Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft
File: 2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft (raw, json)
Hash identifier: MsiULfJLEm5ZN4yCp4ej2MrKq1ffVYXnKaNXyV+WYs0=
Subject key identifier: 4D:3F:DF:D9:BB:C1:B7:DF:C6:6B:88:48:AB:54:85:98:E7:B4:96:41
Authority key identifier: D9:18:7C:9A:C1:0F:20:51:52:B1:28:EC:DC:21:57:C9:02:49:16:A4
Certificate issuer: /CN=d9187c9ac10f205152b128ecdc2157c9024916a4
Certificate serial: 019E1C466EEFA6A5ABA2D17E2A9CC82A6A19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft
Manifest number: 1903
Signing time: Tue 12 May 2026 13:00:38 +0000
Manifest this update: Tue 12 May 2026 13:00:38 +0000
Manifest next update: Wed 13 May 2026 13:00:38 +0000
Files and hashes: 1: 2Rh8msEPIFFSsSjs3CFXyQJJFqQ.crl (hash: PqfyhtNwcCVu7lGoyobQspLYNssx2plwL7GrCCwbQB0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:46:6e:ef:a6:a5:ab:a2:d1:7e:2a:9c:c8:2a:6a:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9187c9ac10f205152b128ecdc2157c9024916a4
Validity
Not Before: May 12 13:00:38 2026 GMT
Not After : May 13 13:00:38 2026 GMT
Subject: CN=4d3fdfd9bbc1b7dfc66b8848ab548598e7b49641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:af:c2:a9:9f:83:46:7c:aa:07:7d:98:9e:27:
b8:bd:d5:0a:3e:5c:d9:67:74:aa:c2:f0:d0:5b:44:
fb:92:1c:aa:1a:d4:48:c7:6f:a8:29:a2:40:ae:f5:
fb:7a:94:3c:e1:05:32:b0:8c:9a:92:7e:ff:00:49:
58:43:ff:fc:c2:cc:f1:f2:96:af:c5:27:53:40:6c:
45:b2:6d:cb:7c:88:64:f2:c7:53:a2:86:92:9e:8e:
6c:d6:ff:72:70:8e:d3:ea:e4:90:89:6c:86:89:cb:
f5:39:ca:1c:ef:0c:d0:f7:65:34:13:24:79:72:a7:
29:72:61:cd:c4:6e:9a:18:57:ac:da:b4:97:5a:c7:
e6:26:cf:b1:9c:c4:c1:66:c0:66:6f:35:ee:53:d3:
22:4d:a3:5b:b2:97:1e:99:d7:6d:18:99:03:61:ca:
4b:eb:ed:ce:26:4b:db:48:f4:a9:b1:de:9e:ce:9f:
9b:02:5a:2e:6c:2c:ba:f4:8f:24:38:34:5b:bb:0d:
cf:5c:34:5d:7b:f5:21:05:40:93:14:9c:18:aa:c9:
3c:52:d1:4c:12:d6:b3:5f:55:8f:2e:52:82:81:cb:
4e:55:29:de:ab:07:ef:d8:d1:ed:2f:69:27:4f:f8:
c6:8f:75:7b:b4:15:14:cf:fe:dc:11:32:50:5d:45:
35:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:3F:DF:D9:BB:C1:B7:DF:C6:6B:88:48:AB:54:85:98:E7:B4:96:41
X509v3 Authority Key Identifier:
keyid:D9:18:7C:9A:C1:0F:20:51:52:B1:28:EC:DC:21:57:C9:02:49:16:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:3e:13:cf:cc:7d:d6:84:02:6b:6f:87:4c:2a:db:33:ee:f1:
ce:c0:de:07:76:3c:80:20:d1:bc:6e:90:a2:63:fc:dc:f7:cf:
2f:0a:26:93:83:f0:df:dd:d0:39:e9:95:e7:6f:be:39:b6:ea:
69:c8:bf:9f:ad:e2:77:10:1d:a4:85:1b:8e:e2:15:2f:36:47:
78:90:b3:eb:32:69:b9:c6:25:a6:f4:dc:b1:8c:bf:3c:62:17:
53:fd:55:73:05:ac:6c:bb:a1:3d:8f:c4:02:1d:5a:9f:ae:08:
df:91:09:39:95:d8:d8:04:38:31:6c:02:b4:de:d8:c7:bd:d0:
d2:b6:b0:3d:d4:c2:57:76:c1:75:4a:b3:96:59:d4:c2:20:a0:
38:c3:b7:de:53:5a:46:98:16:36:16:fc:5c:48:a7:37:d9:52:
6f:b6:fd:f2:52:cb:0d:1b:62:dc:f8:34:d2:f8:c3:2c:9b:f4:
c0:c4:ae:34:47:5d:13:0a:52:14:c0:b1:37:40:0e:ab:07:5b:
f8:67:0f:58:3e:48:29:11:94:55:3b:85:65:ba:c5:4b:39:79:
ad:ac:10:5f:a3:79:df:43:cf:52:1d:52:7f:d2:3f:35:64:13:
05:3d:bc:71:b3:38:67:3d:41:7b:ae:03:8a:67:b4:0c:20:2c:
06:bd:35:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:16:31 2026 by rpki-client