Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
File: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft (raw, json)
Hash identifier: 9kvwpYrqNz4c2+bceKg0Gpogr/fdlQlJDIFn6VggFWI=
Subject key identifier: BE:34:50:75:B1:18:0E:1C:64:B6:18:29:33:07:0A:1F:3D:CA:DD:81
Authority key identifier: D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
Certificate issuer: /CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Certificate serial: 019F1867A88F665037F7D2AD41EBEB1357C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
Manifest number: 1988
Signing time: Tue 30 Jun 2026 12:01:14 +0000
Manifest this update: Tue 30 Jun 2026 12:01:14 +0000
Manifest next update: Wed 01 Jul 2026 12:01:14 +0000
Files and hashes: 1: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl (hash: Iy+0iIZfb1e4BYcdNKDgLWvR6MZlBUFo1KGp1s+rsvY=)
2: LpFRmX9PzrWkSCAE9MBkhoB4NC0.roa (hash: O5h6RKwcek/boNWUKWdfTylprmmWoB0fVIyV7iyo7Aw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:a8:8f:66:50:37:f7:d2:ad:41:eb:eb:13:57:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Validity
Not Before: Jun 30 12:01:14 2026 GMT
Not After : Jul 1 12:01:14 2026 GMT
Subject: CN=be345075b1180e1c64b6182933070a1f3dcadd81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:86:33:a7:6e:5b:61:45:25:f6:a6:1d:2a:56:
a9:4e:60:db:50:df:67:1d:ae:1e:f7:fb:b2:d3:37:
66:92:2c:12:01:71:4c:00:cc:98:bb:29:78:96:ea:
95:8b:ac:15:73:11:62:8b:6b:18:ef:89:cf:3e:24:
8b:62:4b:4f:26:7f:6f:62:8d:13:52:f4:fc:75:09:
f5:d8:21:24:a8:88:7a:da:cf:c6:a7:99:12:f5:5a:
2d:f6:ea:ba:78:da:35:ed:b4:eb:65:40:6a:d0:c8:
e0:3b:dc:10:42:90:e5:18:ed:da:b2:db:80:bd:5e:
14:3b:b1:71:64:1f:68:bc:ad:6e:18:17:af:5a:90:
08:7f:e8:6f:4b:05:d7:c7:93:f8:31:34:39:99:e7:
62:f4:22:90:e2:70:17:21:c3:30:b3:dc:01:ea:39:
56:ad:62:a4:88:92:35:e0:c2:8d:77:ab:4a:95:7a:
5e:aa:cb:2f:9b:cd:97:34:d1:71:54:26:0c:22:77:
e6:ed:64:a8:cd:4e:2e:03:50:5c:3a:75:11:c3:ef:
6f:a6:0c:9e:b0:07:9c:2d:7e:d8:94:a3:25:92:16:
c8:b1:8d:c0:7d:ce:53:21:39:3c:7a:c1:23:0b:c7:
45:45:da:ac:47:6e:cb:1c:7f:19:18:39:7a:4c:f8:
0d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:34:50:75:B1:18:0E:1C:64:B6:18:29:33:07:0A:1F:3D:CA:DD:81
X509v3 Authority Key Identifier:
keyid:D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:fb:ba:4a:6d:ab:dd:e2:be:bc:53:a1:b3:68:94:fa:a5:a0:
55:6d:59:fb:9f:93:46:c5:d3:b9:40:f1:c6:8f:26:ab:dd:23:
89:8c:8f:a5:c9:77:e2:42:9d:4a:2f:7d:cf:67:e6:51:84:c6:
db:4f:07:3d:98:e8:b0:ab:51:2f:c8:6e:34:55:31:24:93:fd:
cd:eb:21:d8:fe:67:04:44:46:85:b9:06:6a:c8:43:54:b8:82:
14:81:71:66:51:e5:ff:88:bf:ca:8b:d0:e8:77:d3:2a:cd:5c:
87:cc:56:b3:75:2a:b7:d7:ba:ba:b4:84:75:47:50:11:a6:e8:
bb:99:d1:3f:7c:f7:d4:2c:1a:3a:28:5e:38:3b:58:0c:6a:a4:
d5:d9:93:95:d0:15:2c:1d:77:6b:eb:d0:a4:0d:ed:b6:2a:03:
d6:32:f7:ff:9c:9b:33:4f:e6:65:98:2d:5f:55:9e:04:71:e3:
77:e3:4a:9a:05:d9:d0:db:f2:71:74:6a:f4:01:dd:11:fa:5c:
a7:d9:9b:6b:8b:ce:db:b3:96:01:0a:c9:2c:18:ae:bc:ce:00:
41:44:70:52:b7:a0:2f:0c:13:3b:44:13:67:e9:fc:34:dd:6e:
60:78:2c:37:87:d5:71:23:40:01:ff:16:ca:b1:ff:44:d5:4c:
79:9d:1f:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:23 2026 by rpki-client