Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
File: 2lNAluw_e_xU1lT84PAWitlmIs0.mft (raw, json)
Hash identifier: 2UIpXGsm7IN8G2y9hXS4JUW6pZubBiNZPXMEE0rbT54=
Subject key identifier: 98:5F:BF:7D:07:41:FC:F2:35:77:35:C8:85:F8:51:B9:0A:A7:37:C8
Authority key identifier: DA:53:40:96:EC:3F:7B:FC:54:D6:54:FC:E0:F0:16:8A:D9:66:22:CD
Certificate issuer: /CN=da534096ec3f7bfc54d654fce0f0168ad96622cd
Certificate serial: 019D39E56F5EBAAA96019ED0FC96B8F37765
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
Manifest number: 05F5
Signing time: Sun 29 Mar 2026 14:00:30 +0000
Manifest this update: Sun 29 Mar 2026 14:00:30 +0000
Manifest next update: Mon 30 Mar 2026 14:00:30 +0000
Files and hashes: 1: 2lNAluw_e_xU1lT84PAWitlmIs0.crl (hash: UjQnuO91HcCun77ZfkSIfztO9XPj1r29VHBFg2oOvAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 14:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:e5:6f:5e:ba:aa:96:01:9e:d0:fc:96:b8:f3:77:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da534096ec3f7bfc54d654fce0f0168ad96622cd
Validity
Not Before: Mar 29 14:00:30 2026 GMT
Not After : Mar 30 14:00:30 2026 GMT
Subject: CN=985fbf7d0741fcf2357735c885f851b90aa737c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:9a:c9:08:df:44:87:c8:33:b2:13:68:76:ea:
86:76:90:6a:ff:15:ce:6e:93:9b:04:b2:58:79:8a:
6b:05:c2:7d:64:b9:77:0e:e6:b7:95:b7:cc:4d:46:
0c:81:47:fb:8c:b6:16:4f:17:76:b2:71:c8:6c:21:
f1:8b:1b:2d:3b:57:e4:53:67:a7:98:00:6a:1a:e3:
3d:2b:42:e0:da:08:93:a8:e9:5b:5a:fc:d9:47:d4:
ca:be:a8:ec:c8:27:04:11:5e:65:5d:73:1f:55:44:
b5:6a:98:be:c9:79:3c:a4:3b:ac:03:ae:39:8e:f4:
1c:e8:31:c8:0a:7b:c4:5f:38:69:a3:e2:45:cd:bb:
f7:30:18:23:9d:02:0c:b7:13:4b:34:ca:eb:a5:66:
c0:86:2e:31:c5:9b:9e:c4:6b:4b:9c:24:63:aa:ef:
8b:18:68:0c:01:2f:2a:ba:63:c2:1d:3d:ae:0a:6f:
6f:1a:13:12:a3:b1:25:c8:4d:bb:1d:a7:62:05:73:
fd:8d:87:c5:73:de:92:62:1b:92:3a:83:6b:06:33:
44:c8:97:bb:1d:e9:49:01:07:b5:b7:1b:08:c8:ef:
e8:9e:55:d1:78:17:c8:ea:a7:90:53:11:c3:13:a5:
72:11:80:33:2c:e1:4e:39:98:56:81:95:fd:0e:fb:
a3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5F:BF:7D:07:41:FC:F2:35:77:35:C8:85:F8:51:B9:0A:A7:37:C8
X509v3 Authority Key Identifier:
keyid:DA:53:40:96:EC:3F:7B:FC:54:D6:54:FC:E0:F0:16:8A:D9:66:22:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:d2:87:a1:7b:aa:61:c4:ea:17:ad:89:b2:8d:bc:96:62:af:
35:b7:65:63:5b:cb:8d:f8:bc:28:54:19:03:59:df:f4:b6:78:
d6:3e:a9:69:42:e2:09:e8:f8:4d:ae:8b:05:7d:3d:33:de:71:
6b:e3:91:4c:ab:55:d7:0c:0d:a6:4c:7c:13:ea:a4:e3:20:e0:
aa:44:ed:26:8c:91:a5:3f:b0:72:be:36:5c:4d:f2:c3:ce:5e:
5d:e6:f1:03:80:aa:ff:6e:49:b1:fd:7f:b5:53:c0:a8:ff:fb:
ae:a1:7e:70:50:dd:16:83:62:f9:16:46:d2:be:72:d2:1e:2a:
be:03:f8:cd:8c:f5:35:b1:e8:59:e4:2b:0b:e9:c0:40:e4:da:
eb:c8:52:eb:64:b2:97:f4:99:51:e1:97:7e:e0:37:b8:c0:98:
58:6e:f2:e7:30:29:1c:67:b3:48:50:f2:89:14:e9:1a:d8:d9:
ae:21:ae:71:a4:c1:de:67:93:da:f8:6a:50:01:0a:99:9b:a6:
e5:01:c7:e8:4d:a0:38:ca:5e:f2:b9:00:73:0e:20:50:eb:6e:
b6:2d:cf:1f:a5:c8:d8:12:62:dc:9c:fe:60:6f:f4:59:fd:1a:
b2:73:f2:13:4d:f5:7e:56:a8:85:e3:68:f5:53:b6:89:74:f5:
64:8a:d4:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:13:17 2026 by rpki-client