Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
File: 2fwL7GDQus4YiWd72buQGQzE_SI.mft (raw, json)
Hash identifier: GzXb1Tut4roZ4wZcFPann0FPBU41pI8Nbw+jCZi4Aws=
Subject key identifier: C6:38:F4:F7:24:08:19:2E:08:72:FC:E2:E6:AC:93:73:2D:1D:08:27
Authority key identifier: D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
Certificate issuer: /CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Certificate serial: 019E8D251DCD75D6C3E41FE7092E28C50ED6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
Manifest number: 1947
Signing time: Wed 03 Jun 2026 11:01:20 +0000
Manifest this update: Wed 03 Jun 2026 11:01:20 +0000
Manifest next update: Thu 04 Jun 2026 11:01:20 +0000
Files and hashes: 1: 0EOOKZ73EuVKb6azhsikToGYTJ4.roa (hash: tOeqHdzaa5uQmGPeE+9GIo5atcoydPGRdU/daaN1H/s=)
2: 2fwL7GDQus4YiWd72buQGQzE_SI.crl (hash: mkmUGqnsWdvTGbZumHv2yKb8tiDAAenuP8QU9QLp/vQ=)
3: EUeWkU0aryB-YkR2M3TsErGD9Is.roa (hash: gK62/o9yO+OyvLt7cRE+ehw4Ouq7VrrbTSmr3DLojOI=)
4: SpICVub50OICM4yiQk6ulqnyBsU.roa (hash: 1SZAmfW+sJIqJsSkqCTN19QGqChFmDq0AZE9eacMzAI=)
5: W9lGuLlyK3oCTZXvmQuqTo4C2yg.roa (hash: G4w7b1CN5DpM/EZuMWQLQvxT+EVuYLv3nYfxDAbKhDk=)
6: jUElcf1JFP10uCVqAsvtMStO4o0.roa (hash: xrxSdpsBwKaZISPc2IK2Gw1lDuUsBX/PpqeA4Z3a8cs=)
7: o09lL4OudMDTh_jmHHeTIRn2L5s.roa (hash: ctwy00D7K53oO1gqUQQpnsVurkNSXddz4U1vX79+KpM=)
8: yn6euPUsjq8bRXFpjTNGPdRM13Y.roa (hash: IGe548/q8hO5ei6AedK5a51FhkUkqFo8BXPppwB9Vlw=)
9: znNyesTwbEHb5GdVovxJsLLM9KQ.roa (hash: WbfDTvPg/i+BiVxKsZsH5gFpX+Sz+6FiIPk4KG/O+AA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 11:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8d:25:1d:cd:75:d6:c3:e4:1f:e7:09:2e:28:c5:0e:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Validity
Not Before: Jun 3 11:01:20 2026 GMT
Not After : Jun 4 11:01:20 2026 GMT
Subject: CN=c638f4f72408192e0872fce2e6ac93732d1d0827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:76:9d:b8:44:e0:0b:d9:55:b6:b7:8e:b9:11:
4c:08:99:cd:c0:51:71:e6:dd:c5:d7:b0:56:af:a3:
bf:3f:ef:31:1b:14:1c:dd:d6:36:5d:4d:4b:ac:e9:
08:2d:25:eb:82:52:1a:83:6c:de:3d:20:1c:fd:c9:
20:20:aa:03:42:3e:f7:5e:79:ab:bf:0b:e6:e2:57:
19:ad:1b:23:66:4a:40:d6:fd:73:45:4e:0b:78:04:
8e:d8:23:01:44:1d:94:00:db:02:dc:a4:0a:db:d8:
75:51:db:46:35:17:d9:3e:70:29:fd:7d:8d:81:82:
6c:c9:0d:87:ed:70:df:e5:c3:47:ed:68:4e:54:95:
df:a4:94:49:0f:56:f1:3e:c7:f6:0b:d8:9c:3a:8f:
fa:fd:78:9b:9c:64:e3:39:8b:37:3b:23:a1:3c:51:
a2:a2:77:92:ff:84:3f:b5:84:b6:bf:d2:33:71:5c:
ef:45:bf:92:cd:6d:1b:2a:eb:3e:94:8f:47:ad:84:
f1:da:ed:04:e5:c9:6a:fd:3a:cc:3f:c8:ed:0f:d9:
2d:e7:a5:fd:bd:b8:3f:d7:a4:81:67:e1:f7:e5:bc:
5f:55:48:63:c1:6c:34:9a:f2:61:75:45:62:b6:9e:
b2:c8:db:ae:b0:19:35:d9:72:a8:37:32:b0:96:74:
2a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:38:F4:F7:24:08:19:2E:08:72:FC:E2:E6:AC:93:73:2D:1D:08:27
X509v3 Authority Key Identifier:
keyid:D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:63:54:6c:6f:86:f2:a5:b0:06:9e:81:e3:e3:f4:d1:cf:b4:
0d:3a:ff:50:e4:90:2f:87:e0:2c:3b:58:b0:b9:d8:0b:74:b9:
10:32:01:2e:62:b7:4c:cc:12:bd:6d:4d:5d:b0:8f:3b:3c:78:
ea:b6:e8:7c:db:21:bd:f2:4a:5a:94:79:79:91:8e:f2:12:aa:
84:62:4b:41:70:91:09:bb:0a:11:23:a0:94:1c:b5:6c:f1:b1:
93:56:f2:ed:98:f0:dc:40:66:6b:be:7a:1e:8a:48:56:90:8d:
fb:16:b8:54:6f:82:78:f9:1e:c6:f5:33:b9:89:de:bf:03:e2:
b1:26:aa:84:87:96:d5:22:d6:cb:b9:2d:83:2e:d4:2a:72:f0:
2d:44:eb:b2:02:ff:6b:ce:87:8b:3f:94:b4:e0:6b:39:83:4e:
c9:80:4e:77:af:53:ad:74:9f:70:22:17:88:07:b0:4d:a1:b0:
fd:55:f3:d1:50:0c:1e:9f:47:90:a9:6c:56:d7:85:19:81:d1:
d8:ad:10:1b:5b:04:3e:d7:24:cd:e1:3b:62:f9:33:c8:48:41:
4c:11:b5:e8:7b:c7:b3:ba:35:e7:24:70:c6:d9:32:d0:37:68:
36:7b:55:1a:49:62:52:a9:d9:f6:71:62:72:20:1c:1a:89:e4:
ef:35:e4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 20:50:57 2026 by rpki-client