Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: ktD25q9WMcN+8vM07mf+7I0nCPirTnHgazXYKPMR8xk=
Subject key identifier: AE:3D:A3:79:5F:F8:85:95:0E:74:20:3C:D4:19:D0:2F:3D:65:15:2B
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 019E2B15DF32BE0BB905C799937FD81D3CD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 183C
Signing time: Fri 15 May 2026 10:01:53 +0000
Manifest this update: Fri 15 May 2026 10:01:53 +0000
Manifest next update: Sat 16 May 2026 10:01:53 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: I9QzPdi8B/FasIVsGGUTFCuWj2yqJ8plbxTOLE1iHBw=)
2: xhpLteHeEuI9N2i0WjCkJHYwXtM.roa (hash: ZhHw/D8clg9QeWX4KlvzTONGmYlvYOv2tFZIA342W2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 10:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2b:15:df:32:be:0b:b9:05:c7:99:93:7f:d8:1d:3c:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: May 15 10:01:53 2026 GMT
Not After : May 16 10:01:53 2026 GMT
Subject: CN=ae3da3795ff885950e74203cd419d02f3d65152b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:eb:bb:05:30:b2:21:88:b9:35:37:27:da:f4:
0f:92:61:93:de:3b:72:71:ee:c2:2a:f5:b3:a3:6c:
61:bc:7c:2d:bd:a2:aa:fd:19:40:3e:cf:33:43:3f:
b4:75:dd:98:9b:e5:2e:84:0f:8b:8b:41:5c:54:0c:
21:84:34:16:2a:f4:ef:bf:3f:0e:c4:eb:f2:89:51:
dd:5f:29:40:19:52:ff:c2:3e:e2:cf:a7:64:53:94:
fa:5c:ef:74:25:fb:bc:c3:8e:98:b9:78:96:eb:43:
12:ec:e1:af:c1:65:4f:9f:12:ff:e8:07:23:1e:7d:
de:f4:54:e5:cf:21:fb:c0:ba:1b:f5:ca:90:2b:80:
0b:3e:46:b3:6f:e8:f2:cf:1c:39:9a:16:65:28:bb:
46:3b:df:82:72:57:a7:5b:17:65:b1:4e:d0:ef:c0:
a1:bd:ba:14:ef:e4:eb:08:0f:e3:6f:79:9f:60:c2:
ef:17:20:f6:39:1b:55:c9:c7:08:1b:52:da:1f:5b:
c2:c2:e0:63:ca:d3:c1:33:10:eb:00:ee:20:d8:89:
4a:06:a5:d0:ef:46:44:45:1f:76:d8:ed:86:8a:a7:
c7:20:bc:36:75:92:b4:8b:8e:95:83:dc:db:49:12:
60:df:5f:8e:cb:8a:d4:ba:0e:bc:a9:7e:d3:26:5f:
ca:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:3D:A3:79:5F:F8:85:95:0E:74:20:3C:D4:19:D0:2F:3D:65:15:2B
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:16:21:af:72:6b:57:14:b5:68:75:bb:56:8e:73:2d:51:e7:
c0:80:77:05:f8:5d:48:6b:c0:6b:1e:4c:74:10:01:d4:13:35:
cc:a6:8c:fd:35:7e:aa:89:bc:19:b8:72:81:46:62:f3:ae:ef:
73:77:7b:24:b8:1f:82:20:ae:b6:a6:21:92:3f:83:a4:05:ce:
e4:ac:7f:c2:94:72:bc:6f:e7:92:2c:e4:51:58:66:8b:bf:23:
ec:93:c3:97:52:57:c5:06:7e:f8:2b:6a:0c:10:d8:62:4a:bf:
cd:05:83:44:04:55:6e:0f:63:4c:b8:ed:a1:1a:20:df:07:47:
40:57:ba:d0:be:c2:0e:e0:83:73:2d:d0:c0:63:eb:38:c6:b7:
42:a3:38:a2:cf:4b:40:16:7e:5d:4e:5c:e7:c8:5c:15:e8:b5:
dc:3c:47:f6:55:15:8f:1b:0b:d5:23:40:e2:a7:9e:79:61:50:
60:0e:21:c5:30:3b:95:ac:e1:0d:80:12:0c:c4:f1:db:50:77:
22:4c:8a:e3:32:5e:45:cf:ed:c0:53:31:4b:96:b4:7c:8b:35:
da:2f:6f:b3:ff:3e:ca:ba:78:37:06:42:46:f4:1a:e9:cb:82:
cb:99:83:10:7b:e4:9e:d6:b6:b5:4a:21:86:c4:d9:64:16:0f:
3d:45:9c:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 16:10:53 2026 by rpki-client