Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
File: 2pa1va-ygzLa_oR87RT3pfrUXmk.mft (raw, json)
Hash identifier: Bd4MQOp864jv+Y6E/zCcnMaN2HisjcoxJiH4lh+ZtiU=
Subject key identifier: 4B:4A:BF:0D:28:B7:92:CA:8A:7A:21:88:E0:56:02:4E:E0:E1:A0:D1
Authority key identifier: DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
Certificate issuer: /CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Certificate serial: 019EC1EE351923D5DD7828C181EFA4EE0621
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
Manifest number: 195C
Signing time: Sat 13 Jun 2026 17:01:14 +0000
Manifest this update: Sat 13 Jun 2026 17:01:14 +0000
Manifest next update: Sun 14 Jun 2026 17:01:14 +0000
Files and hashes: 1: 2pa1va-ygzLa_oR87RT3pfrUXmk.crl (hash: Ro7RxatrzLW/D0IIcL+08o42tSqegtmXjsCyKHAIHAc=)
2: IBEMSBQMUEmyoGfT9mnmlgVNZhU.roa (hash: SbS7D44DDA57I288AbbBNyIpLwW/oby6dFq63a7XwRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:35:19:23:d5:dd:78:28:c1:81:ef:a4:ee:06:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Validity
Not Before: Jun 13 17:01:14 2026 GMT
Not After : Jun 14 17:01:14 2026 GMT
Subject: CN=4b4abf0d28b792ca8a7a2188e056024ee0e1a0d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:6f:6c:88:db:62:f4:cd:a1:8f:e4:90:b5:31:
15:97:96:85:bf:42:44:aa:9f:9d:37:d9:2b:2b:b4:
2b:45:83:31:23:d3:db:07:5d:0b:6b:9e:87:ca:7d:
f2:1a:15:86:de:19:24:01:08:5e:e5:80:88:79:d8:
1f:fe:9b:5e:da:0b:c7:34:44:1d:f1:c0:88:c6:a1:
a0:e4:2b:44:bc:cb:8a:c7:cf:5c:85:2e:04:4e:4b:
a1:d5:a0:bb:c7:8c:b0:b3:18:c1:95:42:85:e2:30:
5c:43:f3:f6:49:76:08:05:2b:8e:4a:f3:45:89:da:
12:29:08:4d:4d:e0:e3:4e:1d:4a:5e:12:aa:b6:29:
64:be:25:a0:01:88:b4:a2:5a:a9:58:39:79:1b:5c:
0d:32:b6:7a:26:a1:4d:ed:bb:9e:7b:dd:b3:1f:57:
ac:48:d0:a8:84:89:19:4a:1b:c3:6a:09:39:fd:0f:
9a:ec:0a:71:cd:61:fb:69:1a:48:53:ab:62:9a:ce:
46:3c:6e:eb:93:57:a6:12:53:5a:dd:0d:3c:db:8d:
30:f1:6c:e6:3e:5b:78:bd:b1:c4:93:29:b5:8f:bd:
4a:ae:0e:c4:8b:de:85:ec:74:40:2c:06:92:49:e1:
16:ae:60:67:af:41:e4:1f:6b:3b:89:3b:84:fe:c6:
51:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:4A:BF:0D:28:B7:92:CA:8A:7A:21:88:E0:56:02:4E:E0:E1:A0:D1
X509v3 Authority Key Identifier:
keyid:DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:64:67:17:3a:41:13:9c:92:95:aa:3a:c6:67:3e:3b:12:39:
75:b4:af:45:77:a3:5c:6d:d6:f2:cc:6a:75:00:ec:60:96:5a:
f4:20:22:41:d0:a1:17:8f:8a:b5:45:41:4b:88:2c:d9:f2:ad:
ef:a6:5b:12:6d:b6:14:bf:d2:0e:43:b7:c3:eb:07:09:ef:3c:
24:8d:33:09:57:07:73:d4:cb:a9:3e:72:52:9c:e8:6f:0d:d2:
49:bd:12:63:e8:57:af:08:80:92:7d:db:8a:96:0b:ca:7a:a2:
b3:bd:db:24:35:60:8e:d1:fc:f5:02:f6:68:55:65:4d:20:15:
6d:a9:2c:1b:b1:b0:87:96:25:48:bc:e4:bf:21:dd:0a:9a:df:
c1:63:d2:ec:58:61:b6:89:46:d5:5e:62:b2:28:fc:20:fc:f6:
b4:b0:01:41:c6:e9:24:8e:14:60:99:bc:cb:f9:fc:89:be:e6:
e7:33:81:84:ac:84:44:0e:94:ae:c8:17:6f:c7:27:28:bb:74:
f1:23:32:5d:e1:1b:15:dc:f0:93:d3:58:b0:73:c6:5a:7f:e9:
b4:b9:87:0a:52:63:6b:be:c4:2a:ae:ed:a4:7b:dc:df:55:35:
d5:8f:71:b7:99:8b:ea:ab:1e:43:94:81:06:a1:fa:98:04:c2:
4f:66:e9:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:30:30 2026 by rpki-client