Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
File: 2ko-wHuXhY5oNKWh-I64_jG_eyA.mft (raw, json)
Hash identifier: lQGnfgbJsGcL4jah1qnxteT6IY3edvvC36Qu3Rcexnc=
Subject key identifier: D4:CD:13:57:DA:1E:14:34:2B:9C:93:70:91:69:E3:2A:CB:45:F9:75
Authority key identifier: DA:4A:3E:C0:7B:97:85:8E:68:34:A5:A1:F8:8E:B8:FE:31:BF:7B:20
Certificate issuer: /CN=da4a3ec07b97858e6834a5a1f88eb8fe31bf7b20
Certificate serial: 019E2FCD6C42F29FAC818DA63E2A4BEB9C91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
Manifest number: 09BC
Signing time: Sat 16 May 2026 08:00:52 +0000
Manifest this update: Sat 16 May 2026 08:00:52 +0000
Manifest next update: Sun 17 May 2026 08:00:52 +0000
Files and hashes: 1: 2ko-wHuXhY5oNKWh-I64_jG_eyA.crl (hash: WJ2ZeK/FQ2AaUhBTYazJrqwyjWwWRar5GjahbtcQJo4=)
2: W2opD1nzA1Qy1dphbskdPw_zQDA.roa (hash: BuoBawIPnpe+VBGwQ7nX1QTlwHW5Gq29DxhylXzCD38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 08:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:cd:6c:42:f2:9f:ac:81:8d:a6:3e:2a:4b:eb:9c:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da4a3ec07b97858e6834a5a1f88eb8fe31bf7b20
Validity
Not Before: May 16 08:00:52 2026 GMT
Not After : May 17 08:00:52 2026 GMT
Subject: CN=d4cd1357da1e14342b9c93709169e32acb45f975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:02:d5:d3:98:c3:96:81:bb:b5:5d:16:f1:6d:
4b:54:c8:a2:ad:e5:13:fa:81:98:5b:14:0a:98:23:
80:9c:18:06:52:5f:a6:e4:ab:a2:55:90:46:aa:04:
8b:dd:86:83:ee:52:c0:d1:dd:98:95:44:0f:50:db:
d0:7d:60:cb:1a:d4:4f:65:bb:48:4b:a5:18:49:d3:
b6:8d:73:b2:e7:e0:87:63:f8:9d:8e:34:34:aa:84:
43:65:42:4a:fa:15:32:40:d1:69:ce:af:bc:8e:6a:
29:0f:7b:63:c4:f1:53:7b:da:05:0b:54:84:e5:7c:
ca:ec:4b:e3:61:68:51:47:3e:a1:2f:93:54:7f:eb:
82:b8:c6:dd:c4:d3:85:aa:a4:ce:4f:7c:ce:39:d6:
2d:21:d4:d3:2c:46:71:46:44:f5:f2:37:d8:f6:c3:
d9:70:61:d9:7e:40:eb:1f:ae:4b:07:cd:5f:e3:a2:
e9:18:95:9d:ce:d6:44:65:61:ca:4a:66:83:e2:a4:
02:1d:e8:55:50:c9:ea:9c:91:84:22:5a:ce:a0:17:
37:ce:11:8f:30:16:16:fe:86:43:99:6f:f6:9a:c2:
93:62:d7:86:c6:73:53:b6:79:75:28:61:42:32:81:
cd:4d:f1:4e:00:85:c6:df:b0:6c:8d:5e:e8:df:a9:
1f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:CD:13:57:DA:1E:14:34:2B:9C:93:70:91:69:E3:2A:CB:45:F9:75
X509v3 Authority Key Identifier:
keyid:DA:4A:3E:C0:7B:97:85:8E:68:34:A5:A1:F8:8E:B8:FE:31:BF:7B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:96:90:61:6d:44:5f:f6:6d:97:19:75:84:eb:59:3a:2c:28:
97:bf:b6:d2:90:c2:1a:11:47:f4:49:4d:e9:66:c8:6d:c0:e0:
1e:fb:92:cc:f8:cb:ca:ec:77:8a:d8:26:46:e1:30:c1:df:79:
a3:59:81:bd:c6:65:b8:d4:a5:84:8a:86:f1:d8:56:dd:3b:8d:
a2:42:f0:76:cf:e4:db:25:f5:7b:49:13:74:5f:b9:fd:a8:94:
1e:2f:bf:4b:8c:63:6c:39:e9:ad:d4:29:00:9a:17:f6:87:cf:
5d:43:13:b6:14:26:1c:54:3d:ad:23:d6:d8:01:c4:1d:41:07:
0c:c9:fe:0d:e0:49:c3:d4:37:44:0a:ca:f1:d2:31:1a:12:56:
39:19:7f:fd:f6:a4:1a:a4:1c:84:32:e2:b5:73:59:6a:d0:09:
e2:4b:9b:bb:25:7f:89:ab:23:fb:b4:8d:c1:9a:a7:a6:d5:52:
e3:5c:0e:34:75:40:ef:dc:c4:fc:60:51:81:e3:19:10:f6:39:
ca:a6:9b:2a:cd:ac:bd:46:6d:e4:27:32:cb:ec:eb:70:86:62:
30:47:9f:31:d8:a3:36:a6:ca:5d:92:ff:6a:af:e0:7a:57:3d:
ae:9e:a2:29:1a:06:7a:70:77:2f:85:7c:23:a6:85:0c:71:67:
a8:0c:bb:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:56:27 2026 by rpki-client