Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
File: 2okNBdXIi33m9bqkwdCF_nMB9dU.mft (raw, json)
Hash identifier: UhItvWfvgAzDRQs7r3LS9f7uX4a1IAiQveJXFEycUFo=
Subject key identifier: 31:7C:CF:58:0C:8B:AC:18:4C:3D:D8:B0:3A:2F:83:25:86:75:8E:36
Authority key identifier: DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
Certificate issuer: /CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Certificate serial: 019E30058D5229F8B72A1504F44EE517E1BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
Manifest number: 0D67
Signing time: Sat 16 May 2026 09:02:10 +0000
Manifest this update: Sat 16 May 2026 09:02:10 +0000
Manifest next update: Sun 17 May 2026 09:02:10 +0000
Files and hashes: 1: 2okNBdXIi33m9bqkwdCF_nMB9dU.crl (hash: np0Go1IE8LrITwqgocSWMWVgvoJpUApNEGSg///wkpI=)
2: ZT7cIfopY2icNRG5lkp_GApY3rE.roa (hash: gKGo8E7JgzV3hVuTiWO3MJ9KqBj85ZmcBVlHFpHWLjk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:8d:52:29:f8:b7:2a:15:04:f4:4e:e5:17:e1:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Validity
Not Before: May 16 09:02:10 2026 GMT
Not After : May 17 09:02:10 2026 GMT
Subject: CN=317ccf580c8bac184c3dd8b03a2f832586758e36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1b:f0:d6:a2:88:62:1d:6b:fb:8f:bc:7e:0c:
9d:7b:f6:1e:92:d7:1b:43:d3:b9:41:24:0e:e6:43:
d3:2f:f6:82:a5:72:13:9c:ef:b7:13:42:a6:ce:3f:
6e:25:63:43:fc:a4:2b:a4:4f:df:23:11:df:81:65:
98:4a:dd:bc:8a:7d:53:ab:ef:a8:f4:51:73:5a:1f:
d8:e9:6b:4a:ca:c7:32:b2:35:eb:44:38:60:93:a8:
83:4f:9f:eb:c1:d5:ab:28:cf:05:16:16:64:bf:55:
2a:57:f0:9a:4f:2b:5b:2a:4f:65:41:83:09:b5:a5:
4a:ff:a8:e6:47:16:51:c9:bb:95:3b:5e:ca:28:93:
f2:73:d1:37:9c:44:b7:95:4a:0c:35:cc:b7:13:f2:
23:28:7a:5e:f1:36:b3:3a:60:19:b0:88:b4:96:8b:
e6:21:90:d8:ea:cb:22:29:59:6d:59:af:ba:4a:91:
56:39:bd:7a:61:d4:3e:57:c9:3d:7d:8d:b1:2e:9d:
25:70:d8:8d:6b:86:fc:40:42:65:53:e6:f7:6b:41:
0d:03:ae:67:d1:60:02:47:70:a0:33:f3:e9:55:db:
d9:97:10:67:6e:d8:52:d0:67:85:c1:af:c2:21:5b:
e9:26:5b:51:81:f1:89:34:a6:7d:a1:52:d8:d8:c5:
4d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:7C:CF:58:0C:8B:AC:18:4C:3D:D8:B0:3A:2F:83:25:86:75:8E:36
X509v3 Authority Key Identifier:
keyid:DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:01:61:0d:72:69:52:2c:b1:61:06:f6:f6:ed:9c:85:c4:14:
75:5a:24:3f:b8:f2:86:e1:a5:60:8c:37:38:51:00:0b:9d:fa:
94:a6:3e:86:93:f2:2a:03:48:49:f6:b9:5d:20:7d:5e:ce:72:
12:67:85:c6:5f:d2:b9:02:46:8b:52:c6:fa:51:7b:92:87:55:
2a:e2:6f:08:d4:68:fa:5b:2a:52:96:3b:d3:4d:2c:9e:95:60:
d6:fc:74:64:a0:97:b8:b0:fd:3e:01:a8:1c:de:e8:95:ce:7e:
4c:38:49:83:78:b5:96:dc:3a:e9:85:6a:46:d6:7f:98:8e:82:
20:92:57:40:a6:0c:c2:f9:56:49:2a:04:9c:8e:17:91:ff:6a:
66:41:e0:a8:f9:87:b0:c7:90:40:a8:e1:f0:03:89:5d:d1:61:
08:7b:e4:b8:37:08:a4:9c:16:48:fc:6e:45:73:c9:a4:58:bb:
f0:d4:b2:d5:3f:bf:5c:ce:3b:93:71:84:0e:2c:3c:42:f2:75:
0a:06:91:c4:b4:e2:8a:6a:b8:b7:60:82:ed:b4:5e:02:9f:05:
b8:ee:88:34:08:c1:60:9e:dc:0f:ea:15:b4:7d:ec:bc:6f:c2:
a9:c1:ea:96:21:d5:61:14:a5:ba:48:c3:14:79:18:26:89:0d:
8a:03:32:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:53 2026 by rpki-client