Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
File: 2xjQrivPZ9QUonXLOE8tOWCoN70.mft (raw, json)
Hash identifier: ZRywpj+4pZ2RwIFQ+y+wgn6dd9YCadzLFbwqOzp0U5s=
Subject key identifier: AF:8E:E5:6A:F8:FE:7F:1D:8C:63:90:C8:60:FA:64:0A:FC:29:16:DB
Authority key identifier: DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
Certificate issuer: /CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Certificate serial: 019E1EA2ADF6E7C939E7AC537077556313DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
Manifest number: 107E
Signing time: Wed 13 May 2026 00:00:38 +0000
Manifest this update: Wed 13 May 2026 00:00:38 +0000
Manifest next update: Thu 14 May 2026 00:00:38 +0000
Files and hashes: 1: 2xjQrivPZ9QUonXLOE8tOWCoN70.crl (hash: GaKjpaT1X5ZXOM9YeIlRf5HxKo0ZIzdJowChG+P2aTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a2:ad:f6:e7:c9:39:e7:ac:53:70:77:55:63:13:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Validity
Not Before: May 13 00:00:38 2026 GMT
Not After : May 14 00:00:38 2026 GMT
Subject: CN=af8ee56af8fe7f1d8c6390c860fa640afc2916db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:96:18:45:e7:0a:44:98:d5:2b:91:f5:4d:cf:
3d:08:0f:b1:b0:ba:9f:68:e0:02:3b:d9:9c:bb:e6:
73:6d:69:b5:be:3f:d8:1d:01:32:b4:9a:c8:55:a9:
f4:59:bb:f5:41:1e:1b:e1:97:65:09:2c:cc:78:9c:
6e:b7:cb:7d:a6:59:9b:3b:86:ad:fe:f0:d0:0a:0c:
fe:b0:f3:2b:17:27:67:90:5c:51:9d:b5:e8:ed:34:
f7:b2:dc:93:27:b9:0b:ad:46:01:86:4e:79:b0:2c:
95:22:1b:06:01:97:86:65:0e:1d:1c:1e:27:df:a2:
ed:4a:ea:fb:55:2f:87:df:f7:42:ef:fa:01:d6:38:
db:76:e4:d7:f5:32:03:51:77:04:c7:a0:50:ce:1b:
ee:f2:bd:87:0f:e3:11:20:d7:52:f5:69:00:09:85:
3a:34:74:ed:83:00:40:09:a8:fe:4b:9e:68:4f:fb:
08:40:3a:f0:1c:3e:4b:23:9f:51:f3:ca:2d:40:e1:
04:b2:3d:44:d0:6c:6b:72:4e:ed:59:93:f3:37:23:
d9:c5:87:63:d3:4a:30:47:25:a1:bf:4a:02:a7:c2:
25:43:b7:9a:0a:c7:4b:49:2b:12:59:ce:e1:89:7d:
4d:b3:ab:58:79:d3:31:53:68:d4:a2:57:91:73:ee:
52:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:8E:E5:6A:F8:FE:7F:1D:8C:63:90:C8:60:FA:64:0A:FC:29:16:DB
X509v3 Authority Key Identifier:
keyid:DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:1d:19:92:a9:16:a2:8d:e0:d3:7f:56:21:1a:92:98:af:b1:
39:65:1a:ba:6f:8c:c0:e4:62:c6:8b:f7:08:5b:e0:2f:e3:f9:
de:f1:41:23:e7:ca:e6:27:d2:e5:1e:02:1d:80:a2:be:48:46:
a9:6b:79:91:e6:3c:18:9d:70:dd:8e:ea:ea:f7:b2:12:d2:32:
b4:96:79:8d:9a:54:b9:fd:e3:3a:d8:07:45:af:7f:90:ac:8e:
0a:39:94:ec:86:b1:a6:30:f0:88:f2:80:48:c2:c1:d0:27:4a:
ab:ff:20:eb:c9:30:da:df:f1:6e:c9:dc:62:07:0c:91:41:c3:
a8:87:94:94:bf:bf:08:ad:bb:0f:fa:81:6d:89:bc:22:fb:a5:
c9:7a:d8:76:47:ec:87:a4:ea:4c:ad:91:d0:d1:8c:c6:82:27:
ba:b4:5c:84:4e:a6:47:d9:47:30:7c:fe:fe:09:e5:b0:1b:cd:
6b:db:6a:de:4e:36:8e:32:a6:be:67:73:33:31:c3:23:b1:99:
7e:0f:ba:c3:99:0c:5d:34:8c:db:b2:68:55:f9:00:70:fe:c8:
1c:34:cc:c8:2e:51:e5:c5:23:1b:7a:5c:72:40:5d:a1:db:32:
9f:6c:78:b8:05:e4:cc:5b:a5:a3:92:27:9f:b9:ea:79:00:d8:
21:d0:da:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:44:04 2026 by rpki-client