Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
File: 2PuW6jr1HFMtfo_oyUN29R4epAI.mft (raw, json)
Hash identifier: 0xT7Lfur56WLsc9DfN0clqCXdWqXayIRyA4vlO6MFSU=
Subject key identifier: 0D:9E:37:D2:8F:00:8A:6B:F8:76:DA:EC:2B:49:3F:EA:C8:4C:64:41
Authority key identifier: D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
Certificate issuer: /CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Certificate serial: 019D992B00B8279398A0A08D16DED79DE46E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
Manifest number: 16E6
Signing time: Fri 17 Apr 2026 02:00:25 +0000
Manifest this update: Fri 17 Apr 2026 02:00:25 +0000
Manifest next update: Sat 18 Apr 2026 02:00:25 +0000
Files and hashes: 1: 2PuW6jr1HFMtfo_oyUN29R4epAI.crl (hash: apclvfz/4lyMXXKJPgJlB2yg2LKYfWoPTMCRdB32hYw=)
2: JKIhvk4nR2Yatg3LSMzcvAB5gDY.roa (hash: Wu8o0XpgB80LZ5YT5dratdi0qOmv7LG2bN4vwgSeFRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:00:b8:27:93:98:a0:a0:8d:16:de:d7:9d:e4:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Validity
Not Before: Apr 17 02:00:25 2026 GMT
Not After : Apr 18 02:00:25 2026 GMT
Subject: CN=0d9e37d28f008a6bf876daec2b493feac84c6441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:07:70:54:31:a0:59:22:fe:e7:af:e7:22:fd:
39:9c:1e:20:2e:48:dc:4c:52:eb:81:f1:ae:d9:3a:
6e:c9:12:67:56:83:62:9a:86:45:22:48:76:7c:3f:
68:f2:2c:70:eb:b3:87:ab:27:ba:d7:fb:22:83:b4:
9b:53:fa:8a:15:b6:74:0d:45:b9:10:8b:20:2c:96:
f2:f1:b2:a8:fa:42:cc:29:61:8b:79:0d:d3:6e:c1:
8f:a4:e6:bf:19:57:a1:87:44:5a:cb:13:c9:94:54:
f8:4d:87:06:62:12:d2:d5:42:a5:e0:e0:b5:85:3f:
77:b0:79:c5:53:a4:7a:78:96:8f:24:3d:c4:ea:62:
d2:ff:37:2c:c0:37:86:56:7c:60:0c:cd:0b:00:76:
16:12:61:db:4a:be:5e:ae:e1:e5:02:3c:1e:e4:61:
f1:0f:62:1c:81:28:fc:5a:f1:8c:26:b1:c9:f8:04:
f4:ad:fc:df:31:ad:ae:4b:cd:1e:49:82:c9:7b:f6:
82:63:d8:45:ee:07:18:0d:56:e4:c9:ee:9e:61:2b:
40:46:99:6a:7e:8d:2b:04:42:0e:55:38:30:d6:0c:
72:97:14:26:b8:97:b9:ed:d0:08:a0:59:fc:5f:80:
e0:df:bb:e4:35:75:a8:65:e6:8c:85:2b:4d:5e:82:
c7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:9E:37:D2:8F:00:8A:6B:F8:76:DA:EC:2B:49:3F:EA:C8:4C:64:41
X509v3 Authority Key Identifier:
keyid:D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:ac:03:ff:fa:b6:b6:1f:54:fb:27:06:7f:84:f0:c5:9d:92:
d5:89:32:5a:77:86:35:38:b3:75:5e:f1:f3:b3:30:7d:e2:a7:
f3:5b:7d:84:69:85:d4:f1:94:9c:8f:c2:bf:8b:53:0d:88:84:
66:a3:82:33:ca:26:63:de:e1:af:3f:f9:a7:5e:d0:b1:c9:34:
d0:8c:61:ef:89:42:b9:24:65:53:a1:d3:09:2f:1b:bb:50:12:
be:20:45:0a:bb:ff:a6:51:41:2b:38:21:70:bd:e7:dc:26:8f:
1b:e1:1f:9d:ba:8d:9f:30:74:ee:50:e7:4d:dd:19:ad:e6:7d:
14:cb:51:85:e9:1c:5e:f0:fd:a7:ae:4b:69:68:55:5e:23:f9:
dc:ef:ed:c7:bc:5c:00:96:ae:c4:15:40:36:20:d2:81:fb:5e:
b7:0a:81:9b:72:6d:de:ee:bb:7c:d6:e9:18:c0:97:3a:76:08:
99:b3:3b:c9:2c:9e:5e:11:67:9f:34:c9:8a:97:a3:e7:8e:36:
fd:ec:46:d6:ba:a9:ee:f3:10:39:0b:4d:a4:fd:21:66:60:e6:
e0:84:22:aa:ee:5b:c6:ff:c6:e6:98:d0:fc:1b:2d:c3:89:99:
6a:7e:f1:d1:29:db:f2:d7:75:3d:5b:24:10:82:c5:96:23:d2:
e1:5e:21:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:28:00 2026 by rpki-client