Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
File: 2pxnKeHomJmE3YAtGpDonOL-Nzw.mft (raw, json)
Hash identifier: BY0NB+63ZLYQybnn59q+h0h3OmDq2LVYAFKMXFhU7v0=
Subject key identifier: 59:C9:5E:0C:26:E7:B6:9C:9B:21:F0:AF:84:E5:E9:9F:9C:15:8E:7B
Authority key identifier: DA:9C:67:29:E1:E8:98:99:84:DD:80:2D:1A:90:E8:9C:E2:FE:37:3C
Certificate issuer: /CN=da9c6729e1e8989984dd802d1a90e89ce2fe373c
Certificate serial: 019E1DC7A9D4B6737924E4ACC9BB567839C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
Manifest number: 1907
Signing time: Tue 12 May 2026 20:01:24 +0000
Manifest this update: Tue 12 May 2026 20:01:24 +0000
Manifest next update: Wed 13 May 2026 20:01:24 +0000
Files and hashes: 1: 1Um9zAoKWKjpG5CWSpYj20EG4Ds.roa (hash: xf3GX9aUpJiglVQBqVGTd7FNq7qYdy4WLmcmBZNQV+Y=)
2: 2pxnKeHomJmE3YAtGpDonOL-Nzw.crl (hash: rXMb7id9UUElcykq5PSxGSNJfjNVOyTfAHS+wKeFLtI=)
3: MzTCg6RlvrZqr-ataKMVV1O3e5c.roa (hash: xDOMJIkLwjQY+zuYlnyDdnhzWqp89fIYV7R0xToj6hQ=)
4: lPNiIoO-88xgrf-h9aWewkSLHYA.roa (hash: KjhtgxSjZ4mC2ErfPJ5twpfop8Y+K4GDpR14iBVhcMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:a9:d4:b6:73:79:24:e4:ac:c9:bb:56:78:39:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da9c6729e1e8989984dd802d1a90e89ce2fe373c
Validity
Not Before: May 12 20:01:24 2026 GMT
Not After : May 13 20:01:24 2026 GMT
Subject: CN=59c95e0c26e7b69c9b21f0af84e5e99f9c158e7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ea:b4:4a:4c:11:87:26:25:0f:f7:14:98:e0:
29:e1:56:16:5c:e2:88:b6:19:1b:8e:17:a5:09:8f:
53:12:7a:9e:27:d4:5d:7c:d1:f6:eb:52:c3:89:eb:
4b:04:24:bf:07:8d:14:d0:40:7a:53:50:f4:ef:01:
79:b0:40:66:18:31:99:52:d2:bd:eb:d8:1f:d8:26:
6d:e7:fa:d1:f3:7f:51:61:bc:c6:af:a4:5d:c2:37:
e4:b5:b7:5a:f7:05:39:a6:c6:e0:a3:24:a5:b0:9c:
94:51:95:1d:83:ba:1b:6c:c2:d3:67:11:81:7a:21:
ed:29:74:bd:b4:b6:24:55:72:8f:40:6b:53:8b:38:
76:47:dd:14:b8:d4:67:28:9d:52:2c:a1:cd:a8:73:
8e:32:1e:16:a7:51:a1:f3:09:0b:0f:c1:35:76:3a:
d3:03:a9:94:f0:42:b1:2c:81:44:ac:98:14:58:9d:
5d:b2:ea:8a:27:b9:46:75:ae:b1:7d:d3:f6:6e:25:
17:51:2f:9b:f8:23:3a:45:d3:e1:42:5a:5f:da:79:
fd:b0:f8:69:6c:56:a3:de:2d:15:63:49:b8:4f:39:
37:78:fb:0d:b2:df:d2:8c:f7:2c:93:bd:a5:a4:2c:
07:d8:ae:09:ee:ea:d0:b4:7d:96:fd:7c:f7:3f:ea:
d5:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C9:5E:0C:26:E7:B6:9C:9B:21:F0:AF:84:E5:E9:9F:9C:15:8E:7B
X509v3 Authority Key Identifier:
keyid:DA:9C:67:29:E1:E8:98:99:84:DD:80:2D:1A:90:E8:9C:E2:FE:37:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:ec:0d:ca:fe:8e:7a:7b:d7:61:d1:35:8e:69:c8:78:83:d1:
11:ec:9f:32:b9:7a:45:a8:e1:96:b3:f0:74:92:27:51:8f:74:
00:d3:4a:a5:33:eb:f7:8d:c6:ae:82:ed:d4:4c:91:01:7f:de:
dc:fd:9c:77:bc:2a:e4:eb:7a:90:94:60:b6:7a:09:dc:ef:b2:
d9:10:76:79:88:85:01:4b:7c:68:32:09:d5:ff:0c:93:38:79:
4f:38:8b:32:17:fd:c1:be:4a:be:ce:aa:22:73:81:1b:c1:a0:
d9:d8:51:79:b0:bd:22:0b:9e:bd:c8:28:f2:64:09:fb:25:88:
a2:77:ba:f1:e6:a1:3c:20:8f:1e:01:31:20:76:82:4c:5e:61:
32:21:0e:bd:75:b2:52:48:ea:6f:4c:5f:77:48:c8:34:12:ee:
1a:8a:35:5c:82:79:84:90:b4:9e:18:cd:b7:3a:4f:e5:59:d4:
dd:ea:0e:03:b4:c5:c4:8e:71:98:87:b8:12:3b:cd:75:e6:8a:
2f:5d:97:ab:99:1d:00:95:93:b3:c5:12:59:31:de:0d:f4:cf:
1e:64:e0:69:ee:53:08:7d:81:d5:84:59:c9:29:8c:ae:a8:76:
ed:73:39:f7:6f:13:6c:19:37:f0:49:31:97:0d:87:87:3d:a7:
1f:38:87:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:57:22 2026 by rpki-client