Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft
File: 2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft (raw, json)
Hash identifier: 85sx6jqOxF4EQHxq2ZnQQTf5e0T4PUE6vl0Httweess=
Subject key identifier: 8F:A3:B4:F7:DB:DF:9B:A1:18:E2:43:87:55:79:44:1F:B2:DF:3D:F4
Authority key identifier: D8:50:B9:60:AD:E9:44:9F:1E:80:81:43:A3:71:CE:2E:3A:18:7E:48
Certificate issuer: /CN=d850b960ade9449f1e808143a371ce2e3a187e48
Certificate serial: 019F11C05ECF75D37AB978147F7F32FAB78D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FC5YK3pRJ8egIFDo3HOLjoYfkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft
Manifest number: 024C
Signing time: Mon 29 Jun 2026 05:00:47 +0000
Manifest this update: Mon 29 Jun 2026 05:00:47 +0000
Manifest next update: Tue 30 Jun 2026 05:00:47 +0000
Files and hashes: 1: 2FC5YK3pRJ8egIFDo3HOLjoYfkg.crl (hash: MEi3T1ZsesJW69X3PrFVesXvwRxjhTk91GaKD47xpNE=)
2: hW7s4O9TdBAfT4Osak2Oj5BJAz4.asa (hash: R04Z5dzTVpp/mJ118ZonHq/GgrG1tGSGF8iWqD8/YV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FC5YK3pRJ8egIFDo3HOLjoYfkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:5e:cf:75:d3:7a:b9:78:14:7f:7f:32:fa:b7:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d850b960ade9449f1e808143a371ce2e3a187e48
Validity
Not Before: Jun 29 05:00:47 2026 GMT
Not After : Jun 30 05:00:47 2026 GMT
Subject: CN=8fa3b4f7dbdf9ba118e243875579441fb2df3df4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:09:ec:05:69:6a:fb:82:b5:fb:3b:ad:ae:2f:
88:36:25:35:08:6d:54:bb:00:2e:78:be:a0:37:8f:
43:58:c8:8f:0d:d9:c7:0c:b8:d3:83:0e:d2:63:0c:
03:55:3d:f2:85:b7:71:23:65:c6:a8:8c:d7:d2:30:
cf:bd:15:c6:8f:e3:25:28:06:c2:64:34:5e:91:2b:
c9:20:ce:29:07:d6:2d:b8:ef:81:d6:76:f5:68:c9:
d6:8f:0e:07:4c:53:30:fd:d3:ec:8d:0e:0c:a9:56:
04:68:cc:93:ca:d6:1d:2c:2a:12:f9:72:2c:6a:6e:
78:3c:60:12:17:4d:5b:30:48:da:5e:99:a0:2d:dd:
27:70:94:63:bd:6e:95:ee:80:aa:6a:af:d5:36:96:
32:bf:21:29:67:ab:58:f3:26:ea:b0:39:61:86:3f:
ef:16:20:67:6c:62:8d:db:18:9c:a7:75:77:ce:be:
72:47:2e:c5:94:26:46:ce:d6:23:56:f0:ae:4e:86:
45:df:64:56:6b:1a:d7:a2:fb:30:db:b7:2d:31:03:
1b:8c:e9:14:73:08:ed:1e:15:41:2f:be:2e:6d:72:
60:9c:ae:9b:d7:d4:a8:f6:11:49:e0:a0:3c:29:06:
9e:8a:b3:48:f7:8d:62:74:e1:59:a2:a5:be:2d:a7:
2f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:A3:B4:F7:DB:DF:9B:A1:18:E2:43:87:55:79:44:1F:B2:DF:3D:F4
X509v3 Authority Key Identifier:
keyid:D8:50:B9:60:AD:E9:44:9F:1E:80:81:43:A3:71:CE:2E:3A:18:7E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FC5YK3pRJ8egIFDo3HOLjoYfkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:fc:57:ed:ad:32:05:a1:a1:df:65:a1:9b:05:52:39:fe:14:
33:d0:29:d9:70:53:8c:03:ee:b2:16:d7:b0:9b:08:20:ea:10:
26:6a:e9:73:da:3a:87:bd:43:e8:b7:15:83:78:57:c6:52:d9:
24:54:29:20:71:08:95:26:d8:2c:0f:15:6d:e2:30:42:98:42:
88:a4:f2:5e:8d:0f:55:3e:39:57:b3:a6:15:26:98:d1:fc:2d:
7b:5c:5b:18:77:e9:a4:50:47:2a:1c:ec:6a:12:7e:93:48:7e:
3c:46:1d:4b:6c:64:d8:3a:6e:e8:a7:84:19:ad:e6:6b:58:cc:
56:5e:40:2f:4f:fa:f2:6d:37:91:0c:f9:d5:f1:2d:92:5a:c3:
1e:4a:82:e7:0a:ee:8a:47:dc:b1:a8:bd:4f:2c:e9:a6:9b:eb:
e3:9f:79:c3:45:0b:99:f7:63:39:0e:19:f7:7b:6a:e8:d8:4f:
bb:67:6f:e5:78:b8:fb:64:f0:30:75:d7:d3:de:e0:66:39:b9:
45:ae:28:35:f0:30:ac:fa:a4:84:c2:18:f5:89:f9:e9:6d:1f:
15:11:73:fa:7b:9a:56:8a:fc:9b:a9:c2:85:0c:d7:b7:cd:8f:
7a:79:22:7c:c9:f6:8b:d3:c4:d4:b4:97:09:93:e4:7d:9b:5d:
d9:be:f6:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:36:04 2026 by rpki-client