Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
File: 2l7eZe_t7t-MigSyRaOl32OmnoQ.mft (raw, json)
Hash identifier: oNcaRKQJmEBKmnzzxBJa7WyTlggYNK0fHFS6kDQsMCI=
Subject key identifier: F0:36:1E:77:B4:B0:9D:33:2F:55:A8:9B:74:12:4A:E9:DB:DA:AC:BB
Authority key identifier: DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
Certificate issuer: /CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Certificate serial: 019F17556DECB1F87D4C14308EFE0041F1B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
Manifest number: 1985
Signing time: Tue 30 Jun 2026 07:01:42 +0000
Manifest this update: Tue 30 Jun 2026 07:01:42 +0000
Manifest next update: Wed 01 Jul 2026 07:01:42 +0000
Files and hashes: 1: 2l7eZe_t7t-MigSyRaOl32OmnoQ.crl (hash: XCtVwy4FjjZRtAr/9s/hCg7PuD+EYdaqmHjPnXi/IWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 07:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:55:6d:ec:b1:f8:7d:4c:14:30:8e:fe:00:41:f1:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Validity
Not Before: Jun 30 07:01:42 2026 GMT
Not After : Jul 1 07:01:42 2026 GMT
Subject: CN=f0361e77b4b09d332f55a89b74124ae9dbdaacbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:21:c0:79:e8:d5:c1:ec:7d:40:d5:26:5a:20:
e1:f3:0a:d6:3a:29:9a:69:69:10:36:bc:de:7b:78:
8c:c0:8f:f1:78:13:26:57:09:23:88:19:c0:05:95:
ab:78:3b:49:45:47:3b:17:e8:37:b1:12:56:2c:f7:
4e:6f:98:24:ab:bf:de:12:d5:ab:1d:9f:49:c0:05:
a2:20:16:e2:aa:eb:8a:83:d2:f9:13:d6:9f:89:7b:
6b:c3:09:de:0c:b0:7c:5f:12:e6:2c:7c:75:df:88:
69:2b:14:f8:38:54:3f:18:c8:eb:4b:95:85:26:41:
43:76:5f:0c:85:4d:18:91:28:35:c4:e8:f1:97:16:
1f:d4:1e:6b:7b:19:9a:be:9d:6c:6b:89:eb:83:5b:
e9:2a:2d:3a:b0:90:ba:ce:ec:ce:a3:3a:3f:c6:78:
08:77:ca:cb:d8:e6:9b:0b:60:65:60:b9:f8:ed:15:
70:48:52:b9:db:b6:d0:b4:d2:e4:b3:b5:8d:5d:68:
e4:b6:70:ef:e4:08:32:af:7e:5a:66:32:4b:57:b5:
f2:69:22:32:74:60:5a:8d:50:2a:72:38:99:75:95:
09:df:99:64:3e:74:d9:f7:28:91:99:07:bd:4f:c5:
46:d9:f2:9f:06:7c:6e:1b:66:73:13:55:0c:fa:fd:
3f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:36:1E:77:B4:B0:9D:33:2F:55:A8:9B:74:12:4A:E9:DB:DA:AC:BB
X509v3 Authority Key Identifier:
keyid:DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:07:09:30:ee:8e:8a:04:9d:fc:13:24:1b:68:e3:ae:44:45:
88:05:4e:20:53:7d:8f:e0:ee:4a:1e:cd:57:5d:8b:fa:28:1d:
9d:86:7a:c1:69:c1:88:22:cd:66:09:8e:2f:c2:05:3f:d0:02:
c2:87:3e:07:c7:93:a1:58:e6:8b:0b:57:c5:18:b7:90:20:bb:
35:89:6e:82:67:6e:6e:02:67:7a:fb:35:fc:99:5b:5e:31:08:
93:c1:59:13:67:7f:58:45:74:f7:2b:44:27:1e:fb:d4:0e:31:
a0:cc:da:28:01:98:42:e7:32:05:a9:84:9b:20:6c:28:35:bf:
e7:5f:46:0c:e2:c3:3b:0a:d3:e0:c7:58:7d:93:0a:8b:fd:28:
0b:8b:b0:10:cf:4c:2c:7f:74:3e:64:b4:62:86:97:34:f1:e3:
a0:22:08:db:57:a3:f4:86:06:03:90:d2:60:c6:86:51:d2:d0:
00:58:bf:da:91:be:f6:4f:4d:cf:28:ca:0e:67:98:b5:20:43:
73:8f:13:bb:4b:ac:4b:e0:08:2e:fc:dd:7c:da:03:b2:7c:38:
d6:c1:f5:3d:f7:59:85:e5:6e:83:1f:e7:e4:77:ae:5f:3b:77:
f5:de:63:b2:49:26:6c:2c:3a:1a:ab:6b:c2:0a:0d:53:27:82:
ad:1e:44:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:24 2026 by rpki-client