Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
File: 2jQhazvZIbbGYYeoyGpKS7DuUj8.mft (raw, json)
Hash identifier: tFPpuKcMAsdCIfPU4MXXRUlZ8HYj5u+YwYvXKmCfMuI=
Subject key identifier: A5:4D:69:47:01:19:B9:49:D7:3E:0F:39:1B:1F:AD:CE:82:8A:33:A2
Authority key identifier: DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F
Certificate issuer: /CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f
Certificate serial: 019E1EA35CCCC4314B075DB56E6A7AA2BE93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
Manifest number: 160E
Signing time: Wed 13 May 2026 00:01:22 +0000
Manifest this update: Wed 13 May 2026 00:01:22 +0000
Manifest next update: Thu 14 May 2026 00:01:22 +0000
Files and hashes: 1: 2jQhazvZIbbGYYeoyGpKS7DuUj8.crl (hash: RdXQ4SjRHWxyuY7F09bqH6zLoeE+nukpjc2+7vPvu3A=)
2: t90Pf8i78ir-qZaXDxbGjf9fnfQ.roa (hash: xVvLDALVTXA20CqaVC5YheWUUzGYCzjMpdYIhNnbISE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:5c:cc:c4:31:4b:07:5d:b5:6e:6a:7a:a2:be:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f
Validity
Not Before: May 13 00:01:22 2026 GMT
Not After : May 14 00:01:22 2026 GMT
Subject: CN=a54d69470119b949d73e0f391b1fadce828a33a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:93:2b:ed:0c:eb:4d:19:b4:55:89:1b:30:97:
23:6b:aa:3b:ae:f1:9e:a4:10:12:94:24:bf:e2:4f:
f6:bc:ce:df:ca:cf:69:3c:f6:54:54:3e:38:0c:b7:
43:3f:cb:9e:fc:b6:28:9e:b2:f2:25:01:40:32:9d:
50:de:f8:3b:88:84:9d:4c:73:b9:43:fe:75:dd:aa:
4f:67:2e:03:66:72:e1:37:87:60:7d:aa:96:fa:a0:
d8:b6:8c:c9:58:c6:39:ad:57:f9:cd:09:be:b7:3c:
9b:84:ad:24:86:e0:e6:ad:12:e1:30:40:54:22:f9:
6e:7e:a1:52:4b:68:33:b8:85:51:ce:02:9e:ab:ae:
e4:2d:c3:da:41:6a:35:d6:2d:d3:04:6c:2f:76:05:
ec:76:9e:5e:ab:c4:19:49:d3:d1:1b:63:a3:e8:18:
e7:d1:73:79:59:94:c0:69:bc:b2:71:68:9d:43:ea:
1f:08:45:f5:ef:60:92:64:a5:02:a0:92:5d:37:98:
64:5f:68:33:68:f2:70:bc:09:22:5b:8c:06:b3:6c:
5c:cf:3e:94:fd:c8:5d:22:06:b4:4b:6d:46:05:4a:
91:e8:35:dd:b8:48:34:c4:2b:d6:f1:ef:0c:61:5e:
97:57:e2:74:8d:db:44:7d:81:ac:10:fa:e9:1a:02:
0e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:4D:69:47:01:19:B9:49:D7:3E:0F:39:1B:1F:AD:CE:82:8A:33:A2
X509v3 Authority Key Identifier:
keyid:DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:65:66:61:db:48:e2:d0:74:d4:21:b6:aa:01:c7:2e:73:0a:
db:95:df:10:62:f8:93:cf:a3:d8:43:c4:8a:e7:69:43:c2:a0:
99:3c:0a:ad:ec:f9:72:7c:65:1c:b7:f7:5f:49:72:84:68:32:
14:41:86:3f:55:7d:0a:7c:2f:90:2a:07:05:30:28:5c:03:d4:
7a:a9:0f:45:90:9e:04:76:5f:55:8a:2b:09:1c:cb:f1:8a:ca:
76:e1:b0:f2:07:98:2d:34:f6:4a:92:27:a1:51:16:5a:75:04:
0f:14:0b:56:69:0d:b9:6b:3a:d8:cb:83:1b:50:9e:11:2f:96:
9f:32:54:61:87:33:fd:6e:5f:5d:07:8d:96:42:f9:52:a1:8b:
15:c6:13:43:7d:a8:28:92:a1:6d:20:4a:22:97:33:4e:65:d5:
45:29:ec:51:fb:e2:f3:58:aa:e8:4c:52:b6:53:c5:1b:1d:d6:
64:66:73:9a:ae:ce:21:37:a4:b0:e3:55:cb:c9:4b:7e:82:4d:
69:6e:a8:89:b2:76:f0:04:55:5b:10:e0:47:ce:a5:ab:98:31:
a4:36:91:ad:aa:9e:41:d6:ec:02:45:1c:dd:23:e1:72:f6:f5:
0e:5c:2c:07:fb:ab:c1:62:8c:05:b4:37:ef:bc:03:d1:32:4a:
cb:6a:47:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:50:12 2026 by rpki-client