Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.mft
File: 2TwNCKbGLnc4LoBBfocgmABMpOw.mft (raw, json)
Hash identifier: yZRhGX9wtosXvfTe9a71krM4l3tQb0ewvfuEmGebgsg=
Subject key identifier: 0C:40:07:E2:CB:C0:81:93:BA:E8:B0:46:7B:41:39:E4:52:80:08:A2
Authority key identifier: D9:3C:0D:08:A6:C6:2E:77:38:2E:80:41:7E:87:20:98:00:4C:A4:EC
Certificate issuer: /CN=d93c0d08a6c62e77382e80417e872098004ca4ec
Certificate serial: 019EC0A471AD1FDE967423B5F935D9209085
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2TwNCKbGLnc4LoBBfocgmABMpOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.mft
Manifest number: 0145
Signing time: Sat 13 Jun 2026 11:01:02 +0000
Manifest this update: Sat 13 Jun 2026 11:01:02 +0000
Manifest next update: Sun 14 Jun 2026 11:01:02 +0000
Files and hashes: 1: 2TwNCKbGLnc4LoBBfocgmABMpOw.crl (hash: UI1O+mO06ORsUSSnOs5i1wx4f7Jc5ML/Gz3bzCt8tKc=)
2: p1uSbL-UUVgMZUo_Jd2UtMfEjhg.roa (hash: 7ew9SV6essXaEgFcCj2o+LahCeQ3dZ5MSY5zyuMRzxM=)
3: wlE-n-v4vhVQ0V8BrCRy7vygKkk.roa (hash: GtlwHi8+nqqIfT+DJBH/zU6X+J1M23P7PC88GLuf8Dw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2TwNCKbGLnc4LoBBfocgmABMpOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:a4:71:ad:1f:de:96:74:23:b5:f9:35:d9:20:90:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93c0d08a6c62e77382e80417e872098004ca4ec
Validity
Not Before: Jun 13 11:01:02 2026 GMT
Not After : Jun 14 11:01:02 2026 GMT
Subject: CN=0c4007e2cbc08193bae8b0467b4139e4528008a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:cb:83:ac:8a:1a:dd:5d:67:74:ae:76:5f:eb:
d8:6e:e0:cf:25:6a:c8:d7:81:5f:c8:54:d4:6e:38:
32:c3:bf:cb:a5:a1:e4:dd:08:c6:b1:16:d5:60:09:
2a:17:b5:97:6d:e2:9f:8b:1d:e3:94:0b:38:9e:ef:
13:4f:23:fe:60:d7:be:ba:3b:39:1f:bd:2b:6d:d3:
e5:bb:bd:f0:e1:10:ef:21:7c:fc:54:f8:60:38:f3:
bd:4e:6a:f7:35:39:c6:46:7e:7c:0a:75:d2:c7:15:
9e:9d:76:7b:9d:98:08:d6:23:b4:39:c2:51:c8:cd:
b7:ab:a7:11:c4:24:46:5f:fe:d1:48:bb:93:56:fe:
b0:16:a3:59:9b:e5:ec:3c:aa:6f:88:fe:28:d6:13:
7a:d2:9d:ed:14:77:01:7b:02:49:9a:8f:56:30:91:
fc:17:15:57:cc:1f:51:70:45:fb:09:57:d9:1f:49:
40:07:3a:6f:db:17:75:7a:ea:84:68:74:5f:f0:02:
b5:b8:c9:00:a8:be:ab:22:f9:1c:ef:ca:55:c1:87:
b9:b1:18:f6:ac:df:68:88:6b:89:0e:81:81:b0:48:
e8:6f:2e:3f:08:d7:6f:13:28:be:54:b8:35:e7:a4:
31:f2:37:e7:9d:9b:6c:56:9c:fc:2f:f3:aa:29:6e:
86:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:40:07:E2:CB:C0:81:93:BA:E8:B0:46:7B:41:39:E4:52:80:08:A2
X509v3 Authority Key Identifier:
keyid:D9:3C:0D:08:A6:C6:2E:77:38:2E:80:41:7E:87:20:98:00:4C:A4:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2TwNCKbGLnc4LoBBfocgmABMpOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e798b1-4b2d-4c1e-ba37-9e92625cda97/1/2TwNCKbGLnc4LoBBfocgmABMpOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:9e:ac:98:05:60:40:c9:ac:c2:cf:0a:56:b0:4b:bf:a1:ce:
1d:c3:cd:3a:06:66:fb:b4:c2:5f:ed:69:c5:eb:a5:fd:68:b2:
ee:4b:dc:f4:83:8a:bf:79:dc:7b:9d:5b:be:85:ce:1b:f0:b6:
16:da:1b:49:2a:9c:9d:4a:34:86:dd:57:64:21:24:5c:9a:9a:
23:9e:e1:54:a0:94:74:f7:80:3f:61:20:b5:1d:ba:b6:e3:f6:
73:a6:b0:ab:47:d8:52:b0:07:bc:8a:cb:f9:69:3c:6f:44:cf:
df:82:fb:7a:fb:9b:b8:1e:ab:0f:22:3f:27:0b:58:65:7e:7e:
e3:e5:1c:13:ad:61:51:be:a9:31:57:bf:25:0a:eb:52:c9:e2:
5d:b6:18:fe:dd:31:8a:6a:ee:e7:13:23:2f:3f:e8:94:24:5c:
40:a2:55:a5:9e:bf:68:76:52:2b:fa:d8:8d:cb:68:ee:83:f6:
d2:93:77:50:e8:48:90:cd:fe:91:13:d2:11:c1:9d:02:1d:12:
9a:e9:2e:2a:78:da:3c:55:eb:90:5e:4b:73:8b:49:3b:ad:0e:
29:3f:49:fc:8a:7b:a9:3b:e9:be:ba:14:f1:5e:ff:89:e3:a8:
8f:38:5b:9a:88:dd:6d:ae:08:3c:83:cd:7d:51:30:68:fb:e6:
4d:13:f7:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:58:53 2026 by rpki-client