Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: UjUWsCqQjp88pryIRIbGsVla9ZJosqNiTYlzcPqNjD8=
Subject key identifier: 86:01:25:B2:54:C6:95:48:A5:B5:16:35:A2:2D:51:51:95:44:C5:9C
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 019EBFC915DCA91BD362566D9DDF9AE7BB68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 1889
Signing time: Sat 13 Jun 2026 07:01:26 +0000
Manifest this update: Sat 13 Jun 2026 07:01:26 +0000
Manifest next update: Sun 14 Jun 2026 07:01:26 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: FQg3LgR+AC4A8ABUgOiJa9c9lFQ8Swv6a2lu3X8j0Us=)
2: xhpLteHeEuI9N2i0WjCkJHYwXtM.roa (hash: ZhHw/D8clg9QeWX4KlvzTONGmYlvYOv2tFZIA342W2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c9:15:dc:a9:1b:d3:62:56:6d:9d:df:9a:e7:bb:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: Jun 13 07:01:26 2026 GMT
Not After : Jun 14 07:01:26 2026 GMT
Subject: CN=860125b254c69548a5b51635a22d51519544c59c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7a:60:bd:e6:e8:87:27:67:02:d2:00:e7:af:
90:c3:84:b2:10:e5:94:69:d7:68:5c:de:65:d7:f0:
c9:4d:86:4d:c2:fe:df:5b:7e:60:9a:0f:56:50:a0:
f2:ab:26:41:c1:94:6f:b9:3f:58:e3:f8:51:bd:91:
70:b7:36:c2:99:e7:1e:5a:7d:f5:6c:49:5b:7b:90:
3a:14:ea:fe:08:9e:72:cc:d6:50:e8:12:5e:c1:5f:
5c:fb:d1:b0:09:da:be:0b:24:07:6b:e5:85:b8:1a:
1d:34:c1:fd:46:2a:92:06:4b:6b:ff:3e:55:4f:f5:
c5:3a:e0:56:38:23:73:6a:5f:04:29:3f:e0:59:54:
2b:4e:3e:28:62:19:bd:2d:c5:3b:e2:ca:f6:0b:fa:
e8:2a:b5:e2:41:8a:48:82:ab:45:60:8c:14:06:75:
ba:f5:49:0d:12:55:9f:a4:d8:3a:95:7b:fd:58:b7:
0c:91:26:cf:77:69:5d:5a:ae:22:f1:3c:cb:fd:7c:
41:30:0a:4b:5c:b4:3f:78:9c:2e:c4:f3:b5:de:e1:
d0:af:68:7a:9a:9c:b6:6a:83:ca:4c:7d:63:dd:f5:
a5:d7:21:62:00:48:8d:b1:61:9e:53:1e:24:cc:f3:
14:c9:b4:f9:4e:ba:76:cf:ee:9f:9a:03:0a:58:cd:
b4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:01:25:B2:54:C6:95:48:A5:B5:16:35:A2:2D:51:51:95:44:C5:9C
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:14:56:5d:31:86:08:4a:81:91:e8:b8:f2:a6:35:8c:c2:18:
ee:10:b2:05:0f:4c:f3:ab:b8:72:f7:78:f7:ba:e4:e7:b0:3c:
a7:66:37:95:c3:fb:be:b4:0a:30:18:9b:4a:b1:05:75:27:7b:
c1:cb:38:f1:41:4a:51:0b:10:0d:75:80:55:ca:73:7c:8b:95:
15:7d:c0:7f:b1:da:13:4d:be:47:9a:3d:99:60:c1:11:91:c4:
65:63:77:9d:92:94:35:bf:7c:7c:2c:45:31:7f:f5:5e:00:b1:
24:d9:42:e2:10:09:29:2d:a5:7c:d6:ee:95:3c:eb:eb:74:53:
a5:ed:02:76:66:45:79:7d:e2:cf:03:6e:45:6d:1f:16:72:57:
8b:93:69:2c:55:2d:75:e7:61:98:29:b8:df:e0:e5:85:25:8b:
e2:ae:f6:83:5b:29:62:15:b1:e6:f9:9e:14:37:d2:65:55:54:
ff:d0:f1:2c:4a:3d:78:bf:90:df:50:54:80:b5:fb:1e:7d:a0:
70:d8:86:d0:de:87:35:e7:5b:ca:27:d5:dd:dc:9b:d2:cb:02:
eb:6c:36:67:f1:5f:93:90:79:ea:9a:4d:ca:9a:7b:e9:41:8f:
fe:ad:87:05:6d:a7:df:da:3b:ed:5c:7b:88:d5:10:e8:bf:18:
60:26:0c:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:55:14 2026 by rpki-client