Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
File: 2KzzS-KwTHzO8iIejR_LbKu0FZE.mft (raw, json)
Hash identifier: B6UESVx52vpg/qu0xQMNCs3Tuw8pBVb3arPE8zWKmOo=
Subject key identifier: BA:73:A3:63:30:1F:37:81:31:FF:5F:AB:A9:F7:DA:32:EE:3C:E0:83
Authority key identifier: D8:AC:F3:4B:E2:B0:4C:7C:CE:F2:22:1E:8D:1F:CB:6C:AB:B4:15:91
Certificate issuer: /CN=d8acf34be2b04c7ccef2221e8d1fcb6cabb41591
Certificate serial: 019EBEB5E28C2AB5FCBDD0038FB507B1D7F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KzzS-KwTHzO8iIejR_LbKu0FZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
Manifest number: 195A
Signing time: Sat 13 Jun 2026 02:00:51 +0000
Manifest this update: Sat 13 Jun 2026 02:00:51 +0000
Manifest next update: Sun 14 Jun 2026 02:00:51 +0000
Files and hashes: 1: 1VZy0G-wHQ_TX2BXwKD4dH12AVw.roa (hash: mifTRRl6FrcrdgjIAd+uxzGUQnWJ54FTfDl9SZZKo7c=)
2: 2KzzS-KwTHzO8iIejR_LbKu0FZE.crl (hash: /taoRkoYBhHOJOYoDsXb4n8o/phYrKlfwLRfms4RlPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KzzS-KwTHzO8iIejR_LbKu0FZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:b5:e2:8c:2a:b5:fc:bd:d0:03:8f:b5:07:b1:d7:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8acf34be2b04c7ccef2221e8d1fcb6cabb41591
Validity
Not Before: Jun 13 02:00:51 2026 GMT
Not After : Jun 14 02:00:51 2026 GMT
Subject: CN=ba73a363301f378131ff5faba9f7da32ee3ce083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9e:60:c8:6a:c6:74:61:03:c6:bd:99:fa:96:
13:f1:e4:0a:b9:b2:6e:5c:e2:cf:3c:f3:79:f5:1d:
2f:79:a1:57:31:17:70:bf:35:de:4d:60:97:75:bb:
e7:08:2a:f0:41:ad:7b:7e:e7:1b:6d:aa:95:65:1b:
9d:70:44:49:72:b3:7c:07:70:2a:45:70:6a:4a:d9:
de:27:d6:97:c4:3a:40:f8:4a:92:ed:70:cd:15:3a:
80:84:dd:47:16:a0:b0:6d:4f:bb:79:ba:b8:6c:30:
35:d3:3f:38:08:b5:25:1c:74:76:60:da:1b:76:40:
9f:94:2a:f1:21:36:20:b1:d4:c0:b2:eb:18:c8:e9:
81:3d:a9:e0:e7:d1:dd:f1:f7:2a:19:a1:a1:ca:84:
fa:09:e2:51:f6:6a:7f:22:bc:69:84:7d:db:ec:57:
b9:43:6f:b7:9f:83:34:90:48:39:2a:75:70:b9:d2:
3d:ac:2d:68:b1:f7:4b:75:61:6f:08:56:19:15:15:
09:03:83:a6:17:04:17:36:4c:03:87:92:4d:2c:2c:
c3:fe:7e:df:e3:4e:3d:54:ae:ed:5c:bf:b6:57:6a:
37:3e:56:61:f6:02:fc:76:1c:68:65:a5:93:2c:ee:
0c:17:bb:2b:0f:60:3c:60:d3:bb:0b:50:43:72:13:
d1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:73:A3:63:30:1F:37:81:31:FF:5F:AB:A9:F7:DA:32:EE:3C:E0:83
X509v3 Authority Key Identifier:
keyid:D8:AC:F3:4B:E2:B0:4C:7C:CE:F2:22:1E:8D:1F:CB:6C:AB:B4:15:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KzzS-KwTHzO8iIejR_LbKu0FZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:b4:d7:cb:18:25:5d:62:f1:8b:7b:c7:d3:21:3d:b5:d8:5e:
70:82:08:03:c4:9d:ce:04:c4:d7:10:8e:e4:9a:e6:c0:29:ff:
15:79:36:23:d2:fb:1a:e2:95:78:47:f9:01:97:b6:41:1f:91:
62:0a:f7:38:17:c4:09:a2:74:c5:ed:02:70:f9:3d:f1:5a:8e:
e1:6a:ae:08:70:fd:88:f3:bd:c6:8b:74:2d:5a:f7:5e:23:d5:
c2:8d:3e:ca:22:f2:60:ac:e9:83:18:60:d3:d4:8f:73:e4:c3:
b2:41:7e:6b:04:f5:92:80:32:7c:66:32:22:63:cf:b6:39:a1:
42:cf:45:46:a5:2c:68:cb:4a:18:c8:27:79:be:5b:07:5d:1e:
06:a7:59:77:3b:0c:d9:1b:d2:c9:e8:97:79:61:73:24:c5:df:
82:c5:6c:c9:8e:78:80:81:7f:1a:1f:63:68:a2:01:03:8b:7d:
a6:f8:24:c8:cd:0d:07:82:90:fd:30:9f:57:9a:61:32:8b:a5:
a0:b3:1e:64:1c:af:5b:6f:8a:16:03:cf:4d:68:63:e6:10:71:
4b:0d:50:b8:a2:ab:53:d1:0f:e6:18:79:0a:81:47:69:aa:ff:
4e:ec:92:d6:82:6d:9f:65:f7:42:94:1a:d7:db:6e:b0:87:96:
28:07:ac:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:53:49 2026 by rpki-client