Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
File: 2PWmbP0hpcrXopuOtc2SqkYDIMM.mft (raw, json)
Hash identifier: qjP1Re0gPb4lx48ppKNPVNAMc6uyfcs76SwivuPeMk4=
Subject key identifier: 5D:C3:B9:48:D1:43:76:E5:9D:C7:62:D6:4B:6F:0D:AF:8B:60:90:00
Authority key identifier: D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
Certificate issuer: /CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Certificate serial: 019EBE7F32C3253050FEC7AB1444616577CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
Manifest number: 195A
Signing time: Sat 13 Jun 2026 01:01:07 +0000
Manifest this update: Sat 13 Jun 2026 01:01:07 +0000
Manifest next update: Sun 14 Jun 2026 01:01:07 +0000
Files and hashes: 1: 2PWmbP0hpcrXopuOtc2SqkYDIMM.crl (hash: WJEYP8zjB5pPGdBzR4i093DMq4en/G3kkM4oUW6JoQg=)
2: hSitky1wYRTLv14NEnwV-zxWb_o.roa (hash: PA0bbeChQyvoxmLwu2ifsRmhbm5WEw0zyVf1Uu/ZDBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:7f:32:c3:25:30:50:fe:c7:ab:14:44:61:65:77:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Validity
Not Before: Jun 13 01:01:07 2026 GMT
Not After : Jun 14 01:01:07 2026 GMT
Subject: CN=5dc3b948d14376e59dc762d64b6f0daf8b609000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:05:02:1d:db:3c:b6:74:36:8a:39:c7:a7:aa:
9c:2a:cb:e4:6f:90:11:82:0d:52:53:1c:a0:70:92:
b6:23:9c:81:e0:35:a3:83:06:d7:d9:22:7c:5a:c0:
58:47:bf:d3:75:1a:2d:48:81:13:f6:4a:e9:6a:99:
8e:8b:01:62:de:b7:42:fb:62:48:f4:3a:a3:53:fa:
f9:a8:11:2c:f8:54:38:bd:c3:87:75:8f:b2:f1:8b:
15:72:98:a7:8a:ba:d9:b1:7b:aa:c6:81:1f:bc:2a:
1a:a7:a2:71:cf:6e:40:ba:f2:cc:3d:8a:62:8c:fc:
20:4d:c4:37:27:38:c0:f9:74:21:fa:72:92:46:13:
a8:65:3c:f5:4f:14:71:04:ad:f4:4a:22:d5:fc:f4:
4d:e7:48:08:45:33:c4:b5:38:17:0c:f0:6d:1a:61:
04:64:6b:a2:26:32:9f:05:6e:0f:24:19:4b:94:d5:
1e:4b:7f:e8:14:5c:48:dc:3d:d3:f6:89:dd:1f:72:
ea:29:84:bc:97:73:4c:78:70:ab:e1:23:85:3b:86:
8c:1a:27:76:ed:38:35:60:b8:66:8b:77:df:fa:4f:
4a:65:a2:6c:bd:15:8e:8e:87:13:57:1f:06:56:d6:
4d:a0:3f:ae:9a:e6:ac:98:71:66:4f:c6:8c:82:34:
c0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:C3:B9:48:D1:43:76:E5:9D:C7:62:D6:4B:6F:0D:AF:8B:60:90:00
X509v3 Authority Key Identifier:
keyid:D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:3f:f7:7f:2d:92:e3:9b:c0:7f:c7:70:2a:dd:35:e3:d7:7a:
e2:1d:3a:5f:05:26:1f:4e:ca:92:a5:6b:09:1c:33:5b:9e:5a:
af:5f:55:ff:38:8e:3d:cc:62:da:74:18:49:00:b4:1e:b0:62:
fe:92:e0:1d:60:28:13:27:7a:f9:ae:7e:49:20:04:b5:b0:18:
15:78:2f:39:f3:e0:43:d1:ab:af:db:42:50:89:dc:bf:87:27:
d1:ac:e0:3b:17:8a:65:77:71:af:b3:df:b3:09:5a:72:68:bc:
92:37:9d:2c:1e:aa:45:4f:df:67:62:7b:1b:c8:0d:3e:97:c5:
ba:ee:25:4e:03:ad:f2:6c:c5:7e:0f:82:68:92:f6:a3:d5:5f:
7c:15:ef:e4:0d:9a:96:c1:6c:c6:2f:65:4c:c6:84:94:e3:42:
29:36:e2:5a:61:1b:d4:82:06:01:fd:3b:a8:e7:13:45:b2:7f:
7f:05:87:8a:49:11:0f:30:10:07:ff:f4:e1:95:00:d5:f2:97:
cb:55:bf:44:61:f2:66:b4:27:c7:2b:f6:d0:09:ec:45:10:f0:
4e:32:20:ec:83:91:41:87:ae:d2:9a:e7:2b:ea:59:68:e0:c8:
09:11:0d:59:d0:fd:27:3d:da:67:7f:c1:de:cf:b0:4a:8c:5c:
d3:6f:53:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:38:36 2026 by rpki-client