Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: Ur/Hx2RVFG06YwKJejAnFkWquPkxjF1Qkpzl2MpXyaU=
Subject key identifier: 53:8F:2D:D0:32:2C:56:73:CC:3E:44:7A:FD:06:12:8C:5C:B7:DA:43
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 019F14C24C974648C18424655EC0A173F8F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 18B5
Signing time: Mon 29 Jun 2026 19:01:45 +0000
Manifest this update: Mon 29 Jun 2026 19:01:45 +0000
Manifest next update: Tue 30 Jun 2026 19:01:45 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: C06BsE/WNDge2eQwH/C49qIkoCgYD1eoi2HjT6mB21w=)
2: xhpLteHeEuI9N2i0WjCkJHYwXtM.roa (hash: ZhHw/D8clg9QeWX4KlvzTONGmYlvYOv2tFZIA342W2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 14:12:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:14:c2:4c:97:46:48:c1:84:24:65:5e:c0:a1:73:f8:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: Jun 29 19:01:45 2026 GMT
Not After : Jun 30 19:01:45 2026 GMT
Subject: CN=538f2dd0322c5673cc3e447afd06128c5cb7da43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fb:46:53:ca:e5:e1:05:ad:82:63:13:fd:b3:
a6:ff:6b:b3:9a:3e:3e:9a:07:10:66:da:81:fe:f3:
7e:60:34:1f:35:f0:e1:f3:ef:45:aa:f6:69:8b:15:
52:ef:fb:78:b0:29:39:9e:8c:a8:d0:d0:0b:ae:2b:
4a:6f:35:be:56:73:ae:0a:fd:c0:d7:16:45:d1:c8:
75:53:d8:cb:12:b7:44:b4:b2:56:f8:1b:81:48:2b:
56:dd:1a:18:60:f2:32:1f:bc:10:a7:b4:05:63:de:
40:6d:d4:12:61:91:69:8f:8e:7e:67:85:fc:3a:8a:
45:9d:9f:0b:0c:29:a2:fc:01:91:bc:7b:4c:68:c6:
b6:c1:e4:e7:23:45:9f:9d:81:22:b8:5a:7e:5f:c5:
7e:77:f7:8c:60:fc:c3:d0:ca:df:f3:09:29:53:24:
67:14:89:5b:10:e9:23:5e:a2:a6:b4:a3:e4:67:3a:
d7:c3:af:56:5f:f2:ea:4e:cf:a0:cc:02:33:32:69:
4b:ce:5c:44:54:96:e8:14:cf:89:95:9a:db:63:07:
2b:65:82:fc:6e:f8:88:0a:27:3b:e5:31:49:56:c3:
30:e0:53:38:56:41:5e:ef:15:ea:7d:81:b8:94:d9:
b6:d5:29:d7:cc:32:ed:d0:5e:73:46:1b:e0:05:d4:
25:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:8F:2D:D0:32:2C:56:73:CC:3E:44:7A:FD:06:12:8C:5C:B7:DA:43
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:6a:b2:17:b1:4d:1a:08:d0:4c:1b:02:77:86:9f:29:6d:d2:
bf:d9:04:c2:f5:df:44:5b:67:b2:5b:0e:c7:24:43:66:ef:08:
5a:bc:fe:b8:90:85:13:72:0e:cf:4f:6f:24:0e:8d:e8:d6:f3:
95:a2:f0:0f:d2:07:42:6a:84:98:eb:0f:43:c3:67:f2:ae:3d:
6c:40:3f:32:d5:42:0b:36:7a:3b:a5:1d:f7:39:eb:d1:bc:b4:
00:e6:62:7d:c4:67:34:6e:5f:c5:da:02:c8:d7:62:c3:bc:1b:
e0:62:fa:e6:5a:cb:10:c6:9f:e5:d5:e1:6e:93:b3:85:c2:0f:
07:3b:26:b6:77:25:e9:08:fe:08:8a:5e:77:3b:82:57:fd:0c:
86:04:ac:6d:3b:cb:d5:7c:07:68:03:6d:74:96:49:69:93:3e:
9b:89:40:df:82:e8:a8:84:96:e2:2a:b7:37:3e:d8:04:20:b1:
ad:65:c1:11:16:51:10:33:a1:3a:e2:7d:75:bd:d7:1a:7b:12:
0f:4f:06:c1:43:c1:f0:d2:a0:9a:c3:d2:cd:15:36:24:6d:10:
82:a9:ab:8c:d4:45:54:b5:54:51:80:98:1e:b0:22:83:cb:df:
d6:e0:26:ef:13:4b:89:e2:2a:56:c9:74:4a:5b:30:56:47:7e:
b8:38:fa:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 23:12:09 2026 by rpki-client