Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
File: 2CsoRvCTvJQWBBvmiix4MWHrBN8.mft (raw, json)
Hash identifier: 4QVnyGXSGeB19LLW2lCxlBM4reF5tZkzHoJ3agtAZmc=
Subject key identifier: 41:1A:D2:CA:52:35:9B:9A:8F:0E:DF:37:10:63:C9:91:F5:8A:68:8B
Authority key identifier: D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
Certificate issuer: /CN=d82b2846f093bc9416041be68a2c783161eb04df
Certificate serial: 019E3072FF72E65FCBAF2ADE805F71C6F824
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
Manifest number: 0AB8
Signing time: Sat 16 May 2026 11:01:43 +0000
Manifest this update: Sat 16 May 2026 11:01:43 +0000
Manifest next update: Sun 17 May 2026 11:01:43 +0000
Files and hashes: 1: 2CsoRvCTvJQWBBvmiix4MWHrBN8.crl (hash: bu1X+RaiF5ELvcdYg6pFFkPW8XQAbcMruNvfa7QmNJg=)
2: xvjr_8JqIZkbED7GUsRWo_s5EPY.roa (hash: FiH4mjXZzCr8o0pEvyEmejvpAQkDbsQib4uDB3k7p1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:ff:72:e6:5f:cb:af:2a:de:80:5f:71:c6:f8:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d82b2846f093bc9416041be68a2c783161eb04df
Validity
Not Before: May 16 11:01:43 2026 GMT
Not After : May 17 11:01:43 2026 GMT
Subject: CN=411ad2ca52359b9a8f0edf371063c991f58a688b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d3:3b:49:39:6f:fd:53:fa:bf:f7:ad:0d:5e:
9c:8d:2b:5a:95:d6:5a:6d:1d:9f:f6:8a:bc:95:89:
28:8b:3b:5a:77:5c:b4:2a:ad:00:13:f0:b9:89:bd:
e2:43:53:db:3d:c1:7f:7a:4b:0f:43:68:6c:f0:b9:
4d:9d:da:c4:1a:2e:88:32:38:94:1e:e1:74:8c:e5:
3d:2d:f4:7e:21:e7:74:a6:13:a5:06:5a:fa:db:96:
0c:ce:cc:1c:e4:dc:47:57:55:97:e7:6f:82:74:02:
d9:2b:55:c5:5c:6f:20:82:f7:c0:e7:5a:07:fb:f1:
59:e7:2c:92:4b:b3:84:e1:9d:86:3c:da:7d:19:0b:
1d:7a:07:6f:d7:b4:ad:30:d4:b0:df:5b:d1:ca:39:
58:b1:48:ff:cb:3b:2f:28:ba:f7:89:19:f6:44:67:
ca:03:26:19:ca:27:94:bc:95:b6:86:e6:71:0d:d0:
3b:7c:8c:36:49:01:9b:16:78:3e:ed:ef:ec:55:e9:
a7:4c:93:1a:4b:23:17:43:93:9e:18:ee:e9:37:9c:
47:b6:92:a0:5e:ba:3b:21:46:d8:62:31:85:d2:33:
98:e9:22:a2:f9:65:7b:dc:99:bb:3c:2f:c8:14:00:
eb:e6:f0:61:44:36:48:ff:3a:2e:63:a7:ec:36:ee:
48:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:1A:D2:CA:52:35:9B:9A:8F:0E:DF:37:10:63:C9:91:F5:8A:68:8B
X509v3 Authority Key Identifier:
keyid:D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:46:ec:48:32:62:2b:93:4d:61:9e:3a:8b:a8:c0:7a:0c:f2:
d9:33:52:a7:f1:1c:2e:bc:71:cc:d3:37:2a:51:1c:9e:d8:fa:
b3:b9:a3:61:fb:b6:5c:1f:65:ab:5c:20:56:59:37:1f:61:64:
4a:b6:b5:9c:43:ba:d2:f7:7f:e9:fa:55:be:62:a6:74:d0:47:
dd:b2:03:e6:58:71:93:a9:04:83:c8:79:29:c9:41:b4:a1:3d:
61:8f:24:13:b1:ea:9f:7f:40:8f:55:15:80:42:a4:70:ad:41:
58:bc:48:e3:ff:02:f9:4a:ce:9a:d5:7d:9a:ab:d6:8d:25:3a:
35:da:a3:00:ac:40:9e:6f:74:57:8a:b8:36:e9:0f:35:29:62:
cf:05:26:49:33:ce:6e:b6:83:7d:3d:e1:f6:82:b7:31:61:52:
30:96:53:2f:6d:5b:e0:9a:48:5b:f9:ab:da:ce:9a:d3:4c:f8:
4c:5e:08:c3:0e:85:ca:c3:f8:e0:7f:62:35:bf:b4:37:55:65:
cb:84:ef:49:dd:d2:de:1f:d9:5a:d8:e8:09:6e:9c:59:bd:42:
74:49:6c:6b:e5:09:57:2b:f7:0d:eb:c3:c4:e2:ff:5d:c7:33:
71:e7:52:de:b3:9b:58:af:16:e6:5f:d1:09:ef:c3:54:5c:59:
f9:7d:a7:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:25:00 2026 by rpki-client