Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: 3Ox7flr7COCV0cI0wEod8vMLOO/KO5G8s44qWzgNG2I=
Subject key identifier: A4:55:3A:3E:3E:F1:F4:71:4D:94:EE:90:B0:55:38:C2:D0:3C:4E:FF
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 019E1DC7471F27517389ED2A2CEA246A344D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 190A
Signing time: Tue 12 May 2026 20:00:59 +0000
Manifest this update: Tue 12 May 2026 20:00:59 +0000
Manifest next update: Wed 13 May 2026 20:00:59 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: pUEKg7La4sLJ1Nm8eIeH884RcFaheaPZ7+HeYI07eXU=)
2: H5rz4CYgzmbUmnfGasi4U65AvKk.roa (hash: TO3cNYf9xWtPGa2S3JS5FwJuRn8xpuHQxouafZFM9ao=)
3: qrZor_4iuHhjWECNHuPoqjZgwRM.roa (hash: jTjQTNz6GwiMBlghpXe7c+6S4Cn1ehIr1K8g9CB/9Fs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:47:1f:27:51:73:89:ed:2a:2c:ea:24:6a:34:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: May 12 20:00:59 2026 GMT
Not After : May 13 20:00:59 2026 GMT
Subject: CN=a4553a3e3ef1f4714d94ee90b05538c2d03c4eff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3e:65:6c:ba:75:d3:5a:b5:30:5c:21:cf:ae:
7a:56:58:18:e7:b2:a1:ef:42:a7:c8:95:fd:44:b5:
23:c6:1b:9c:12:f6:b8:d4:0c:8a:07:2e:4f:26:4e:
5f:1e:dc:12:ac:fe:5a:cf:8d:0e:b8:7a:15:84:2b:
fd:ae:ff:bf:d0:b9:a8:2c:2e:03:ef:ec:14:2f:55:
b0:ea:44:92:2b:eb:9c:0c:f3:7e:19:bf:b2:86:9d:
a0:1b:32:cb:fa:2d:b8:34:99:22:f9:7d:78:2b:62:
ee:5d:5b:7b:a2:02:c5:5a:4a:03:44:18:dd:b5:97:
d1:a2:87:a5:cf:19:ce:4f:bc:ef:d4:b0:5c:9e:3c:
23:b1:58:bc:c8:b8:f7:6b:c5:34:e8:87:de:28:5d:
d9:92:f5:12:58:ab:84:c0:a7:d8:be:9f:f5:e9:32:
47:c5:94:bc:60:84:21:08:5d:22:c0:44:7f:0f:6a:
8b:d3:d5:7f:2a:69:34:ac:79:cf:f3:25:60:68:bd:
04:83:93:5b:66:0d:d6:af:95:15:83:f0:f0:98:d9:
cd:a2:3d:69:a1:75:52:0e:24:93:ee:f2:06:72:a0:
7b:94:5c:57:b7:f3:33:36:f1:ab:49:9f:e6:54:15:
3b:8a:c5:ed:cd:36:b8:4c:54:70:79:7f:2d:04:12:
7c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:55:3A:3E:3E:F1:F4:71:4D:94:EE:90:B0:55:38:C2:D0:3C:4E:FF
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:c0:b3:f8:30:33:be:38:e8:6d:47:f7:1a:71:2d:1e:ba:00:
ed:c5:59:a6:ee:37:21:dd:e1:3b:f0:37:35:01:63:47:c2:d8:
ea:82:d8:bc:ab:99:1b:27:14:b8:1a:8c:ea:99:69:d3:3e:b4:
d6:90:93:5f:cd:91:11:8d:4b:59:06:08:e8:b4:f2:9d:2e:93:
a6:d0:79:89:99:79:bc:39:8c:a7:a6:5f:83:78:3b:0a:97:e0:
25:63:12:68:88:7c:a6:af:15:bf:d9:e1:60:92:34:a8:ea:d1:
ea:8e:9e:7b:a6:b4:36:db:e9:ea:0f:07:7c:34:43:54:eb:60:
77:da:04:1a:bd:05:a9:0a:09:08:94:ad:ec:da:aa:b5:4f:8e:
7e:30:f0:e9:56:81:b2:2e:25:39:d2:84:09:e2:f6:a3:3c:89:
d0:53:21:b3:8b:aa:01:55:24:33:ae:36:a0:33:a2:b8:38:e2:
50:2c:34:f1:92:fd:ba:0e:d6:62:ee:6d:dc:7e:61:16:14:0b:
3a:db:7d:02:be:69:2b:28:86:79:f3:31:65:52:f8:de:c1:91:
4e:26:67:24:30:d0:99:85:b9:0e:01:53:3f:95:55:ce:6c:d1:
4a:35:cb:79:56:82:ce:8a:37:e5:e8:1a:af:b6:50:08:14:0a:
79:00:56:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:51:00 2026 by rpki-client