Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
File: 2o2nRADHVVq6J8Eon7-5CzO3miI.mft (raw, json)
Hash identifier: eyYkTdydMMRgICcGfiqRrudGFFXGwI770u2/b706Qb4=
Subject key identifier: 9E:1C:71:6A:21:69:17:C4:92:B1:E0:C0:0F:EF:0C:0E:36:21:C9:A0
Authority key identifier: DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
Certificate issuer: /CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Certificate serial: 019EBEED5CF85331B6D92E2850EFAA06C7D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
Manifest number: 17E6
Signing time: Sat 13 Jun 2026 03:01:27 +0000
Manifest this update: Sat 13 Jun 2026 03:01:27 +0000
Manifest next update: Sun 14 Jun 2026 03:01:27 +0000
Files and hashes: 1: 2o2nRADHVVq6J8Eon7-5CzO3miI.crl (hash: eCMDSSvRGHpDi29LZ0krPZcQGLfaZBmkIpeoqBolMRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:ed:5c:f8:53:31:b6:d9:2e:28:50:ef:aa:06:c7:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Validity
Not Before: Jun 13 03:01:27 2026 GMT
Not After : Jun 14 03:01:27 2026 GMT
Subject: CN=9e1c716a216917c492b1e0c00fef0c0e3621c9a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:07:eb:2d:fb:78:08:a5:f2:4d:d0:15:59:c1:
68:eb:18:c6:46:e7:68:23:3e:e5:b5:d7:16:ee:18:
7d:bf:39:12:3b:a3:f3:30:c1:e4:0b:84:d7:9b:bb:
c9:a0:46:80:05:3d:da:28:13:b0:33:a2:13:f7:db:
0d:7a:20:0e:cc:1d:fe:18:b5:8b:0d:c6:fe:96:93:
2d:35:7f:f0:a6:f5:3e:ae:be:fb:8e:6a:97:43:92:
6f:bc:18:4d:77:7f:30:e7:a7:78:06:b6:63:c9:0f:
22:88:db:df:a8:4a:3d:6a:96:77:54:3b:d0:1d:5b:
6a:fc:77:53:95:f8:b6:06:aa:f3:0a:39:61:50:b3:
9c:bc:6b:a1:8f:b4:9f:d4:d0:69:20:1d:d7:9b:c1:
9d:7c:c4:c3:d6:68:05:d2:3a:23:60:b8:f7:dc:3c:
47:25:ba:0e:71:52:48:27:23:a1:f3:8d:c9:ca:d7:
fe:4e:c8:31:86:5b:9a:87:13:79:ec:02:f4:c8:b7:
54:1e:14:de:00:06:fb:81:da:e1:26:e9:3d:e7:e7:
b6:48:5e:59:1f:94:42:7f:6a:cf:54:00:c2:40:1b:
97:1e:75:80:ff:c5:82:9c:e5:db:a3:80:9f:83:bf:
06:4e:27:ea:2a:2f:f6:44:d2:ea:f5:b7:fb:60:c8:
ce:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:1C:71:6A:21:69:17:C4:92:B1:E0:C0:0F:EF:0C:0E:36:21:C9:A0
X509v3 Authority Key Identifier:
keyid:DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:13:30:8f:55:77:4c:c2:86:3a:81:72:1f:c8:ac:c7:07:c6:
f5:e1:b6:32:86:31:1c:50:6d:6d:9b:2c:73:5a:2e:60:ed:fb:
1e:84:85:7f:e4:7c:68:51:4d:01:28:16:c7:b6:f8:c5:8d:1a:
b2:ab:76:f2:e3:d2:71:f9:34:38:14:cb:1e:d6:9e:7b:74:48:
c2:ed:87:b2:97:77:51:c1:7d:52:17:26:9a:19:de:da:59:d5:
dd:5e:c1:06:8f:03:e5:d4:bd:0a:2c:76:49:cd:9b:3e:1f:71:
b9:80:25:0d:50:78:7f:6f:2e:fb:d5:50:99:ad:25:35:a5:67:
4e:90:bd:08:e0:94:1a:5e:5f:98:0a:7c:b9:6e:3e:ff:e6:f6:
b9:72:54:d6:f4:fd:39:ba:ac:c4:a8:24:0d:86:09:fc:52:ef:
7b:fd:19:06:38:2a:21:d0:59:d0:6d:56:91:6c:06:58:2e:2b:
c5:80:ff:ba:4c:49:44:3f:11:c4:f8:f1:21:1a:9a:2e:51:a8:
e5:dd:ab:02:ef:89:83:f6:45:dc:7c:c5:3f:24:e1:bc:a0:c1:
0a:8a:58:f6:06:c2:df:20:d6:87:0f:5a:c9:6b:2c:8d:71:01:
43:84:79:b5:30:4a:34:d4:8a:71:fa:ab:43:74:04:25:c9:05:
6c:c5:cd:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:59:07 2026 by rpki-client