Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: PtOG+EkpK6cqnzZbh8f/iCCJhgeoAbpj7/9bDfRdIhg=
Subject key identifier: 3D:07:11:55:D4:95:5F:80:BE:BC:F6:55:69:4E:DA:B9:ED:53:59:02
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 019F18D6BEA8790363FEED0CD899AD74DD09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 198C
Signing time: Tue 30 Jun 2026 14:02:34 +0000
Manifest this update: Tue 30 Jun 2026 14:02:34 +0000
Manifest next update: Wed 01 Jul 2026 14:02:34 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: 27y5rAXSYwMenfu5MkoJsrxJ5LJPoevAINgRzr/wiTU=)
2: H5rz4CYgzmbUmnfGasi4U65AvKk.roa (hash: TO3cNYf9xWtPGa2S3JS5FwJuRn8xpuHQxouafZFM9ao=)
3: qrZor_4iuHhjWECNHuPoqjZgwRM.roa (hash: jTjQTNz6GwiMBlghpXe7c+6S4Cn1ehIr1K8g9CB/9Fs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:be:a8:79:03:63:fe:ed:0c:d8:99:ad:74:dd:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Jun 30 14:02:34 2026 GMT
Not After : Jul 1 14:02:34 2026 GMT
Subject: CN=3d071155d4955f80bebcf655694edab9ed535902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:bf:44:d4:53:e0:5b:2a:13:d0:fa:83:b9:a7:
4d:84:37:6c:13:8c:11:c2:35:77:94:63:08:95:88:
99:50:bb:5b:da:39:04:28:e1:aa:9b:46:14:d4:eb:
25:e5:49:24:cc:a0:92:4c:4b:f2:98:4a:44:8a:07:
7d:a2:2b:47:53:6a:28:fd:fa:5f:5d:c6:b1:2a:6f:
3c:b8:d4:e0:6f:c9:f6:5a:f8:bf:cd:46:c4:71:c2:
e9:14:ae:ad:33:31:3f:01:75:f0:56:6b:e8:8e:e5:
f4:c8:00:16:58:9c:a9:3e:ee:6f:d1:4e:85:aa:8a:
b6:8c:66:5d:36:28:d4:ec:cb:ff:f8:d1:eb:9c:18:
19:50:78:af:0b:f8:52:bf:72:1f:ea:55:1a:ec:fb:
d8:4d:ab:88:ab:f9:6e:1d:51:01:ac:90:bd:ae:e7:
25:01:a9:39:34:9c:38:1a:5d:0a:5e:a3:6a:0a:89:
b0:4e:7c:c1:2e:f9:08:42:30:8c:f7:3d:74:82:78:
82:88:3d:27:7a:e9:32:39:c3:be:97:48:9c:06:88:
e8:e7:ee:d3:9b:e1:14:53:e7:1c:05:4d:fb:24:ef:
96:9d:01:29:f3:f2:fd:3c:38:46:fa:12:0f:0b:e3:
b6:a8:bf:f9:59:31:e7:58:11:81:1e:2f:70:fa:cf:
09:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:07:11:55:D4:95:5F:80:BE:BC:F6:55:69:4E:DA:B9:ED:53:59:02
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:f5:9e:eb:2c:90:a7:17:22:67:35:17:01:80:56:e8:09:9a:
8d:a8:3a:fc:99:dc:4a:7b:ab:51:bd:53:70:a1:9f:ff:e0:09:
9e:2f:ca:69:a0:54:f8:f0:84:ea:d3:09:42:b8:60:d7:37:a0:
53:b4:91:57:df:f5:e0:dc:03:b3:71:8e:cd:8c:76:78:25:7f:
5a:01:a7:1b:92:81:c8:6a:2d:3f:ee:aa:97:a2:3c:64:18:90:
f1:cd:5f:a5:19:76:cb:6b:3d:12:c8:db:81:2f:5a:73:21:89:
52:ba:3f:87:55:58:c2:3c:03:67:68:e9:a6:48:2d:f4:f8:33:
c1:68:d8:1f:2e:5f:25:c7:0a:65:15:fd:d0:ec:42:99:f0:5b:
dd:40:35:2c:fe:d9:5a:b3:bf:46:9b:bf:75:37:50:61:dd:0b:
cd:2d:2c:a9:f1:fb:36:c9:ec:28:e6:45:fe:58:ee:01:ef:01:
47:eb:41:f9:78:67:58:a6:98:72:f9:7d:92:c0:a6:ae:13:6b:
68:dd:24:3b:8a:45:59:51:9f:fa:24:06:58:b7:71:9f:6b:89:
0c:93:4a:b5:53:2a:d8:45:ae:93:d0:76:09:76:26:92:b8:30:
6d:c5:23:49:2a:39:56:82:14:4a:e2:57:83:28:f4:34:75:da:
92:bb:9e:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:41 2026 by rpki-client