Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: /eMo64iwc4bFuPPxoS7u+A8zXl70BF4xONHvoRALsiw=
Subject key identifier: 89:F9:8F:DD:09:24:57:34:99:27:0A:EF:C4:38:9C:01:49:D0:75:A7
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 019D992B4CDF869406E6803D35FDADCAC5BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 11D2
Signing time: Fri 17 Apr 2026 02:00:44 +0000
Manifest this update: Fri 17 Apr 2026 02:00:44 +0000
Manifest next update: Sat 18 Apr 2026 02:00:44 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: wDKlwyraveeSn85HbkjsCAm4wE66zUNY+eEHkfFhiXw=)
2: AoMLPhZExe6a-acTOonY5G6p87o.roa (hash: GlOEB6CrWza06BRV4TlREAMAdwdF9KjOr3x10SdKDlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:4c:df:86:94:06:e6:80:3d:35:fd:ad:ca:c5:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: Apr 17 02:00:44 2026 GMT
Not After : Apr 18 02:00:44 2026 GMT
Subject: CN=89f98fdd0924573499270aefc4389c0149d075a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:46:93:1a:37:09:8c:f0:f8:45:6e:64:1a:5f:
11:6c:41:b5:3d:71:c3:a0:d9:e7:d6:81:d1:cf:d4:
41:37:63:e8:b0:15:94:fe:a3:1b:57:6b:b8:70:e7:
ac:bb:c2:d0:b9:55:64:7b:78:8a:66:b0:80:19:cc:
85:03:48:be:f3:46:a7:03:61:5c:b7:a5:fc:14:09:
3d:fa:0f:05:9e:67:4a:96:0f:b6:30:2e:1f:3e:a4:
54:69:64:11:9b:3c:f1:fc:d1:86:08:5a:9b:a2:72:
31:6a:11:28:98:ef:35:18:97:58:38:34:4f:53:86:
67:a3:ba:3c:40:ce:56:eb:6b:cb:01:c2:b0:ef:42:
6f:81:89:02:d3:95:c0:ea:aa:d0:19:b8:71:a8:50:
76:66:ce:32:78:08:9d:e4:4c:65:b9:73:07:6c:48:
2b:50:ad:6e:5c:c1:65:a9:00:09:dc:8b:02:12:0e:
2f:a3:bd:48:3c:a4:aa:25:50:e3:9d:d9:a3:ab:5b:
f7:b6:11:1d:ea:c3:37:a7:69:49:b9:0d:33:35:f1:
e7:78:69:9d:13:8e:78:7c:90:ce:ce:b0:ea:02:68:
83:2f:3c:6c:5f:72:a6:e4:7b:ea:a2:83:d0:e4:a4:
a9:be:ed:65:65:e1:39:77:1f:a5:00:59:96:0a:ac:
35:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F9:8F:DD:09:24:57:34:99:27:0A:EF:C4:38:9C:01:49:D0:75:A7
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:32:16:b4:00:4f:7c:a6:ea:ac:03:9d:03:a9:c4:61:c2:d4:
5d:51:e1:ec:9d:54:4f:7f:b6:3f:25:e3:3c:fd:8a:bc:0e:bb:
d8:15:08:30:ec:bd:92:12:5d:8e:fb:2f:ee:21:a5:c2:1f:d6:
26:9c:4d:c5:c9:af:9a:b4:f3:1e:61:0e:fe:70:9c:3f:b3:09:
b3:be:16:a4:83:05:cd:cd:3e:14:cb:a0:1e:d0:1e:61:cc:ab:
cb:99:c4:9e:ef:d1:5e:4b:fb:8f:a5:72:4e:a4:b4:12:54:9f:
34:d4:71:cc:f0:b0:58:4e:58:4d:8e:69:2b:f2:2d:04:1f:41:
ef:ec:0e:7b:84:ff:4f:39:de:52:b1:c9:ac:15:a1:a3:27:36:
f1:f9:3a:a5:59:44:bf:4d:28:5b:99:35:93:a4:45:a1:4a:6b:
e2:b3:7f:e0:39:ab:85:a2:7d:78:77:1c:5a:88:19:87:85:c1:
6e:7d:8f:f8:9f:d6:ff:46:83:6c:78:e3:43:30:1b:c2:0a:6f:
97:5f:00:2a:16:d9:6c:f8:19:b6:c5:93:c0:6f:12:b6:00:fa:
42:a1:49:22:25:d8:5e:af:f6:0a:d6:83:a1:8f:b7:4d:e8:0d:
bf:1a:72:a5:6f:ef:79:89:40:fb:36:fc:43:c4:33:26:bb:4b:
fd:9a:f8:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:29:49 2026 by rpki-client