Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
File: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft (raw, json)
Hash identifier: ppu+6xW3KMCQE6NdGo8uz9NcUSYxbtm6b7Km2vtDG4g=
Subject key identifier: 8E:EF:FF:9C:41:A8:54:7F:A8:2A:57:EB:76:18:60:CE:C7:E8:27:ED
Authority key identifier: D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
Certificate issuer: /CN=d97a77930122879a766470df8d660c98442a9932
Certificate serial: 019EC0A455AA4DCD0637277B05F466EB429C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
Manifest number: 0433
Signing time: Sat 13 Jun 2026 11:00:55 +0000
Manifest this update: Sat 13 Jun 2026 11:00:55 +0000
Manifest next update: Sun 14 Jun 2026 11:00:55 +0000
Files and hashes: 1: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl (hash: 2YZ1krVgffWm0C6XklSw0wdjBcsdxsP81W2gp6/hM48=)
2: g5qpXHQ9YaIQcSP18I2z298mHVU.roa (hash: OPcErLNEwIQeoOOXzCBshI4BboTsjuLPiVED3RVYlVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:a4:55:aa:4d:cd:06:37:27:7b:05:f4:66:eb:42:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d97a77930122879a766470df8d660c98442a9932
Validity
Not Before: Jun 13 11:00:55 2026 GMT
Not After : Jun 14 11:00:55 2026 GMT
Subject: CN=8eefff9c41a8547fa82a57eb761860cec7e827ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e5:ad:de:05:0d:35:a6:5b:c6:34:3c:20:bc:
2a:41:0f:90:4f:29:14:6e:34:76:3c:d4:21:07:ea:
53:1f:a7:e1:58:7e:39:5f:91:c1:6f:74:8c:7f:de:
cf:19:9e:1c:39:36:ac:fb:aa:a8:57:39:b0:03:35:
69:45:04:3a:c3:8a:bd:2f:9d:48:1d:91:69:19:dd:
33:50:bd:f8:8c:ec:53:91:7e:bf:0e:f8:0c:bd:98:
8d:3e:ca:08:cf:c2:60:5b:cb:de:ae:28:39:d1:a3:
54:ea:08:c7:f1:5c:4d:1a:34:2d:71:25:8f:1b:bf:
b9:92:54:01:10:26:62:34:6a:6e:5c:13:92:7b:e5:
2a:2e:54:be:6d:08:2d:b4:bf:e5:56:88:36:54:a2:
6a:3d:1a:c4:c3:e6:ba:75:2f:2b:e9:b7:19:7e:54:
b9:4b:da:d4:7f:0b:cf:60:ec:43:dc:59:7d:f9:b9:
e2:e0:e1:40:5d:99:38:03:13:99:2a:43:12:db:6c:
97:a5:16:b8:c8:e8:8d:9b:8c:75:0a:aa:14:3d:60:
66:72:13:f4:88:10:73:40:e4:4b:d2:4c:5a:45:c0:
e5:e4:f6:7a:a4:a6:94:94:c0:42:22:c0:c0:96:ea:
8f:8b:22:0c:fc:e7:48:50:81:63:53:17:20:be:60:
b8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:EF:FF:9C:41:A8:54:7F:A8:2A:57:EB:76:18:60:CE:C7:E8:27:ED
X509v3 Authority Key Identifier:
keyid:D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:39:d5:81:c0:72:5f:a9:ac:13:a7:51:cb:eb:ab:0f:2f:a4:
39:90:27:f9:59:60:6a:0d:d7:e9:8a:39:00:62:9f:84:ba:9e:
b3:08:82:50:1a:a0:2f:94:74:3c:e8:04:ca:ca:9f:b7:ab:4d:
9a:b1:c2:e2:09:37:95:4f:51:18:7c:56:64:bc:ee:56:95:2c:
4a:a4:c6:1b:1b:a5:f3:c8:06:e0:20:c0:bd:bf:d4:56:86:89:
bb:b9:0d:2f:9b:c9:01:48:e0:ed:6d:c4:13:7e:c8:25:86:7e:
8a:9b:4d:b7:bb:cc:5a:99:c7:5c:51:67:20:8b:9c:1e:8a:fc:
35:fd:d9:da:c1:28:fe:57:99:bd:14:91:fe:05:73:e6:38:bd:
0b:e2:e4:ce:70:74:01:2c:0b:05:4d:33:a9:35:e8:43:7a:5a:
13:81:5e:2c:16:eb:82:82:6f:50:26:71:e5:91:90:0b:dc:6a:
75:70:b7:fd:47:37:f1:9a:18:c7:18:dc:f6:d6:8b:a9:23:48:
46:f4:35:c8:1f:da:a5:eb:a1:fb:0d:2a:42:51:a5:d5:71:a5:
64:58:52:39:b5:c6:12:2a:a5:c5:3b:51:1d:3a:02:8a:8f:3b:
1d:5f:61:b5:9b:6a:45:e7:30:86:98:0a:29:d2:8f:24:72:29:
74:c6:39:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:46:02 2026 by rpki-client