Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft
File: 2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft (raw, json)
Hash identifier: 3UkjJyabOT8stYZFlgOQiQgbo+1xXMqrrhQAD1SZWko=
Subject key identifier: B9:AD:94:87:01:AD:ED:DB:67:30:01:C5:C9:83:E6:EC:91:0C:AD:5C
Authority key identifier: D8:82:A1:97:34:0D:35:84:E6:AC:17:C1:FB:2A:99:00:AE:4F:60:3C
Certificate issuer: /CN=d882a197340d3584e6ac17c1fb2a9900ae4f603c
Certificate serial: 019E1C478A5729D2ABEAEF58DEE90CA8080D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft
Manifest number: 0657
Signing time: Tue 12 May 2026 13:01:50 +0000
Manifest this update: Tue 12 May 2026 13:01:50 +0000
Manifest next update: Wed 13 May 2026 13:01:50 +0000
Files and hashes: 1: 2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl (hash: KkEOM0ebQQ+VaRwMhLdKvomoHtR+mdfq3b8obD+l8MM=)
2: DvIctBZSmJLEtaUcD7bCK6NQCY0.roa (hash: oCuijjXHgGm50a2aRFIYkyg82b9NCKAQLaPxn1yaYag=)
3: boj2I10q-Vtxm1mDxVZdZ8e5Bl8.roa (hash: DUZK7UDn7wM47XNLA1A7zjQp12qeza+x17ykgXtiqyU=)
4: ndIFovkOM59q_GrNUdf0rAGkzdk.roa (hash: IjeHyVSgVr9enrcMavU9+Zitjl1p4kguwLZr/wm0Fuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:47:8a:57:29:d2:ab:ea:ef:58:de:e9:0c:a8:08:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d882a197340d3584e6ac17c1fb2a9900ae4f603c
Validity
Not Before: May 12 13:01:50 2026 GMT
Not After : May 13 13:01:50 2026 GMT
Subject: CN=b9ad948701adeddb673001c5c983e6ec910cad5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:29:37:07:47:c5:f5:b6:00:27:36:e0:cf:1e:
56:e3:4f:7a:a4:66:2c:9e:4b:28:e9:f3:1a:1c:9a:
13:6b:74:25:98:8b:c6:6d:9a:d3:69:26:13:8d:cd:
af:94:70:97:55:1d:24:65:df:95:51:8c:67:a0:22:
59:fd:12:7a:58:00:54:7b:2c:45:9f:ff:cb:43:74:
d3:d9:1d:ad:ad:6e:41:4a:97:d1:c3:81:19:b1:dd:
81:41:30:d6:50:3b:e3:10:44:92:b5:6b:e3:be:89:
94:a5:db:51:8c:57:f3:01:be:03:9d:19:2c:c7:d6:
2f:97:7c:05:46:3b:83:bb:27:1f:4c:0d:96:16:a5:
95:1b:b0:f7:11:fe:2e:44:16:97:7c:fd:87:60:a3:
ed:86:76:cc:18:b8:20:56:a5:2b:eb:df:62:b5:4f:
bc:19:e2:04:c4:4e:dd:cc:38:5f:45:35:24:d6:68:
58:7b:78:10:f2:fd:1c:5d:91:a9:cd:90:58:49:58:
15:a8:86:f2:ea:5a:b9:a6:6a:8e:9d:23:2f:77:19:
58:06:21:4a:78:fb:ba:0c:62:22:35:d0:70:35:3d:
66:86:2b:6b:72:fb:d8:65:27:d0:96:ba:54:e8:79:
ce:80:7c:66:60:59:0f:22:55:81:c7:46:93:bc:ab:
73:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:AD:94:87:01:AD:ED:DB:67:30:01:C5:C9:83:E6:EC:91:0C:AD:5C
X509v3 Authority Key Identifier:
keyid:D8:82:A1:97:34:0D:35:84:E6:AC:17:C1:FB:2A:99:00:AE:4F:60:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:0b:fe:ee:1e:aa:d6:15:78:29:e1:bc:39:c0:54:6e:d4:89:
3f:d9:55:7c:9e:32:78:04:76:62:13:10:16:32:cb:8d:39:58:
eb:e7:e4:e8:f5:38:26:3d:9e:82:c5:65:cf:bc:9c:5b:a2:41:
65:72:53:6b:b4:9c:50:44:f2:b8:1f:e0:05:ac:5c:1f:87:9c:
e2:d8:16:36:7f:d1:10:12:a9:f8:f8:b2:11:d9:ed:45:63:9a:
0a:4d:04:48:5c:ce:ab:dc:4d:13:f6:6c:6a:05:e1:4e:54:94:
20:1f:81:5e:30:e7:57:cc:b7:07:d1:e6:90:73:7a:de:9a:42:
53:c7:8e:c0:f2:41:8c:a7:60:f7:57:83:40:f3:a7:7f:d2:41:
da:ff:1a:77:c1:94:36:af:7b:29:a4:65:fc:fe:ae:2c:2e:ca:
0a:ad:25:d4:21:0f:58:45:e3:9b:22:13:e5:c2:0a:a2:76:56:
86:14:54:03:7e:cb:20:0e:be:82:42:44:8e:67:c0:f0:0c:19:
62:03:aa:0b:c2:b9:7d:c3:84:6a:61:be:08:57:b0:59:7a:1b:
93:60:7b:3a:27:d7:9b:9d:71:cf:fa:c8:5b:ce:70:32:74:aa:
1a:ae:75:9d:04:5c:b3:51:81:8a:6f:21:93:7a:a0:1b:8f:4f:
75:05:a5:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:14:40 2026 by rpki-client