Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
File: 2sedKFW4l0GCCNR7puUUYAFbXXs.mft (raw, json)
Hash identifier: SEDJm1IPQhTSWYGGLERu6KzMeM+vSrnQnCFPwUChz+c=
Subject key identifier: 5E:3B:99:8A:2D:3E:58:CB:4F:14:18:AE:23:05:94:36:43:1D:F6:70
Authority key identifier: DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B
Certificate issuer: /CN=dac79d2855b897418208d47ba6e51460015b5d7b
Certificate serial: 019F186741EDC3E1FAEB7A6B019D9C80DC50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
Manifest number: 1989
Signing time: Tue 30 Jun 2026 12:00:47 +0000
Manifest this update: Tue 30 Jun 2026 12:00:47 +0000
Manifest next update: Wed 01 Jul 2026 12:00:47 +0000
Files and hashes: 1: 2sedKFW4l0GCCNR7puUUYAFbXXs.crl (hash: CdhwWgS2BjObvRcmIFoimlHs711jipLeT8eC/3XHQ/Q=)
2: W0kRvlqE-31Sr-Gr1-WP6xucUMc.roa (hash: gwMXWawf0NyUE9CiPlgwtD8ZYkvJzBBryShpQ/lSl0c=)
3: vU_maC-JH0IvkViWYKyQOXCGBcE.roa (hash: NRSTpXd/DsQ6yidtnBy9uKfhJ+R2u9Rlp24X6kqd1ao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:41:ed:c3:e1:fa:eb:7a:6b:01:9d:9c:80:dc:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac79d2855b897418208d47ba6e51460015b5d7b
Validity
Not Before: Jun 30 12:00:47 2026 GMT
Not After : Jul 1 12:00:47 2026 GMT
Subject: CN=5e3b998a2d3e58cb4f1418ae23059436431df670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:13:d9:0b:8b:44:6a:8a:bf:eb:6a:3a:a9:30:
ff:4c:b1:30:ff:bc:b3:ea:a7:7a:fc:25:92:99:a0:
43:78:57:8b:99:9a:ef:9f:1d:9e:de:42:38:c0:ea:
ed:b6:1d:24:4e:2f:73:2c:3a:1f:ab:62:62:66:23:
26:33:02:ac:d8:e7:54:3d:94:ac:7c:02:9d:16:a1:
b6:46:0b:6d:bb:4f:b2:e3:5b:ec:60:9a:aa:2d:fb:
9a:6e:8a:98:d3:ca:b3:1e:cc:d6:ad:1e:73:f4:22:
04:02:bc:99:c8:f4:6c:c8:c0:3f:a3:79:ce:7d:b9:
ba:8d:9a:ef:2a:24:2e:d9:ba:3b:bf:87:fa:c5:87:
24:88:d7:a6:88:18:77:e4:ae:11:27:e3:d6:fe:9a:
13:b1:55:8b:ea:d9:1e:ec:0c:cd:fa:b1:82:7b:63:
7a:ac:0b:5b:59:1c:69:ac:08:e1:1a:d4:d9:61:e9:
85:ef:d5:5a:ed:23:ce:e2:82:96:07:8c:c8:51:61:
13:07:85:1f:f1:3c:2f:79:bb:5e:58:06:5c:9f:eb:
c5:66:64:1e:f4:98:a2:e1:46:88:3c:e3:0d:97:0e:
de:be:59:1d:5a:3f:22:36:10:a2:88:87:3e:5f:4c:
25:b3:d4:dc:2c:88:3c:ec:16:9c:59:24:e7:96:37:
fd:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:3B:99:8A:2D:3E:58:CB:4F:14:18:AE:23:05:94:36:43:1D:F6:70
X509v3 Authority Key Identifier:
keyid:DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:a0:aa:9e:21:59:6b:28:bc:ef:b6:44:c5:43:37:2a:29:8d:
08:2d:d2:23:a0:40:39:03:4e:ca:ad:c0:88:1a:77:d6:75:eb:
42:7e:89:0a:c8:e4:6e:36:ca:da:ea:3b:75:f7:53:e8:9b:87:
01:12:84:7c:3d:25:85:8e:5f:9b:79:7d:3c:c8:e2:30:82:2a:
fe:ab:7d:dc:d6:e6:92:3c:69:25:50:30:5a:62:f9:86:f7:92:
dd:3f:ef:87:28:12:51:53:85:ab:6d:10:67:40:24:13:28:04:
77:d5:b8:56:9c:cf:c9:38:f6:48:07:54:cf:32:f1:cb:60:70:
af:90:9c:f4:8a:3f:9e:18:d5:6a:93:05:82:d4:b2:ef:92:3d:
fa:cc:9b:0c:c4:10:71:f5:9a:43:3a:fe:a2:78:ca:5a:ef:34:
60:5d:a3:87:ee:b8:b5:97:83:f1:48:1e:41:3a:6c:49:cb:ea:
a4:8f:28:c6:d3:52:fb:a4:2f:01:6c:47:72:e4:46:9c:06:94:
5a:80:9e:e8:f6:9f:97:a4:94:48:41:3d:11:e1:06:3e:69:ea:
ad:b3:98:64:30:5a:73:74:12:5a:82:f6:94:21:89:9b:50:22:
bf:27:31:0f:13:b2:57:b9:29:f7:41:b6:2d:81:19:c5:49:29:
2a:a5:9e:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:30 2026 by rpki-client