Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: 1+kjjaZB3SuDvQbQAYIXWzVhgG42Kw4qMzOBk+q8ePQ=
Subject key identifier: EA:E9:79:39:0A:31:6E:7B:44:59:96:28:8F:AF:D6:A1:6D:45:EF:C5
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 019F197A942C9BC0C1EF18F3A6D483404CA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 1299
Signing time: Tue 30 Jun 2026 17:01:31 +0000
Manifest this update: Tue 30 Jun 2026 17:01:31 +0000
Manifest next update: Wed 01 Jul 2026 17:01:31 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: rek/x062j6i0vabusXQUoszsWfrmIFtS+iEouxw8j2s=)
2: AoMLPhZExe6a-acTOonY5G6p87o.roa (hash: GlOEB6CrWza06BRV4TlREAMAdwdF9KjOr3x10SdKDlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:7a:94:2c:9b:c0:c1:ef:18:f3:a6:d4:83:40:4c:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: Jun 30 17:01:31 2026 GMT
Not After : Jul 1 17:01:31 2026 GMT
Subject: CN=eae979390a316e7b445996288fafd6a16d45efc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:35:ee:43:96:85:bb:d2:9c:a9:ef:38:3a:5e:
63:71:55:e6:9b:39:28:d5:39:9d:a7:6c:e5:b0:ec:
28:d7:42:6e:cc:a6:cc:62:57:e7:f5:85:cc:7d:7b:
0a:79:38:d5:7d:e9:79:c1:a1:1f:d8:5c:64:1c:a3:
d9:e6:66:d1:5d:af:78:85:19:a8:cb:10:2d:fc:07:
34:bd:ad:a5:d4:94:6f:00:79:e9:62:ef:a1:a8:23:
f4:2c:be:53:e4:01:f0:97:33:a0:72:cc:9a:1a:2a:
5e:fc:59:1d:fe:27:ef:53:f8:6b:ab:5f:e6:20:b2:
04:61:cf:11:fd:66:10:d5:c8:30:c8:34:9a:dd:1e:
5d:9b:aa:8c:32:0b:c8:24:7f:31:31:a5:aa:59:ae:
85:1d:8e:86:f4:dc:a5:25:88:b9:f9:17:70:a5:db:
5e:8b:c1:39:10:3a:b6:54:42:fe:0d:1d:d9:19:5f:
a1:74:34:f4:83:4b:f8:8d:77:4d:65:21:95:db:67:
38:79:63:00:2f:1f:dd:da:ad:a9:56:c0:f6:d8:90:
e5:7e:2e:70:9b:bb:36:a3:c1:57:f3:95:e9:8d:a0:
a0:41:93:6c:4a:10:cd:84:7e:22:5a:22:e4:5a:70:
98:5f:07:27:27:16:ea:26:0c:aa:20:b1:dc:2c:8d:
54:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E9:79:39:0A:31:6E:7B:44:59:96:28:8F:AF:D6:A1:6D:45:EF:C5
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ae:55:1b:42:26:52:6d:ab:09:52:f7:dc:39:a2:d8:e4:be:
1d:c5:10:61:6f:b6:13:e6:34:96:f9:d3:51:a8:ec:4a:f4:ac:
75:b4:46:d3:2e:c7:67:b4:79:3b:7a:63:bb:7a:61:fd:e8:eb:
9f:09:2d:c4:54:55:bc:a1:ab:00:1c:0f:45:6d:00:46:ca:6e:
d5:77:3b:8d:6d:9b:02:3f:a4:fd:b1:30:48:e7:60:6b:85:f8:
83:a3:54:53:aa:ff:ba:48:13:0a:7e:41:0f:37:7e:5b:ef:a7:
94:ae:74:c6:14:bb:10:f7:75:b9:81:61:73:64:8d:ab:6c:77:
ac:94:5c:ea:30:47:8e:29:9c:69:60:b3:8a:04:49:69:43:fd:
c9:f8:24:40:84:12:a5:e0:e8:d8:0e:4b:a7:d2:ed:de:47:18:
57:ea:20:99:ca:06:f6:d0:26:c9:19:05:90:cd:f5:99:6c:33:
72:eb:1c:5d:22:0f:60:fd:c2:25:5a:2b:ab:8f:3c:da:47:4e:
e4:dd:85:cf:27:48:b7:3d:7d:87:ef:13:44:6b:2e:de:e7:c5:
61:d4:29:a5:b1:f8:00:e7:22:c9:07:63:18:50:70:05:3d:e9:
04:8a:a6:f5:9b:f3:5d:5f:90:71:3e:d3:bf:3e:26:95:0b:bd:
fd:8b:34:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:31:28 2026 by rpki-client