Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
File: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft (raw, json)
Hash identifier: GdhDPOwABA3pDVbf7aYfEqcKnDils4nuUbGhcVHIWfE=
Subject key identifier: 03:26:AA:BA:F6:F8:F1:63:85:ED:E0:48:27:81:7A:23:D7:3A:FA:DB
Authority key identifier: DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
Certificate issuer: /CN=daddd1b636fe3df1df3d811f644583312a651337
Certificate serial: 019E28F02C655AC58F822571DACD90F30B6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
Manifest number: 1573
Signing time: Fri 15 May 2026 00:01:28 +0000
Manifest this update: Fri 15 May 2026 00:01:28 +0000
Manifest next update: Sat 16 May 2026 00:01:28 +0000
Files and hashes: 1: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl (hash: qB7TtjH8YWIw9w4sueYwac53Vv0bXlQKxDWshIgTc/s=)
2: Mvg3Mo5WSYjcX-Icj2bidj2_crQ.roa (hash: vVq/Mz8wGpzyBjkk9cQ+W/VRqd2BvaRyhDgc817bfY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 00:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:f0:2c:65:5a:c5:8f:82:25:71:da:cd:90:f3:0b:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daddd1b636fe3df1df3d811f644583312a651337
Validity
Not Before: May 15 00:01:28 2026 GMT
Not After : May 16 00:01:28 2026 GMT
Subject: CN=0326aabaf6f8f16385ede04827817a23d73afadb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c0:8b:b7:f8:b5:55:45:e4:5e:68:5d:8c:7f:
71:71:08:c5:88:9e:9c:fb:df:6f:c3:39:eb:69:29:
6e:06:be:ec:ca:92:47:a9:21:a3:67:a7:08:87:da:
39:bf:0f:95:92:34:cd:b7:ea:73:b5:13:4d:be:15:
29:92:27:27:d8:9b:27:23:a9:a5:cb:19:cb:6d:32:
57:46:5c:ab:61:13:de:f8:8a:31:0e:a0:63:63:db:
5b:75:3a:dd:05:e2:43:f2:d6:f4:10:7d:1d:c3:df:
c8:69:1b:3a:3f:74:33:44:11:42:a0:78:db:68:ab:
52:84:01:36:09:24:b4:dc:2b:f7:a9:7a:4c:77:5f:
24:c7:5c:c6:3d:7c:c5:19:8a:71:68:52:22:9b:a4:
81:04:14:77:61:25:09:da:39:c9:fe:c1:ae:29:67:
7e:ce:f6:94:7a:83:9f:7c:a6:f0:ef:04:05:c1:06:
13:66:c3:12:6e:cd:6d:53:0b:52:5a:e0:ba:07:f5:
81:14:68:55:3f:6a:64:cf:23:4c:7e:25:fe:56:b1:
c5:e5:b1:18:07:39:cb:ac:4e:fc:7d:60:30:e8:ae:
c5:f5:0f:8a:19:44:e2:4b:35:91:54:28:1c:6f:ad:
de:bd:47:26:15:1e:65:e4:cb:9a:f7:46:18:28:bc:
3c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:26:AA:BA:F6:F8:F1:63:85:ED:E0:48:27:81:7A:23:D7:3A:FA:DB
X509v3 Authority Key Identifier:
keyid:DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:1a:41:ea:75:0e:23:0a:97:a0:42:43:94:1c:6b:ae:84:cf:
4b:19:3b:8c:27:06:25:20:f6:32:6c:d0:e1:87:b8:f5:dd:d7:
83:70:d8:31:03:8e:a5:6c:22:8d:8f:12:d5:16:54:53:b7:30:
30:cd:4e:e6:c3:da:0d:f6:1c:01:50:20:73:cc:2a:78:e3:11:
02:91:a9:a5:29:c5:70:8c:b1:8a:7e:89:c0:03:b5:59:cd:1b:
8e:04:d7:32:bc:97:e9:8c:e7:2e:fc:a6:d0:16:5f:d5:63:49:
ae:29:ce:7c:06:7d:5e:d4:d3:d0:a3:6f:47:14:eb:dc:bb:f4:
26:1a:35:84:63:e7:39:aa:1a:51:a9:83:c4:70:ad:9a:a5:46:
54:aa:e2:9b:66:44:38:39:99:03:63:ea:1f:08:a7:52:fe:0b:
01:8e:a5:30:14:aa:2e:d9:06:8a:38:0d:c7:8a:39:b0:b1:7b:
10:9d:b0:58:cb:bb:7e:6d:de:12:6d:65:02:7d:16:fd:87:4c:
37:05:39:c4:2a:3a:42:96:9e:25:5e:e5:4b:10:a3:3e:2b:13:
b6:da:ed:4e:48:f4:94:1c:cc:b5:b6:d8:37:04:96:ce:07:dd:
53:2d:a8:27:3a:b0:f4:71:bc:09:72:ae:cf:eb:a9:9e:11:8a:
f8:f8:02:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 07:01:45 2026 by rpki-client