Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: Gywd+A6juG/ddonuGNsNwQNyFXjU1fSumqCELcOKfuY=
Subject key identifier: 20:FD:AB:BF:BA:BE:93:51:CE:95:78:E6:5C:E9:D4:C0:FC:F6:4E:DA
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 019EBF9133DDF080BC6B0D734B60585E7203
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 0EB2
Signing time: Sat 13 Jun 2026 06:00:24 +0000
Manifest this update: Sat 13 Jun 2026 06:00:24 +0000
Manifest next update: Sun 14 Jun 2026 06:00:24 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: 0U+6TkbBgg4Og+F8aCNXuir7QGTCZ1nsm/0Ol9QaYyc=)
2: 55I-KJfDZCQf3-WIzaOmHLDw0UA.roa (hash: CHL8cZMB7OLAW5NGioo9AKdHll+9RPJn2SB7b3DCiOk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:91:33:dd:f0:80:bc:6b:0d:73:4b:60:58:5e:72:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: Jun 13 06:00:24 2026 GMT
Not After : Jun 14 06:00:24 2026 GMT
Subject: CN=20fdabbfbabe9351ce9578e65ce9d4c0fcf64eda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:39:2e:56:a8:c7:93:aa:1e:91:01:66:c6:23:
99:0d:21:90:e2:f9:20:12:02:ac:fc:fc:3c:d0:ab:
db:7d:a4:b2:7b:e4:8e:36:46:30:59:57:55:be:d6:
83:f9:bd:e0:07:b9:00:95:14:a9:93:e5:61:fe:d6:
f2:60:a3:52:07:24:b4:4d:6c:b1:77:0b:8d:66:75:
f9:77:f1:21:89:a0:11:7b:56:94:8e:23:2d:46:77:
ba:9e:85:b6:ac:e3:a9:72:44:78:4c:e2:1b:51:c6:
5e:b1:1f:33:2e:01:ec:58:e9:a7:6c:64:d4:59:97:
c8:f6:84:65:1f:39:d2:c2:5c:ed:9f:5e:c6:54:bf:
be:eb:8c:bb:b4:d9:95:28:bb:8d:33:49:d1:88:ef:
10:24:5d:60:05:40:5a:b2:9c:38:d2:27:cf:63:01:
29:b2:f2:43:3e:ac:65:fd:e1:a3:19:69:96:60:86:
d2:31:69:10:c2:6e:b2:8b:ec:e8:d2:47:07:8f:55:
c0:86:1f:ed:8c:76:fd:d8:20:91:86:8d:c5:7f:f8:
16:10:ee:af:7f:c0:2b:93:0c:63:6e:6a:43:5c:c4:
14:56:33:68:2e:26:58:3f:58:d4:4d:f4:e2:d2:f3:
82:5b:ad:20:4f:81:1a:13:8a:1a:f5:4b:08:02:fc:
c8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:FD:AB:BF:BA:BE:93:51:CE:95:78:E6:5C:E9:D4:C0:FC:F6:4E:DA
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:0e:d4:e4:7b:13:31:e4:0b:98:73:dc:d6:2f:6b:4a:45:c8:
98:21:2b:e4:4e:bf:9d:1d:38:03:b9:ed:00:f1:47:0c:d9:77:
ba:cb:c4:ff:f5:1f:f3:c8:75:21:ec:b9:9d:ec:81:84:f6:20:
be:2c:c7:c0:10:55:3b:04:53:b5:b1:0c:97:75:76:3a:b3:12:
6a:06:cd:32:30:d4:97:5c:75:9f:2a:ee:81:e3:32:1b:9c:d8:
ce:26:de:20:61:a1:b6:d8:68:50:c8:9e:d0:58:8f:a6:7f:bf:
cc:95:f3:af:26:8e:ba:e6:83:f3:87:68:38:75:6f:14:53:0e:
ac:1f:8b:20:b9:56:2c:f1:8a:ca:56:79:ed:f0:5e:37:f0:d6:
71:b0:f0:5b:5e:c6:e8:4e:ae:95:38:9f:9e:63:9f:36:fc:9d:
cf:e3:1d:3d:6f:68:1e:11:b8:e9:97:44:ad:b5:21:b2:1b:bc:
f3:a0:04:50:21:18:18:eb:19:d5:d2:7f:7c:8a:29:5e:a4:46:
57:6d:8d:f7:d0:a7:15:c6:80:2b:6f:5a:3d:93:36:52:30:f1:
37:03:e6:14:c5:1a:8f:83:7b:ab:d1:28:a3:b0:68:44:6d:ca:
c5:69:2f:2b:3b:a1:30:d5:3d:cb:e2:92:18:16:47:cc:6d:15:
5f:33:0f:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:38:35 2026 by rpki-client