Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
File: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft (raw, json)
Hash identifier: uXqBIfo09hEuV9Tt8YJ3+dQBWZZQy8XJq6Lm/xRE7Zo=
Subject key identifier: 5D:A2:81:F7:D2:77:2A:34:D3:4F:F1:93:94:E9:63:BC:A9:ED:D6:90
Authority key identifier: D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38
Certificate issuer: /CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238
Certificate serial: 019DCF75EA4B0283159EDA4AAD0761FAF18D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
Manifest number: 0993
Signing time: Mon 27 Apr 2026 15:01:44 +0000
Manifest this update: Mon 27 Apr 2026 15:01:44 +0000
Manifest next update: Tue 28 Apr 2026 15:01:44 +0000
Files and hashes: 1: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl (hash: pEe+MUimvU9OREEeeGU3StgXTEwl9j1CcW24I544Epw=)
2: 48OS4sWYglwtZBn1YxiPqc26nTU.roa (hash: NBM10gWvuZSa38kRQAx40WjX3amxqFeb96LnMyUj85Q=)
3: HUZvsXoFqmpwitLw4aku7m5jYa8.roa (hash: rhpAJ7/RvlTCzRrbypi+sM57yT9OZ8RJ46KD4H90XuY=)
4: Rl0xX2L5u9e-WU3LxVTHfDCZoEQ.roa (hash: iB5ApjU6OfFGOZU2O/uqHAaYYGIEkIhRygeaclVc054=)
5: hih4fzkJ3O9yEk3BE5UpAZ6h-8Q.roa (hash: R7mk0homAMVaYBl/kyf6p+7Cu/DPi0srKaEKzzxe+Sc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 15:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:75:ea:4b:02:83:15:9e:da:4a:ad:07:61:fa:f1:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238
Validity
Not Before: Apr 27 15:01:44 2026 GMT
Not After : Apr 28 15:01:44 2026 GMT
Subject: CN=5da281f7d2772a34d34ff19394e963bca9edd690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:83:88:20:c2:ae:6b:00:08:c7:19:d4:6a:03:
52:60:ce:28:e3:df:dd:bf:72:3b:96:a0:5f:a7:79:
66:b2:cb:f8:54:a4:f5:85:e5:42:ff:e7:60:d3:bc:
22:57:66:d6:3f:4e:63:53:e4:e9:eb:ca:6d:b6:9c:
66:4f:d4:49:33:b7:76:e5:7b:6a:2b:03:ed:14:53:
d1:ad:79:71:7b:20:3d:db:e4:58:2d:95:84:6d:fa:
8f:8b:6a:c3:5a:80:8d:c9:32:dc:28:ac:b0:34:cb:
d9:ac:a8:24:08:6d:93:9e:7d:7e:46:62:66:e7:e7:
95:49:1c:34:36:52:ca:a1:1d:42:9f:e1:84:0e:f7:
53:32:d2:02:aa:8c:7a:8f:21:88:56:28:75:ac:f7:
de:f3:45:95:cb:fd:cc:4d:1c:f1:1f:80:e4:ec:0c:
14:e8:0b:0a:63:51:50:d1:47:b9:b2:93:ee:71:84:
67:c0:44:b1:67:1e:34:a8:26:59:31:ad:b5:b3:89:
d6:9f:0e:d6:19:85:63:5b:8f:8d:7f:5c:a7:77:85:
09:a0:3e:23:0c:c8:10:45:68:6b:6f:e2:ca:63:7f:
e0:5e:3f:aa:bc:95:5a:04:21:dc:e3:35:97:8d:a4:
86:be:48:18:7a:4b:c1:34:7c:05:8e:6e:a2:38:75:
1a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:A2:81:F7:D2:77:2A:34:D3:4F:F1:93:94:E9:63:BC:A9:ED:D6:90
X509v3 Authority Key Identifier:
keyid:D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:13:5f:cd:8d:64:1c:2e:d6:d5:f4:e0:07:20:d9:45:f0:2d:
b4:e4:f8:15:12:d6:5b:6c:d5:7a:05:5e:ef:f8:de:32:c6:62:
1d:f7:99:4e:5c:90:d8:de:29:cc:d5:15:ee:5f:c3:a1:a8:9f:
13:f4:f8:74:6d:49:5c:ba:f1:c5:d1:28:25:5c:78:74:3e:7c:
2e:51:a3:02:5b:dc:f6:e1:d3:44:23:4c:91:11:90:82:07:0b:
b9:ef:51:c9:25:d5:98:d1:7c:93:80:6f:fe:2a:3d:db:b1:67:
68:be:ce:d1:6d:7b:2d:0a:a9:4f:40:f2:9b:ad:32:12:22:17:
e6:d9:de:e3:7c:25:0e:8d:18:dc:af:7b:c5:b3:65:11:13:4a:
70:68:8d:56:3c:b1:1d:dd:5a:15:6a:20:f2:4d:dc:9d:c2:ae:
a1:25:30:58:60:bd:f1:89:29:fd:10:07:a1:a9:41:7f:bb:c1:
87:e3:0c:73:ae:4f:d7:20:be:c9:44:78:a4:79:d7:a8:ea:79:
db:46:3c:63:6e:43:74:13:f0:97:2d:ef:d6:e2:b4:f2:39:7e:
d3:ed:69:be:2c:5d:28:40:55:c9:9e:c9:cb:99:09:b2:02:de:
0e:f5:42:dc:a3:5d:0c:3b:d6:17:52:d3:b1:c4:56:08:57:e4:
f9:42:eb:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 20:10:35 2026 by rpki-client