Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
File: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft (raw, json)
Hash identifier: bkyt6O07+y3DEDPyUFtiBSLDKGAqhzkXCC/ipGrZHa4=
Subject key identifier: E7:2A:E4:8C:37:8F:4D:AB:8E:C8:68:EC:83:26:9F:A4:FC:64:29:B1
Authority key identifier: D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
Certificate issuer: /CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Certificate serial: 019EF94B52380D9E74655E1F1805A53E1807
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
Manifest number: 106A
Signing time: Wed 24 Jun 2026 11:02:03 +0000
Manifest this update: Wed 24 Jun 2026 11:02:03 +0000
Manifest next update: Thu 25 Jun 2026 11:02:03 +0000
Files and hashes: 1: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl (hash: PCZzXKS4LIzG/mgl5KZuzWNeTkobfsS4U6R+06dF5Xw=)
2: AvvuwRM1rXoB8yxstk4ZmsXgR1Q.roa (hash: G1ri1MeorzSK/rz57ShZ1na3AYjwABPoQHfjiBcWJn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 11:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f9:4b:52:38:0d:9e:74:65:5e:1f:18:05:a5:3e:18:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Validity
Not Before: Jun 24 11:02:03 2026 GMT
Not After : Jun 25 11:02:03 2026 GMT
Subject: CN=e72ae48c378f4dab8ec868ec83269fa4fc6429b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bf:dc:fe:e0:81:5d:0b:b2:dd:92:1e:ac:e4:
f9:3f:91:76:37:bb:1c:ed:51:0b:99:9c:68:1b:1b:
04:77:9c:a1:2b:c5:37:ca:fb:fa:02:64:a3:ed:06:
99:aa:c6:19:f7:ba:22:15:ce:1f:9e:ff:36:94:32:
91:72:c4:18:53:e4:2b:ab:b5:81:40:85:f9:09:6a:
c6:16:05:fa:4d:94:0d:34:ca:59:43:a7:60:8e:e6:
42:bd:f1:f7:41:55:08:c5:bf:73:0e:5a:44:93:ae:
53:b1:20:ba:99:e9:79:c6:47:d5:c4:2b:7a:67:7d:
d8:2f:c6:93:df:23:fb:81:41:97:94:24:f1:e8:1a:
89:d4:44:c6:58:48:f7:35:92:48:63:e6:11:a9:4a:
96:cf:f5:5b:de:a4:51:76:d9:ee:be:04:dc:7a:93:
a5:a0:dd:17:c4:8d:c6:b9:b4:b5:4f:83:8a:7e:42:
d1:86:5e:2e:9a:d9:38:f6:f2:fb:d8:3a:3f:a0:57:
44:27:53:0c:2d:44:90:b5:74:42:05:7d:d2:b9:9a:
2b:67:7f:d4:8f:8e:31:43:b9:83:c9:52:a0:b5:c0:
44:11:3d:24:cc:1e:4e:67:f0:36:ea:3e:25:27:ad:
a1:af:42:3a:83:04:7b:cf:a4:a7:35:6f:db:7d:d6:
e0:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2A:E4:8C:37:8F:4D:AB:8E:C8:68:EC:83:26:9F:A4:FC:64:29:B1
X509v3 Authority Key Identifier:
keyid:D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:f6:c9:36:e4:a1:3d:67:79:ad:6e:84:ee:f4:b8:fa:68:e0:
8f:7c:f8:6b:ce:4f:ea:ad:f2:21:ce:01:2e:a4:cb:39:38:ed:
2f:a1:c8:67:fc:6c:2a:f1:a7:20:07:0f:88:71:a6:c0:99:06:
04:63:ae:70:57:c1:c2:91:98:f4:92:c7:c7:d9:e9:eb:d3:38:
b3:54:ab:45:4b:e3:1d:0d:e5:a3:84:dc:39:3a:d2:1b:c5:ec:
d0:97:c6:3a:07:c3:69:6a:7f:50:cb:f0:bb:13:27:79:de:ad:
37:b2:c6:2a:dc:12:47:bb:83:a8:67:cd:60:a0:ec:06:86:02:
7c:ec:bc:b0:fa:0a:29:7e:84:a7:13:d7:46:13:8e:0e:29:30:
df:09:42:ad:0b:19:3b:de:82:d4:76:ee:7c:cc:77:25:ef:15:
f1:9f:a1:02:df:d6:9e:c2:9e:fb:99:e9:d6:98:63:84:0b:d5:
d9:8f:e8:f7:0a:b5:83:f4:24:66:a0:16:86:56:bd:fd:15:6c:
6e:9e:2a:50:f5:cf:ff:95:70:36:00:92:4b:8b:7a:6f:18:36:
5f:b8:e3:da:56:f4:28:a1:6b:90:26:e1:81:8b:6e:df:e1:39:
5a:1e:02:66:68:bc:ff:52:a1:82:4b:4b:1c:cd:6d:54:35:ac:
5e:4d:69:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 21:55:37 2026 by rpki-client