Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
File: 2q_pD50IEzTMko7e6bxzFUBwjf0.mft (raw, json)
Hash identifier: Su0sPZAf+n9JpFLORMdsDQjCvMQNWQkFnqMkHryXq68=
Subject key identifier: 1D:EA:66:70:81:11:85:B5:31:76:BE:32:12:06:D4:12:4C:35:33:12
Authority key identifier: DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
Certificate issuer: /CN=daafe90f9d081334cc928edee9bc731540708dfd
Certificate serial: 019E1D2322DB61FD1B583445A59F5FC289DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
Manifest number: 0C5B
Signing time: Tue 12 May 2026 17:01:42 +0000
Manifest this update: Tue 12 May 2026 17:01:42 +0000
Manifest next update: Wed 13 May 2026 17:01:42 +0000
Files and hashes: 1: 1JQv5SOtSeXXkOrfiZJVS0aL7xU.roa (hash: AMT4fhj0NQTYFJqA1ljnLjH+q0LAKk7Eo+Nf4uYT4Lg=)
2: 2q_pD50IEzTMko7e6bxzFUBwjf0.crl (hash: efmwFyjQKIA9VeE050T/m6Tz4LYtgTpf4/8oSsPkNV4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:23:22:db:61:fd:1b:58:34:45:a5:9f:5f:c2:89:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daafe90f9d081334cc928edee9bc731540708dfd
Validity
Not Before: May 12 17:01:42 2026 GMT
Not After : May 13 17:01:42 2026 GMT
Subject: CN=1dea6670811185b53176be321206d4124c353312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:af:28:cd:ff:d9:54:eb:3d:6f:e4:42:ae:38:
68:e9:c2:db:c8:c9:e3:3d:81:e7:25:dc:2c:9a:78:
39:c6:8a:b1:75:1b:42:7d:77:e8:d9:e8:16:a9:48:
9f:b8:8a:ef:8c:6b:3a:9c:3a:71:14:17:67:de:30:
91:5d:e9:a8:fd:6d:a4:aa:98:ee:35:ce:6f:5f:90:
04:d8:d3:16:82:c0:e3:7f:80:7e:ad:1b:fa:31:e9:
1c:85:27:32:de:5a:65:ea:1d:93:96:2e:fe:25:05:
01:99:a1:60:27:47:72:c2:80:a1:f8:7d:80:0d:70:
07:a7:e4:b6:7f:c5:c3:5b:1e:fb:b3:75:fa:97:9e:
42:22:38:88:58:56:d3:9d:9f:92:14:63:2d:67:17:
04:51:61:a0:de:a1:98:e4:da:9f:0c:13:cb:63:90:
95:41:ad:5f:29:ef:5b:4d:d2:5a:4a:d3:9c:6a:5d:
80:94:39:a7:d1:99:ba:9a:c7:cf:6a:bd:77:3c:41:
3f:27:c8:3b:83:ed:bf:bf:0b:5e:05:50:67:ab:58:
24:40:ea:41:d2:59:db:e7:aa:e3:36:fa:67:34:12:
1a:41:d1:9c:7f:62:21:4a:13:2b:a0:59:3d:49:61:
9f:a6:ed:f0:7a:e7:bb:4f:27:97:4d:15:04:e0:71:
96:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:EA:66:70:81:11:85:B5:31:76:BE:32:12:06:D4:12:4C:35:33:12
X509v3 Authority Key Identifier:
keyid:DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:bf:57:37:33:4b:59:97:8f:5d:b4:41:e5:e0:3a:4b:68:9f:
77:66:0c:8c:7d:f4:04:85:c1:ec:85:f0:72:c2:ee:29:f8:e0:
8f:87:17:c2:8f:f7:6a:1a:39:60:f7:2f:8e:e0:3a:c0:c1:96:
84:e4:01:e4:f9:74:55:40:e5:f3:22:90:87:7c:bf:b1:ff:cb:
a1:34:e9:49:45:f2:96:21:77:87:1e:98:75:81:34:d5:47:c8:
b9:24:d2:06:d0:58:b5:65:5e:b0:c5:e9:1a:78:22:b2:58:8c:
d8:9c:38:a2:c8:e0:10:99:1c:e4:bf:7b:ad:b0:4e:3f:5e:90:
1b:60:37:e4:3b:c3:79:ce:0d:51:d4:10:f1:d1:25:17:00:ee:
95:93:15:36:ed:68:0a:d5:7a:8b:13:c6:07:85:80:9f:0e:ab:
72:1f:a0:d0:86:47:2b:61:46:d6:10:da:6e:3f:3e:c1:18:2f:
c7:d0:fe:35:dd:e1:21:ba:92:90:ae:4f:fb:48:97:3a:ac:da:
ea:8e:bb:71:70:12:0d:2c:11:69:68:fb:d8:c8:c0:04:d9:68:
90:b8:e1:0d:ac:ef:05:5b:b1:28:1e:71:83:26:84:07:d1:d4:
fe:11:5c:d3:1d:0e:6e:58:bc:14:0c:30:45:4f:4e:ec:25:55:
61:32:ae:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:42:36 2026 by rpki-client