Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: VMQvEmwRtyZiJ2LRC2hdzzeJ1RqHGUZM3LsLERgs7+M=
Subject key identifier: D4:AB:07:AB:F3:4C:44:FC:BE:5E:94:64:42:C1:AA:F6:CE:32:AB:2E
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 019E1D595B0D98B5C12B28D4F25EFFD91731
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 0E5E
Signing time: Tue 12 May 2026 18:00:55 +0000
Manifest this update: Tue 12 May 2026 18:00:55 +0000
Manifest next update: Wed 13 May 2026 18:00:55 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: j4+qvAuuC7ZW7Put/sDC1ScA/djsj/jpu835H9zAgX4=)
2: 55I-KJfDZCQf3-WIzaOmHLDw0UA.roa (hash: CHL8cZMB7OLAW5NGioo9AKdHll+9RPJn2SB7b3DCiOk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:5b:0d:98:b5:c1:2b:28:d4:f2:5e:ff:d9:17:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: May 12 18:00:55 2026 GMT
Not After : May 13 18:00:55 2026 GMT
Subject: CN=d4ab07abf34c44fcbe5e946442c1aaf6ce32ab2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2e:d9:3c:76:26:3e:3c:37:dd:8c:3f:ba:42:
0f:10:cb:e1:ce:9d:26:d8:72:ef:3a:f6:9d:34:eb:
34:cf:3c:3c:1f:e5:ab:52:8a:31:71:88:2b:db:61:
d1:97:ff:31:c5:3f:cd:63:3d:92:95:a4:a8:86:40:
d0:c4:a1:45:af:c4:94:1a:57:36:dd:e5:41:e3:91:
e1:78:9e:72:24:9a:78:11:43:a2:66:0c:14:ed:96:
02:7b:ce:e4:3d:81:c5:7a:51:78:ab:ab:69:fa:a9:
7a:84:87:75:05:9b:9b:61:15:c6:d6:b2:40:89:1b:
af:bf:07:d1:06:d9:05:89:e5:b0:3f:92:1c:7f:c6:
b3:d1:ec:4b:74:60:76:fe:ca:c7:62:fc:cb:a7:44:
48:1c:00:f6:73:13:78:e0:1a:ce:c0:61:ea:ee:07:
71:7a:40:1b:46:f8:fd:19:5d:10:6b:b0:92:e9:9a:
bb:83:0b:88:93:3f:fa:27:a8:19:8a:74:66:e6:b7:
4a:3a:6c:d8:7e:19:be:da:5e:99:97:c0:b8:07:2d:
4e:86:6a:63:2b:55:11:d7:2f:20:f7:a1:8b:cc:94:
ce:02:85:e8:0d:d2:6e:0c:82:bd:a2:84:63:9e:f5:
4a:11:37:3c:38:ee:76:0e:5c:08:49:c4:21:dc:c2:
40:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:AB:07:AB:F3:4C:44:FC:BE:5E:94:64:42:C1:AA:F6:CE:32:AB:2E
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:20:d3:09:b4:7d:90:38:d2:67:98:e7:21:aa:c5:79:cc:ff:
fa:3a:0f:1e:85:0e:c5:0a:37:9b:4a:b3:c2:5b:71:71:79:f7:
ad:dd:94:cf:e6:8e:05:26:e2:cf:84:5b:7b:79:cc:67:9c:29:
1a:64:ef:65:69:56:d8:3f:53:c8:5a:13:17:0d:dd:aa:17:ca:
15:c5:b9:07:e4:4a:1a:df:a9:da:23:ff:62:77:d5:32:6d:d5:
84:d6:3e:db:16:20:f2:c6:22:38:ed:ee:c8:76:3e:4a:f0:0d:
92:f8:1b:37:4a:79:75:23:d0:a0:5c:87:27:28:ad:70:44:94:
ef:16:f9:ac:46:c1:3f:38:3d:10:fe:54:eb:e0:75:6e:f2:b2:
a4:71:55:65:3d:52:5a:c6:90:aa:04:b2:c9:43:29:03:22:57:
27:42:55:9d:de:77:0f:35:d0:69:cb:b0:8d:05:2d:ff:28:8b:
37:a1:09:09:df:94:b1:25:1c:32:a3:9b:15:14:14:aa:65:a9:
52:b0:75:dd:cb:64:53:23:02:c4:43:79:14:d2:76:15:4e:7b:
a8:a3:85:c4:7c:59:d8:60:dc:0e:31:14:7a:ec:ae:dc:59:a4:
c9:c8:cf:4d:e0:f3:03:07:46:eb:16:56:62:26:81:14:33:1e:
5f:b3:41:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:34:48 2026 by rpki-client