Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
File: 2DLajUWISdX0C6bwuSCPhYXZ4j4.mft (raw, json)
Hash identifier: fNdmZB7bqnhfi8Ft08wW9PBuYc/15L8tPckt7WFIff8=
Subject key identifier: 2E:97:1C:5F:5D:49:BC:15:20:D7:8F:83:C5:76:83:FA:BE:3B:DA:1C
Authority key identifier: D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
Certificate issuer: /CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Certificate serial: 019D98BD3972D4E0ECCABBD6DEDA2504A10E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
Manifest number: 18C1
Signing time: Fri 17 Apr 2026 00:00:30 +0000
Manifest this update: Fri 17 Apr 2026 00:00:30 +0000
Manifest next update: Sat 18 Apr 2026 00:00:30 +0000
Files and hashes: 1: 2DLajUWISdX0C6bwuSCPhYXZ4j4.crl (hash: x548rLHEk3xZTvZfXUH5iREtSsEtp32MzrJAuPAKmYs=)
2: 7-BHgIfd8UJXQcrdaeCEGNqT0DU.roa (hash: r7iG2JSHeb88gixTYl7AFD1jnKrQ0a+iH+yjlWvhS9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:39:72:d4:e0:ec:ca:bb:d6:de:da:25:04:a1:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Validity
Not Before: Apr 17 00:00:30 2026 GMT
Not After : Apr 18 00:00:30 2026 GMT
Subject: CN=2e971c5f5d49bc1520d78f83c57683fabe3bda1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:22:ef:39:14:d3:10:6f:54:00:3d:80:b3:0b:
bb:84:06:3e:05:c9:03:7e:80:64:e3:f5:1a:3e:f9:
fc:26:4f:49:e5:a9:14:b6:39:be:58:29:7e:94:87:
38:36:0d:ac:3d:c6:25:c6:76:e4:84:81:5b:39:b8:
22:f1:80:55:93:2f:2f:33:41:47:a6:a8:81:b9:94:
a9:8f:4f:4e:99:08:c4:ff:1a:da:6d:69:ea:aa:97:
1d:7f:ba:3e:0b:65:33:1a:88:cd:b8:78:0a:e6:c1:
bf:c6:df:e8:8a:d7:14:23:00:d7:26:65:f5:e9:40:
b0:67:2d:b6:98:20:87:45:da:f1:4f:36:4e:fa:59:
28:49:a8:e0:e4:b8:83:b4:ea:a0:03:f1:17:c0:f9:
72:57:01:bb:0a:6a:82:2a:3e:05:6b:d9:cc:7d:8f:
ca:fd:c3:50:9c:f4:d9:13:7f:ea:ad:53:81:ed:71:
ff:6f:66:14:d7:99:8e:b5:89:af:ac:16:eb:09:ab:
83:88:ce:c6:72:93:3c:f4:4a:a2:0c:05:3c:4c:03:
eb:84:2c:f9:28:31:02:67:49:ea:b0:78:10:c6:ae:
57:2e:78:d3:c5:bd:de:1e:4f:82:49:0d:b4:5e:ca:
ef:35:bb:60:95:cf:97:0a:0a:c5:3e:89:8a:a5:b9:
8c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:97:1C:5F:5D:49:BC:15:20:D7:8F:83:C5:76:83:FA:BE:3B:DA:1C
X509v3 Authority Key Identifier:
keyid:D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:c3:7c:ae:5b:52:4e:67:21:55:df:b6:c0:dd:0e:e1:8d:c4:
bb:87:f1:27:3f:d0:2f:1b:c5:e2:69:61:f1:5a:61:6f:e5:18:
82:b2:57:52:0d:65:41:78:7f:5a:c7:df:8b:63:5f:62:ed:ec:
ce:aa:96:13:fd:b6:77:d9:0f:d0:00:98:c5:b0:fe:37:07:fd:
16:a7:b8:6b:f7:e7:0a:31:3d:27:2c:68:78:9c:f7:ac:ad:2f:
d2:7a:09:1e:c5:a0:e8:84:9c:12:20:3e:f9:3a:0c:f2:89:97:
c7:14:4c:34:1f:39:7e:64:9a:22:da:dd:ac:47:e4:5e:68:66:
a5:81:8b:ae:02:62:cc:a8:16:d1:c0:6b:4a:6f:f7:31:8a:d4:
31:28:06:04:67:48:4d:7b:20:76:f8:dc:20:77:bb:1b:ed:5f:
41:b0:77:cf:78:fa:8e:a6:69:4d:17:37:89:e6:f8:d6:14:d5:
ee:b6:4e:81:ba:33:ba:91:3d:38:1e:7a:d3:78:5b:29:4a:eb:
e3:ed:10:4c:15:13:22:7c:eb:04:7f:bd:a9:c5:67:ee:4a:f5:
21:49:85:95:c6:5d:82:c0:4b:73:ba:61:8f:1f:4b:bb:c1:60:
f1:bf:d1:22:cc:61:35:9c:3c:e6:66:06:f6:29:52:ae:c2:ec:
e2:ac:68:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:46:26 2026 by rpki-client