Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
File: 1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft (raw, json)
Hash identifier: Fe2UgJqI5CYWRWDrg1NsJDgPoZiax7XaiVzB0MkWPio=
Subject key identifier: 2B:71:B5:4A:C6:99:CD:4C:20:AE:3A:95:98:2E:25:86:B0:C5:F6:26
Authority key identifier: D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72
Certificate issuer: /CN=d422367433765b541a37390a998997b737c46472
Certificate serial: 019E2F978153C136A66524CA1781EB615D1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
Manifest number: 18A2
Signing time: Sat 16 May 2026 07:01:58 +0000
Manifest this update: Sat 16 May 2026 07:01:58 +0000
Manifest next update: Sun 17 May 2026 07:01:58 +0000
Files and hashes: 1: 1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl (hash: U1hlg+YipPMuO5Z32dTIZe4DwGAyXzMdPhKaw5NqR/8=)
2: nmpthTHAT4WUcq8Q3IMochngGiw.roa (hash: WMNeejxSLtwCCkkRDHZIffdNUGROwkauBCQwzToW+EM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:97:81:53:c1:36:a6:65:24:ca:17:81:eb:61:5d:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d422367433765b541a37390a998997b737c46472
Validity
Not Before: May 16 07:01:58 2026 GMT
Not After : May 17 07:01:58 2026 GMT
Subject: CN=2b71b54ac699cd4c20ae3a95982e2586b0c5f626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:05:0c:f2:1a:98:19:c1:d1:15:87:39:b5:a4:
d8:ce:84:d0:08:6b:f4:84:ce:2e:8c:e0:18:c4:80:
3d:ee:bb:3e:25:13:31:d7:e7:fc:2c:7d:2e:2f:04:
a2:d7:9b:55:ab:13:2a:de:3a:dd:e3:55:c0:74:86:
76:43:9e:be:e0:ce:73:71:58:ed:b9:1b:98:bf:53:
03:8a:87:1e:94:f2:7e:3e:7d:13:30:e9:0a:52:e0:
cb:c3:ad:14:26:eb:3b:75:33:83:ef:7e:e7:67:b2:
ef:1e:50:42:72:f0:0d:99:e6:dc:37:39:4d:94:ec:
66:b4:09:32:da:93:5c:70:c7:ab:58:af:86:94:49:
cf:c0:aa:ff:58:26:1b:13:32:fd:1a:92:cb:22:15:
7c:69:0c:05:ec:d7:3c:3c:de:40:86:63:b3:1d:82:
b4:70:8f:74:e3:12:d2:4e:a6:6b:de:eb:ba:6d:91:
cb:59:29:40:ad:a1:fd:00:e1:49:59:8e:ad:7a:c4:
51:76:c2:54:29:35:02:ab:2b:68:6c:83:be:12:3c:
20:03:f3:fc:d1:74:19:4a:5b:bf:e8:6c:d4:a0:f8:
b5:95:3d:f2:1a:f1:df:2d:bb:10:c9:8b:76:e1:61:
62:75:3a:3e:2e:e3:14:80:27:6a:5d:1d:d9:62:08:
7a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:71:B5:4A:C6:99:CD:4C:20:AE:3A:95:98:2E:25:86:B0:C5:F6:26
X509v3 Authority Key Identifier:
keyid:D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:e7:10:df:61:05:95:c7:71:ed:92:f9:55:c0:d9:9b:aa:3a:
4b:df:b8:0e:5a:d5:e9:9d:14:67:77:01:b0:1c:c1:56:6a:30:
63:19:ae:c9:21:36:55:70:a1:14:0b:19:18:db:c4:20:ac:80:
7b:1e:15:83:27:4d:e5:da:93:a0:50:a9:fc:d8:b8:9d:06:3d:
9b:6f:41:b5:41:37:1e:1a:66:eb:10:9f:08:a9:5a:ff:cd:b2:
a6:b5:48:4d:cd:ac:9c:aa:a3:b7:70:ec:a6:67:de:75:52:b9:
2e:9f:fd:20:87:0f:7c:2a:4b:eb:64:8d:78:68:61:d2:20:22:
11:da:2a:c7:68:4e:d6:83:f8:02:f7:e5:9a:b3:0b:fd:35:b4:
21:e6:b7:c6:19:c6:a4:7c:7f:76:d8:69:17:b6:bb:b9:c5:b9:
a6:96:36:a6:c9:ec:bc:2b:a7:bd:a8:0b:0a:70:ed:7a:6e:03:
5a:01:0c:80:37:9a:e7:ef:01:29:6d:bd:5d:40:01:d0:02:7b:
6b:79:73:e7:d3:c7:d4:e6:b4:4a:5b:df:49:18:00:5d:10:a1:
43:d2:d9:ff:5e:25:b6:71:57:5e:f9:a1:05:18:4e:ac:b7:cb:
39:77:dd:b6:4c:26:65:61:e8:0d:57:79:d1:92:de:91:d4:42:
08:fc:5a:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:13:32 2026 by rpki-client