Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: tyeSuR/JuCYYs2Q9hKJVxf0b1zPJPKfcYwniZDNms1E=
Subject key identifier: CA:86:BE:D8:F4:D7:B2:81:2E:53:3D:BD:E7:50:62:F9:99:67:8D:C9
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 019E1EA32D43BE58A58223D1745B8BB2BF31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 05B5
Signing time: Wed 13 May 2026 00:01:10 +0000
Manifest this update: Wed 13 May 2026 00:01:10 +0000
Manifest next update: Thu 14 May 2026 00:01:10 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: j2zzQIWZOJfqJ0mKioQksmUtY5Ra6ffBv8mKFIdKn7o=)
2: 4vjv7ETAasx0tRKIpHxecSePkHs.roa (hash: 2AsMwZr9rbOc2Qfm0AhPalnC6K6xXB1YyB0oF7P/lrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:2d:43:be:58:a5:82:23:d1:74:5b:8b:b2:bf:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: May 13 00:01:10 2026 GMT
Not After : May 14 00:01:10 2026 GMT
Subject: CN=ca86bed8f4d7b2812e533dbde75062f999678dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c5:14:6e:31:93:09:3d:01:68:3c:99:fd:1b:
34:0d:1b:47:33:b2:6e:8d:81:ab:a3:c4:e5:00:f7:
53:7b:24:cd:b1:be:21:e8:f3:11:8c:93:a7:47:bd:
b8:87:a5:0a:1b:60:aa:50:41:bf:5b:8d:34:49:85:
b5:0b:6f:fe:15:1c:0b:41:28:5f:eb:2f:72:6b:e2:
1c:a6:0e:1e:9d:70:23:e8:0e:04:e8:80:36:6f:3d:
07:10:28:72:da:ad:07:50:e0:84:34:8f:88:fe:cd:
9f:47:8f:16:2c:01:a8:21:2a:ab:d5:50:8f:1d:22:
d8:ea:76:fd:0f:34:65:2c:37:af:88:21:33:0b:3c:
aa:2d:ac:22:1d:0c:ce:55:88:3f:31:44:90:08:84:
e6:d0:7a:13:f6:fe:72:9a:61:63:40:36:73:c8:63:
9d:d1:20:8e:52:54:c8:94:7d:4f:88:82:85:90:17:
84:69:55:d1:29:1f:13:ad:6f:6e:e4:23:b4:52:55:
69:8a:cc:f2:cc:b5:1c:be:6f:c8:50:ab:26:47:4c:
95:8e:db:95:bc:96:6e:14:bc:9d:33:e3:66:d4:54:
47:29:7b:aa:50:41:da:ef:6d:87:25:cb:d3:46:67:
83:e8:26:44:d0:89:b6:4e:b6:48:2d:a2:7d:c3:5f:
ae:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:86:BE:D8:F4:D7:B2:81:2E:53:3D:BD:E7:50:62:F9:99:67:8D:C9
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:da:28:e5:e9:d5:c6:44:a6:a2:c7:ed:3c:6a:cb:ab:ea:6f:
65:29:bf:8f:01:ea:a5:2c:b1:49:ae:53:29:a8:5e:a2:18:39:
12:90:ee:a4:4c:d2:6f:0d:c9:5a:30:42:6f:1a:2b:43:8b:0d:
88:6b:3d:9d:37:4b:af:c7:bd:8f:b2:e3:9d:64:9d:88:10:7b:
f6:f5:63:07:5b:6a:4d:e3:e3:b6:40:cb:7e:2a:b3:09:4a:9e:
d3:5a:40:01:8e:ca:b1:37:1f:e6:83:7f:d4:a3:24:9a:07:9c:
d9:09:15:82:2e:b8:79:b9:ef:d3:c6:62:62:2b:25:8f:9e:bb:
e4:8a:5d:54:e2:0a:b5:de:94:10:cc:1b:7f:79:be:cf:30:3b:
a0:14:8c:a5:8f:fa:b8:02:d0:11:b2:9b:56:5c:3e:36:11:80:
57:20:20:f6:cd:0a:49:ab:bc:10:9c:53:12:cd:eb:dd:ef:fa:
21:91:85:ed:42:b5:9b:ea:3d:07:a7:d4:79:38:19:dc:75:a6:
f8:9e:de:68:cb:df:52:4c:ef:e6:ee:8d:d9:02:ac:0a:7b:9a:
a3:24:e3:7b:2a:89:70:85:48:86:74:c1:ac:f6:ba:61:58:30:
cb:55:ed:c2:92:c1:bb:d6:14:89:b1:6e:ea:fa:2a:70:26:90:
10:f5:35:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:32:35 2026 by rpki-client