Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
File: 2l7eZe_t7t-MigSyRaOl32OmnoQ.mft (raw, json)
Hash identifier: oBMPaVF2yU7dnve1jr4O5QF2iUaMKVt2GZaXAxydV10=
Subject key identifier: B8:D6:6B:78:97:B4:E6:41:63:94:6C:2A:C9:E4:15:E5:E2:2A:0E:96
Authority key identifier: DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
Certificate issuer: /CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Certificate serial: 019E2F973FEDC9AC6D67AA00275DA20571C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
Manifest number: 190D
Signing time: Sat 16 May 2026 07:01:41 +0000
Manifest this update: Sat 16 May 2026 07:01:41 +0000
Manifest next update: Sun 17 May 2026 07:01:41 +0000
Files and hashes: 1: 2l7eZe_t7t-MigSyRaOl32OmnoQ.crl (hash: gFlkj1EQgmlFXaXEjCRSuZrMe8vz1o4vpyywEB+x10M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:97:3f:ed:c9:ac:6d:67:aa:00:27:5d:a2:05:71:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Validity
Not Before: May 16 07:01:41 2026 GMT
Not After : May 17 07:01:41 2026 GMT
Subject: CN=b8d66b7897b4e64163946c2ac9e415e5e22a0e96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2b:48:0f:4e:23:66:cd:51:78:e1:54:12:46:
72:af:0c:00:b1:ee:3b:98:a0:3a:a7:20:ae:20:7a:
76:f3:29:2b:64:83:91:18:81:ff:18:0f:c4:70:b0:
f6:27:5e:db:d2:1b:ef:bb:9b:12:83:a3:fc:43:73:
17:73:96:e5:4d:51:fb:11:17:f2:37:c0:6a:b6:2a:
43:6b:65:b5:c6:c4:a4:ca:15:5f:f1:6a:97:cc:6a:
b4:d7:53:d0:ef:ff:6b:b4:3a:6e:e0:d3:16:06:f9:
cd:fc:83:72:c8:c1:9b:ee:37:9e:01:37:ea:92:87:
2a:cd:a8:f9:6d:0c:5f:c8:0c:1d:f9:69:6c:e5:cb:
35:48:74:4e:36:ee:22:e5:4b:3a:a3:04:b3:e4:98:
9d:69:17:94:4b:10:bb:2b:b6:9a:66:74:92:31:de:
1f:47:11:83:74:e0:97:bb:b4:8d:6c:ae:c5:5b:bf:
15:a9:83:fe:56:7c:bf:ff:59:6c:e5:4e:fd:0d:5c:
a8:2e:2a:f5:53:21:98:ce:09:3b:f7:76:d1:db:bb:
d8:37:70:b7:ff:b4:cd:67:c7:1d:1f:5d:d6:f5:9c:
8a:22:a2:64:c2:bf:09:53:4b:e1:d8:9b:b4:ee:d7:
52:df:4f:fd:3e:90:54:ad:6a:f3:a2:de:32:28:74:
a3:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:D6:6B:78:97:B4:E6:41:63:94:6C:2A:C9:E4:15:E5:E2:2A:0E:96
X509v3 Authority Key Identifier:
keyid:DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:c0:5b:36:b2:b0:25:b7:4b:25:c7:9a:67:f6:b9:b2:1f:be:
17:b7:79:6d:0c:fc:02:bb:51:1c:4e:fa:3a:7b:3a:7d:91:07:
7b:e8:9d:e4:e2:aa:5f:71:8b:38:43:f7:8c:7d:3b:4b:77:b0:
9f:66:ff:8e:ad:46:bf:27:df:11:ef:1a:b0:bb:f4:7d:d9:6f:
d1:0c:c5:0d:8b:2a:b6:55:fd:80:e0:cd:db:ca:73:a8:52:bc:
77:bf:38:19:e3:e2:91:1d:14:12:e8:4d:c6:85:b8:ea:20:66:
ef:23:bb:31:3b:f9:fb:ed:46:b5:37:54:36:86:6d:36:58:03:
8e:e4:fe:da:df:3b:5f:84:79:89:81:ba:7c:b9:69:58:ee:88:
e7:aa:00:7a:92:52:3b:f8:12:5f:9d:c0:42:18:ed:09:7b:7e:
b0:d0:34:22:2e:4d:85:5f:c7:62:33:44:34:ef:4e:78:94:7d:
4d:1a:85:a2:ce:fe:ee:17:83:a5:28:5f:77:94:67:46:c0:71:
63:a6:ed:55:13:ad:e2:ac:72:34:f7:31:16:45:5c:4e:8f:9c:
ad:70:45:90:82:50:02:86:7a:40:3a:5f:8a:2d:40:ac:27:d2:
7f:42:81:89:3e:de:98:f3:97:f3:e4:ab:63:0a:f5:8d:65:b5:
f7:11:12:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:17 2026 by rpki-client