2:17:
c0:d0:51:16:39:27:79:54:c8:d6:12:f3:cb:1f:07:63:b7:30:
3b:f3:3d:36:d7:db:0b:cc:f6:70:50:d1:da:03:0b:0d:75:ff:
b5:dc:93:15:7c:59:1b:29:98:25:8a:d5:24:1e:28:01:95:fc:
2d:7a:28:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:14:25 2026 by rpki-client