Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
File: 2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft (raw, json)
Hash identifier: 2ZATeNMIbLWtxD7pitGkEqEu/12BgqLpUbdjzsWL6OQ=
Subject key identifier: 0B:77:CF:B8:A8:69:A4:67:AF:FB:69:53:59:BA:B4:32:29:4D:33:D2
Authority key identifier: D9:42:84:B9:43:25:F5:06:0F:8A:0E:87:C1:BE:28:27:78:8F:18:F9
Certificate issuer: /CN=d94284b94325f5060f8a0e87c1be2827788f18f9
Certificate serial: 019E2FCDC98C3D77C1A109209A68B38053A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
Manifest number: 1652
Signing time: Sat 16 May 2026 08:01:15 +0000
Manifest this update: Sat 16 May 2026 08:01:15 +0000
Manifest next update: Sun 17 May 2026 08:01:15 +0000
Files and hashes: 1: 2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl (hash: N18L+kT166Mu/oLDiVMDR5vUV/ykwpt52vdyGXnwBQY=)
2: wqVFEVjqEKEx9wlcMLA5-tVt-do.roa (hash: 26IFOLWA08mHoLUA2G9c2LdLUfKfMB5SGvlKCRZq35g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 08:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:cd:c9:8c:3d:77:c1:a1:09:20:9a:68:b3:80:53:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d94284b94325f5060f8a0e87c1be2827788f18f9
Validity
Not Before: May 16 08:01:15 2026 GMT
Not After : May 17 08:01:15 2026 GMT
Subject: CN=0b77cfb8a869a467affb695359bab432294d33d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6c:28:7b:63:cb:36:44:f2:5f:19:c3:e0:93:
5e:a4:8e:2b:5c:f1:dd:70:c5:6f:a9:70:26:a5:1f:
9a:17:e0:c5:ad:a1:c4:41:19:45:80:4f:1d:19:2c:
31:b1:34:e2:1c:bb:16:ed:64:37:99:8a:5b:41:0e:
19:42:94:c8:34:73:e8:71:e6:c5:21:a5:a0:72:ec:
7b:36:1a:1d:01:8d:eb:5c:6e:ec:a9:f3:20:33:b0:
f7:4d:4d:09:a2:34:f9:b3:08:4c:2e:09:8e:1f:fb:
05:4b:63:f8:8c:c9:a1:5d:e6:d6:d6:d3:b5:da:5b:
2f:83:4d:5e:e9:2e:5e:73:2c:56:46:6b:eb:38:3c:
16:dc:f2:5b:be:d9:f9:86:6b:40:18:24:e4:d3:c1:
d5:39:f2:0a:2c:fc:2a:45:16:bf:f3:00:6d:37:81:
4f:05:26:08:b5:61:48:d5:64:83:b7:0a:22:1c:66:
16:ec:52:5e:58:2a:d0:8f:be:95:d8:dc:c9:ee:23:
20:43:8b:38:f6:ed:64:c3:2c:32:f4:8f:cd:f2:32:
e3:08:3c:a2:3a:30:b4:57:ef:4a:30:90:8a:b2:be:
57:8e:10:4e:77:2a:62:06:36:e6:2b:8d:25:e1:7d:
bb:9a:0d:ae:ab:25:db:36:e5:7e:34:df:49:2f:98:
eb:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:77:CF:B8:A8:69:A4:67:AF:FB:69:53:59:BA:B4:32:29:4D:33:D2
X509v3 Authority Key Identifier:
keyid:D9:42:84:B9:43:25:F5:06:0F:8A:0E:87:C1:BE:28:27:78:8F:18:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:c4:6a:ee:bf:97:cc:70:86:d8:6d:62:0a:4b:28:02:07:db:
99:1f:71:43:ce:dd:d4:e5:36:81:eb:e4:6b:38:97:69:f6:1c:
e4:30:15:4d:68:ce:27:02:ce:2b:8a:47:8d:7a:30:d5:e9:6d:
53:2f:96:9d:03:aa:5d:bc:9e:13:f0:d2:12:b1:2e:b4:6e:26:
21:53:b2:b0:72:d4:00:5d:4b:1e:b9:6d:0c:69:de:50:c6:9d:
17:99:20:da:ee:fd:90:ea:4f:38:f7:ad:8f:1a:01:a1:1d:75:
1f:ed:bb:6d:91:7f:11:cd:d5:56:68:3c:c0:49:c7:d8:88:43:
c4:32:1b:40:f2:bb:85:49:f4:22:88:e5:16:0a:96:62:db:b5:
4d:e6:ac:be:59:08:d4:66:f5:59:e0:79:bc:32:ff:3f:e9:02:
3c:34:13:55:c2:ff:12:29:14:76:3e:46:3e:ac:71:08:46:a4:
f1:87:5d:34:c8:cb:34:a8:17:c7:89:3e:34:da:af:38:2e:0d:
93:aa:58:42:5b:ef:68:f9:ce:0f:c6:24:02:0f:6c:30:30:f0:
63:6f:0c:39:57:6b:19:ce:5c:f5:45:a6:66:81:39:81:d9:fb:
d1:c9:09:68:20:d2:1b:8f:d3:36:56:1c:db:5c:a3:04:f6:68:
2b:96:15:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:41:00 2026 by rpki-client