Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
File: 2okNBdXIi33m9bqkwdCF_nMB9dU.mft (raw, json)
Hash identifier: C69RsmBFsICzgbdrIpgjxlWLDu2NTpEPfJxq2MyysMk=
Subject key identifier: 52:7A:68:48:1B:87:AE:3C:C4:24:FE:E6:C4:19:30:51:0F:E8:B2:DE
Authority key identifier: DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
Certificate issuer: /CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Certificate serial: 019F17C29D606541231538A74E043BE08538
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
Manifest number: 0DDF
Signing time: Tue 30 Jun 2026 09:00:57 +0000
Manifest this update: Tue 30 Jun 2026 09:00:57 +0000
Manifest next update: Wed 01 Jul 2026 09:00:57 +0000
Files and hashes: 1: 2okNBdXIi33m9bqkwdCF_nMB9dU.crl (hash: 6d9mITXSB29nuT8+9Trl1ocm+4kC//5TOzaoRmkowUg=)
2: ZT7cIfopY2icNRG5lkp_GApY3rE.roa (hash: gKGo8E7JgzV3hVuTiWO3MJ9KqBj85ZmcBVlHFpHWLjk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c2:9d:60:65:41:23:15:38:a7:4e:04:3b:e0:85:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Validity
Not Before: Jun 30 09:00:57 2026 GMT
Not After : Jul 1 09:00:57 2026 GMT
Subject: CN=527a68481b87ae3cc424fee6c41930510fe8b2de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1b:fb:76:9e:e8:87:44:c5:00:4d:48:10:04:
2b:34:ef:db:ac:12:a6:fe:9d:3a:e9:5e:fe:63:6c:
91:23:ce:8c:ae:fe:16:2a:6c:bf:72:f0:62:52:77:
f4:4b:5d:7c:3a:92:f3:7d:9c:42:44:05:8b:0d:c2:
ff:42:ab:51:9a:60:e0:5f:50:33:09:6e:4d:ab:47:
27:c9:f8:de:9b:16:d0:2f:59:f3:59:f2:a6:2e:c0:
e3:bc:60:86:a0:3d:26:41:2d:4c:ef:08:c6:1d:57:
7b:b4:a2:d3:73:2c:8f:8b:06:53:8f:af:02:86:28:
99:15:d2:1b:01:11:cd:22:0a:04:91:3f:a5:a1:5a:
26:c0:1b:eb:36:32:a0:86:19:36:44:43:02:9a:e5:
f0:b1:0e:51:45:d2:01:36:6a:ff:4a:87:dd:1c:36:
f1:eb:6f:bb:1b:d3:96:58:43:48:47:a7:e6:74:1c:
f5:55:bf:70:53:9a:34:b5:66:d0:44:42:48:fe:ed:
f2:59:8d:33:c8:5e:cf:4b:19:42:c4:ce:b7:aa:32:
7a:78:8c:4d:4e:0b:01:33:1c:32:9f:9b:96:67:7f:
41:8e:23:b6:4f:14:1a:32:e2:7f:c9:69:22:9e:72:
78:45:33:c8:7c:3f:85:54:ac:07:b0:c7:ec:c6:75:
14:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7A:68:48:1B:87:AE:3C:C4:24:FE:E6:C4:19:30:51:0F:E8:B2:DE
X509v3 Authority Key Identifier:
keyid:DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:b2:b1:c9:ef:64:24:e1:d1:25:1c:de:09:47:83:18:2c:f6:
89:e3:6c:2c:a3:c4:a9:76:49:48:49:5e:cd:82:f1:03:6c:e4:
55:ef:2f:d8:33:90:3c:a1:b6:aa:ff:8b:7b:04:7b:d0:69:f4:
7a:4c:b2:b0:52:d8:a5:35:43:71:d7:13:c4:ea:26:82:72:6f:
f5:06:3d:65:f2:1e:85:d6:6b:52:86:1f:b0:7c:35:9f:e4:63:
b0:5b:82:a9:c7:41:e0:b8:20:97:00:0f:dc:0b:88:f8:ab:a6:
db:63:4f:69:81:56:9b:48:99:bf:ac:54:aa:2d:05:88:4c:58:
99:de:2f:84:d7:9a:d4:c4:e2:85:ec:4c:8e:ef:8a:0d:fe:43:
a5:37:27:62:f1:d0:3f:4e:30:71:78:4a:2e:43:a4:5a:60:ac:
c8:52:ae:4e:38:1b:2d:17:a0:8c:05:e5:c7:31:ac:6d:2c:70:
78:31:04:38:79:a5:99:72:f7:7b:f4:c5:cd:00:27:93:81:29:
e5:a5:16:ca:1d:d2:9c:28:a8:b1:ec:a1:ae:16:f0:d0:b7:c4:
0e:18:96:4a:e5:51:b3:64:65:fa:0e:cd:56:63:dd:ce:06:81:
fe:1a:f0:b8:07:74:d6:85:a6:33:f6:ca:3c:e8:ee:25:f7:0d:
8d:49:d7:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:20:02 2026 by rpki-client