Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
File: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft (raw, json)
Hash identifier: OCLjBl3XYVG/EeUCVnQQ65zj2vhP9AHL1El4nVls+gY=
Subject key identifier: 81:E6:7E:65:0B:40:FB:29:24:32:3B:43:69:C9:63:9C:9B:11:83:6F
Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Certificate serial: 019E1C0FD88281FDB6C90D705A3285AF9811
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
Manifest number: 1095
Signing time: Tue 12 May 2026 12:01:00 +0000
Manifest this update: Tue 12 May 2026 12:01:00 +0000
Manifest next update: Wed 13 May 2026 12:01:00 +0000
Files and hashes: 1: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl (hash: t/lwbeGakqbFLOR4uD9h4PRm9g0vuRQNLJ3FMKF0Pbw=)
2: XGXdZuWArU8DUaMKbDMpc7L7WG4.roa (hash: b1uv3hiq3QuqB6rWvknFaAIJIJ6UZQWlgoHNYzcvoDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:0f:d8:82:81:fd:b6:c9:0d:70:5a:32:85:af:98:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Validity
Not Before: May 12 12:01:00 2026 GMT
Not After : May 13 12:01:00 2026 GMT
Subject: CN=81e67e650b40fb2924323b4369c9639c9b11836f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ea:3c:a1:e7:aa:e5:53:be:b2:c5:15:32:85:
89:40:5e:7e:3c:9b:de:74:9c:ce:50:ee:fa:32:69:
66:2a:98:03:70:3f:cb:df:e4:33:79:d6:b9:30:f8:
13:11:02:08:15:9e:bf:6d:96:2a:03:31:43:db:01:
eb:86:8f:66:05:e8:b4:dc:da:73:db:9e:46:4a:f5:
8d:0a:88:0a:d6:63:4a:00:c6:0e:89:51:4c:58:be:
09:1b:8d:6d:31:c5:19:eb:fd:ad:a8:db:ee:f9:e5:
9d:1d:71:ae:37:c6:63:cc:53:a6:42:f6:d7:7c:99:
60:41:2b:6c:c3:30:f9:71:93:a1:86:49:fa:06:c6:
45:29:12:90:09:03:0e:8d:11:8d:9f:2b:bf:96:07:
6f:49:91:06:1c:49:64:23:c4:54:c5:48:75:d0:ae:
bf:d7:27:f9:88:85:ae:cb:65:93:19:c7:58:b7:04:
f3:35:bb:92:6c:49:e9:bb:f5:09:8a:31:09:1f:23:
4e:8b:67:6b:df:8e:1c:84:a8:a8:54:79:39:57:ab:
6f:ea:88:46:9d:16:07:a1:39:11:fe:e1:5d:5b:0e:
b9:94:59:19:bc:ef:bf:ad:a2:dc:9a:a1:e5:74:ac:
26:cd:76:8e:82:8b:96:b9:be:9a:99:1a:46:88:6e:
92:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E6:7E:65:0B:40:FB:29:24:32:3B:43:69:C9:63:9C:9B:11:83:6F
X509v3 Authority Key Identifier:
keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:ae:a0:93:87:ae:f5:4c:a0:2f:26:a2:a1:4e:43:31:7b:59:
20:09:e5:3e:71:c0:39:39:ad:a9:03:7c:63:ad:1d:67:bd:57:
37:60:47:12:d6:5a:f7:00:29:0a:6d:51:89:40:ae:ee:52:81:
57:4a:0a:a4:a2:21:17:90:71:f6:d2:1c:ed:7b:80:23:cf:fd:
d7:92:20:44:0d:5a:84:81:4a:6e:1a:61:8d:bb:2c:dd:e3:7d:
f9:65:bf:f6:e1:69:d8:94:68:4b:5c:31:ec:56:4e:df:ba:39:
4d:34:bf:2a:65:06:1b:37:4d:bc:ba:8d:aa:14:4a:3d:59:0b:
be:78:d7:84:fc:f9:d2:8e:52:a9:ed:8d:3d:4b:96:6d:51:13:
25:ea:da:e6:f0:23:06:09:8c:f4:c2:e4:dc:00:f9:e3:e5:09:
6c:f7:74:c1:81:a1:90:91:6b:b1:03:a0:94:0d:f9:76:8d:3f:
51:f3:79:a7:2e:45:be:a6:20:79:7f:56:e8:a0:58:d0:40:b2:
b6:92:0c:20:b7:48:29:2f:7d:d2:11:69:6e:c6:0a:df:ac:82:
10:47:87:83:f9:4e:d2:e1:6d:56:b1:1a:5c:8d:ad:5b:a4:b8:
fd:2c:94:1c:41:87:58:47:c0:1f:90:9a:f4:05:0d:04:52:b5:
b9:76:ab:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:55:29 2026 by rpki-client