Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
File: 2o2nRADHVVq6J8Eon7-5CzO3miI.mft (raw, json)
Hash identifier: x2kM0/yfGqpexcrF/7kKm0mPJdlmmn3dw1E5msZ9MBA=
Subject key identifier: 7B:41:1E:2E:9E:63:42:DC:7F:1E:4F:FC:41:47:49:C9:39:EE:50:60
Authority key identifier: DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
Certificate issuer: /CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Certificate serial: 019E1CB53A92373AC90AA3E0D412B9E81B4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
Manifest number: 1792
Signing time: Tue 12 May 2026 15:01:39 +0000
Manifest this update: Tue 12 May 2026 15:01:39 +0000
Manifest next update: Wed 13 May 2026 15:01:39 +0000
Files and hashes: 1: 2o2nRADHVVq6J8Eon7-5CzO3miI.crl (hash: HBPgTWmdzivzHDLjjZfA1oaVLyf756k4w0j2qDHPTkA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b5:3a:92:37:3a:c9:0a:a3:e0:d4:12:b9:e8:1b:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Validity
Not Before: May 12 15:01:39 2026 GMT
Not After : May 13 15:01:39 2026 GMT
Subject: CN=7b411e2e9e6342dc7f1e4ffc414749c939ee5060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4a:46:06:a3:69:d6:2b:56:33:b0:74:b0:66:
51:98:f6:a7:c7:7b:bb:f7:b7:18:10:34:a2:a8:4e:
ac:f0:2f:e2:7a:e3:7b:df:9b:e1:34:bb:37:6a:76:
cd:fc:0b:3e:54:a0:d8:c7:61:1d:f5:c8:13:d3:ff:
2d:e9:27:61:84:f9:a6:4d:9a:24:d8:05:92:03:50:
29:0a:b6:1c:11:cd:53:59:82:a3:79:92:13:34:a3:
70:d7:82:8f:19:57:aa:dc:bc:cd:2e:01:a8:f7:c6:
5c:99:9b:fc:06:e2:03:0c:c3:5f:1c:a8:0d:3e:bd:
12:08:7c:ab:ba:26:1b:02:cd:f4:fa:8f:d8:ee:d6:
8d:3e:bd:9f:d0:65:55:21:5a:7d:b9:81:51:22:5c:
19:b2:71:27:57:01:92:cf:b7:48:ef:34:fb:b3:f3:
96:fe:f1:2c:c7:c1:f3:05:ff:ce:ac:40:00:65:27:
9e:86:99:2c:a2:8a:f5:e6:f8:b5:00:e9:a0:52:5f:
b5:00:0d:a8:df:93:5e:4a:f5:c2:e2:78:74:ae:df:
01:90:1d:77:28:99:59:0b:59:a3:95:87:32:12:2b:
5c:05:1d:b1:a9:41:26:2a:99:dd:d4:6d:1c:64:5f:
b1:04:1c:75:61:6a:ae:eb:54:07:97:11:fc:49:12:
15:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:41:1E:2E:9E:63:42:DC:7F:1E:4F:FC:41:47:49:C9:39:EE:50:60
X509v3 Authority Key Identifier:
keyid:DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:7c:26:8b:02:b0:a9:9c:d3:5c:b3:0d:cf:d1:26:d4:8c:30:
ba:bf:2b:44:e6:38:43:8a:bc:c9:51:3f:a0:e5:13:24:fb:a8:
c7:1c:b8:8e:95:79:2b:9e:54:04:3a:3b:bd:8b:74:8c:f4:7a:
4c:38:47:23:48:50:e1:b6:11:ce:c0:17:57:25:7e:4a:78:98:
e3:f4:dd:40:03:f8:6e:bf:d2:1d:a4:16:27:d6:72:e8:08:7d:
de:5b:f4:c5:1e:76:05:ab:9a:ba:3d:63:21:7f:14:5b:06:6b:
26:7f:c1:a4:80:91:b9:f0:36:28:2e:4c:fd:20:e9:14:8c:67:
d2:c1:8d:52:87:14:c8:30:3e:29:4f:ee:51:b2:1c:3c:88:1e:
82:6d:60:b5:73:7c:df:40:3d:f2:41:5a:24:c5:5c:6b:27:ea:
45:8f:03:8d:51:fe:ab:2c:cf:25:27:26:46:b1:5e:1e:bd:7b:
90:a7:b9:34:d2:b3:64:a1:45:79:46:75:29:84:9d:3a:dc:e1:
cd:5a:73:4d:f8:50:a5:2f:a4:49:13:34:d3:09:fb:17:ef:9c:
a2:00:97:74:14:81:6d:68:de:37:44:81:69:22:fe:0d:9e:2a:
84:02:25:d7:b0:8e:18:78:43:98:37:1a:3a:2d:7f:39:0d:c9:
2b:9c:ab:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:30:32 2026 by rpki-client