Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft
File: 2rU_myHRPgeOPoRNZF7qhYDxzOE.mft (raw, json)
Hash identifier: DJhXcqsgxxPbRrKg5vPhpKTKB1tIIr5qDRoXWYEmOp0=
Subject key identifier: 72:0A:AE:45:13:68:0A:BD:15:22:6D:78:1E:54:44:91:EF:01:A0:3A
Authority key identifier: DA:B5:3F:9B:21:D1:3E:07:8E:3E:84:4D:64:5E:EA:85:80:F1:CC:E1
Certificate issuer: /CN=dab53f9b21d13e078e3e844d645eea8580f1cce1
Certificate serial: 019D99996B099E950AA833B8B3FA7C8D451D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2rU_myHRPgeOPoRNZF7qhYDxzOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft
Manifest number: 18C6
Signing time: Fri 17 Apr 2026 04:01:01 +0000
Manifest this update: Fri 17 Apr 2026 04:01:01 +0000
Manifest next update: Sat 18 Apr 2026 04:01:01 +0000
Files and hashes: 1: 2rU_myHRPgeOPoRNZF7qhYDxzOE.crl (hash: 4t9UxoXIpwQ/IC+Dw4x8DAk5sppZOBxXSdMPsqjq5jE=)
2: pZ9C3CmkxrOGsoj0mtQVOZi53qw.roa (hash: sgsuQe2msoFiMDKKrbbPAUnLjdv7QmZ0qLU2RSe/3FQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2rU_myHRPgeOPoRNZF7qhYDxzOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:6b:09:9e:95:0a:a8:33:b8:b3:fa:7c:8d:45:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dab53f9b21d13e078e3e844d645eea8580f1cce1
Validity
Not Before: Apr 17 04:01:01 2026 GMT
Not After : Apr 18 04:01:01 2026 GMT
Subject: CN=720aae4513680abd15226d781e544491ef01a03a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:39:bb:86:1a:5c:e4:2a:c4:85:ca:ea:a8:b3:
a1:5f:c9:ae:3c:a6:c2:99:17:b5:7d:2b:b9:43:30:
40:92:16:1d:c9:1b:a0:87:c1:f8:17:3e:da:19:68:
f3:ef:06:f2:43:11:00:9c:5d:25:30:dc:8a:30:d5:
c6:6b:7e:92:a3:fd:8e:11:3b:f3:f3:2a:6e:48:8d:
4b:8b:3d:44:e6:9a:57:ed:e0:fb:ec:5e:98:31:5c:
84:5c:42:69:2d:70:ef:08:74:b0:a6:50:d3:95:8a:
1a:39:7f:0b:9c:24:89:a7:f7:33:a9:74:e9:b1:3a:
21:90:e8:8e:6a:b7:b7:1f:53:6b:b8:e7:e6:92:49:
87:0c:4c:d7:30:a8:5c:04:e4:15:af:24:6d:fc:23:
af:6f:4e:14:e1:35:b3:da:d2:4b:6e:61:ed:60:67:
b0:2c:87:ca:03:20:6a:fb:75:f0:b4:2b:e9:09:d5:
c9:c2:95:11:50:99:f1:ba:76:d3:b0:b4:82:99:47:
4f:a2:43:aa:06:5b:5e:c3:eb:84:15:d8:02:3c:38:
fd:60:2f:4e:b6:a5:11:25:63:ec:a8:ca:f3:53:b7:
da:2b:b4:b8:cf:e4:2c:1d:f2:af:81:ff:ec:94:2f:
8f:59:0d:5d:9e:27:f2:f9:94:e0:07:e8:24:81:00:
ac:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:0A:AE:45:13:68:0A:BD:15:22:6D:78:1E:54:44:91:EF:01:A0:3A
X509v3 Authority Key Identifier:
keyid:DA:B5:3F:9B:21:D1:3E:07:8E:3E:84:4D:64:5E:EA:85:80:F1:CC:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2rU_myHRPgeOPoRNZF7qhYDxzOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:9a:69:3b:70:a8:42:dc:92:21:79:ce:06:ae:4c:47:49:8d:
6f:09:de:48:4d:8d:90:ee:18:70:27:59:9a:99:37:fe:08:86:
66:b4:f9:59:8c:1d:01:a4:28:3f:98:62:88:03:9b:e1:c8:50:
87:53:a7:a1:c7:a4:dc:fb:da:3a:67:a1:66:a8:45:ae:a9:7a:
2f:8e:a6:3f:b5:ad:84:0e:f2:93:37:b2:f7:ce:86:03:ec:1a:
32:d3:69:94:49:f3:f6:30:bd:da:44:4c:ce:c4:d9:2d:41:3f:
ec:26:c5:a2:1a:07:6b:95:97:65:f7:34:b1:15:ca:3f:3b:27:
94:24:32:98:28:8f:cb:26:88:c6:75:95:46:dc:9c:98:34:ee:
bc:ee:77:29:0f:b7:dd:99:40:30:e2:bd:a8:c0:8d:e8:83:14:
d2:21:7e:47:bf:ae:40:7d:33:e2:75:8a:bd:1e:9f:20:e4:cd:
c9:cc:24:55:e8:20:9c:84:e9:f9:4e:32:72:c7:cd:10:71:8c:
8d:5e:7a:d5:08:f2:e2:db:2d:64:58:1a:00:84:dc:08:ab:63:
58:0b:26:26:ee:19:df:4e:da:88:7f:9a:28:d6:00:60:bf:da:
d7:06:19:d4:12:8b:66:5e:ca:7a:9b:0b:d7:52:4b:98:08:d8:
69:43:d9:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:50:31 2026 by rpki-client