Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft
File: 2VSrlORZUZTSw5sdP-aokfHrkrw.mft (raw, json)
Hash identifier: KkEJIjVI21nKdoybRinFe9YfOv9cD5GdFEvjSS4K13A=
Subject key identifier: 32:89:7F:DF:FA:55:E6:CD:52:A8:2F:B6:BF:37:C0:7D:D0:C7:5B:EB
Authority key identifier: D9:54:AB:94:E4:59:51:94:D2:C3:9B:1D:3F:E6:A8:91:F1:EB:92:BC
Certificate issuer: /CN=d954ab94e4595194d2c39b1d3fe6a891f1eb92bc
Certificate serial: 019EBF5B26E7CEE38D67FCCDA81E8BB2284C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft
Manifest number: 0AB9
Signing time: Sat 13 Jun 2026 05:01:22 +0000
Manifest this update: Sat 13 Jun 2026 05:01:22 +0000
Manifest next update: Sun 14 Jun 2026 05:01:22 +0000
Files and hashes: 1: 2VSrlORZUZTSw5sdP-aokfHrkrw.crl (hash: 8vmlVNmZ7HhBR9Jlx5nNH7dNPthiJ+EBYTvnrWIAPek=)
2: qgMkoT1JMEGlzQ-9amlEk3JLWC4.roa (hash: y8/qKOIU/VnL+2E1k4DTDJCvpW8Lts5guxMB4ltkk0o=)
3: r3-oGCZiu-f0pzfjoZyY5hfWHE0.roa (hash: axK8NfXG0oP4PqyHKrnwHUrltZg/uDJF8UJbff87uoU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5b:26:e7:ce:e3:8d:67:fc:cd:a8:1e:8b:b2:28:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d954ab94e4595194d2c39b1d3fe6a891f1eb92bc
Validity
Not Before: Jun 13 05:01:22 2026 GMT
Not After : Jun 14 05:01:22 2026 GMT
Subject: CN=32897fdffa55e6cd52a82fb6bf37c07dd0c75beb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:94:63:1b:6a:ff:74:59:5a:f1:52:4a:f7:40:
cf:41:a8:78:b6:12:ea:75:59:97:f8:08:68:69:64:
45:c6:2d:64:a6:81:19:93:e1:06:b3:64:7d:ec:26:
1c:f3:86:c1:df:c0:29:3b:db:fb:3e:d4:bd:eb:d0:
74:2e:22:3f:9e:df:c7:3e:a3:1a:e9:12:23:f6:a2:
83:a3:2d:80:1f:0a:b8:5b:fc:96:a0:71:b9:42:36:
1b:61:1b:7e:f7:3c:bc:4f:28:6e:0d:36:61:6b:f7:
cb:86:5b:82:2f:1e:30:3c:e7:7b:ea:a4:77:0f:6f:
6d:f8:e6:88:43:e4:08:74:7a:60:67:63:8e:fc:10:
59:65:cb:91:fe:6e:f5:f2:9d:a4:a0:34:6d:e7:29:
6f:bf:75:19:90:d3:67:76:67:57:1a:64:4b:20:3e:
cf:74:98:0a:db:da:7e:9a:1a:dc:62:38:09:ea:f8:
b3:de:5c:c7:e7:a7:b3:3b:78:de:00:af:e4:40:18:
7c:d6:ae:e2:23:84:95:2f:d6:2c:f3:f1:b2:ce:92:
a4:1e:ce:57:be:ee:1d:77:15:29:55:73:c9:fb:fb:
98:21:6b:c0:33:09:2a:08:b4:96:22:60:2d:28:03:
f8:fc:23:d3:89:90:06:66:0f:2c:39:5f:d6:cc:52:
e5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:89:7F:DF:FA:55:E6:CD:52:A8:2F:B6:BF:37:C0:7D:D0:C7:5B:EB
X509v3 Authority Key Identifier:
keyid:D9:54:AB:94:E4:59:51:94:D2:C3:9B:1D:3F:E6:A8:91:F1:EB:92:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:3e:93:5a:7c:5f:e7:f4:48:99:9b:34:49:8f:c4:eb:54:40:
51:38:17:bc:f1:f6:28:10:36:92:7b:a9:2c:bc:6e:8f:b6:b1:
af:48:2c:c8:4c:bf:09:a0:f0:63:c6:f1:24:df:39:18:c4:e7:
4a:51:3d:eb:1f:d3:df:b0:30:6d:49:5e:27:e2:44:f2:fd:ef:
8d:73:d0:40:3a:45:69:6c:db:18:98:72:7e:73:8a:d5:b2:46:
08:bf:fe:7e:27:db:5b:24:c3:25:24:9c:d2:24:ca:1f:37:7a:
62:bb:38:94:a2:c1:c8:28:f5:a2:4f:4a:30:5c:09:22:66:d0:
73:c6:0f:bc:9f:a1:52:3a:89:8c:66:a8:f2:0f:8c:3c:ed:a1:
1c:66:27:82:68:de:d9:18:c5:ac:63:26:9c:da:a9:06:84:27:
88:9b:3e:7f:21:e8:8a:73:7f:15:b9:e0:73:80:fa:71:38:3e:
73:5f:83:c5:33:da:03:f4:4b:5b:ec:17:a3:ea:6b:ce:c7:13:
f8:2f:78:25:7f:a8:ec:fd:5e:f2:ef:78:9f:1f:5f:47:84:51:
2e:e6:3c:7b:59:8f:54:4a:54:d8:51:1d:8d:2b:d1:4b:ad:c5:
7c:fa:15:99:90:36:ce:64:d1:1e:da:ea:42:b6:71:37:bf:8d:
d6:eb:9d:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:11:53 2026 by rpki-client