Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
File: 2sTLURUIAqQBjMJWrSn1RyBnXtU.mft (raw, json)
Hash identifier: zPa2vA9uV5m/Y+fNxNMxMM0wyNkzzDg9zE6/4vaXW5w=
Subject key identifier: F0:2F:BA:DC:39:50:10:F9:4B:AE:D5:DD:FA:FE:26:C2:F6:7D:4E:39
Authority key identifier: DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5
Certificate issuer: /CN=dac4cb51150802a4018cc256ad29f54720675ed5
Certificate serial: 019DA41D03C2B8BA9A2F8AEADEFB6CB95FDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
Manifest number: 13DA
Signing time: Sun 19 Apr 2026 05:00:57 +0000
Manifest this update: Sun 19 Apr 2026 05:00:57 +0000
Manifest next update: Mon 20 Apr 2026 05:00:57 +0000
Files and hashes: 1: 2sTLURUIAqQBjMJWrSn1RyBnXtU.crl (hash: ASD3mHzpGN6X0E0t/FlKm7b2mt3j0yv/fUzjbKl10OI=)
2: 8JzTv1sEWJzgKBh6hP5zrOespe0.roa (hash: nGLxJDi43LNGHyCGN8ILdukMd6pDlSBvmxCeyBz73IY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:1d:03:c2:b8:ba:9a:2f:8a:ea:de:fb:6c:b9:5f:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac4cb51150802a4018cc256ad29f54720675ed5
Validity
Not Before: Apr 19 05:00:57 2026 GMT
Not After : Apr 20 05:00:57 2026 GMT
Subject: CN=f02fbadc395010f94baed5ddfafe26c2f67d4e39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:df:53:6d:28:f2:c4:90:5d:01:fa:b6:55:9d:
68:c1:52:f1:2a:65:d0:13:13:e6:fa:aa:ca:2a:48:
a3:64:cd:69:48:ae:d7:9b:8a:87:6f:7d:b6:2e:14:
07:6f:60:52:6e:9a:b9:2e:62:f6:7a:0f:35:5c:43:
14:0f:8f:eb:b4:74:89:da:a2:2d:e4:68:be:96:38:
38:08:e0:75:34:b6:e5:e2:ff:0c:54:66:b1:7e:6f:
dc:9f:3d:36:83:8d:d1:bf:e6:7e:2e:7a:9b:7a:26:
95:52:8a:25:fd:88:da:06:09:90:29:bf:c2:94:c2:
91:9a:b6:57:65:f8:f5:a6:1e:5a:9c:8a:77:f4:f2:
a3:90:b4:9a:5f:48:d1:ad:05:5c:b5:ca:23:98:8c:
e3:ee:60:62:4d:66:02:77:ac:14:a1:ca:ee:01:c4:
63:2a:70:cb:c9:02:1e:d4:78:06:c5:3e:e3:06:26:
3a:2e:c8:f3:dd:e9:90:cb:91:36:3f:1f:eb:3f:c1:
b6:36:84:84:9f:98:9b:d1:46:8c:6c:cd:71:96:49:
f4:ad:76:0b:6b:b4:41:5c:e6:24:6a:bb:90:ea:4e:
8a:ef:da:67:f9:44:d2:3f:75:54:85:cb:32:a4:b5:
c5:37:d9:f1:64:1e:e7:22:16:98:2a:d4:0d:87:9d:
b2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:2F:BA:DC:39:50:10:F9:4B:AE:D5:DD:FA:FE:26:C2:F6:7D:4E:39
X509v3 Authority Key Identifier:
keyid:DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:01:47:99:cb:91:7c:69:49:76:c2:48:e5:10:ab:08:9e:a5:
eb:c1:e7:fd:ac:86:81:21:b9:89:cf:5a:f9:b9:8b:9a:76:3b:
d4:fc:41:6c:4d:fd:0d:a0:2a:95:98:e8:4d:88:2a:aa:a3:9c:
49:ee:a5:9b:28:81:32:fa:20:67:15:14:a9:b3:a0:93:e1:06:
5f:03:2a:e9:50:a6:f7:eb:fa:04:97:6c:e5:5d:88:51:38:06:
fe:ba:fb:ed:a2:26:70:8d:21:16:69:99:f0:19:c6:06:60:2c:
59:c0:e0:6e:de:62:63:f7:41:1d:09:fb:d9:ec:a7:d7:69:07:
2c:c2:59:90:9a:45:01:c3:f4:1e:c7:b4:3a:c4:ff:39:ef:1a:
19:10:3f:78:52:64:21:f1:86:6b:80:c0:24:d8:c7:6e:19:46:
4a:42:42:3a:85:5e:4c:c1:bf:93:f3:c0:96:55:fe:1e:f7:56:
f5:7d:08:a1:57:af:68:a9:84:70:1e:39:de:27:a8:52:67:80:
32:80:fb:56:cf:c2:f9:1c:f1:a8:b4:57:35:3c:de:43:d5:69:
2d:12:47:05:07:32:2a:5d:d7:1e:14:b3:13:39:49:66:3b:ce:
4f:f1:f2:e6:67:2a:3e:9e:02:65:c4:7e:78:70:e1:ca:c2:ac:
6d:13:71:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:36:31 2026 by rpki-client