Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
File: 2PuW6jr1HFMtfo_oyUN29R4epAI.mft (raw, json)
Hash identifier: C9qUPaSCANucy04jiNRZeRgDgeRV/QFoehUBJlI6S0M=
Subject key identifier: FB:DB:48:DB:B5:04:D8:07:CA:A6:B4:9D:F9:EF:34:4C:F4:F1:36:30
Authority key identifier: D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
Certificate issuer: /CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Certificate serial: 019EBEB64C0C243E78878FA67E314277E515
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
Manifest number: 177E
Signing time: Sat 13 Jun 2026 02:01:18 +0000
Manifest this update: Sat 13 Jun 2026 02:01:18 +0000
Manifest next update: Sun 14 Jun 2026 02:01:18 +0000
Files and hashes: 1: 2PuW6jr1HFMtfo_oyUN29R4epAI.crl (hash: U1Eq8Boq8/vzRs8EKfb6fWHAQby23ZLfDKirvFxa5Z8=)
2: JKIhvk4nR2Yatg3LSMzcvAB5gDY.roa (hash: Wu8o0XpgB80LZ5YT5dratdi0qOmv7LG2bN4vwgSeFRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:b6:4c:0c:24:3e:78:87:8f:a6:7e:31:42:77:e5:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Validity
Not Before: Jun 13 02:01:18 2026 GMT
Not After : Jun 14 02:01:18 2026 GMT
Subject: CN=fbdb48dbb504d807caa6b49df9ef344cf4f13630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:84:0a:48:4e:eb:83:46:90:d8:62:2d:8c:67:
80:3a:8d:46:f8:80:ea:d2:ef:59:25:09:ad:79:21:
cf:92:de:ed:4e:71:4f:cc:bd:8c:56:43:fb:7e:59:
a3:1e:30:5b:a0:07:26:be:d7:67:3c:23:b2:83:61:
f2:6e:39:32:f9:34:ee:d6:f5:2b:c4:ee:17:cd:0f:
7b:e7:91:5c:d9:8d:51:1f:97:1e:3b:12:fa:8f:36:
d9:44:a0:72:1a:61:a9:27:92:d6:cc:f0:a7:2b:69:
70:5c:62:58:7b:81:b4:3b:14:2d:dd:a4:ec:80:a8:
4d:a0:ce:45:aa:47:39:21:6c:4c:36:c5:eb:26:8e:
4d:58:3c:18:91:12:67:d1:12:db:d2:be:dc:f1:c6:
d2:72:b7:12:a1:ac:47:4b:c9:86:15:32:ab:b4:10:
bc:d1:8f:60:a1:64:a5:48:c9:ff:0d:8c:e2:41:1c:
1c:55:a0:d1:09:fb:47:c8:f5:c9:5f:56:2f:25:96:
af:6e:0e:71:5a:fc:4c:cf:a5:02:a9:19:16:0f:59:
ae:a4:0f:82:58:7b:86:bd:10:cf:77:50:cf:39:ad:
dc:cd:58:e0:29:55:53:ab:6a:c3:48:fc:ac:13:45:
51:7c:40:74:4c:fa:b7:f4:20:dc:f7:31:3f:fa:70:
ea:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:DB:48:DB:B5:04:D8:07:CA:A6:B4:9D:F9:EF:34:4C:F4:F1:36:30
X509v3 Authority Key Identifier:
keyid:D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:fd:7f:f4:ed:8c:28:5e:31:c1:e9:62:53:0d:ef:7c:70:2b:
cc:c8:7e:2d:73:bc:9f:cd:f1:d9:1a:48:16:69:4e:b8:fa:7b:
cf:4d:3a:a5:ba:26:3c:47:e6:d3:dd:52:f8:ce:61:59:d4:cd:
8e:89:aa:59:d0:e3:9e:a0:9d:e5:14:a2:46:0a:ff:4a:9e:4c:
67:ea:93:56:e8:2c:26:56:23:3a:5b:99:4e:9b:92:c9:0c:5e:
f2:e0:9e:87:91:6b:2c:04:13:c6:09:67:36:74:39:26:95:35:
e6:e7:e3:ab:ff:4c:86:71:8b:54:47:24:a0:58:e3:c5:02:e3:
22:86:b4:92:75:c7:16:c7:13:d9:c5:b2:74:b0:dc:43:46:c4:
61:f9:84:6d:5a:e2:0f:4f:32:c5:03:28:dc:c5:2e:1c:80:8a:
a7:85:a8:a9:be:c0:8f:af:d8:92:1a:f0:5c:00:be:b3:9f:3a:
d6:40:73:31:da:51:63:fc:ec:09:99:9a:dc:d6:62:e7:b9:72:
0a:6d:f8:c4:21:71:1e:b1:36:63:31:65:f7:05:cd:77:da:9e:
69:8e:58:95:22:7f:22:14:b6:3a:29:f3:27:6a:05:ae:46:c8:
9a:aa:23:78:54:d6:67:ab:ea:23:ff:8b:61:80:4e:61:26:b5:
23:c1:86:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:33:13 2026 by rpki-client