Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
File: 2CsoRvCTvJQWBBvmiix4MWHrBN8.mft (raw, json)
Hash identifier: 62IAoKdh6ndvDfmTBx+lFiTXqHnNN7XX9lPUuxaNveA=
Subject key identifier: 41:D8:37:4F:82:4B:C9:E3:6B:AD:87:ED:7B:F4:2A:AE:50:E0:7E:1E
Authority key identifier: D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
Certificate issuer: /CN=d82b2846f093bc9416041be68a2c783161eb04df
Certificate serial: 019DA37909780DA3B5DF57549F557F9A6D21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
Manifest number: 0A6F
Signing time: Sun 19 Apr 2026 02:01:51 +0000
Manifest this update: Sun 19 Apr 2026 02:01:51 +0000
Manifest next update: Mon 20 Apr 2026 02:01:51 +0000
Files and hashes: 1: 2CsoRvCTvJQWBBvmiix4MWHrBN8.crl (hash: lVlZcpBTzMhNaLNPAjCYAV6PESF3QDGMb8Bqu/Or0b8=)
2: xvjr_8JqIZkbED7GUsRWo_s5EPY.roa (hash: FiH4mjXZzCr8o0pEvyEmejvpAQkDbsQib4uDB3k7p1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:79:09:78:0d:a3:b5:df:57:54:9f:55:7f:9a:6d:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d82b2846f093bc9416041be68a2c783161eb04df
Validity
Not Before: Apr 19 02:01:51 2026 GMT
Not After : Apr 20 02:01:51 2026 GMT
Subject: CN=41d8374f824bc9e36bad87ed7bf42aae50e07e1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:45:df:76:41:ae:59:41:dc:00:6a:c9:67:fa:
c1:06:3a:66:f1:65:0c:e3:5a:ab:e6:24:29:3a:0f:
54:41:e7:db:3c:e1:0d:d8:11:20:07:79:ff:e8:f7:
62:38:88:fd:a2:9e:5d:78:fe:1b:cd:59:08:73:31:
95:ca:38:ef:0e:85:29:d8:d0:00:3a:35:ff:28:89:
71:36:7b:3c:20:ac:cf:8c:57:58:99:a1:dc:00:1c:
15:5c:16:8d:08:9d:87:8c:1f:63:03:16:d9:45:32:
18:f3:16:1c:06:05:d7:61:36:50:ed:54:3c:1a:5e:
da:c0:c5:b3:84:1f:ad:96:75:13:c1:d3:70:d3:b6:
61:e3:ea:62:be:40:61:de:eb:1d:fb:27:69:71:71:
78:3e:e2:71:e7:cc:8e:82:4a:3b:27:f1:2e:25:6f:
96:31:b2:0a:18:88:e1:c1:a9:89:85:23:34:0d:61:
21:5a:be:a5:88:01:20:fa:67:d5:c2:bf:c5:b5:a8:
f9:2f:e7:9a:2c:4b:df:64:60:a9:66:a6:18:bb:5e:
8e:7e:5b:f0:ef:08:63:bf:2c:e1:7d:d3:45:b4:81:
03:7a:3a:36:e1:36:f5:99:0d:08:8b:ff:8e:b0:f1:
d6:cd:4b:96:ba:38:b2:33:b9:2d:f9:b2:1f:55:13:
88:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:D8:37:4F:82:4B:C9:E3:6B:AD:87:ED:7B:F4:2A:AE:50:E0:7E:1E
X509v3 Authority Key Identifier:
keyid:D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:34:cf:43:c5:1d:95:ca:c4:ac:08:99:d7:bb:69:c5:c0:3b:
c3:5d:09:c4:7f:05:0a:4b:79:a4:be:31:7d:f5:91:39:9a:a9:
ed:72:f2:5d:0b:84:d4:a3:7b:16:a1:5a:fe:cd:ee:da:fe:1b:
b2:1b:30:4b:03:22:40:2d:d4:e3:0e:b1:2f:5e:39:a0:c8:2d:
48:8c:71:c4:5e:b4:09:f7:bf:7e:89:f8:1a:d6:c1:ed:59:8d:
c9:72:df:40:3b:16:33:a6:29:b6:d7:42:84:c5:f7:14:7b:f4:
26:04:b5:7d:6c:7e:83:c2:2e:78:e4:4c:65:35:b0:9a:76:8b:
cb:62:eb:2c:e7:11:38:3f:a8:6a:59:c2:b5:c4:34:c7:3e:a3:
6a:03:e5:9d:32:0a:fc:bd:f8:b4:59:2f:7d:12:7c:a6:76:7c:
0a:41:bb:4d:ab:df:44:db:44:6b:c0:f3:0d:d6:16:63:84:f6:
91:cf:0e:fc:26:2b:55:e5:e2:8f:35:7c:91:04:c4:38:a1:48:
8c:be:f0:c2:e4:48:b1:69:52:c9:6d:53:dd:0e:d0:b8:c9:4e:
0b:98:a6:0c:12:1d:c6:cf:17:00:92:6d:f4:ee:44:45:c3:3f:
43:1f:c6:ac:de:88:1e:44:e6:8e:a8:6f:e8:bc:39:5a:7e:42:
d4:71:79:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:49:55 2026 by rpki-client