Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
File: 2RTaVuGpNGSdoClkrBLro0xcuE8.mft (raw, json)
Hash identifier: vGTnu3frokjrmWa+Ewk+7fBatfwZE66Q/dkJWxcqtA4=
Subject key identifier: 0F:AF:18:E6:0C:62:4B:E1:48:B5:FD:E1:C3:7D:3D:6A:12:4C:25:B1
Authority key identifier: D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
Certificate issuer: /CN=d914da56e1a934649da02964ac12eba34c5cb84f
Certificate serial: 019DCCE1BD0428776152E50222C72C06C0D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
Manifest number: 0639
Signing time: Mon 27 Apr 2026 03:00:39 +0000
Manifest this update: Mon 27 Apr 2026 03:00:39 +0000
Manifest next update: Tue 28 Apr 2026 03:00:39 +0000
Files and hashes: 1: 2RTaVuGpNGSdoClkrBLro0xcuE8.crl (hash: x8RNdMGgIrdtxv2euc9p77jEEZEzny3e/i7xh/PCNDw=)
2: 5hSNwWLNWCAUYLUKlFOgbC-vsKw.roa (hash: fkCkSIkOMr1NgMDTMDUskq39VJ7KZjaa4kYDj6t+Z0w=)
3: 7CXmH7ThrZok20WiAGjCXCBOzas.roa (hash: ML0vggVdekDweRUo8ISIsoQBBgpWCyTUPYs8nGYXR2s=)
4: 9-C51BQ9GR3x8sWko39QajrgzuQ.roa (hash: 1bZx3qAnqXddYhE0b5hAmr5qKot7DzAZND6Oe0URbRY=)
5: 92Ks2sFC0w0p0AIFF49f1gWqGCY.roa (hash: D1mBgUfkWtkbrrO6F1qZG97Uv8V0Ofc3+kHoQHbc2Zc=)
6: R9yQDUpo9qSNelx0KQxWO9fm9iA.roa (hash: RSvmXKJf5yDyS1EyQpjsuSAr6t0VEWEQu/Rk/10QmtQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 03:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cc:e1:bd:04:28:77:61:52:e5:02:22:c7:2c:06:c0:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d914da56e1a934649da02964ac12eba34c5cb84f
Validity
Not Before: Apr 27 03:00:39 2026 GMT
Not After : Apr 28 03:00:39 2026 GMT
Subject: CN=0faf18e60c624be148b5fde1c37d3d6a124c25b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cc:c3:b2:f2:68:25:08:2d:8b:af:3c:1a:4f:
7a:fd:e9:0a:b9:f9:e4:95:73:a7:b4:a6:28:99:5f:
7f:27:87:92:6a:39:27:09:aa:ec:3d:a2:8a:42:41:
d5:24:e5:e9:7f:32:22:d6:03:ce:a2:ef:7c:35:56:
12:d8:c4:a4:99:32:c7:4d:c9:0f:ed:df:ea:6d:d6:
46:86:92:64:f6:55:f2:6d:48:5b:0d:7e:ac:7e:5a:
b3:c5:16:35:52:e0:57:57:c0:63:d7:3a:c2:15:cc:
65:e1:73:5f:78:57:de:b5:0d:31:45:e8:93:65:14:
f9:ae:c0:7e:e5:f0:d5:4a:98:9c:23:6c:94:96:32:
6b:d7:21:0f:50:8b:27:94:44:ad:b3:bc:69:99:ec:
97:67:38:ed:39:df:d5:58:60:3d:90:33:17:31:a1:
f0:90:6c:9d:94:e1:55:55:7b:15:0f:94:24:d4:17:
bb:bf:2a:da:ba:c1:fe:89:d8:4f:2d:a5:47:ed:4e:
ba:d5:01:b8:c6:00:7c:7f:2f:a5:a8:c8:85:a9:bd:
91:aa:db:8c:a4:f2:52:ad:56:41:75:82:16:3c:e0:
6e:0e:9e:30:a5:0f:48:e7:23:1f:64:bc:6a:64:c6:
67:56:d9:b3:3c:18:d0:18:a0:c1:38:cd:df:9e:ee:
1a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:AF:18:E6:0C:62:4B:E1:48:B5:FD:E1:C3:7D:3D:6A:12:4C:25:B1
X509v3 Authority Key Identifier:
keyid:D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:6c:b0:05:4b:16:80:10:e5:8d:39:3f:3a:42:d8:46:f0:0a:
40:0e:f6:bc:e1:4c:bf:7f:f8:c5:8f:e1:dd:33:3b:1b:92:8b:
2b:da:23:bc:17:b7:3d:df:18:8c:69:26:02:3f:f4:e2:f2:44:
0d:30:57:42:4b:17:78:3e:f7:e0:c8:7d:81:74:2c:c5:d0:a5:
07:70:dc:c3:a2:47:c9:be:c8:11:e6:ba:92:9d:6f:d6:66:5b:
c1:69:8c:3f:d8:96:c0:05:aa:cd:64:f6:02:d0:1a:ae:a9:f5:
bf:f6:fd:94:92:7c:72:af:d2:53:45:f6:4d:0b:7b:82:17:cf:
86:5d:e2:12:bf:36:fe:ff:0a:75:21:e6:d9:7a:5d:d7:ae:e3:
31:12:ee:b5:58:4e:6b:1b:50:cf:26:b5:51:bc:1e:1e:83:b5:
1f:a6:fc:4a:93:e8:c4:2d:29:3b:c9:95:4a:89:38:20:09:c8:
3d:8e:e2:c1:da:02:e7:ab:51:b3:3b:4d:9b:b3:35:85:40:ee:
cd:91:78:34:80:bb:cc:37:b5:8f:56:2b:61:0d:fb:35:f4:26:
cb:90:70:cb:b5:aa:d5:d3:a8:4b:98:c4:bb:c3:26:d4:c4:21:
b6:a2:81:c3:c4:c5:85:c8:1f:8a:a1:29:a9:07:14:bd:a9:cf:
bd:d2:f5:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 12:39:06 2026 by rpki-client