Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: dt+Ds4AxNQmpVEZZ8KNdg7Vzylpc+QLlpYBLRAVLBnA=
Subject key identifier: 1F:11:39:0A:00:68:21:7A:5C:4D:D2:2E:1F:E1:B4:9F:20:1A:DB:BF
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 019EBEB627EF820D415BA40931517B0FAC39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 126A
Signing time: Sat 13 Jun 2026 02:01:09 +0000
Manifest this update: Sat 13 Jun 2026 02:01:09 +0000
Manifest next update: Sun 14 Jun 2026 02:01:09 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: n+Ko08I1HK/stus2SaLPvkJihT0ADpuwCAUrRKcdVcM=)
2: AoMLPhZExe6a-acTOonY5G6p87o.roa (hash: GlOEB6CrWza06BRV4TlREAMAdwdF9KjOr3x10SdKDlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:b6:27:ef:82:0d:41:5b:a4:09:31:51:7b:0f:ac:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: Jun 13 02:01:09 2026 GMT
Not After : Jun 14 02:01:09 2026 GMT
Subject: CN=1f11390a0068217a5c4dd22e1fe1b49f201adbbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:48:06:69:67:18:6f:38:72:4c:33:13:60:69:
d6:4a:e3:42:13:13:9b:64:4d:a3:1a:34:a4:33:b0:
e3:69:f7:cd:2a:bf:6f:10:83:39:29:3c:ab:06:e7:
48:0b:9a:24:c9:0c:c2:d0:ee:ea:8a:53:4c:0c:7f:
28:f9:42:2e:4d:62:46:b1:02:5a:d1:97:fc:d3:a8:
a6:8d:82:62:2c:3d:0a:bb:aa:3f:f9:b6:cd:a4:b2:
31:b6:7e:a4:11:c1:c3:49:ce:04:0e:40:c2:33:0a:
86:20:bb:fa:a6:b7:c0:f4:0d:c2:a8:25:a5:c8:39:
2f:56:a5:ae:fe:f1:f2:32:ae:83:f6:ef:aa:2f:2d:
30:c4:b4:56:a8:93:68:69:46:71:16:fa:c0:51:db:
fa:22:eb:b7:a7:3e:c8:cc:a1:ef:9c:23:18:f2:27:
37:f7:a5:c1:be:3a:ad:08:93:44:91:86:99:70:7f:
ac:09:ec:3b:45:f8:c8:e1:6c:c5:07:16:cc:be:4f:
62:4a:dd:7f:7f:c0:3e:ac:2a:58:00:a5:9b:01:57:
36:e2:1a:d2:37:3f:c2:58:a1:c9:fe:09:e1:9c:91:
21:1e:5f:a9:6f:17:ce:ea:0b:eb:4d:b7:63:1f:5b:
67:d8:72:b5:15:b7:1e:38:80:e8:f8:cd:13:f7:20:
6b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:11:39:0A:00:68:21:7A:5C:4D:D2:2E:1F:E1:B4:9F:20:1A:DB:BF
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:ed:1d:7e:ce:71:9a:10:0c:3a:56:c8:e6:e6:12:6b:12:ae:
e0:41:04:1d:73:8c:4e:81:7b:2a:bd:ec:70:5b:2a:36:95:d1:
b4:1d:ed:f3:90:2a:e1:5c:ed:bb:11:47:f4:94:3f:5e:52:8d:
48:a8:c6:3f:1b:ae:07:88:1b:b6:3d:38:85:d9:48:46:9f:d4:
e1:44:74:c3:d0:85:ef:3b:30:d2:f4:41:8e:0e:3e:fd:23:d5:
55:d3:14:9e:60:0a:01:4b:3a:a1:55:17:7f:55:01:a8:3f:2f:
d6:de:74:43:25:f5:e7:4a:d2:01:8a:63:bd:88:7c:77:b4:a7:
3f:96:63:15:40:f8:4b:6a:22:8e:75:c4:a0:2f:f1:5f:3c:86:
33:da:12:7a:ff:de:b1:f8:22:ab:94:91:73:ff:4a:72:b9:7b:
2e:36:5e:0b:f6:6d:77:84:34:39:13:9f:97:0f:a8:e5:a9:ad:
5a:53:b0:19:3d:6f:c0:cb:09:ff:af:07:5d:81:21:64:d4:47:
20:af:71:7b:62:7a:10:9d:b2:47:df:32:e4:4b:6e:db:ff:06:
14:f6:b1:75:e8:82:f7:ed:2a:d3:3a:05:15:c4:5f:c6:65:a3:
fc:28:3d:d6:c9:ea:49:fa:31:17:b9:b6:bf:9e:d4:fc:84:ce:
80:c6:77:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:57:18 2026 by rpki-client