Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
File: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft (raw, json)
Hash identifier: U2EiXukkJ2z+0Qdqls0mhGkoMY+NITU+vMN7td3DC6E=
Subject key identifier: E8:D6:5C:53:32:F9:E9:F8:72:F3:A9:ED:75:17:84:2B:2C:12:5F:E1
Authority key identifier: D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
Certificate issuer: /CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Certificate serial: 019E30A8F8093EB55DA304A1E9078CFF4B40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
Manifest number: 1910
Signing time: Sat 16 May 2026 12:00:40 +0000
Manifest this update: Sat 16 May 2026 12:00:40 +0000
Manifest next update: Sun 17 May 2026 12:00:40 +0000
Files and hashes: 1: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl (hash: Ogw4Akypw+F/2PcnmZOXu4tr9XqbSoNMq6BWcSua4tA=)
2: LpFRmX9PzrWkSCAE9MBkhoB4NC0.roa (hash: O5h6RKwcek/boNWUKWdfTylprmmWoB0fVIyV7iyo7Aw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a8:f8:09:3e:b5:5d:a3:04:a1:e9:07:8c:ff:4b:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Validity
Not Before: May 16 12:00:40 2026 GMT
Not After : May 17 12:00:40 2026 GMT
Subject: CN=e8d65c5332f9e9f872f3a9ed7517842b2c125fe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8b:c2:51:bc:1c:6a:9b:34:15:a7:f4:43:db:
d6:72:c0:9a:14:9a:4a:eb:6e:c8:94:b3:34:54:6f:
39:dc:75:aa:73:2d:a1:48:16:4d:3c:5b:89:12:98:
8e:a7:8c:61:d3:0d:62:90:85:79:ba:fa:68:7d:98:
48:66:a6:61:d2:02:a9:97:25:0b:19:d1:a0:85:d2:
8b:b7:a8:57:b5:0c:1b:46:db:3d:9c:a5:b2:0a:d4:
98:dd:9b:4f:d0:9e:ae:12:04:68:46:f5:95:8e:92:
c5:16:4a:dc:13:4e:21:5e:e6:38:f8:95:b3:cd:86:
be:24:a2:58:f0:14:bb:ba:a6:d2:dc:8b:0d:8b:26:
61:4b:e3:89:c1:eb:2b:6d:a5:24:a4:0a:05:f2:2e:
f3:94:11:ab:2c:3a:b5:ed:19:8b:93:64:00:30:5f:
bf:70:47:a2:76:4d:c2:58:27:9a:7b:7b:4c:94:37:
ba:42:82:95:95:92:79:bf:d4:ba:48:8f:68:ce:fe:
d7:0c:f9:45:ae:f9:9c:dd:90:ee:3c:73:c0:3e:88:
6c:81:4d:00:f9:13:60:51:20:5e:ca:19:db:03:50:
11:21:eb:6c:04:8f:28:1d:e3:1a:64:66:69:0c:59:
45:34:1c:58:d6:79:b6:a8:62:a3:f3:b3:59:9f:bd:
33:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D6:5C:53:32:F9:E9:F8:72:F3:A9:ED:75:17:84:2B:2C:12:5F:E1
X509v3 Authority Key Identifier:
keyid:D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:09:11:b4:ff:51:70:58:93:16:dc:f0:c1:e9:92:9e:d8:9b:
d4:14:ab:56:42:24:48:44:0d:58:d7:ac:2b:1d:f8:e4:57:08:
4d:e2:61:ff:f6:e1:0b:1a:c5:a5:7f:61:45:f3:84:8a:75:d0:
8c:81:bd:54:7f:e7:92:15:e6:64:86:9e:6e:26:4d:45:58:05:
a2:a2:44:60:0c:0e:4b:82:d0:24:28:7a:32:08:d3:e6:9b:c7:
31:48:c1:08:4a:3a:99:3d:4e:80:bb:8d:44:0c:99:d5:f5:95:
cc:95:ec:cf:e5:02:48:21:9a:bf:53:30:c5:c0:44:6d:08:cf:
9d:2b:ed:a1:3e:0f:c2:6c:a4:ec:ef:13:d1:44:c7:82:5f:91:
04:48:80:98:2e:85:9c:f6:e9:da:28:57:91:b4:75:2a:a9:9a:
a2:ca:e6:be:0f:7a:c0:90:27:49:f0:83:fc:32:f1:3d:42:8b:
eb:a0:48:ac:00:7b:58:02:ec:6e:33:62:ed:b0:9b:e1:68:f5:
8e:4e:81:53:48:22:b6:bd:d2:d3:db:9f:d6:b5:02:d8:b6:f3:
5e:e7:a0:33:5a:bc:93:2f:c0:b8:c9:7c:27:ce:3f:11:8b:ed:
2b:5e:91:c8:33:f3:41:30:f0:ae:2f:7f:9e:c3:6c:c9:b2:51:
60:a0:43:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:37 2026 by rpki-client