Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft
File: 2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft (raw, json)
Hash identifier: XuLUJBoypPyEkJA+EXDAVHghZsDI6HGz0YgA9DQ3ymU=
Subject key identifier: 31:4B:52:C3:DF:A2:C3:4B:E5:E8:80:FB:70:0A:0D:6D:3F:19:63:E1
Authority key identifier: D8:50:B9:60:AD:E9:44:9F:1E:80:81:43:A3:71:CE:2E:3A:18:7E:48
Certificate issuer: /CN=d850b960ade9449f1e808143a371ce2e3a187e48
Certificate serial: 019E2A02C10BC416EBDC2D7E784AED7DA08C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FC5YK3pRJ8egIFDo3HOLjoYfkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft
Manifest number: 01D4
Signing time: Fri 15 May 2026 05:01:23 +0000
Manifest this update: Fri 15 May 2026 05:01:23 +0000
Manifest next update: Sat 16 May 2026 05:01:23 +0000
Files and hashes: 1: 2FC5YK3pRJ8egIFDo3HOLjoYfkg.crl (hash: HKaJMUY+1nOn9OJS4ZfpC1NZGYWb/8QPJos15v0Ciho=)
2: hW7s4O9TdBAfT4Osak2Oj5BJAz4.asa (hash: R04Z5dzTVpp/mJ118ZonHq/GgrG1tGSGF8iWqD8/YV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FC5YK3pRJ8egIFDo3HOLjoYfkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:02:c1:0b:c4:16:eb:dc:2d:7e:78:4a:ed:7d:a0:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d850b960ade9449f1e808143a371ce2e3a187e48
Validity
Not Before: May 15 05:01:23 2026 GMT
Not After : May 16 05:01:23 2026 GMT
Subject: CN=314b52c3dfa2c34be5e880fb700a0d6d3f1963e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:77:e8:9c:a2:5f:43:c8:a5:2b:43:30:d6:98:
06:ad:29:86:dc:a5:1e:36:68:4f:27:57:61:2f:cd:
dd:36:f0:46:4f:dc:35:9f:18:ac:52:a4:ef:27:09:
dd:15:b2:ea:03:38:06:e5:1c:35:16:b3:0b:f6:aa:
68:92:d9:18:ff:e9:ac:47:27:fe:58:d9:51:32:1a:
85:9b:27:ec:96:67:64:bf:f0:4d:c4:7b:10:98:1c:
f1:af:c4:48:0e:35:b5:32:f0:1a:8a:5b:27:75:6a:
4c:0f:ae:98:56:5d:66:bd:65:f6:42:b8:e5:cf:b4:
89:1c:31:3e:5c:31:d1:3c:98:40:61:0d:fc:0d:9f:
f3:a6:26:35:bf:67:fd:f4:54:04:0b:cd:eb:ad:ae:
ef:7b:1d:19:47:1c:8d:63:cb:55:6b:98:4f:30:ad:
de:67:68:ca:da:a5:c3:49:bc:9d:b6:d5:da:87:32:
d1:e2:24:73:eb:af:39:1e:c9:b2:10:b9:ac:d9:4e:
95:fd:af:d1:96:69:69:ea:e1:63:52:23:5d:db:da:
ea:c5:36:72:61:b8:2a:45:b2:db:01:22:7f:ea:86:
b4:22:29:d6:68:98:87:33:6a:02:cc:dd:aa:16:18:
e5:0f:85:d2:b9:22:5a:16:86:61:f0:0e:69:91:9b:
1a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:4B:52:C3:DF:A2:C3:4B:E5:E8:80:FB:70:0A:0D:6D:3F:19:63:E1
X509v3 Authority Key Identifier:
keyid:D8:50:B9:60:AD:E9:44:9F:1E:80:81:43:A3:71:CE:2E:3A:18:7E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FC5YK3pRJ8egIFDo3HOLjoYfkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/2FC5YK3pRJ8egIFDo3HOLjoYfkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:c6:0d:3d:b3:79:5a:4f:23:93:15:28:81:5a:b5:20:43:91:
c3:44:bc:ec:1b:e9:03:56:bb:1c:6c:c5:22:3f:ef:6e:6d:31:
c9:90:b9:73:6b:23:71:cb:76:51:59:f8:6a:cd:c4:b0:cd:a7:
43:2a:16:2d:dc:e0:39:d5:a7:ad:79:60:84:07:e2:6c:2d:b6:
7a:8c:e7:65:5f:53:3c:66:9e:fe:5b:77:d9:3c:90:35:12:bb:
fb:2a:de:53:88:2a:cc:93:35:28:69:ba:79:a6:4c:a3:32:2d:
98:2a:e2:d8:dc:59:43:eb:ad:c3:36:94:84:0d:c6:71:fe:bb:
11:cc:7c:15:23:dd:05:b1:a1:8d:a4:aa:31:11:77:47:a8:8a:
a5:45:fa:d5:89:0f:ee:bb:0a:27:08:86:d0:9a:af:83:a4:0b:
0f:7d:b3:8f:90:20:4d:42:c5:2f:51:fd:c3:56:1e:6c:fd:31:
f7:15:12:b4:ba:b2:a5:23:13:89:cf:4f:7f:e5:78:e6:4a:7a:
97:5c:5a:97:d3:d7:57:51:e4:ce:5c:08:62:f6:94:8e:1b:ce:
0f:65:f8:75:cd:e4:71:f1:c6:cc:a6:f8:bb:ea:28:05:a9:fd:
71:26:1e:9d:05:d4:31:63:11:a9:bc:6e:b6:ec:68:1f:44:09:
84:c4:03:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:19:55 2026 by rpki-client