Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
File: 2f-H9S43t2bsv0s_nLJlWN0wiCA.mft (raw, json)
Hash identifier: C2Qd529x0Lk5e7pjJ9VXqoGWQODlIjXUXrnn1bYwF28=
Subject key identifier: 20:3F:09:9C:AE:13:7B:18:22:AA:7C:BD:91:76:83:9B:EC:81:6D:A3
Authority key identifier: D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
Certificate issuer: /CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Certificate serial: 019E1CEB80A60B547A9093A47BFBD101AEE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
Manifest number: 0ED4
Signing time: Tue 12 May 2026 16:00:56 +0000
Manifest this update: Tue 12 May 2026 16:00:56 +0000
Manifest next update: Wed 13 May 2026 16:00:56 +0000
Files and hashes: 1: 2f-H9S43t2bsv0s_nLJlWN0wiCA.crl (hash: I5Crq/g5v9rT+T9YvgJ9n5eM58a5lOto6t9/cHkoAYg=)
2: 4FYy4IVc0E0edu7Aspaqd269s3k.roa (hash: AewBAICqPk/AoyYo2Nui0QpeK5+BqYlSJNp/7pYYLxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:80:a6:0b:54:7a:90:93:a4:7b:fb:d1:01:ae:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Validity
Not Before: May 12 16:00:56 2026 GMT
Not After : May 13 16:00:56 2026 GMT
Subject: CN=203f099cae137b1822aa7cbd9176839bec816da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d1:81:8f:13:2d:68:6a:9a:d8:a4:29:ec:47:
37:5d:81:b8:64:dc:19:83:b1:ba:3c:45:d1:bb:94:
f0:71:3d:1a:70:1e:70:7e:3f:ad:8c:e6:f0:43:e8:
1c:bd:a8:35:0c:e2:f6:0e:1d:be:0e:65:12:05:41:
29:77:e9:42:96:fc:cf:fb:6f:d0:11:8f:fb:bd:7c:
8f:20:9b:10:89:ed:09:71:8a:8a:1b:d5:55:78:99:
d4:27:bb:eb:55:26:5f:0a:c6:a0:24:35:c7:f0:5b:
e3:d2:e2:18:f6:4a:98:aa:77:79:22:0c:d0:18:54:
58:28:cf:e2:ed:52:45:dd:b6:d6:ab:49:b9:8a:95:
9a:55:b0:2f:a8:5f:72:3b:e7:7c:4b:0a:da:e1:7f:
14:19:b8:b8:2c:c3:f5:30:28:9c:14:9d:56:98:50:
32:7a:26:8b:37:b0:e1:f6:97:de:6e:51:85:0a:94:
84:f8:ca:09:05:b5:98:fd:2d:9f:a8:0d:33:55:2f:
86:61:a7:3d:3d:8a:3c:dc:d1:59:b0:05:74:21:bb:
36:93:d2:b5:7b:ad:3a:11:91:7e:72:63:e3:02:8f:
9e:1a:4e:e9:ea:ff:73:5c:a8:18:f8:5a:13:6a:41:
86:84:5f:a6:64:10:7f:ee:75:d7:06:8c:08:4a:9b:
7f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:3F:09:9C:AE:13:7B:18:22:AA:7C:BD:91:76:83:9B:EC:81:6D:A3
X509v3 Authority Key Identifier:
keyid:D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:b1:1d:23:2f:2b:e8:b4:d8:e0:42:3d:ad:04:f3:de:37:76:
5c:ce:0f:8a:7c:1a:39:ea:7c:c3:3e:ac:80:ca:c5:f0:49:1f:
c1:e2:6c:7a:a8:36:f6:50:88:c5:ef:dc:cb:7c:78:df:bb:ca:
94:15:58:31:c7:27:34:4d:33:7b:7e:1d:0b:2c:eb:67:b3:36:
51:8b:c7:9d:3b:7e:6e:01:91:ae:24:1d:7e:a5:e6:18:67:4a:
98:65:db:d2:43:23:f3:57:03:34:fd:56:2b:66:54:54:a6:78:
67:c9:3f:ff:8c:91:68:2b:51:f7:71:58:cb:cc:dc:b6:60:35:
1a:06:47:19:ad:d6:2b:39:de:86:e6:a0:95:b5:cc:6a:85:f5:
57:39:0d:94:d9:c4:5b:9d:e3:78:9c:9e:66:ca:20:2e:32:0a:
93:5f:f9:aa:b5:a0:c4:f2:d2:96:3e:13:5b:ab:5c:d0:72:f3:
e2:ad:80:7d:90:52:3c:59:f2:d6:d9:5d:a9:75:40:81:b8:d5:
2e:9e:75:16:42:f7:b5:4d:84:a9:20:02:6d:fd:c0:c8:9d:bb:
db:f2:a9:b1:72:47:6e:d2:61:66:19:b8:2f:b4:e4:34:7f:c0:
a8:b0:d3:ea:9d:f9:df:76:53:07:7d:0e:f3:9a:e7:9a:53:d2:
ce:7a:21:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:16:21 2026 by rpki-client