Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
File: 2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft (raw, json)
Hash identifier: y9M1mxGKRRZKBWcRqu19WYpWOQwDFseqqC3O1FRgNZk=
Subject key identifier: F0:9A:10:EC:05:F6:82:8C:6D:FE:52:DC:45:98:FA:0A:1F:CE:30:20
Authority key identifier: DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F
Certificate issuer: /CN=dae57631f60adb13f0ae368671ce0f8742f5977f
Certificate serial: 019F178BFA34FDFAF448C6366473260B24E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
Manifest number: 1982
Signing time: Tue 30 Jun 2026 08:01:17 +0000
Manifest this update: Tue 30 Jun 2026 08:01:17 +0000
Manifest next update: Wed 01 Jul 2026 08:01:17 +0000
Files and hashes: 1: 2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl (hash: 8KxEL7kQgMS+E+tV1/GL/Fv0YdNjUyIAwc6Ul9/mn7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 08:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:8b:fa:34:fd:fa:f4:48:c6:36:64:73:26:0b:24:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dae57631f60adb13f0ae368671ce0f8742f5977f
Validity
Not Before: Jun 30 08:01:17 2026 GMT
Not After : Jul 1 08:01:17 2026 GMT
Subject: CN=f09a10ec05f6828c6dfe52dc4598fa0a1fce3020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e1:55:41:0c:08:4a:e3:cf:76:65:47:90:1c:
da:3c:59:f8:e7:03:9f:4e:8a:14:ba:f6:9c:3b:51:
8c:07:e0:07:47:07:25:0e:8c:c6:23:bb:5e:0d:d2:
d4:e2:19:2c:16:cd:7f:c5:63:07:8e:ae:9c:85:69:
9f:d3:54:06:12:6a:ee:23:ae:ea:a7:9e:f9:c4:7a:
44:c0:a5:5b:9f:7b:7b:26:d0:01:32:6c:24:47:d8:
73:84:e7:df:4a:5d:bb:9e:ca:8d:e7:3d:4e:94:44:
71:74:e1:b0:e0:4d:02:33:d2:66:af:ad:ae:4b:54:
b8:f9:23:2c:6a:f2:ac:b9:e2:df:85:29:67:79:36:
87:25:03:2d:4e:4e:a9:dd:16:5e:34:89:f5:9e:6b:
18:cd:8c:d3:3a:13:ed:f7:e7:1d:4d:03:4e:2b:68:
53:6d:37:23:2d:8f:87:49:eb:42:41:33:15:67:7e:
e8:c1:ab:70:95:fa:07:bd:8e:fc:95:35:e2:3c:6f:
09:32:a0:de:dd:88:d0:68:f0:32:1e:0b:54:d4:19:
de:91:f5:7a:5e:15:92:4a:41:97:ab:38:1d:42:16:
f5:6a:ad:bb:f8:e6:17:25:93:c9:b3:be:ea:0c:69:
99:e7:98:e5:2a:54:df:c6:4a:47:6a:69:b5:b6:1c:
15:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:9A:10:EC:05:F6:82:8C:6D:FE:52:DC:45:98:FA:0A:1F:CE:30:20
X509v3 Authority Key Identifier:
keyid:DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:51:1a:be:bc:3d:b5:dd:35:b5:e8:ef:a5:b4:e6:27:95:52:
47:b3:7b:a5:74:a9:0c:6d:1c:8c:50:52:44:07:b2:4a:f6:03:
28:14:a1:9c:62:be:7b:c7:10:c0:00:2d:1a:07:89:ad:cd:5d:
aa:cd:e5:75:10:c3:cf:c6:3d:83:5d:89:45:49:6e:b0:db:c3:
14:4e:a5:13:6f:c6:18:41:cc:5b:f8:ef:34:49:e6:83:a2:cb:
ad:c4:cf:90:69:1d:80:d9:4a:f6:a0:a2:03:55:b8:fe:f5:66:
b0:99:fc:ac:89:62:d6:c9:02:02:35:cb:a0:6d:5c:a4:cc:f0:
c3:80:e0:4f:f9:88:07:72:c7:e9:5f:84:5c:26:16:18:8e:6c:
99:50:b7:1a:9a:18:49:a8:9a:ad:62:03:74:78:d2:f1:d9:53:
44:a1:2a:22:ab:6f:65:96:df:0f:81:53:73:ea:45:5d:ef:3c:
2e:7d:30:bf:db:7a:0f:9f:34:8a:e9:b8:24:fd:65:51:6f:54:
68:5d:d9:4b:5f:99:a8:d2:1f:86:a3:01:6f:43:fc:f8:1c:82:
4a:d1:8b:39:aa:b0:0d:8b:af:fd:1b:ad:e9:9e:d0:bc:e8:8a:
65:7a:0e:4d:0e:c6:dd:59:64:bc:50:9e:d4:df:10:47:65:35:
c6:44:1d:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:19:45 2026 by rpki-client