Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/4f2563-2e82-478e-8f60-86931bfe3eea/1/2GkQtETemfqBw5NVDJfkoyC86BI.mft
File: 2GkQtETemfqBw5NVDJfkoyC86BI.mft (raw, json)
Hash identifier: n5J5/HUmtq2CUNsX7zdv8rvPv1C/IAJOtrJVIFTnPLw=
Subject key identifier: 17:E9:3B:74:C2:BE:74:23:2A:FA:58:4D:4F:92:A3:36:27:14:E5:74
Authority key identifier: D8:69:10:B4:44:DE:99:FA:81:C3:93:55:0C:97:E4:A3:20:BC:E8:12
Certificate issuer: /CN=d86910b444de99fa81c393550c97e4a320bce812
Certificate serial: 019DA2D31CE3277FF3076F2E182636B3AC8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GkQtETemfqBw5NVDJfkoyC86BI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/4f2563-2e82-478e-8f60-86931bfe3eea/1/2GkQtETemfqBw5NVDJfkoyC86BI.mft
Manifest number: 0FCE
Signing time: Sat 18 Apr 2026 23:00:37 +0000
Manifest this update: Sat 18 Apr 2026 23:00:37 +0000
Manifest next update: Sun 19 Apr 2026 23:00:37 +0000
Files and hashes: 1: 2GkQtETemfqBw5NVDJfkoyC86BI.crl (hash: yI6tbPQ7z3POxEoZkgpy2FemyBUlfkGojQA7OBGdvK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/4f2563-2e82-478e-8f60-86931bfe3eea/1/2GkQtETemfqBw5NVDJfkoyC86BI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/4f2563-2e82-478e-8f60-86931bfe3eea/1/2GkQtETemfqBw5NVDJfkoyC86BI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GkQtETemfqBw5NVDJfkoyC86BI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 23:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:d3:1c:e3:27:7f:f3:07:6f:2e:18:26:36:b3:ac:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86910b444de99fa81c393550c97e4a320bce812
Validity
Not Before: Apr 18 23:00:37 2026 GMT
Not After : Apr 19 23:00:37 2026 GMT
Subject: CN=17e93b74c2be74232afa584d4f92a3362714e574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7c:3e:ee:4c:12:47:91:b3:a4:21:e1:a8:c4:
54:80:31:5b:79:ea:e3:9d:7d:27:98:d4:30:90:18:
2b:ad:9e:1e:04:1f:1d:43:da:63:c5:bd:26:3c:4b:
ff:24:e1:84:e3:e9:f1:43:38:79:97:7e:2e:ac:8b:
96:ba:1d:b1:34:4e:c4:d2:7d:cd:e9:9a:04:f6:77:
18:49:37:9a:4d:9c:1b:58:8f:f1:db:e6:74:75:c4:
43:00:32:fa:90:f1:2f:e2:95:4c:dc:6e:dc:cd:0f:
40:80:ff:f4:00:14:db:28:c5:c6:83:44:10:2a:b4:
63:d2:35:a7:4d:2c:59:04:e3:ed:ab:12:08:c0:9b:
bd:07:ef:fa:78:64:36:14:c3:ad:84:b0:93:ac:51:
cf:5b:82:d3:ab:a7:5c:19:7c:d1:ee:40:cd:53:f3:
c2:9c:e8:ec:eb:5c:82:a0:26:37:5a:65:55:16:a6:
f3:ec:de:bb:f2:2d:18:66:a8:03:31:37:52:5b:6b:
70:38:42:6a:c1:92:0f:d6:16:2c:20:4e:fa:96:ae:
74:2a:1a:e6:3b:ca:a1:37:1c:d4:3e:ef:f3:d4:e9:
51:cb:ed:4c:b4:2d:b0:15:e2:d6:04:0a:f1:b9:aa:
13:79:90:40:61:2c:20:a0:83:9c:a6:60:79:0f:f0:
61:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:E9:3B:74:C2:BE:74:23:2A:FA:58:4D:4F:92:A3:36:27:14:E5:74
X509v3 Authority Key Identifier:
keyid:D8:69:10:B4:44:DE:99:FA:81:C3:93:55:0C:97:E4:A3:20:BC:E8:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GkQtETemfqBw5NVDJfkoyC86BI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/4f2563-2e82-478e-8f60-86931bfe3eea/1/2GkQtETemfqBw5NVDJfkoyC86BI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/4f2563-2e82-478e-8f60-86931bfe3eea/1/2GkQtETemfqBw5NVDJfkoyC86BI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:97:bd:7e:8e:8d:46:02:bd:0c:71:03:e0:f4:db:dc:a8:9a:
10:b4:17:18:7f:93:b1:86:3a:33:79:92:0f:76:87:9a:8a:81:
2b:db:f1:40:8f:9e:0b:d5:00:f5:f2:6d:84:80:5a:7c:4b:e9:
07:60:c4:20:37:66:a6:4f:ae:b9:b3:48:46:3b:22:9b:01:a1:
9c:81:4a:7f:99:2a:47:38:7b:38:fa:10:45:ad:23:f7:b7:c8:
fa:e7:3e:59:05:c2:ca:9e:3e:e8:65:d4:56:05:e4:ff:6a:e3:
5b:f4:b4:d5:9c:60:ff:69:ff:7b:c2:cd:17:2d:de:ef:94:0b:
fb:46:b8:41:39:49:39:bd:d5:c0:d3:68:fe:0e:cd:d7:35:e8:
f7:f3:f2:9e:97:87:15:9e:8d:0f:e9:5f:5c:5f:eb:7a:d8:4f:
43:80:48:0b:74:60:7b:66:51:b5:30:65:6a:77:38:50:ff:fe:
e8:36:5a:ce:e3:bc:66:a0:2e:6e:86:3b:31:c7:df:21:bf:3e:
aa:8d:f4:4c:34:05:50:03:30:64:78:e7:16:26:3a:41:c7:86:
83:61:da:dc:96:b1:93:fb:50:73:73:aa:93:ec:b7:f0:b9:05:
ec:2c:f4:77:62:ca:53:56:55:ce:63:85:83:90:30:3a:5c:d6:
78:1a:4a:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:02:09 2026 by rpki-client