Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
File: 2PWmbP0hpcrXopuOtc2SqkYDIMM.mft (raw, json)
Hash identifier: T0HygHRCKWAHSaNDkVWQmCjFner17j1rbejPyioJ7Gw=
Subject key identifier: AC:07:C9:D2:38:8C:56:F0:B7:A6:C9:7C:C5:E6:8F:B7:21:91:EC:80
Authority key identifier: D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
Certificate issuer: /CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Certificate serial: 019E2F97665279EB93EFB1E834EA573A9AC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
Manifest number: 1910
Signing time: Sat 16 May 2026 07:01:51 +0000
Manifest this update: Sat 16 May 2026 07:01:51 +0000
Manifest next update: Sun 17 May 2026 07:01:51 +0000
Files and hashes: 1: 2PWmbP0hpcrXopuOtc2SqkYDIMM.crl (hash: R3+dLh+zhAACcpNBBO+8JSf8zVzKcOlyMmlrDqpLb1U=)
2: hSitky1wYRTLv14NEnwV-zxWb_o.roa (hash: PA0bbeChQyvoxmLwu2ifsRmhbm5WEw0zyVf1Uu/ZDBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:97:66:52:79:eb:93:ef:b1:e8:34:ea:57:3a:9a:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Validity
Not Before: May 16 07:01:51 2026 GMT
Not After : May 17 07:01:51 2026 GMT
Subject: CN=ac07c9d2388c56f0b7a6c97cc5e68fb72191ec80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:85:60:60:4d:3d:0f:88:ed:d2:21:08:55:f6:
7f:69:7a:7c:8b:0f:84:21:d1:23:0b:1c:f8:1f:39:
d5:02:be:3c:6f:bd:6f:8e:63:5f:41:66:72:99:b3:
20:29:8b:2c:d0:55:d0:d1:bf:70:28:e3:65:5c:53:
03:57:cf:96:f9:17:23:65:60:1b:3f:3d:0a:5d:cb:
43:59:43:a5:a6:8d:81:79:df:6a:02:22:f4:89:ba:
4e:bd:4a:a5:a1:f0:41:d0:42:58:12:b2:5f:32:33:
96:5d:34:d0:3d:de:37:66:81:08:e6:f5:d8:c9:e9:
fd:0c:ae:13:b7:82:aa:aa:49:1c:45:7b:13:84:c0:
a4:22:66:54:82:b8:08:54:6a:7e:1b:7a:1a:c3:66:
bf:b7:45:39:8d:d9:da:c3:ee:0d:36:63:58:7c:0d:
ce:a9:9c:d4:08:7e:45:b4:ea:b0:a0:62:6d:ac:8b:
09:b6:77:b8:7a:18:de:bb:10:45:3b:1d:be:c7:26:
0d:44:f2:4d:a7:8c:6c:49:57:12:a5:89:eb:d3:3e:
ea:79:4d:be:6b:22:37:b1:94:b9:bc:ff:07:89:81:
98:e1:83:a3:7c:aa:c1:26:b2:38:48:0a:8b:0b:28:
95:ed:61:fc:1c:b9:9a:85:12:8f:ff:da:4b:31:b2:
b2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:07:C9:D2:38:8C:56:F0:B7:A6:C9:7C:C5:E6:8F:B7:21:91:EC:80
X509v3 Authority Key Identifier:
keyid:D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:60:c0:89:5b:ac:c2:29:4b:31:3b:45:1d:2f:18:2b:00:a3:
e8:be:39:9d:d3:1a:43:1e:9f:4a:e2:02:a7:17:41:27:50:6b:
d9:bd:a0:30:d1:b9:ba:e4:f3:09:51:60:da:df:35:0f:fb:a0:
0e:cc:e9:70:c0:89:48:22:7f:6b:c6:82:f3:35:a2:05:a8:5f:
1b:6a:68:cb:7f:9a:97:ca:23:15:d8:b5:b4:cb:0e:09:3d:cc:
40:72:49:e0:22:bf:83:bf:e1:5e:34:33:4b:87:05:9c:dd:e2:
b8:5c:70:93:f4:ac:7f:bc:9f:2d:fb:5e:d2:a7:a1:88:da:79:
0f:c0:a0:5f:b1:eb:a1:f5:7c:40:89:4a:f3:39:37:a2:84:b2:
7e:70:89:6b:78:1c:b2:b0:9b:89:b8:79:db:e5:e1:02:ed:d1:
b5:75:4e:0e:8c:fb:fc:7e:2c:ef:4c:a5:e6:f2:25:87:4b:53:
1c:72:17:fc:3a:50:64:25:89:62:4f:e2:eb:38:9e:88:86:56:
7d:c3:38:25:70:0b:f7:b8:d1:70:82:7d:b0:33:30:5e:60:cc:
ae:44:6f:51:81:ff:4a:78:7c:53:a7:1c:b7:80:7c:35:20:17:
c8:f5:b2:70:b0:38:9f:dd:c4:13:ba:12:20:15:a8:89:a1:dd:
3e:e7:c1:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:34 2026 by rpki-client