Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
File: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft (raw, json)
Hash identifier: jhkdRS6djTYxaIZpudJjLcmLP/OWCGAQqczUauLTBE4=
Subject key identifier: 84:65:32:DA:0F:B8:90:10:2D:59:50:0F:BB:D6:94:9B:21:00:15:27
Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Certificate serial: 019E2F5FEA60FFF16D00A5B9958493173DC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
Manifest number: 109F
Signing time: Sat 16 May 2026 06:01:15 +0000
Manifest this update: Sat 16 May 2026 06:01:15 +0000
Manifest next update: Sun 17 May 2026 06:01:15 +0000
Files and hashes: 1: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl (hash: X02lQijXH8oZ8NjB4g8Qy8cFe6CnD2v28NfJA6cfhss=)
2: XGXdZuWArU8DUaMKbDMpc7L7WG4.roa (hash: b1uv3hiq3QuqB6rWvknFaAIJIJ6UZQWlgoHNYzcvoDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 06:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:5f:ea:60:ff:f1:6d:00:a5:b9:95:84:93:17:3d:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Validity
Not Before: May 16 06:01:15 2026 GMT
Not After : May 17 06:01:15 2026 GMT
Subject: CN=846532da0fb890102d59500fbbd6949b21001527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:06:eb:78:db:00:be:20:55:46:de:66:8a:c3:
97:6d:ad:23:e5:f7:be:3f:39:bd:30:33:02:47:19:
12:15:96:7d:b8:d1:5d:b9:a5:3e:b5:43:f3:2a:bb:
71:1b:0d:2b:86:af:b9:20:25:5a:03:0c:92:3e:e0:
ce:24:64:b4:6e:1c:4b:e9:3a:d6:70:13:a7:4e:b4:
20:b3:cb:16:62:ce:ff:ae:96:8a:47:37:4d:4d:6d:
8f:35:08:fb:0b:67:90:4f:5a:3d:fc:f6:02:a7:b4:
be:ad:aa:2d:db:60:e2:b0:00:73:5a:57:59:f3:8e:
83:16:77:c1:b2:30:08:6a:1c:7f:4d:0d:6d:2f:9a:
f5:3e:0a:f6:37:c3:62:d6:75:90:64:8e:09:d6:a2:
59:fb:c7:17:1f:37:b0:cc:0a:84:54:63:81:2d:4f:
2f:d6:9a:14:1f:d2:a4:18:2c:3b:0f:d7:75:a8:9f:
1f:83:d3:81:d3:82:22:8d:1d:e8:6b:59:3f:c2:08:
83:25:8b:c8:b7:49:83:a2:56:6b:1c:01:9a:66:2c:
32:a9:09:e0:f9:fc:e8:c6:95:c9:14:3f:5c:6d:92:
c2:74:fb:d7:f6:a2:d5:7d:8c:2f:36:1c:d0:28:74:
a9:4b:9d:ec:ad:04:e3:c0:34:10:7e:53:7e:10:e6:
e1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:65:32:DA:0F:B8:90:10:2D:59:50:0F:BB:D6:94:9B:21:00:15:27
X509v3 Authority Key Identifier:
keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:a4:02:f2:4f:56:f1:68:2c:cc:67:b2:6e:30:7f:23:f8:53:
44:f7:0b:ca:b5:7b:5b:79:a0:aa:49:30:34:fc:65:b2:ce:83:
1d:0d:ac:c5:25:55:e0:e5:d0:31:15:98:ca:10:c7:5d:76:bc:
1f:72:cc:fe:29:2c:cc:35:3e:26:4f:55:60:d3:c3:a4:47:f3:
5f:fd:47:08:b6:cd:fd:2a:f9:ca:34:a0:1c:29:a7:ed:3a:88:
18:af:bb:9a:3c:4a:a7:7c:80:ce:4d:de:ad:5a:c8:a1:cc:62:
c8:7f:82:07:ff:0a:2a:35:ba:ac:29:bb:27:12:a5:7c:56:3c:
fa:b2:2c:4a:52:71:e7:24:20:bc:dd:e6:97:3b:5a:d7:69:02:
2c:00:c9:30:28:c9:c8:38:64:8f:47:37:9b:43:a7:e2:4d:dd:
f8:bf:17:64:07:49:32:e5:a3:44:01:c2:c2:62:f7:a0:6b:90:
86:c6:83:b5:6f:9d:30:67:c3:b2:be:3c:20:15:ed:3c:e0:25:
46:d4:35:af:8f:3a:fb:a3:80:dc:18:9e:33:9a:c7:9c:9b:3d:
ec:09:6e:c9:ca:c3:57:77:14:0e:d1:1b:2f:29:dd:db:2d:b5:
51:43:4e:c8:6b:16:92:2e:9a:e6:67:ac:b3:32:72:91:87:1b:
20:c5:e1:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:22 2026 by rpki-client