Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: eKc+OBJ3S1UDFsulqi6+dj5KusRMeoXLQjVzCQJ53OU=
Subject key identifier: 82:2A:07:C4:D5:F3:03:E9:96:F2:00:2B:2D:D8:01:96:65:16:41:48
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 019E1C0FADFF524E7EEC139574650A5EFC51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 1906
Signing time: Tue 12 May 2026 12:00:49 +0000
Manifest this update: Tue 12 May 2026 12:00:49 +0000
Manifest next update: Wed 13 May 2026 12:00:49 +0000
Files and hashes: 1: 1-BTuYEiDE2mEIP2dyXdE1PSMv3c.roa (hash: tBxS565NzZV2f/vbdXm3F39V84JJovJ6zXMOf+itJ6Q=)
2: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: GZIf1HvAagPk6E2KYyKaJFsyGCPYcj+qWRIFmJp8Lto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:0f:ad:ff:52:4e:7e:ec:13:95:74:65:0a:5e:fc:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: May 12 12:00:49 2026 GMT
Not After : May 13 12:00:49 2026 GMT
Subject: CN=822a07c4d5f303e996f2002b2dd8019665164148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:05:96:5d:61:e3:96:3a:0e:62:ce:29:83:c7:
ed:b9:a5:31:92:a6:7f:8a:f9:05:49:40:db:f4:46:
86:de:c8:e8:cc:a9:02:70:a5:79:16:39:2d:87:4b:
af:6b:29:3e:30:a5:52:57:e5:bb:6d:7c:a1:35:ae:
ad:a3:7c:fb:80:c1:6d:f1:38:c2:be:cc:fe:67:bf:
b0:b4:7b:5a:20:cd:29:9b:a3:34:a3:a7:4b:3b:14:
aa:76:da:33:75:d0:31:c9:1f:23:18:ae:7e:aa:04:
40:90:a3:e7:5a:ad:0d:90:d1:9a:53:44:93:5e:a1:
f2:18:c1:cf:75:1c:8e:d2:a8:30:10:d1:93:b3:9e:
71:aa:a5:41:7f:a7:b7:b9:01:6d:b1:2b:38:55:5f:
c2:b0:99:a5:09:67:eb:c8:2c:8c:b2:bf:2c:2d:c6:
2f:38:8f:f0:cb:bb:d7:bf:f7:1b:da:94:3f:a5:17:
1b:71:b1:e2:7b:dc:89:9e:b9:94:ad:2a:27:6f:d5:
90:45:37:56:11:1a:58:d6:7c:58:c6:e9:c9:fe:0d:
0c:58:58:e0:be:f5:f7:fe:67:b2:f5:6c:98:e2:be:
49:4e:89:50:4f:5c:09:47:39:5c:d6:fa:c4:68:8b:
45:14:c2:19:19:d7:62:98:0b:3f:79:88:4a:c2:8f:
e1:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:2A:07:C4:D5:F3:03:E9:96:F2:00:2B:2D:D8:01:96:65:16:41:48
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:9e:2c:14:d7:6f:da:93:80:79:d4:62:4a:92:14:50:c9:9f:
0b:0a:1a:43:6c:a5:0f:15:6a:e4:b6:86:cb:7e:55:9d:3d:d7:
d5:a3:67:d8:2a:35:e2:59:7c:8c:0d:02:e4:cc:90:34:13:8c:
f0:90:55:5d:88:9b:9f:1f:12:5f:e9:46:79:73:d7:a3:b3:c3:
86:ca:52:40:76:c4:87:9f:22:7d:f9:5b:f8:0b:54:e4:66:65:
cf:ea:98:77:99:29:a7:0b:da:c1:5f:58:0a:90:6f:de:f2:a6:
44:2e:aa:7d:8b:03:a9:dc:e7:0c:ee:f4:86:62:01:28:06:a7:
ca:cc:88:fb:91:2b:08:83:76:a8:cd:20:0b:e8:7f:0b:f2:b7:
cc:6d:3b:ac:c1:4b:4e:d9:92:cb:72:48:be:1c:b8:b8:33:2c:
1d:16:b5:77:20:ee:87:c5:68:8e:66:ad:70:be:06:0b:e8:20:
5e:a1:ad:61:77:17:dc:a6:09:35:b1:ab:7e:be:1e:56:31:74:
6a:dd:c0:63:27:31:a4:68:af:93:11:6b:97:7e:e8:38:a6:69:
db:6c:fc:f3:e0:5e:ed:91:c2:af:f2:40:e3:a6:f0:e5:6c:23:
5b:8c:7e:cb:0f:47:29:8d:28:8e:1b:9f:89:7f:9e:dd:17:9f:
fc:bb:d4:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:30:46 2026 by rpki-client