Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: eEY8Onolaooy2YMS3JvF97KYt+phjfxl+zWb3CP6tgw=
Subject key identifier: A4:26:41:0B:AA:0E:05:73:04:B1:6C:66:F4:EC:45:3C:54:48:59:87
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 019E1E6C0E3F0F3199D7DBF1575A6EE7A47F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 1869
Signing time: Tue 12 May 2026 23:00:58 +0000
Manifest this update: Tue 12 May 2026 23:00:58 +0000
Manifest next update: Wed 13 May 2026 23:00:58 +0000
Files and hashes: 1: PZ_gBS2JDBR5UR9Zyi6R_A5y1vM.roa (hash: oUnwI/hWFydpEOEqwC9HOMZdSyF2a1xfxAbzlwQhdS8=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: GtuYvMhHJVZaDEGOfjETI4/8icGot/S89EyRakPJBZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:0e:3f:0f:31:99:d7:db:f1:57:5a:6e:e7:a4:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: May 12 23:00:58 2026 GMT
Not After : May 13 23:00:58 2026 GMT
Subject: CN=a426410baa0e057304b16c66f4ec453c54485987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:00:1e:40:5c:3d:8d:3e:e4:6b:d2:1e:cf:dc:
1a:ec:b1:60:19:a3:9a:c8:d6:17:28:63:bc:58:c4:
57:7f:8b:7a:63:69:af:e1:b9:75:a5:b0:55:b1:6b:
9b:41:f2:13:f4:c3:82:72:33:29:54:1b:03:77:dc:
0a:45:74:d0:17:61:92:50:87:3c:4d:de:05:d9:0d:
40:3d:76:05:2e:08:c2:5a:ef:42:53:5f:03:71:11:
42:8c:81:5f:b1:7d:a1:87:24:25:ad:14:ad:7a:34:
f1:0e:67:2e:7d:94:2d:03:ac:09:75:64:33:47:78:
2b:fb:7c:53:7c:eb:ab:c4:9a:8e:05:fd:a6:59:bd:
fc:60:3c:0d:7a:4c:f6:50:ca:64:34:e3:b2:22:ae:
5e:40:82:3c:36:73:4c:9c:fc:95:1e:4a:ac:2e:fb:
5b:ca:a9:55:58:22:11:dc:22:98:c3:2c:cd:8f:cf:
ab:54:be:9d:67:44:b9:24:ba:cf:b0:14:18:d1:24:
ce:ea:91:72:c9:6a:72:3a:71:9f:5b:8f:b3:0d:cb:
70:09:39:8a:da:85:7d:f8:92:5a:59:92:e2:a9:83:
1d:68:9f:46:87:3d:45:4d:13:ec:2e:cf:3f:4f:57:
2e:28:a1:f1:ca:a3:f4:ae:aa:d8:3e:80:47:a6:a7:
d0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:26:41:0B:AA:0E:05:73:04:B1:6C:66:F4:EC:45:3C:54:48:59:87
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:0e:76:f1:ce:bc:17:d3:0c:1d:c2:d5:6c:57:ef:5b:99:24:
d9:7e:75:ab:d1:68:9f:5c:ef:25:bc:6b:52:07:36:8c:50:25:
3d:f1:c6:dc:09:20:2c:e0:a2:53:b1:24:10:6d:be:2e:1c:dd:
a4:96:a6:6d:a6:f4:2d:0d:81:6a:8e:8d:67:6c:1c:ba:4e:35:
89:46:e7:40:57:69:33:97:e2:cc:0b:8c:d2:ce:04:56:39:bf:
7a:6b:82:60:99:e0:2c:3b:87:6e:ae:50:24:78:32:40:ff:a8:
ef:fe:3e:a3:64:4d:93:72:05:c9:7e:ae:dc:ff:0f:dd:6a:63:
86:e5:23:1a:0c:69:8a:2a:be:8e:1a:23:60:df:c2:21:14:ed:
3d:ea:12:38:31:9e:b7:2a:b8:b4:59:51:d4:87:5f:d6:83:5a:
68:ee:bd:78:f4:14:cf:05:12:6e:95:4b:8e:32:52:b1:69:a6:
87:43:d3:8a:a9:d3:da:75:35:10:2a:df:0a:15:ff:d0:2e:d2:
af:1b:4a:74:5a:cf:51:e6:29:70:4b:d1:5e:c3:78:1c:ad:37:
9d:d6:e4:35:f4:30:97:62:1d:a8:9f:46:1d:2e:d1:1b:b3:c7:
5e:9d:ca:ab:47:63:f2:2f:35:ca:1e:61:c8:13:8f:fb:d4:cc:
d5:f2:64:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:07:03 2026 by rpki-client