Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
File: 2dHiILYBtn_jDLt7fBvyL74i-08.mft (raw, json)
Hash identifier: bck+M25sadcKMGbj3SiCkMcZnqU1lLMZqnr3KGPkYg0=
Subject key identifier: BF:1C:F5:75:67:A6:53:5F:6E:73:23:00:B3:33:48:50:F7:C8:4B:9E
Authority key identifier: D9:D1:E2:20:B6:01:B6:7F:E3:0C:BB:7B:7C:1B:F2:2F:BE:22:FB:4F
Certificate issuer: /CN=d9d1e220b601b67fe30cbb7b7c1bf22fbe22fb4f
Certificate serial: 019E1D2251959158AA808DD54D1405D9AE9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
Manifest number: 0D93
Signing time: Tue 12 May 2026 17:00:48 +0000
Manifest this update: Tue 12 May 2026 17:00:48 +0000
Manifest next update: Wed 13 May 2026 17:00:48 +0000
Files and hashes: 1: 2dHiILYBtn_jDLt7fBvyL74i-08.crl (hash: QQslXdaukAcUSdz7kPiNiKMIPxqBCXJOV1p2xHLI0v0=)
2: RHS11XqX5pjtfXZH7I66Gp4Ow3s.roa (hash: 9qk+uC8E6OyhqYxBRe7jo40pbmRAOPPP2eDmccn/Upc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 17:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:51:95:91:58:aa:80:8d:d5:4d:14:05:d9:ae:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d1e220b601b67fe30cbb7b7c1bf22fbe22fb4f
Validity
Not Before: May 12 17:00:48 2026 GMT
Not After : May 13 17:00:48 2026 GMT
Subject: CN=bf1cf57567a6535f6e732300b3334850f7c84b9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:10:91:0e:2a:65:c5:08:28:6e:02:97:48:21:
12:17:88:8f:7d:97:8b:0d:2a:79:53:ae:f8:5e:aa:
26:92:5b:ac:82:72:86:df:3e:ee:50:23:65:24:50:
35:4d:29:5f:84:f6:6d:67:56:24:5a:57:65:04:17:
f5:58:ff:d1:f2:35:07:78:a1:67:67:3e:3e:ac:86:
7b:4a:b1:3d:44:fd:bd:6e:4b:b7:c1:fb:6f:6a:5a:
5c:db:f0:b5:06:aa:35:2b:2a:22:e9:33:92:1f:e4:
b6:49:8e:d4:e5:c3:b1:f8:a6:44:11:3f:9e:7c:0f:
02:f7:c8:ef:98:10:08:a0:7a:19:d2:6b:74:c9:b2:
25:e0:10:07:05:27:b7:90:69:da:f1:99:84:df:ca:
a2:45:44:b7:fe:89:39:b6:c7:d9:35:1b:7e:13:09:
ad:ac:9d:f9:b7:af:08:67:9d:2b:14:d3:b5:0c:37:
bd:7f:9a:eb:37:6c:8d:a9:71:d4:1e:8a:5e:b7:ef:
e2:ed:43:cd:e4:df:d5:5b:bd:74:7c:7e:c0:82:60:
04:e9:fb:99:ec:92:e6:56:84:5b:f7:23:97:a2:7a:
61:dc:c0:8d:53:cd:f9:e9:6b:f7:fd:4d:bc:dd:5c:
84:1a:1b:ef:05:26:d2:47:80:b5:b7:c9:ec:cd:44:
c6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:1C:F5:75:67:A6:53:5F:6E:73:23:00:B3:33:48:50:F7:C8:4B:9E
X509v3 Authority Key Identifier:
keyid:D9:D1:E2:20:B6:01:B6:7F:E3:0C:BB:7B:7C:1B:F2:2F:BE:22:FB:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:e7:13:a4:6d:99:c4:35:a2:a0:fc:3d:0e:c5:68:ae:5c:cb:
1b:c5:48:c8:46:8b:44:ee:a8:ba:59:c1:64:26:cb:0e:f9:d8:
62:1f:37:fe:ac:26:df:9d:ec:eb:04:a7:82:17:0a:17:64:f1:
87:62:9b:e1:71:f2:df:81:41:21:da:6f:a0:19:fd:31:fc:3a:
fd:22:74:49:f6:e6:63:0c:0b:9e:ec:d7:03:50:20:d5:f0:8a:
63:88:f1:ac:00:a8:c4:e0:a4:1e:ec:34:e4:68:c2:68:9b:73:
a9:e5:14:e7:84:8a:53:ad:fa:a9:bc:5e:85:e6:70:57:4c:1a:
b1:57:d1:14:c3:80:9b:86:b7:23:87:ab:a2:31:5b:95:b8:1a:
b5:35:52:98:b8:b9:bc:81:c8:ad:19:01:44:ae:ce:0b:21:4d:
e6:41:3b:f4:79:8d:a3:d3:0e:73:bc:74:4b:c8:b1:5e:4f:16:
7f:43:47:aa:8d:04:dd:3f:da:1c:4e:90:47:01:dc:4e:c6:03:
d0:39:01:7f:24:0d:0a:91:6a:8a:df:49:b1:dc:91:4b:fb:86:
10:8c:2f:7e:9e:e0:f6:39:1a:87:37:2d:bd:f9:aa:f3:df:c5:
df:75:f1:16:59:92:47:be:7a:4f:75:6a:ee:56:64:17:c0:0b:
b2:54:d5:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:30:22 2026 by rpki-client