Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
File: 2DLajUWISdX0C6bwuSCPhYXZ4j4.mft (raw, json)
Hash identifier: 1ZZuFhlej4miJc+mRyB7Lno43Zj7dIPT7bofyi+7JYk=
Subject key identifier: A9:22:DE:04:3B:23:96:CA:7E:65:B3:65:24:12:64:58:E9:1A:88:F6
Authority key identifier: D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
Certificate issuer: /CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Certificate serial: 019EBE476CFC5BBD2D4873E491BBCF3B2879
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
Manifest number: 1959
Signing time: Sat 13 Jun 2026 00:00:12 +0000
Manifest this update: Sat 13 Jun 2026 00:00:12 +0000
Manifest next update: Sun 14 Jun 2026 00:00:12 +0000
Files and hashes: 1: 2DLajUWISdX0C6bwuSCPhYXZ4j4.crl (hash: Esfvxu6WZiZkwLam7Z9wSppWITD+ZIHx0tucrm5hBdE=)
2: 7-BHgIfd8UJXQcrdaeCEGNqT0DU.roa (hash: r7iG2JSHeb88gixTYl7AFD1jnKrQ0a+iH+yjlWvhS9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:47:6c:fc:5b:bd:2d:48:73:e4:91:bb:cf:3b:28:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Validity
Not Before: Jun 13 00:00:12 2026 GMT
Not After : Jun 14 00:00:12 2026 GMT
Subject: CN=a922de043b2396ca7e65b36524126458e91a88f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9e:7e:d2:66:4d:0e:c5:18:b2:31:b5:b4:98:
ed:40:49:77:d7:bf:63:32:ca:11:33:fe:b7:fa:14:
d1:ba:e9:b7:e1:a4:d6:ad:6b:20:68:99:c1:87:ed:
2f:c9:ac:59:5a:2c:df:67:83:e0:6c:8a:1b:d5:0c:
e5:04:dd:c8:76:81:a1:ed:97:6c:ab:dd:5f:b3:75:
2f:52:f1:11:cd:6a:9d:f8:2d:99:69:bd:4c:85:9f:
29:aa:e0:7e:e3:1f:39:4b:f5:c5:99:fa:c6:11:79:
9c:64:42:40:d2:17:08:69:37:ba:66:36:42:26:90:
b3:e6:c1:57:35:fa:53:67:85:3b:e8:1d:6f:af:48:
de:58:ae:b7:8e:d1:0c:0e:b7:ed:1f:dd:35:ce:fb:
50:4f:5e:95:f7:e6:45:6a:0b:51:8e:51:3b:24:de:
b0:3a:b4:55:c2:d5:48:1b:a7:63:76:3c:7c:ea:3e:
99:06:d5:4c:b1:b6:0c:89:f0:34:20:90:36:f1:13:
7d:69:b2:9c:d3:ad:22:71:36:b5:53:53:2e:50:3f:
a1:bf:97:39:fe:3d:08:19:5c:bc:48:dd:a2:cd:33:
8d:2b:71:61:ed:9a:0b:99:c4:a4:7b:a1:71:e6:18:
36:5d:b3:74:87:f0:ac:a4:e2:c1:8d:58:73:cd:1a:
74:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:22:DE:04:3B:23:96:CA:7E:65:B3:65:24:12:64:58:E9:1A:88:F6
X509v3 Authority Key Identifier:
keyid:D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:bf:b4:7f:ed:a9:96:d9:a9:b8:81:7d:13:19:96:b9:cc:14:
4b:69:77:0f:6d:cd:32:9f:ca:7e:cc:87:1b:77:a6:b0:cf:9a:
c4:c0:5f:8d:a9:27:5e:af:07:b1:23:c3:bb:69:3b:18:40:f6:
47:cc:8f:12:40:00:dc:08:c4:22:72:cf:39:b8:eb:b9:2b:0a:
71:8f:f8:cf:38:59:ab:08:cf:97:08:db:3e:86:2c:00:fa:e5:
4e:8a:f8:b5:45:63:52:f7:d2:26:33:81:13:79:4d:df:08:71:
bc:90:8f:6d:df:4b:9e:68:79:ea:5e:4f:03:50:00:95:4c:21:
fd:14:1d:08:be:e4:98:c9:d3:90:4b:37:37:a9:16:90:29:37:
00:1f:90:4c:a1:3e:e1:b3:9f:f7:0d:40:ea:53:81:c7:70:ae:
66:7b:c1:ec:cb:f7:8d:07:28:2a:4a:4d:dc:18:0c:6f:40:c6:
87:bb:83:35:4d:85:ca:2a:3d:db:2b:d8:e8:db:46:f7:22:2e:
4d:eb:d7:05:62:57:6b:02:35:b8:0a:58:15:9f:1f:c1:0d:75:
de:8d:04:f8:67:e8:7e:a6:49:57:86:0e:0d:06:5f:38:93:29:
e7:44:2c:3c:2a:43:93:f6:3c:31:fa:2c:6f:ea:f1:82:a2:9e:
cc:97:f0:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:08:52 2026 by rpki-client