Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: S7mopINpDURROpsqOBRj5iecft0fHb4HTTXByAa1OM4=
Subject key identifier: 59:A4:65:51:06:22:FA:C8:2A:96:2A:D4:73:5B:F9:A5:41:70:39:8D
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 019EBEEC5F151E8F0AE764AC8F85CEB698A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 0608
Signing time: Sat 13 Jun 2026 03:00:22 +0000
Manifest this update: Sat 13 Jun 2026 03:00:22 +0000
Manifest next update: Sun 14 Jun 2026 03:00:22 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: BzisTPtIKtiQvDJX5vl++SVC2yc75c0MJSXpA/i6ejc=)
2: 4vjv7ETAasx0tRKIpHxecSePkHs.roa (hash: 2AsMwZr9rbOc2Qfm0AhPalnC6K6xXB1YyB0oF7P/lrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:ec:5f:15:1e:8f:0a:e7:64:ac:8f:85:ce:b6:98:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: Jun 13 03:00:22 2026 GMT
Not After : Jun 14 03:00:22 2026 GMT
Subject: CN=59a465510622fac82a962ad4735bf9a54170398d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9e:35:74:f4:40:5f:df:d8:9d:61:ab:07:fb:
ea:c2:a4:5b:1b:0a:9d:b0:47:60:34:a6:cf:ed:d0:
6f:01:e6:15:13:a9:c7:6a:94:da:ac:d2:4b:92:ef:
7e:fb:df:47:05:1b:5f:4c:d7:36:76:a9:16:df:48:
6f:4d:c4:01:72:29:0e:07:94:3f:58:c1:c7:3b:09:
f9:96:2b:fe:48:54:2c:92:51:82:dd:e3:db:2f:3c:
0e:5e:1a:29:e4:af:3d:df:70:19:f6:84:98:4e:18:
a6:5e:b9:c3:5e:a6:a8:c7:87:60:9a:de:0d:1f:58:
43:83:31:b8:a4:94:9a:d4:64:59:9e:0d:77:ff:4c:
e9:d1:6d:ac:7f:04:c2:17:f9:2f:9a:42:75:3c:19:
dc:28:84:a0:30:c6:40:01:24:8f:c1:70:bf:f0:40:
9a:86:8f:38:24:c7:62:85:24:be:dc:6c:4d:dd:24:
05:70:41:39:e4:37:60:9b:7b:8e:93:f4:21:a6:b9:
5f:92:f7:a9:ef:36:62:48:cc:00:07:2c:8e:5a:18:
f7:b1:07:a5:2a:b8:1d:22:0f:23:be:c1:af:04:28:
c8:25:3a:b9:6c:77:22:2a:49:97:cc:11:73:7c:fa:
a7:f7:d2:57:e3:e2:dc:30:f6:61:c7:2c:5a:ec:fe:
1c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A4:65:51:06:22:FA:C8:2A:96:2A:D4:73:5B:F9:A5:41:70:39:8D
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:52:23:25:38:d2:f6:30:19:7e:4b:03:33:59:10:8f:dc:ad:
24:da:6e:51:e6:13:60:a3:c1:02:9f:f9:24:44:f9:d1:c6:c0:
ef:c2:49:91:f4:e7:af:93:72:b4:f1:69:90:6d:4b:7f:34:f2:
50:e1:b3:de:c8:2b:5a:4f:77:05:18:4d:2a:f8:87:84:d5:be:
1a:ac:ce:ac:c0:f9:8a:4c:c9:3d:25:ae:7b:95:15:c3:96:aa:
82:32:35:df:b0:69:96:89:91:d4:2e:af:5b:88:4b:a9:c7:25:
76:8b:5d:ae:7d:27:c2:cf:e7:b7:25:fd:a7:b6:22:ff:0f:e9:
de:88:e6:50:00:01:72:1a:08:af:18:07:13:63:74:56:34:40:
79:82:bf:ac:6d:36:77:07:9e:bc:08:6f:a8:00:81:37:9b:2b:
9b:d7:90:c9:1f:78:ce:48:ad:02:08:0b:e8:78:af:f7:8e:12:
c7:9e:ca:0d:d2:08:ed:4c:f5:79:03:52:27:52:78:e0:c9:44:
97:6b:56:e8:6f:bd:e2:cf:02:a1:31:70:8e:a1:e9:84:7b:20:
65:4e:a9:3f:9c:68:e9:d9:6a:55:c5:cb:65:f8:11:f9:a2:5f:
67:4c:d7:5b:c0:d3:60:01:be:16:2c:c3:5e:43:16:57:c5:75:
bf:d5:16:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:57:00 2026 by rpki-client