Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
File: 2ChPGM1EYEvdbQj02HjcYUVsQP0.mft (raw, json)
Hash identifier: olD5FRj0Vzo1j3bHoqYXizjb/AVE5nb+Q6EV4SsaAuE=
Subject key identifier: 57:A7:44:E2:2E:79:F5:4C:3B:C1:E3:D7:6C:3D:E0:C9:72:07:90:9C
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 019F129CB1A0EFF31DC588E5992314A0A085
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
Manifest number: 1996
Signing time: Mon 29 Jun 2026 09:01:26 +0000
Manifest this update: Mon 29 Jun 2026 09:01:26 +0000
Manifest next update: Tue 30 Jun 2026 09:01:26 +0000
Files and hashes: 1: 1tMhwz7KE8o9HGi1XERUlx-tIdY.roa (hash: W97bDT/RSA5be4fQKA6RSGAhSe3TMElDjwqiTHQoDoE=)
2: 2ChPGM1EYEvdbQj02HjcYUVsQP0.crl (hash: P6Sv5tpF+pyLBGWIf6Udq7LIfJqlRHUPBonWxaUnSx4=)
3: 3mS5hMWhKlnGO3h-ssMwusOTMaM.roa (hash: f29QqM6z7OhHISNe7rHupfilJIPnryz8YS8+zsLSDfs=)
4: 50O5gbvFN5Br5PFCZ0m5Epfpvv0.roa (hash: fg+fIATIpZ9606ZSveJEyeNQUDVlB2iQjr4YCU2TQXw=)
5: N3iKduG1KyGp7acBh2WOJ0MD0zU.roa (hash: jQXzbIYq6Zxo8qPqawC1/jXuZoeWXKzx3rtmVr5KlSs=)
6: ZiRnzXkcSpJurhu_MyLUWMF4fjw.roa (hash: wqIirvJk9KhRbYG9hrmkySthdI26YxcHRINCM7935BQ=)
7: dh_dM1Q__KObsaKsgasBYaz1gyo.roa (hash: GY7xesyfU+gqGkJYAJ4MHZlVcXESZ6jYpENdGF3wOCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 09:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:9c:b1:a0:ef:f3:1d:c5:88:e5:99:23:14:a0:a0:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: Jun 29 09:01:26 2026 GMT
Not After : Jun 30 09:01:26 2026 GMT
Subject: CN=57a744e22e79f54c3bc1e3d76c3de0c97207909c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f4:9e:a2:63:3c:76:45:a2:b1:68:0f:90:64:
6f:98:16:df:ef:90:87:d2:5f:74:d4:dc:e3:08:26:
5d:17:2a:20:5f:84:84:23:c6:59:5d:b1:80:4a:17:
53:c8:2f:8d:18:87:d1:aa:c1:db:2e:f0:7c:87:8d:
42:1a:c2:b3:1e:24:78:38:6a:4e:68:7e:7d:6d:d8:
9c:03:99:2d:a5:8e:3f:06:24:72:1f:36:fa:17:8a:
a9:3f:7b:df:06:3a:96:f8:38:c2:b9:f0:67:1a:9e:
07:63:8a:43:ec:91:cf:a0:b8:16:54:d1:d5:b4:3d:
a5:bd:a7:2c:f0:5c:74:83:92:4e:24:5b:5d:eb:87:
fd:73:4c:4c:bc:2e:6e:25:4d:42:9f:25:a9:43:53:
bb:59:b1:b3:37:02:96:fa:e5:1b:2b:e7:2f:88:18:
20:76:34:f3:d4:bf:e9:9b:34:90:c4:1d:a4:75:80:
cf:b4:31:b0:6f:c7:6e:72:ee:bf:ff:9c:07:7f:9d:
b3:fd:14:c5:54:a2:7e:24:6a:eb:04:dc:54:8a:9f:
21:f1:91:4e:87:63:54:c3:c7:e3:63:07:21:80:3b:
f2:ff:f1:47:a3:11:1e:8f:3d:a7:63:67:83:ab:0f:
83:4c:e0:c5:1c:41:09:ee:11:05:b0:a0:3c:67:5e:
10:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A7:44:E2:2E:79:F5:4C:3B:C1:E3:D7:6C:3D:E0:C9:72:07:90:9C
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:c1:3f:c4:3e:9f:4d:d8:b9:a4:fa:5a:73:ae:6e:b4:48:46:
2e:6d:80:f5:f1:26:a2:8c:03:7d:9c:64:a6:32:4b:24:be:92:
ee:eb:8b:c6:51:4e:b4:88:04:89:bd:53:bc:ce:85:6a:e1:35:
4d:eb:84:a3:45:e4:2d:6c:2d:29:60:79:6d:41:b6:94:45:9f:
c3:0c:5a:8e:9a:c3:18:9c:7a:8b:b1:40:7b:68:3c:29:84:53:
2b:4e:f1:05:df:e4:f7:9e:d2:3e:3f:be:48:34:0b:f2:98:c8:
c4:73:f2:a1:26:a0:21:b4:cb:1a:1e:23:39:30:b9:df:97:03:
c2:36:6c:1e:a2:c9:2a:ad:8d:ee:72:8c:98:76:a4:16:d7:c1:
32:b7:7b:d7:62:2a:d8:89:6d:38:db:bc:28:89:fc:4e:03:7d:
09:b4:77:88:73:1c:35:1c:8d:df:c0:06:06:4c:d4:7e:19:96:
cf:92:01:f3:d5:c4:34:2d:49:f3:ed:ea:ce:55:d7:62:50:9a:
85:41:a7:fc:ae:d8:91:2a:9b:ac:8b:f1:22:a5:c5:5f:7e:66:
35:df:53:99:88:84:22:98:73:e7:72:fb:1c:20:5c:39:7e:a7:
0e:42:34:3c:c3:c9:53:66:2b:f2:4c:de:c9:42:ee:d5:2f:0b:
6b:eb:9b:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 15:43:16 2026 by rpki-client