Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
File: AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft (raw, json)
Hash identifier: ctPU0O/xT7gKnPfXjVqeSCSNnxcJNhNGJ7KyiIZqVR8=
Subject key identifier: BE:3E:7D:45:E3:D0:52:6E:C8:8A:36:06:EC:0F:C3:E4:44:EA:F0:F8
Authority key identifier: 01:1D:88:24:6A:B5:7E:20:4D:EA:51:E9:24:3C:67:25:2D:CB:A5:85
Certificate issuer: /CN=011d88246ab57e204dea51e9243c67252dcba585
Certificate serial: 019E314DFB78805131587B1C97258E99BFB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
Manifest number: 0D59
Signing time: Sat 16 May 2026 15:00:54 +0000
Manifest this update: Sat 16 May 2026 15:00:54 +0000
Manifest next update: Sun 17 May 2026 15:00:54 +0000
Files and hashes: 1: AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl (hash: qLQkaFmmZVwAvMpGJ3rsiArafBHfUxYGKHM7oT5jDjo=)
2: EQLn3HW1S_EC8AUyKNf8y-4dMRc.roa (hash: 8AWgdnyTdQJ3pPK3imIR1EnV54K6sHT0kGjtuqhN4wc=)
3: Jjp2KFwtMPxSLsSW4d1b-JvojqQ.roa (hash: GDfbVOyE0Py9w2hVGKPYN/f02RSF/cLpQ/kkLYZ8PZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4d:fb:78:80:51:31:58:7b:1c:97:25:8e:99:bf:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=011d88246ab57e204dea51e9243c67252dcba585
Validity
Not Before: May 16 15:00:54 2026 GMT
Not After : May 17 15:00:54 2026 GMT
Subject: CN=be3e7d45e3d0526ec88a3606ec0fc3e444eaf0f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9a:c6:23:44:13:64:4f:9e:16:ad:45:e2:3c:
cd:a0:5a:74:7e:33:8e:82:3a:2b:42:ed:fc:bf:47:
b3:c6:00:90:3b:00:8a:77:73:12:49:6a:c5:a6:cb:
57:28:86:f3:ca:20:6a:e7:a9:35:2a:dc:76:91:17:
5c:b1:40:d3:26:dc:21:50:54:ee:e7:cb:25:ad:43:
5a:6b:57:a3:1b:73:22:2e:15:34:84:65:32:b3:58:
ce:ec:ba:7d:fa:73:92:34:42:eb:9a:44:02:2c:09:
af:69:50:03:36:fd:31:74:99:ba:5f:69:ff:f3:54:
8a:e4:c9:f1:51:2e:0c:42:6a:38:74:54:71:8c:30:
82:3f:58:33:3c:65:f9:48:9e:f9:9c:c1:03:19:79:
f9:99:e6:86:01:45:f2:4e:d3:f9:8e:1e:46:9c:ae:
0f:21:d3:4e:8f:4e:4c:0b:2a:96:2c:05:d3:e7:e7:
23:93:e0:d8:12:2f:55:67:88:e6:12:36:6c:90:16:
34:38:5a:4d:28:3c:16:d2:a4:7e:54:4c:2b:51:e1:
d0:78:07:86:0f:05:b7:9a:8f:21:9b:19:16:6d:7b:
8e:6a:07:03:d1:ac:3e:7c:96:e0:b9:24:b2:58:05:
da:7a:26:47:dc:91:53:62:78:58:36:36:ee:6d:98:
91:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:3E:7D:45:E3:D0:52:6E:C8:8A:36:06:EC:0F:C3:E4:44:EA:F0:F8
X509v3 Authority Key Identifier:
keyid:01:1D:88:24:6A:B5:7E:20:4D:EA:51:E9:24:3C:67:25:2D:CB:A5:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:15:a6:4f:95:04:50:99:60:88:af:dd:80:8c:ea:c2:cd:41:
60:eb:db:06:e9:70:1d:61:4f:11:60:b3:56:ff:f7:21:89:4a:
2e:f6:56:bc:72:ae:1b:16:9d:67:89:9e:e1:aa:9f:59:1b:e1:
72:33:d3:88:40:79:5b:fa:17:dd:f8:a4:3e:b2:53:2b:6a:81:
11:58:ef:26:20:e2:da:9b:8e:e0:0a:22:f2:c4:d9:4e:5e:87:
f3:d5:b2:6c:5c:b6:ca:de:f3:df:be:4b:ed:10:8d:fe:7f:d6:
f9:a3:a1:b1:dd:00:86:47:8b:38:b8:67:74:50:8d:0d:7e:39:
07:d2:e8:5a:78:f1:4e:57:8c:b4:64:8d:1c:6a:d4:66:35:db:
aa:bf:b8:80:49:72:74:fd:15:02:dd:30:41:3b:6e:df:75:6b:
cc:63:fa:1a:17:bb:73:e9:54:7c:b7:cd:a4:86:2e:6f:8b:5e:
33:ac:51:e3:d6:f1:b8:f6:d2:ee:62:a2:8d:f0:5e:30:17:17:
3a:ce:d1:2b:ac:fc:c4:18:23:f9:d2:aa:c6:da:06:07:24:d2:
32:96:10:fa:47:2d:1b:7a:84:72:1f:d8:9a:42:26:e8:ac:b2:
cf:12:a1:3a:c5:21:d3:f2:ae:35:bf:03:70:76:f2:ba:0e:2f:
bd:e2:18:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:12:32 2026 by rpki-client