Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: i2cDdygHu213w+Tju50KilkWCtEUvxoT9EfioCxZlg4=
Subject key identifier: 6D:FF:32:50:DE:11:3A:83:A2:40:24:17:46:F0:8C:C8:22:0C:DA:D0
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 019EC2249B1491E6B47F34F678D566DCA972
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 195C
Signing time: Sat 13 Jun 2026 18:00:39 +0000
Manifest this update: Sat 13 Jun 2026 18:00:39 +0000
Manifest next update: Sun 14 Jun 2026 18:00:39 +0000
Files and hashes: 1: 1-BTuYEiDE2mEIP2dyXdE1PSMv3c.roa (hash: tBxS565NzZV2f/vbdXm3F39V84JJovJ6zXMOf+itJ6Q=)
2: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: bjN3bJjiy9AaQbllgaQaMaaKcOJJrp6D/pDOFrilK3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:24:9b:14:91:e6:b4:7f:34:f6:78:d5:66:dc:a9:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Jun 13 18:00:39 2026 GMT
Not After : Jun 14 18:00:39 2026 GMT
Subject: CN=6dff3250de113a83a240241746f08cc8220cdad0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:fe:2a:95:fa:91:da:69:14:3c:6f:3e:b2:92:
59:d2:12:76:a3:cd:9c:61:94:96:11:69:a5:19:8b:
84:f9:14:05:16:ff:59:a3:de:f0:ee:b8:9f:f6:86:
bd:67:0e:61:47:c2:71:19:89:c0:5c:bd:57:08:55:
0f:e3:4a:54:05:c5:2c:13:92:35:79:28:58:39:76:
5d:a1:06:c8:5a:3c:ac:d3:e7:cf:3d:cf:ce:56:50:
68:a6:a9:1a:16:4b:f7:6a:2d:7e:b2:3c:b5:7f:e6:
a9:dd:2a:36:9f:40:d0:1e:5d:d2:d2:a9:d6:3c:64:
8a:e9:a2:e4:ff:18:e0:d3:0e:49:fc:24:ef:3b:21:
e4:05:c7:71:53:aa:00:9e:52:ae:8e:8e:77:d5:5a:
28:a2:81:97:55:e6:7c:18:c7:a5:d7:89:5f:3a:df:
c5:24:08:c1:a6:8a:3d:88:c3:7f:03:2f:1f:f4:df:
78:34:d2:13:92:3e:1b:32:d5:af:06:65:70:4b:ac:
84:8f:5a:2c:38:72:11:fe:42:6b:9c:ed:48:af:d9:
32:1b:7c:e3:07:eb:23:45:57:2c:a6:4b:37:66:ff:
a7:62:05:3d:fd:36:31:10:f4:52:ed:dc:3a:52:a3:
47:9b:1e:1c:bb:68:f6:73:e2:8b:e0:c1:1c:90:77:
15:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:FF:32:50:DE:11:3A:83:A2:40:24:17:46:F0:8C:C8:22:0C:DA:D0
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:53:21:15:94:57:02:de:8d:f2:33:64:59:f0:47:05:8e:6f:
52:a4:a8:2b:6f:80:77:b5:59:81:22:54:89:36:39:a9:aa:49:
d6:d6:0e:06:f5:25:a4:98:3f:ee:9a:97:2f:ca:4a:f0:46:71:
9b:8c:6f:fd:83:08:41:d2:a9:ce:28:90:27:c7:9f:d5:96:fc:
d4:ed:1b:f2:a5:66:eb:f6:fa:44:18:ea:40:31:53:5b:fe:c3:
0f:2d:e0:12:b2:64:70:99:d7:5c:4b:d5:b6:3c:f8:99:3b:38:
57:36:1c:1e:54:aa:6f:11:9e:27:be:a2:f6:16:75:47:f6:79:
7d:b2:3c:d4:38:7f:65:63:49:14:1c:34:27:89:68:c9:0e:b5:
78:b7:91:6b:1c:a1:4e:cf:b0:f7:9c:28:91:5d:2c:4f:0c:99:
eb:55:df:a5:8d:75:e1:8f:8a:f1:0a:7c:d9:6a:eb:f9:87:40:
d4:10:23:b4:5d:2d:3a:33:b4:97:9b:df:72:67:8b:c7:85:40:
8c:d3:1e:73:2c:0d:6b:c6:92:fb:ea:12:d1:a9:14:47:c0:9f:
b9:54:2c:63:d0:81:e5:cf:a2:b0:f1:a9:f5:91:5d:e9:17:e5:
6a:d6:a9:a2:d3:ad:3d:4b:29:1d:17:83:fb:2d:53:c5:ad:00:
55:fa:5a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:26:33 2026 by rpki-client