Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
File: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft (raw, json)
Hash identifier: zGYlNI/gu3T6+IqiY0dGhwQGlaR3EBw2ArEpsIEPnRg=
Subject key identifier: 39:E0:99:2A:3B:69:2A:78:A9:F2:BF:B7:3B:01:89:8E:F7:B0:AF:40
Authority key identifier: D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
Certificate issuer: /CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Certificate serial: 019E0BC0E3F14326970258A0300F24A543F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
Manifest number: 0FEF
Signing time: Sat 09 May 2026 08:00:50 +0000
Manifest this update: Sat 09 May 2026 08:00:50 +0000
Manifest next update: Sun 10 May 2026 08:00:50 +0000
Files and hashes: 1: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl (hash: H2Ziq5v0dU3MydgrHyaGRzTpikTdRXwqQ3c+bxD0j5A=)
2: AvvuwRM1rXoB8yxstk4ZmsXgR1Q.roa (hash: G1ri1MeorzSK/rz57ShZ1na3AYjwABPoQHfjiBcWJn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 May 2026 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:0b:c0:e3:f1:43:26:97:02:58:a0:30:0f:24:a5:43:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Validity
Not Before: May 9 08:00:50 2026 GMT
Not After : May 10 08:00:50 2026 GMT
Subject: CN=39e0992a3b692a78a9f2bfb73b01898ef7b0af40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ff:07:be:db:e2:a8:5f:2d:5d:75:09:e1:6d:
10:4a:0e:ac:7a:e6:e6:a2:ca:86:f0:1e:be:d5:c5:
15:ff:9f:d1:10:27:91:76:fe:eb:92:98:4e:72:60:
12:51:c5:64:3c:8f:0c:1e:df:af:23:40:31:2a:c2:
a6:e9:43:df:20:4f:af:0a:3f:a9:d8:16:90:46:f7:
01:cd:95:95:4f:28:21:9f:60:2c:da:43:d1:57:df:
e2:e8:6e:0f:5c:dc:ce:09:72:94:70:58:0f:01:7c:
89:03:63:cf:b9:eb:a6:fa:42:a6:23:52:de:e8:a2:
ea:54:34:5a:e2:e4:34:99:3f:dd:e0:ec:14:38:0a:
c8:a6:6b:8f:5c:db:35:ab:b1:23:39:17:2d:5f:d4:
75:4f:23:9f:5b:5f:71:f9:4f:6e:e7:c2:80:76:d4:
68:fa:57:81:db:79:93:23:74:8d:54:78:b3:a9:26:
69:5e:ba:4f:40:f2:9e:4c:e7:bb:b9:2a:73:17:32:
d9:70:b3:54:cf:bf:37:9d:2e:e4:d3:8a:3b:78:ab:
19:93:21:4a:11:fb:fb:9f:9f:ce:f4:43:fa:85:f2:
70:4f:c1:d7:0e:f8:3b:cf:c1:d0:57:7e:89:02:db:
5c:09:ec:62:4b:29:47:36:4f:35:17:46:3a:3a:4a:
c5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E0:99:2A:3B:69:2A:78:A9:F2:BF:B7:3B:01:89:8E:F7:B0:AF:40
X509v3 Authority Key Identifier:
keyid:D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:cd:13:e5:5a:06:03:e0:9a:fb:24:b4:55:65:07:2c:25:b2:
31:41:04:a6:6a:91:63:ea:73:54:a4:71:0f:0b:96:06:63:c4:
e0:99:0a:84:84:f7:fd:05:1b:cb:63:af:5b:83:98:f8:63:76:
79:bb:aa:6d:e5:a2:28:5c:62:61:59:1c:be:24:73:c1:49:0b:
ad:7b:d8:f8:03:5a:f2:7c:00:cc:93:cc:2f:04:12:f9:91:a7:
e3:99:4c:ee:40:ba:19:9a:64:52:a0:77:86:ca:c8:b8:c0:06:
2b:ad:46:be:9c:d7:87:dd:24:58:e0:1a:bb:08:26:8c:80:86:
fe:5c:fb:46:4f:97:42:45:eb:c1:f2:e3:72:82:9c:12:de:bb:
a7:51:31:3d:85:97:a1:25:98:1c:31:d9:84:ac:38:f9:a1:89:
aa:d5:56:2f:da:a5:8a:54:1e:72:2c:20:8a:85:ac:fc:c6:7c:
d9:6e:e7:ab:40:98:e2:dc:52:5a:75:4d:f2:cb:6a:48:35:a5:
0f:c7:00:f8:43:82:6b:cd:85:26:84:cb:0e:70:f1:a8:58:83:
22:f1:d5:eb:5a:ba:cf:5f:fb:f2:9f:a7:58:1f:f3:a1:d6:8f:
6f:e5:3c:54:86:2d:f6:60:89:98:b5:a0:c7:98:66:fb:cc:b5:
cd:5a:c5:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 14:45:15 2026 by rpki-client