Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
File: 2DLajUWISdX0C6bwuSCPhYXZ4j4.mft (raw, json)
Hash identifier: kZ2KeTZobvEfLK0bjeBZEjObvF5KwLYbsP+KJykrE8Q=
Subject key identifier: 35:66:F6:18:96:2E:EA:96:CE:C7:81:33:6D:55:6D:EB:B0:80:B7:70
Authority key identifier: D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
Certificate issuer: /CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Certificate serial: 019E1C0F9C169FE9470C2B2EDB470C197195
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
Manifest number: 1905
Signing time: Tue 12 May 2026 12:00:45 +0000
Manifest this update: Tue 12 May 2026 12:00:45 +0000
Manifest next update: Wed 13 May 2026 12:00:45 +0000
Files and hashes: 1: 2DLajUWISdX0C6bwuSCPhYXZ4j4.crl (hash: oCA676Hmhqo8sl39R55LYDfQ3NbaHh1VzDV4X1mTZtI=)
2: 7-BHgIfd8UJXQcrdaeCEGNqT0DU.roa (hash: r7iG2JSHeb88gixTYl7AFD1jnKrQ0a+iH+yjlWvhS9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:0f:9c:16:9f:e9:47:0c:2b:2e:db:47:0c:19:71:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Validity
Not Before: May 12 12:00:45 2026 GMT
Not After : May 13 12:00:45 2026 GMT
Subject: CN=3566f618962eea96cec781336d556debb080b770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9d:59:61:85:ca:76:88:d9:0d:4e:b3:7e:36:
3a:65:0a:69:6c:84:01:8e:69:c4:7e:b8:c2:5e:ca:
9d:c2:0f:00:47:26:82:21:a1:68:7c:ea:c4:6d:17:
4f:78:e8:2d:e1:24:67:33:f8:f0:41:c2:19:7d:8b:
b1:87:b7:2b:c0:78:42:33:25:7d:f3:62:67:f1:ad:
01:7b:bb:d6:28:f3:52:ef:1b:b0:f7:f5:39:ed:0d:
7b:56:ae:58:c5:d8:7c:1f:2c:f5:0c:c3:2b:38:9d:
fb:0a:72:94:ba:d1:df:57:e8:5e:12:39:90:19:5b:
c0:96:05:fb:cf:f3:50:28:37:09:0f:ba:b6:61:3f:
ef:8e:bf:75:09:7f:18:19:74:86:b5:8d:e2:b5:0a:
1f:b3:2b:d9:c1:39:db:ed:c3:23:0d:32:74:19:aa:
a0:d2:b0:32:e8:a5:41:a0:56:6b:94:50:da:02:11:
16:a1:90:87:0e:a3:3b:1a:cd:ef:c5:30:fe:7a:79:
ae:1b:0e:1c:6e:e0:bc:ad:ce:52:ff:05:23:f6:9b:
c8:e2:9f:62:e0:26:4c:41:f3:92:c0:a7:50:61:c6:
32:8b:6f:a7:4f:fe:91:b3:6b:66:47:cc:7e:fc:1a:
1d:0a:3e:e5:f1:a2:bd:0f:a0:6c:14:8a:55:ac:b2:
99:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:66:F6:18:96:2E:EA:96:CE:C7:81:33:6D:55:6D:EB:B0:80:B7:70
X509v3 Authority Key Identifier:
keyid:D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:e7:44:e8:6b:ec:9b:48:6c:a6:e7:7d:4c:16:23:97:7c:45:
be:42:df:61:c7:aa:92:9a:39:0d:fa:33:28:2a:b3:98:98:07:
c1:14:2c:34:f3:8e:ad:c6:7c:9b:90:8e:e1:78:38:1a:16:37:
bf:35:97:8b:d0:da:0d:0d:b3:ae:75:7d:73:13:7b:b2:11:43:
e9:f0:e9:bb:0d:67:2c:dc:37:60:9e:7d:4b:17:b9:e5:bf:6e:
a6:47:01:3a:eb:7a:fa:1d:d8:73:8d:22:8e:14:cd:79:f7:eb:
ab:dd:40:38:4b:57:c0:5f:17:e9:65:15:0f:4e:d9:82:0e:9e:
1f:0c:a6:2d:0b:af:a2:d0:c4:c1:ee:9c:5b:e8:28:05:22:61:
08:56:c6:4d:33:de:a1:f2:b2:75:1d:29:71:1f:71:96:68:ea:
6b:ff:e2:2f:a7:0a:6a:e3:6a:79:c9:f2:3b:a4:a8:57:e7:f6:
d7:e5:97:5e:1e:74:55:4e:ab:ba:e6:49:70:2a:e2:e2:41:34:
32:47:64:8c:af:eb:9a:d3:f0:4a:6b:91:6e:40:45:2e:4e:ff:
07:fa:8d:fb:20:b5:d4:33:80:ff:bc:bd:75:70:3b:e6:5f:bc:
1b:04:c5:00:ef:8a:db:14:bc:b7:cc:a9:8d:2c:46:47:4b:90:
8d:e5:42:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:17:28 2026 by rpki-client