Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
File: 2pa1va-ygzLa_oR87RT3pfrUXmk.mft (raw, json)
Hash identifier: 0rZFrX6tSbhNwKQKWdJ2Wp6YV75JM5W9x21afs1O/Eo=
Subject key identifier: 39:1F:05:66:6A:40:A7:B2:20:F2:31:1D:95:DC:21:C5:0C:77:5C:32
Authority key identifier: DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
Certificate issuer: /CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Certificate serial: 019E3117CDF9D799231A8160BCCF99CD7DD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 14:01:44 +0000
Manifest this update: Sat 16 May 2026 14:01:44 +0000
Manifest next update: Sun 17 May 2026 14:01:44 +0000
Files and hashes: 1: 2pa1va-ygzLa_oR87RT3pfrUXmk.crl (hash: TWA2zkCaGUJUeMAEw13JbdLhNURL+oh43L9hrnfdR7M=)
2: IBEMSBQMUEmyoGfT9mnmlgVNZhU.roa (hash: SbS7D44DDA57I288AbbBNyIpLwW/oby6dFq63a7XwRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:cd:f9:d7:99:23:1a:81:60:bc:cf:99:cd:7d:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Validity
Not Before: May 16 14:01:44 2026 GMT
Not After : May 17 14:01:44 2026 GMT
Subject: CN=391f05666a40a7b220f2311d95dc21c50c775c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:2c:8f:b2:58:5a:7b:0c:78:05:19:1f:9c:30:
12:7c:7f:b9:4a:dc:4f:cf:36:ff:4f:85:c1:85:82:
98:e2:0f:78:36:f1:23:e3:a9:9e:a0:bf:ca:f6:97:
4e:ab:9b:e2:fe:e5:da:30:86:12:f8:25:4b:11:de:
1c:88:b5:8b:97:15:54:66:4e:b8:6c:e0:7e:88:5d:
55:82:ec:da:2d:64:f5:d9:b2:2e:71:c8:63:48:60:
7d:67:7c:de:0a:f8:fa:f3:e2:28:6a:71:9d:65:d4:
99:0a:5e:9b:e5:81:b7:c1:33:19:8d:23:00:1c:70:
db:74:20:81:ff:7f:9d:57:7b:3a:6f:11:12:60:e0:
d3:0d:30:25:da:57:a6:e5:ce:80:05:62:60:5c:db:
e0:2c:03:1d:25:3b:84:2f:1a:fc:2f:1e:88:7c:53:
1d:01:94:71:87:59:a9:3c:ab:96:b1:67:90:01:f4:
1c:31:b2:09:bd:e7:b7:3c:47:9d:17:a1:24:5d:c9:
0f:b3:73:a2:b5:1e:6a:ed:24:8c:3a:c5:83:e4:cc:
cd:4d:6e:a1:4a:de:ba:88:de:3f:36:de:1d:61:5d:
c9:5b:d3:0e:41:44:82:ff:32:f8:ad:13:a2:1f:b5:
ca:f6:d8:78:78:e5:a0:83:7c:c9:4d:d9:3e:14:67:
ae:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:1F:05:66:6A:40:A7:B2:20:F2:31:1D:95:DC:21:C5:0C:77:5C:32
X509v3 Authority Key Identifier:
keyid:DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:4b:74:1d:ae:13:9f:d0:4f:45:bf:2f:7b:59:8f:d0:18:09:
a0:a1:46:18:59:7b:07:a1:69:95:a3:83:71:18:b7:05:ee:ce:
ea:41:ca:29:07:50:dd:8a:74:bc:ef:05:5f:de:d3:25:6f:1a:
32:ce:55:a4:9a:83:97:47:47:fc:f1:9d:1d:97:58:67:d4:35:
4b:51:46:e1:bb:31:1a:dd:a7:1c:ed:80:9f:51:0b:47:4d:02:
fe:6a:ea:0f:14:86:7c:91:8c:20:9d:da:4b:81:f4:28:69:b2:
f3:eb:a0:0c:91:72:cd:34:19:a3:ed:49:9e:f2:3f:16:59:96:
d2:ed:f4:1e:f8:5d:8e:5a:dd:9c:ff:aa:66:af:0b:f6:0c:f8:
31:b5:8d:8c:97:02:a1:3a:6a:38:d1:da:7b:dc:e3:ac:f7:1d:
3b:ff:7c:af:08:3d:39:6c:37:fa:11:12:c0:8a:6d:1e:9d:f2:
ba:5b:cc:0d:de:b4:75:02:00:92:b4:3f:86:12:74:a4:e4:20:
b0:b6:67:26:27:b8:3c:c9:55:b6:42:59:c5:d4:14:c5:c6:a6:
3a:47:af:65:3d:f8:72:39:8f:14:d7:71:96:a1:65:8d:59:81:
bf:e8:89:5a:13:75:6b:4d:80:0c:67:53:98:21:49:58:f7:b8:
1e:c5:67:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:32:04 2026 by rpki-client