Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: NA8s3wQSUmt9wxWoMeDh+qdAciWuznz1wgSK64qsIwA=
Subject key identifier: 79:72:7F:67:9E:14:D8:56:45:81:12:B5:82:0D:15:17:E3:83:2D:F1
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 019E2FCD8A2F0ECC492F9F52613FAF3DE7A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 1220
Signing time: Sat 16 May 2026 08:00:59 +0000
Manifest this update: Sat 16 May 2026 08:00:59 +0000
Manifest next update: Sun 17 May 2026 08:00:59 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: OxKR276Kht0jfXlDXnb2bZWnTQl1SiQ3iYjmeEcxp6Y=)
2: AoMLPhZExe6a-acTOonY5G6p87o.roa (hash: GlOEB6CrWza06BRV4TlREAMAdwdF9KjOr3x10SdKDlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:cd:8a:2f:0e:cc:49:2f:9f:52:61:3f:af:3d:e7:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: May 16 08:00:59 2026 GMT
Not After : May 17 08:00:59 2026 GMT
Subject: CN=79727f679e14d856458112b5820d1517e3832df1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:b4:ce:b7:36:b0:80:25:26:e2:9f:68:7e:d6:
1b:bf:45:28:f1:73:f5:bb:4e:2b:d3:7b:46:15:68:
74:71:53:4e:64:0e:dc:53:d6:ad:59:a7:48:dc:5c:
f1:f6:60:0d:5c:37:95:5c:a0:09:11:02:27:be:19:
c3:c7:c0:08:d6:89:4b:f4:16:f5:d1:e5:3d:1a:83:
32:74:06:fc:2d:79:2c:de:c4:58:dd:ad:f0:42:58:
2c:b1:4b:cd:a5:6a:81:b3:7a:84:95:ab:ef:2e:5d:
53:32:b2:46:3b:a7:f5:10:a2:18:4d:9f:02:87:bd:
3c:eb:fb:0a:17:95:3a:b5:66:29:cc:ca:4a:0e:ce:
bf:6f:35:a2:89:0c:f3:59:eb:49:c0:f2:e1:fc:fe:
61:e5:27:2d:a9:ab:e1:3f:48:25:3a:87:e3:32:84:
e0:6b:46:58:2f:10:10:55:24:15:cd:b6:08:ee:37:
f0:b0:7e:e1:e5:91:f2:1e:22:cb:80:a8:19:af:29:
f3:e6:11:27:fa:ea:66:82:a2:6b:01:fa:39:b5:db:
08:93:70:77:54:c4:fa:84:22:1f:61:c2:60:82:21:
8e:a0:e9:b1:05:36:b5:13:ff:08:8c:6b:d0:87:5a:
bb:1c:4f:c8:4e:2a:fb:0a:46:51:13:e0:01:01:07:
2a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:72:7F:67:9E:14:D8:56:45:81:12:B5:82:0D:15:17:E3:83:2D:F1
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:84:f8:9e:c9:a2:0a:a3:75:83:e4:41:2d:2a:9b:7f:1a:b5:
fb:78:e0:3e:ab:40:1e:ae:b1:9a:63:55:40:c5:d9:99:88:25:
c9:5f:be:13:ef:b9:19:4e:35:04:7f:32:16:9a:52:07:e9:6b:
f2:e2:44:f9:0f:b9:60:e4:31:e3:7b:87:92:bd:48:c2:d9:9a:
31:62:71:49:b5:70:13:ca:b7:af:a9:8d:b3:f8:47:da:55:40:
63:8e:4c:c0:0b:c2:6b:89:fa:5b:8e:15:97:95:3f:0e:43:e9:
0e:5d:02:35:24:fe:11:e1:db:66:64:7a:47:f7:d8:fa:78:0f:
ce:62:14:4e:6e:3c:e8:b9:9e:e1:b9:a8:ec:d2:7e:22:25:33:
54:30:96:01:70:d5:9e:c0:50:a5:da:46:6c:1f:4a:87:65:fd:
c1:26:6e:3e:45:30:77:1d:da:00:87:0d:20:9c:02:b3:0d:38:
23:68:90:a0:32:6c:d9:7f:15:a0:5f:68:d6:4c:04:a4:3c:5f:
c8:21:70:f0:e1:ae:ae:35:6f:d7:1e:5c:ac:2a:9e:57:68:72:
23:14:7f:58:3f:49:20:77:50:82:c4:b6:8c:77:98:10:a6:3c:
53:8f:36:13:5f:92:56:db:8f:fc:bf:4a:aa:cf:be:74:f9:2b:
5e:ce:b1:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:13:36 2026 by rpki-client