Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
File: 2qM7UIN5nEnPntwAhit8nCGMZhM.mft (raw, json)
Hash identifier: Il99XBmQ/zINJooNfZAkKBpiRym7be3HUcWSerqbEeU=
Subject key identifier: 97:F2:F9:8D:80:B2:90:36:81:5E:6F:0B:86:17:28:92:65:BA:21:D6
Authority key identifier: DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
Certificate issuer: /CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Certificate serial: 019E1DFE428A1B596E06F4953C7B3B1DB6D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
Manifest number: 068F
Signing time: Tue 12 May 2026 21:01:02 +0000
Manifest this update: Tue 12 May 2026 21:01:02 +0000
Manifest next update: Wed 13 May 2026 21:01:02 +0000
Files and hashes: 1: 2qM7UIN5nEnPntwAhit8nCGMZhM.crl (hash: F4vgife2x8Jn0M68XlO0pI7rTT9WUUrsMhAC9XXwaQQ=)
2: S_RLG-qdyAaQjiZGgL5sIfI-AYY.roa (hash: yQu9ZmP/q7jsTu4yw/AuWtFPXstyX5q6aeR1beEfVWY=)
3: U6As8UUX9Mg8l6zjGbZFCAxy-Pk.roa (hash: RA50m9VAkp/7GXmqEXtG2sTYJiK0WAUeyva3ilsrFA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:42:8a:1b:59:6e:06:f4:95:3c:7b:3b:1d:b6:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Validity
Not Before: May 12 21:01:02 2026 GMT
Not After : May 13 21:01:02 2026 GMT
Subject: CN=97f2f98d80b29036815e6f0b8617289265ba21d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:78:6c:2c:39:24:cf:f4:64:77:8f:d1:c7:9d:
2c:bc:ab:12:95:d3:64:bd:4b:e4:ef:32:f7:38:d3:
a4:9a:33:c3:4b:ed:e5:1c:b2:ab:c6:92:ac:71:c8:
91:11:f1:1b:2d:99:5e:27:65:b9:8a:7e:69:25:65:
2c:94:e3:84:6b:20:f4:81:90:2c:b3:54:27:13:9a:
ff:53:46:d3:8e:9c:a2:dc:a6:7b:e0:7d:2e:b2:4e:
d8:a2:ba:e5:34:75:1b:43:6b:c3:bc:f9:c4:18:95:
63:03:a8:f0:2a:4c:e2:de:3e:e7:25:18:3b:3d:17:
38:14:8e:c4:96:2a:53:72:18:26:86:7e:5d:31:ee:
1e:f0:6c:b4:16:4f:6e:c4:0f:fa:d9:79:26:47:21:
11:90:21:6e:cc:df:18:4b:e2:30:db:6e:bb:ca:dc:
2e:2b:9c:72:a9:88:f8:3e:f9:25:37:5a:d0:0b:de:
ed:27:67:26:22:84:ab:ce:d0:1b:73:68:79:19:a2:
3c:cf:7e:b5:58:a2:c0:7f:83:e9:da:9b:45:7d:84:
00:75:1b:4b:25:2b:91:71:fa:56:07:3b:b3:63:a6:
4a:e6:38:b9:f5:10:84:96:78:ef:07:0c:4c:db:03:
07:a0:c6:19:f4:ed:04:26:a8:fd:ef:f9:6b:ec:b3:
11:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:F2:F9:8D:80:B2:90:36:81:5E:6F:0B:86:17:28:92:65:BA:21:D6
X509v3 Authority Key Identifier:
keyid:DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:7d:45:f9:fa:32:30:2a:d7:54:dd:b4:ba:22:54:d2:63:38:
ce:50:8c:f4:45:0a:05:94:20:ca:39:2d:da:7d:2d:30:f2:f8:
cb:17:da:db:03:c8:69:61:be:52:82:75:eb:99:33:34:1d:36:
46:e3:7e:ae:39:e9:44:83:12:87:b6:c0:d7:04:3a:c3:39:e1:
3f:71:cc:24:c3:5c:13:6c:95:f1:5d:ba:92:e0:6c:57:ef:cd:
b1:f8:7f:36:e7:a6:8a:7d:ce:37:77:50:b5:69:ff:f8:52:df:
75:d7:0e:e2:2c:5e:aa:0e:f4:f4:fb:1a:9e:db:cc:3e:a0:8d:
52:45:04:6a:0a:f1:d4:da:0a:6a:89:fa:a2:86:08:38:32:4c:
f9:d0:f9:fc:dd:22:cf:c5:8c:56:5e:0d:36:54:d2:66:cc:01:
6c:7b:a6:92:10:ec:a7:f5:52:34:af:25:c5:6a:24:bd:33:3a:
a7:eb:6d:3a:54:02:6c:6c:0e:94:40:8b:04:d7:e5:ab:db:28:
53:fa:69:a7:93:1f:34:57:39:05:b2:27:88:b8:9e:71:ec:cc:
e2:47:20:17:c0:6d:6a:04:17:09:6a:f7:19:82:2e:1f:bd:80:
bd:33:09:8f:97:d3:28:a7:a2:37:11:c9:20:22:a7:97:c8:51:
d5:a6:aa:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:02:24 2026 by rpki-client